[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: slapd-meta doesn't continue with multiple uri's

To: "openldap-technical@openldap.org" <openldap-technical@openldap.org>
Subject: Re: slapd-meta doesn't continue with multiple uri's
From: Liam Gretton <liam.gretton@leicester.ac.uk>
Date: Tue, 14 Aug 2012 17:35:42 +0100
In-reply-to: <ec6f01d12d960122635814bc319565e9.squirrel@www.aero.polimi.it>
Organization: IT Services, University Of Leicester
References: <502A4C49.5000803@leicester.ac.uk> <b8f93385b22b25af352abea8f571d1fe.squirrel@www.aero.polimi.it> <502A5BEA.10100@leicester.ac.uk> <563af677eb282050fe5176b75fa0d9f3.squirrel@www.aero.polimi.it> <502A61A7.3010505@leicester.ac.uk> <52231f893bb151d89a5a9c132a71a059.squirrel@www.aero.polimi.it> <502A6CAD.3030702@leicester.ac.uk> <ec6f01d12d960122635814bc319565e9.squirrel@www.aero.polimi.it>
User-agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:14.0) Gecko/20120713 Thunderbird/14.0

On 14/08/2012 17:18, masarati@aero.polimi.it wrote:

If I remove host1 after the LDAP server has started, the debug
output is at least different. It's attempting to contact host1,
failing, doubling the timeout and trying again continuously, never
attempting to try host2 or host3.


The timeout you see is an internal timeout used for each poll on a
target's connection.  It keeps doubling when the connection is valid
but nothing comes.  Did you actually kill host1, or just stopped it?


In the first case (host1 down when LDAP starts), I was testing by

pointing at a host which has no LDAP service running on it at all,although the host itself was up.

In the second case (host1 down after LDAP starts), I was using a propertarget (an AD domain controller) and setting an iptables rule to preventoutbound traffic to it:


iptables -A OUTPUT -d host1 -j DROP

In the latter case, the connection is not dead, it's just returning
nothing.  You need to kill the process (or let it timeout using the
"timeout" directive).

Which timeout directive? I've already set network-timeout in the configfor slapd-meta, and setting bind-timeout doesn't help either. I have nocontrol over the configuration of the targets.


--
Liam Gretton                                    liam.gretton@le.ac.uk
HPC Architect                                http://www.le.ac.uk/its/
IT Services                                   Tel: +44 (0)116 2522254
University Of Leicester, University Road
Leicestershire LE1 7RH, United Kingdom

Follow-Ups:
- Re: slapd-meta doesn't continue with multiple uri's
  - From: masarati@aero.polimi.it

References:
- slapd-meta doesn't continue with multiple uri's
  - From: Liam Gretton <liam.gretton@leicester.ac.uk>
- Re: slapd-meta doesn't continue with multiple uri's
  - From: masarati@aero.polimi.it
- Re: slapd-meta doesn't continue with multiple uri's
  - From: Liam Gretton <liam.gretton@leicester.ac.uk>
- Re: slapd-meta doesn't continue with multiple uri's
  - From: masarati@aero.polimi.it
- Re: slapd-meta doesn't continue with multiple uri's
  - From: Liam Gretton <liam.gretton@leicester.ac.uk>
- Re: slapd-meta doesn't continue with multiple uri's
  - From: masarati@aero.polimi.it
- Re: slapd-meta doesn't continue with multiple uri's
  - From: Liam Gretton <liam.gretton@leicester.ac.uk>
- Re: slapd-meta doesn't continue with multiple uri's
  - From: masarati@aero.polimi.it

Prev by Date: Re: slapd-meta doesn't continue with multiple uri's
Next by Date: LDAP authentication using Radius
Index(es):
- Chronological
- Thread