RE: Socat tcp to local socket

["Marc Roos" <M.Roos@f1-outsourcing.eu>]

Hi Harry, 

I just did a build from srpm, and currently I trying to get the scenario 
of a pipe between sockets working. Just to make sure this pipe is 
working correctly before I am moving to the tcp/tls connection.

Of course my problem persists with socat using something like this.
socat -s -d -d -d -t 3 UNIX-CONNECT:/var/run/ldapi,raw,ignoreeof  
UNIX-LISTEN:/var/run/bla,raw,ignoreeof,fork

You have a suggestion how to to do this with dpipe, I have tried this 

dpipe vde_plug /var/run/ldapi = vde_plug /var/run/bla

But it does not launch nor reports the error.




-----Original Message-----
Subject: Re: Socat tcp to local socket

>
> With this I am able to issue just one ldap search on the socket.
> Subsequent queries fail with 'ldap_sasl_bind(SIMPLE): Can't contact 
> LDAP server (-1)'

Sure, use either very long timeouts or use an other tool, i.e. dpipe.

The problem with socat is, socat terminates after each ldapsearch.

dpipe only stops, if manual terminated. Their are some other useful 
tools in vde2 package.

>
> socat -d -d
> OPENSSL:192.168.10.18:8443,cafile=/etc/openldap/cacerts/ca.crt,verify=
> 0,
> keepalive,reuseaddr,ignoreeof
> UNIX-LISTEN:/var/run/ldapi,reuseaddr,type=1,ignoreeof
>
> I am just wondering if this is even possible, maybe the tcp 
> connections keeps an authorized session? Or ldapi communication is 
just different?
> If this ldapi communication is different from ldaps. I guess I am only 

> left with the options like
> - connecting with some forwarded ssh session to the local ldapi server 

> socket
> - maybe export ldapi with stunnel on the server, and capture it again 
> with stunnel/socat
> - look into slapd proxy/meta
>
>
>
>
>
>
>
>
>

--
Harry Jede