Re: DirectoryService acting up when using VPN

Subject: Re: DirectoryService acting up when using VPN
From: Buckie Joe <email@hidden>
Date: Thu, 10 Jan 2008 13:02:00 +0300
Delivered-to: email@hidden
Delivered-to: email@hidden

From time to time I get these error message in the system log
Jan 7 06:29:41 smtp2 DirectoryService[2575]: Search connection failure: During an attempt to bind to [x.x.x.x] LDAP server. Jan 7 06:29:41 smtp2 DirectoryService[2575]: Search connection failure: Disabled future attempts to bind to [x.x.x.x] LDAP server for next 120 seconds.

VPN and OD in Tiger just don't go together well in my experience. First, if I'm not memory serves me right PF_ROUTE error may happen if you also happen to have file services such as AFP and especially Samba running on the same server and when those are under heavy load. So definitely try increasing the max files per process, it may save you time and grief later. I had a weird issue once when Samba went out of control (thousands of files were open by many users) which lead to a broken OD. Fortunately the database itself stayed intact, only the system certificate got corrupted (a file became zero length). That possibly happened because all of the available fds were used up, and luckily the fix was trivial.

However that's not the end. I've established a parallel between OD servicing some authentication request and a VPN login producing a 'network transition'. If those two occur simulatenously then it's very likely that OD will become unresponsive and you'd have to kill PasswordService to get things back to normal. That only happens in Tiger (any version) and seemingly only if you have an OD. I couldn't reproduce the same behavior in a test server running Leopard even when stressing it to the max. It handles such a condition gracefully and recovers immediately.

So maybe it's not a direct answer to the question you raised, but someone might find that helpful. _______________________________________________ Do not post admin requests to the list. They will be ignored. Macos-x-server mailing list (email@hidden) Help/Unsubscribe/Update your Subscription: This email sent to email@hidden Follow-Ups: Re: DirectoryService acting up when using VPN From: Dan Shoop <email@hidden> References: >DirectoryService acting up when using VPN (From: Rene Schaetzl <email@hidden>) Prev by Date: Re: Server crash idea why? Next by Date: Re: Server crash idea why? Previous by thread: Re: DirectoryService acting up when using VPN Next by thread: Re: DirectoryService acting up when using VPN Index(es): Date Thread Home Archives Terms/Conditions Contact RSS Lists About Visit the Apple Store online or at retail locations. 1-800-MY-APPLE Contact Apple | Terms of Use | Privacy Policy Copyright © 2011 Apple Inc. All rights reserved.

References:
	>DirectoryService acting up when using VPN (From: Rene Schaetzl <email@hidden>)