SUMMARY: excessive LDAP connections

From: Will Dowling (william.m.dowling@nuim.ie)
Date: Fri Apr 08 2005 - 10:55:14 EDT

Hey all,
Thanks to those who replied. I got a few conflicting
reports on this.

 "The best solution, unless you are using xfn for something,
is to
remove the xfn line from /etc/auto_master, and stop/start
autofs." - Rachel Polanskis

  "This is normal. It occurs on Linux also. Anytime you
run a process
that needs to resolve uids/guids to names will need to open
a connection
  to LDAP. So running "ls -l" needs to contact LDAP." -
Brian Miller

 "Make sure you have NSCD running on each client.
Otherwise, every ls, id,
etc command will do separate quieries for each and every
file it looks at." - Chris_Sellers

I tried all of these but none worked so I decided that Brian
was right and it was normal.
But today(after a busy week) it was solved, thanks to Robert
Petkus :

 " Make sure that in /etc/nsswitch.conf you don't use ldap
at all for
services (services: files) then restart nscd."

 Works perfect. Cheers.

 Will
 

>
> Hey folks,
> I'm running a Sun Fire v880 with Solaris 9 and Sun One
> Directory Server5.2. LDAP is used to manage user accounts.
> I just added four blade 2500's to
> my network and configured LDAP correctly.
> Now LDAP seems to be creating alot of connections. I
> cannot remember if this is normal or not.
> There always seems to be a fixed number of established
> connections but then a ridiculous amount of close_wait
> sessions
> when I try and do some work on the workstations.
> To give you an example this is when the workstation is
> idle
>
> bash-2.05$ netstat | more
>
> TCP: IPv4
> Local Address Remote Address Swind Send-Q
> Rwind Recv-Q State
> -------------------- -------------------- ----- ------
> ----- ------ -------
> localhost.1022 server.nfsd 49640 0 49640 0
> ESTABLISHED
> localhost.35077 localhost.35073 49152 0 49152 0
> ESTABLISHED
> locahost.35073 localhost.35077 49152 0 49152 0
> ESTABLISHED
> localhost.35078 localhost.35073 49152 0 49152 0
> ESTABLISHED
> localhost.35073 localhost.35078 49152 0 49152 0
> ESTABLISHED
> localhost.35079 localhost.35073 49152 0 49152 0
> ESTABLISHED
> localhost.35073 localhost.35079 49152 0 49152 0
> ESTABLISHED
> localhost.35080 localhost.35073 49152 0 49152 0
> ESTABLISHED
> lcoalhost.35073 localhost.35080 49152 0 49152 0
> ESTABLISHED
> localhost.35081 localhost.35073 49152 0 49152 0
> ESTABLISHED
> localhost.35073 localhost.35081 49152 0 49152 0
> ESTABLISHED
> localhost.35084 localhost.35073 49152 0 49152 0
> ESTABLISHED
> localhost.35073 localhost.35084 49152 0 49152 0
> ESTABLISHED
>
> while this is when I do some work on it :
>
> bash-2.05$ netstat | more
>
> TCP: IPv4
> Local Address Remote Address Swind Send-Q
> Rwind Recv-Q State
> -------------------- -------------------- ----- ------
> ----- ------ -------
> localhost.1022 server.nfsd 49640 0 49640 0
> ESTABLISHED
> localhost.35077 localhost.35073 49152 0 49152 0
> ESTABLISHED
> localhost.35073localhost.35077 49152 0 49152 0
> ESTABLISHED
> localhost.35078 localhost.35073 49152 0 49152 0
> ESTABLISHED
> localhost.35073 localhost.35078 49152 0 49152 0
> ESTABLISHED
> localhost.35079 localhost.35073 49152 0 49152 0
> ESTABLISHED
> localhost.35073 localhost.35079 49152 0 49152 0
> ESTABLISHED
> localhost.35080 localhost.35073 49152 0 49152 0
> ESTABLISHED
> localhost.35073 localhost.35080 49152 0 49152 0
> ESTABLISHED
> localhost.35081 localhost.35073 49152 0 49152 0
> ESTABLISHED
> localhost.35073 localhost.35081 49152 0 49152 0
> ESTABLISHED
> localhost.35084 localhost.35073 49152 0 49152 0
> ESTABLISHED
> localhost.35073 localhost.35084 49152 0 49152 0
> ESTABLISHED
> localhost.35600 server.ldap 49640 0 49640 0
> TIME_WAIT
> localhost.35601 server.ldap 49640 0 49640 0
> TIME_WAIT
> localhost.35602 server.ldap 49640 0 49640 0
> TIME_WAIT
> localhost.35603 server.ldap 49640 0 49640 0
> TIME_WAIT
> localhost.35604 server.ldap 49640 0 49640 0
> TIME_WAIT
> localhost.35605 server.ldap 49640 0 49640 0
> TIME_WAIT
> localhost.35606 server.ldap 49640 0 49640 0
> TIME_WAIT
> localhost.35608 server.ldap 49640 0 49640 0
> TIME_WAIT
> localhost.35609 server.ldap 49640 0 49640 0
> TIME_WAIT
> localhost.35610 server.ldap 49640 0 49640 0
> TIME_WAIT
> localhost.35611 server.ldap 49640 0 49640 0
> TIME_WAIT
> localhost.35612 server.ldap 49640 0 49640 0
> TIME_WAIT
> localhost.35613 server.ldap 49640 0 49640 0
> TIME_WAIT
> localhost.35614 server.ldap 49640 0 49640 0
> TIME_WAIT
> localhost.35615 server.ldap 49640 0 49640 0
> TIME_WAIT
> localhost.35616 server.ldap 49640 0 49640 0
> TIME_WAIT
> localhost.35617 server.ldap 49640 0 49640 0
> TIME_WAIT
> localhost.35618 server.ldap 49640 0 49640 0
> TIME_WAIT
> localhost.35619 server.ldap 49640 0 49640 0
> TIME_WAIT
> localhost.35620 servere.ldap 49640 0 49640 0
> TIME_WAIT
> localhost.35621 server.ldap 49640 0 49640 0
> TIME_WAIT
> localhost.35622 server.ldap 49640 0 49640 0
> TIME_WAIT
> localhost.35623 server.ldap 49640 0 49640 0
> TIME_WAIT
> localhost.35624 server.ldap 49640 0 49640 0
> TIME_WAIT
>
> Is this normal or do I have a problem?
> _______________________________________________
> sunmanagers mailing list
> sunmanagers@sunmanagers.org
> http://www.sunmanagers.org/mailman/listinfo/sunmanagers
_______________________________________________
sunmanagers mailing list
sunmanagers@sunmanagers.org
http://www.sunmanagers.org/mailman/listinfo/sunmanagers

This archive was generated by hypermail 2.1.7 : Wed Apr 09 2008 - 23:30:31 EDT