Angel L. Mateo
2011-Aug-25 10:04 UTC
[Dovecot] auth: Error: LDAP: Connection lost to LDAP server, reconnecting
Hello, I continue debugging my problems with my update to dovecot 2.x :-( I have dovecot 2.0.13 running in ubuntu 10.04 (lucid) x64. My users are in a ldap directory. The problem is that I have a lot of errors like: Aug 24 23:07:32 myotis28 dovecot: auth-worker(default): LDAP: Connection lost to LDAP server, reconnecting I have seen in the mail list a patch for 1.2 (http://hg.dovecot.org/dovecot-1.2/rev/355d5a40f7a7) to ignore these logs when the disconnection is because of idle timeouts. As far as I could see in this patch and 2.0.13 source code, this patch is already applied in 2.0. So I guess that the disconnection is for other problem, isn't it? -- Angel L. Mateo Mart?nez Secci?n de Telem?tica ?rea de Tecnolog?as de la Informaci?n _o) y las Comunicaciones Aplicadas (ATICA) / \\ http://www.um.es/atica _(___V Tfo: 868887590 Fax: 868888337
Timo Sirainen
2011-Aug-25 10:10 UTC
[Dovecot] auth: Error: LDAP: Connection lost to LDAP server, reconnecting
On 25.8.2011, at 13.04, Angel L. Mateo wrote:> Aug 24 23:07:32 myotis28 dovecot: auth-worker(default): LDAP: Connection lost to LDAP server, reconnecting > > I have seen in the mail list a patch for 1.2 (http://hg.dovecot.org/dovecot-1.2/rev/355d5a40f7a7) to ignore these logs when the disconnection is because of idle timeouts. As far as I could see in this patch and 2.0.13 source code, this patch is already applied in 2.0. So I guess that the disconnection is for other problem, isn't it?I had completely forgotten I had added such a feature :) See what it logs with attached patch. -------------- next part -------------- A non-text attachment was scrubbed... Name: diff Type: application/octet-stream Size: 630 bytes Desc: not available URL: <http://dovecot.org/pipermail/dovecot/attachments/20110825/34e442ed/attachment-0002.obj> -------------- next part --------------
Angel L. Mateo
2011-Aug-26 06:43 UTC
[Dovecot] auth: Error: LDAP: Connection lost to LDAP server, reconnecting
El 25/08/11 12:10, Timo Sirainen escribi?:> On 25.8.2011, at 13.04, Angel L. Mateo wrote: > >> Aug 24 23:07:32 myotis28 dovecot: auth-worker(default): LDAP: Connection lost to LDAP server, reconnecting >> >> I have seen in the mail list a patch for 1.2 (http://hg.dovecot.org/dovecot-1.2/rev/355d5a40f7a7) to ignore these logs when the disconnection is because of idle timeouts. As far as I could see in this patch and 2.0.13 source code, this patch is already applied in 2.0. So I guess that the disconnection is for other problem, isn't it? > > I had completely forgotten I had added such a feature :) See what it logs with attached patch. >Hello, I have found the problem. Is not a dovecot issue. The problem (if this is a problem) is that our ldap is behind a load balancer. This load balancer has a timeout of 3600s for ldap connections. If there is a connection with more than 3600s without activity, the load balancer close it, and this is the reason of the message. Now I'm trying to find why dovecot has a ldap connection with inactivity. One question, does auth process use more than one ldap connection? If it uses a pool is more reasonable, because we have auth cache enabled and now he have low activity, so it could be that a connection last more than 1 hour with activity, isn't it? -- Angel L. Mateo Mart?nez Secci?n de Telem?tica ?rea de Tecnolog?as de la Informaci?n _o) y las Comunicaciones Aplicadas (ATICA) / \\ http://www.um.es/atica _(___V Tfo: 868887590 Fax: 868888337
Angel L. Mateo
2011-Aug-26 11:01 UTC
[Dovecot] auth: Error: LDAP: Connection lost to LDAP server, reconnecting
El 25/08/11 12:10, Timo Sirainen escribi?:> On 25.8.2011, at 13.04, Angel L. Mateo wrote: > >> Aug 24 23:07:32 myotis28 dovecot: auth-worker(default): LDAP: Connection lost to LDAP server, reconnecting >> >> I have seen in the mail list a patch for 1.2 (http://hg.dovecot.org/dovecot-1.2/rev/355d5a40f7a7) to ignore these logs when the disconnection is because of idle timeouts. As far as I could see in this patch and 2.0.13 source code, this patch is already applied in 2.0. So I guess that the disconnection is for other problem, isn't it? > > I had completely forgotten I had added such a feature :) See what it logs with attached patch. >I have tried the patch. It confirms my hypothesis, the connection is closed by my load balancer: Aug 26 12:55:27 myotis31 dovecot: auth: Error: LDAP: Connection lost to LDAP server, reconnecting (1 requests, 3603 idle secs) Is there any way to configure ldap connection with a keepalive, so I don't need a reconnection? -- Angel L. Mateo Mart?nez Secci?n de Telem?tica ?rea de Tecnolog?as de la Informaci?n _o) y las Comunicaciones Aplicadas (ATICA) / \\ http://www.um.es/atica _(___V Tfo: 868887590 Fax: 868888337