That won't work when the client and servers are all on the same subnetwork (they are in this environment), as it will cause an async routing problem. (I already tried it). That would work if the LDAP servers and clients were on different subnets, but that is not something easily changed in a 24x7 running environment.
-- David J. Andruczyk
----- Original Message ---- From: Wes Rogers skolpatrol@gmail.com To: openldap-software@openldap.org Sent: Thursday, July 30, 2009 11:31:47 AM Subject: Re: performance issue behind a a load balancer 2.3.32
On Thu, Jul 30, 2009 at 8:34 AM, David J. Andruczykdjandruczyk@yahoo.com wrote:
The network is essentially "flat", the LDAP servers and systems requiring LDAP are on the same subnetwork, hence why when using the F5's for LDAP balancing all traffic will appears to come from the F5
Have you tried enabling source NAT on the VIP, so the connections then are seen as coming from the clients, instead of the bigIP?
Wes