Jorgen Lundman wrote:
openldap-2.3.41 db-4.2.52.NC-PLUS_5_PATCHES Solaris 10 x86
Layout:
ldapmaster <-syncrepl-> ldapslave01/02/03/04 <-syncrepl-> data-clusters.
I deleted the entire openldap-data directory on ldapslave03, and let it syncrepl the entire database from ldapmaster. It took about 48 hours. After that, I turned port 389 on again as usual.
It took about 18 hours for the first messages:
/var/log/slaplog.20100413.gz:Apr 13 15:07:31 ldapslave03.unix slapd[27475]: [ID 561622 local4.debug] syncrepl_del_nonpresent: rid 329 be_delete DNSHostName=www,DNSZoneName=$customer.com,ou=dns,dc=$DC (66)
/var/log/slaplog.20100413.gz:Apr 13 15:07:32 ldapslave03.unix slapd[27475]: [ID 561622 local4.debug] syncrepl_del_nonpresent: rid 329 be_delete DNSRecord=A1,DNSHostName=www,DNSZoneName=$customer.com,ou=dns,dc=$DC (0)
So it would appear that we do have an on-going problem.
Perhaps it is time to go to a newer version of OpenLDAP. The 2.3.41 version was recommended to us about 3 years ago on this list. What is the recommended/most-stable version at the moment? Should we also upgrade BerkeleyDB?
Thanks,
Lund