Hello List,
i would like to store multiple firewall configuration information on a master ldap server, but i also want to make sure the firewall configuration is locally available, too.
Now i have the problem of a "split brain" scenario if the replication does not work (if the internet connection is down).
Here is a little ascii art: http://pastebin.com/m68de0f31
How can i solve this? Can OpenLDAP "resume" and push the changes to the slave if its available again?
Cheers, Mario
On 01/01/2010 12:12 PM, ml ml wrote:
Hello List,
i would like to store multiple firewall configuration information on a master ldap server, but i also want to make sure the firewall configuration is locally available, too.
Now i have the problem of a "split brain" scenario if the replication does not work (if the internet connection is down).
Here is a little ascii art: http://pastebin.com/m68de0f31
How can i solve this? Can OpenLDAP "resume" and push the changes to the slave if its available again?
Hi,
In the general case, OpenLDAP replication (syncrepl) works as "pull" rather than "push". That is, the slave contacts the master to get any changes. A "push" scenario is possible if you really want it, but more complicated.
This system "resumes" after a slave being unavailable for a while, by updating all newly-changed entries in the slave when it contacts the master again.
If you haven't already, I suggest reading the chapter on replication from the OpenLDAP Admin Guide: http://www.openldap.org/doc/admin24/replication.html
Good luck, all the best, Jonathan
openldap-software@openldap.org