Hi!

 

I had just asked https://serverfault.com/q/1177576/407952, but I’ll summarize here:

I think I configured delta-syncrepl for a MMR correctly using OpenLDAP >= 2.5.18 (cn=config also synced).

However when I offlined one node and updated the main DIT via slapadd, the other node wouldn’t update its DIT when the offlined node is online again.

I wonder whether I have to empty or delete the corresponding accesslog, or is there some other step to perform?

Is delta syncrepl looking at the accesslog only to detect changes?

 

The syncrepl configs look like this for the DIT:

olcSyncrepl: {0}rid=115 provider="ldap://server5/\

" searchbase="dc=…" type=refreshAndPersist \

retry="60 5 300 5 1800 +" logbase="cn=changelog-1" logfilter="(&(objectClass=au\

ditWriteObject)(reqResult=0))" schemachecking=on syncdata=accesslog starttls=cr\

itical tls_reqcert=demand bindmethod=sasl saslmech=external tls_cert="/etc/ssl/\

servercerts/syncrepl.pem" tls_key="/etc/ssl/serverkeys/syncrepl.key" tls_cacert\

="/etc/ssl/servercerts/ CA-bundle.pem"

olcSyncrepl: {1}rid=116 provider="ldap://server6/\

" searchbase="dc=…" type=refreshAndPersist \

retry="60 5 300 5 1800 +" logbase="cn=changelog-1" logfilter="(&(objectClass=au\

ditWriteObject)(reqResult=0))" schemachecking=on syncdata=accesslog starttls=cr\

itical tls_reqcert=demand bindmethod=sasl saslmech=external tls_cert="/etc/ssl/\

servercerts/syncrepl.pem" tls_key="/etc/ssl/serverkeys/syncrepl.key" tls_cacert\

="/etc/ssl/servercerts/ CA-bundle.pem"

 

Kind regards,

Ulrich Windl