directory-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Howard Chu <>
Subject Re: Intercepting LDAP request
Date Thu, 18 Sep 2008 19:55:02 GMT
Marc Boorshtein wrote:
>     The biggest problem is that this library does not handle the
>     communication part. However, you can also have a look at a dormant
>     project we have once worked on :
>     which is a Ldap Proxy. It was designed once upon a time to offer a
>     graphical UI allowing you to see all the incoming and outgoing LDAP
>     requests. It's not perfect, but it worked, 2 years ago.
> Do you need to do anything with the ldap request or do you just need a
> proxy to traverse a DMZ? If you need a simple proxy (and assuming
> ApacheDS doesn't offer one) you can use either MyVirtualDirectory
> ( Penrose or I think Fedora DS and OpenDS
> all have proxy modules.

OpenLDAP has a couple different proxy modules to choose from as well. 
back-ldap if simple pass-thru is all you need; back-meta if you need more 
elaborate rewrites. SSL/TLS passthru is no problem either.

   -- Howard Chu
   CTO, Symas Corp. 
   Director, Highland Sun
   Chief Architect, OpenLDAP

View raw message