httpd-bugs mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
Subject DO NOT REPLY [Bug 45834] Stale LDAP connections take 15+ minutes to finish queries
Date Sat, 20 Sep 2008 08:38:45 GMT

--- Comment #5 from Rainer Jung <>  2008-09-20 01:38:45 PST ---
(In reply to comment #4)
> (In reply to comment #3)
> > After further research this issue seems to be caused by the firewall between
> > the requesting server and the LDAP server.  The firewall will break idle
> > connections after a period of time thus explaining the timeout after a
> > connection has been made. 
> This sequence doesn't really explain the timeout. On a normal network, when the
> connection is severed the host OS finds out, then when the application goes to
> use the socket it finds out too -- without a delay.  This is the part that is
> failing.

I think it does. If the connection is already established and the firewall does
an idle connection drop, none of the two communication partners are made aware
of that. Communication packets apart from maybe RST and FIN are simply dropped
by the firewall. As a consequence the sending side starts to do TCP retransmits
which depending on OS and TCP tuning can take several minutes before the TCP
stack finally gives up (I vaguely remember 7 minutes for some version of

Configure bugmail:
------- You are receiving this mail because: -------
You are the assignee for the bug.

To unsubscribe, e-mail:
For additional commands, e-mail:

View raw message