Return-Path: Delivered-To: apmail-httpd-bugs-archive@www.apache.org Received: (qmail 96227 invoked from network); 20 Sep 2008 08:39:07 -0000 Received: from hermes.apache.org (HELO mail.apache.org) (140.211.11.2) by minotaur.apache.org with SMTP; 20 Sep 2008 08:39:07 -0000 Received: (qmail 3381 invoked by uid 500); 20 Sep 2008 08:39:04 -0000 Delivered-To: apmail-httpd-bugs-archive@httpd.apache.org Received: (qmail 3344 invoked by uid 500); 20 Sep 2008 08:39:03 -0000 Mailing-List: contact bugs-help@httpd.apache.org; run by ezmlm Precedence: bulk List-Post: List-Help: List-Unsubscribe: Reply-To: "Apache HTTPD Bugs Notification List" List-Id: Delivered-To: mailing list bugs@httpd.apache.org Received: (qmail 3331 invoked by uid 99); 20 Sep 2008 08:39:03 -0000 Received: from athena.apache.org (HELO athena.apache.org) (140.211.11.136) by apache.org (qpsmtpd/0.29) with ESMTP; Sat, 20 Sep 2008 01:39:03 -0700 X-ASF-Spam-Status: No, hits=-2000.0 required=10.0 tests=ALL_TRUSTED X-Spam-Check-By: apache.org Received: from [140.211.11.140] (HELO brutus.apache.org) (140.211.11.140) by apache.org (qpsmtpd/0.29) with ESMTP; Sat, 20 Sep 2008 08:38:13 +0000 Received: by brutus.apache.org (Postfix, from userid 33) id 0F634234C1DE; Sat, 20 Sep 2008 01:38:45 -0700 (PDT) From: bugzilla@apache.org To: bugs@httpd.apache.org Subject: DO NOT REPLY [Bug 45834] Stale LDAP connections take 15+ minutes to finish queries X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: newchanged X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Apache httpd-2 X-Bugzilla-Component: mod_ldap X-Bugzilla-Keywords: X-Bugzilla-Severity: major X-Bugzilla-Who: rainer.jung@kippdata.de X-Bugzilla-Status: ASSIGNED X-Bugzilla-Priority: P2 X-Bugzilla-Assigned-To: bugs@httpd.apache.org X-Bugzilla-Target-Milestone: --- X-Bugzilla-Changed-Fields: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" MIME-Version: 1.0 Message-Id: <20080920083846.0F634234C1DE@brutus.apache.org> Date: Sat, 20 Sep 2008 01:38:45 -0700 (PDT) X-Virus-Checked: Checked by ClamAV on apache.org https://issues.apache.org/bugzilla/show_bug.cgi?id=45834 --- Comment #5 from Rainer Jung 2008-09-20 01:38:45 PST --- (In reply to comment #4) > (In reply to comment #3) > > After further research this issue seems to be caused by the firewall between > > the requesting server and the LDAP server. The firewall will break idle > > connections after a period of time thus explaining the timeout after a > > connection has been made. > > This sequence doesn't really explain the timeout. On a normal network, when the > connection is severed the host OS finds out, then when the application goes to > use the socket it finds out too -- without a delay. This is the part that is > failing. I think it does. If the connection is already established and the firewall does an idle connection drop, none of the two communication partners are made aware of that. Communication packets apart from maybe RST and FIN are simply dropped by the firewall. As a consequence the sending side starts to do TCP retransmits which depending on OS and TCP tuning can take several minutes before the TCP stack finally gives up (I vaguely remember 7 minutes for some version of Solaris). -- Configure bugmail: https://issues.apache.org/bugzilla/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are the assignee for the bug. --------------------------------------------------------------------- To unsubscribe, e-mail: bugs-unsubscribe@httpd.apache.org For additional commands, e-mail: bugs-help@httpd.apache.org