[Date Prev][Date Next] [Chronological] [Thread] [Top]

Less aggressive syncrepl ?

To: openldap-software@openldap.org
Subject: Less aggressive syncrepl ?
From: Jorgen Lundman <lundman@lundman.net>
Date: Tue, 02 Mar 2010 12:26:41 +0900
User-agent: Mozilla/5.0 (Macintosh; U; Intel Mac OS X 10.6; en-GB; rv:1.9.1.4pre) Gecko/20090908 SeaMonkey/2.0b2


Hello list,

openldap-2.3.41
db-4.2.52.NC-PLUS_5_PATCHES
SunOS ldapmaster01.unix 5.10 Generic_127128-11 i86pc i386 i86pc

We currently have 1 master, and about 25 clients hanging off it, using syncrepl.Today we restarted the master for the first time in quite some time. This was toadd an index we had forgotten. It was only added to the master.


Initially, the master replies very fast to test-ldapsearch.

But it appears that all 25 clients connect within the first 30seconds or so, andstart the syncing process. This appears to take about 30 minutes ofcommunicating back and forth. (As observed with snoop/tcpdump).

Simple commandline ldapsearch connect, but never replies. I haven't even startedthe software that talks to ldapmaster, so it is essentially doing nothing. (Justchecking everything is in sync, there should be no changes).

This seems rather aggressive. I assume my syncrepl is set far too eagerly.Normally, syncrepl works beautifully, and updates are very fast across theboard. But having hour long no-response from the master after a restart isundesirable.


Can someone suggest better values for our syncrepl?

Master has:

lastmod         on
checkpoint 128 15
cachesize 10000
overlay syncprov
syncprov-checkpoint 100 10
syncprov-sessionlog 100


Slaves has: (RID is based on IP's last octet + 256)

lastmod         on
checkpoint 128 15
cachesize 10000
syncrepl   rid=279
                provider=ldap://172.20.12.113
                type=refreshAndPersist
                interval=00:00:00:30
                searchbase="dc=company,dc=com"
                filter="(objectClass=*)"
                attrs="*"
                scope=sub
                schemachecking=off
                updatedn="cn=admin,dc=company,dc=com"
                bindmethod=simple
                binddn="cn=admin,dc=company,dc=com"
                credentials="OurSecret"
                retry="60 10 300 +"

# wait 60s then retry connect 10 times, then wait 300s forever
updateref       ldap://172.20.12.113






--
Jorgen Lundman       | <lundman@lundman.net>
Unix Administrator   | +81 (0)3 -5456-2687 ext 1017 (work)
Shibuya-ku, Tokyo    | +81 (0)90-5578-8500          (cell)
Japan                | +81 (0)3 -3375-1767          (home)

Follow-Ups:
- Re: Less aggressive syncrepl ?
  - From: masarati@aero.polimi.it

Prev by Date: understanding replication
Next by Date: using translucent proxy as syncrepl provider?
Index(es):
- Chronological
- Thread