--On Monday, March 04, 2013 4:45 PM -0500 John Baker <johnnyb@marlboro.edu> wrote:Thanks for the reply, gnutls is a pain but we've been able to make it work and the boss hates it when we use source so I'm kind of stuck with it as it is unless I can make a better case than ssl.ÂYou need to use a current release, regardless of whether or not you avoid using GnuTLS (although from a security standpoint, it should be avoided). You really should read over <https://www.openldap.org/software/release/changes.html> as well. There's no point in configuring MMR or answering any questions about it until you get to a current build, given all the MMR related fixes since 2.4.28.
One final note -- If you switch to using back-mdb instead of the back-hdb/bdb databases, I wouldn't particularly worry about write load either.
<http://wiki.zimbra.com/wiki/OpenLDAP_MDB_vs_HDB_performance>. back-mdb is massively faster for writes than back-hdb/bdb ever were. It is also massively faster for reads in the concurrent read tests (I'm working on getting those posted, the wiki is under constant updating atm. ;) ).
Finally, if you are going to roll out MMR, I strongly advise delta-syncrepl MMR for the primary database. I personally do not replicate cn=config, so can't really speak to configuring it for replication.
--Quanah -- Quanah Gibson-Mount Sr. Member of Technical Staff Zimbra, Inc A Division of VMware, Inc. -------------------- Zimbra :: the leader in open source messaging and collaboration