Ulrich Windl wrote: >>>> Quanah Gibson-Mount <quanah@symas.com> schrieb am 05.12.2016 um 04:23 in >> There is zero requirement to put a load balancer in front of an MMR setup. > > But it seems to make much sense: In my experience if you configure multiple > LDAP servers, the NSS resolver always uses the first configured server as > long as it's reachable; even if it's not, the first configured server is > tried first. This depends very much on the client. E.g. sssd works fairly well even with simple DNS round-robin. The load is almost equally spread. > After connection timeout the second server is tried... We had dhad a case > when all LDAP operations were heavily delayed when two out of three servers > had failed (due to rebooting the machine). If you want to have fast fail-over then reduce timeout timespan. Ciao, Michael.
Attachment:
smime.p7s
Description: S/MIME Cryptographic Signature