https://issues.apache.org/bugzilla/show_bug.cgi?id=47634
--- Comment #6 from Stefan Fritsch <[email protected]> 2009-12-12 11:20:24 UTC --- The cleanest fix is the ldap library enabling the tcp keepalive option. Recent version of OpenLDAP do this. Under Linux, you can tune the interval between keepalive probes with /proc/sys/net/ipv4/tcp_keepalive_time (default is two hours). Reducing this to a value below the firewall's state timeout should fix the problem. You should try to find out if your OS / your ldap library supports this. If it doesn't, you should bug the vendor to implement it. Another fix is to configure the firewall to send tcp reset packets instead of silently dropping connections. Apart from that, allowing to set a timeout for ldap searches in Apache httpd would be a good idea. -- Configure bugmail: https://issues.apache.org/bugzilla/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are the assignee for the bug. --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
