Here's a theory: When you do a modify on the replica, the replica gives the application an ldap referral to instead write to the master. If only the IP of replica box and not the WWW box has not been included in the access list of the firewall, the modify will fail. When the application is given the referral it will try to do a write on the master, coming from the WWW box. This would also explain why it worked on the replica box. To be sure check out the logs of the master (original) LDAP to see what happens when you do a write on each machine.
Linda Gregersen wrote in message ... >We are not able to complete a Modify statement from our WWW machine >using perldap, Any ideas? If we move the code from the www machine to >the machine where the LDAP copy is located the modify then works. > > _______________ _______________ > | | | | > | www | >>> | LDAP | > | | | (replica )| > | _____________ _| |_______________| > v > v > v >************************************************** >********** Firewall ********************** >************************************************** > v > v > _______ v_______ > | | > | LDAP | > | (Original) | > | _____________ _|
