I'm using openldap-2.0.27-8 (which comes along with RedHat 9). I'm trying to
You're using historic software with known bugs; that's a big mistake if
you care about data integrity and reliability. You'd be well advised to
look into the latest OpenLDAP version.
access to * by peername=10.6.21.* write
To get what it appears you desire, you likely want <style> of regex. See
http://www.openldap.org/lists/openldap-software/200401/msg00170.html
for example.
If you follow the advice of upgrading to the latest OpenLDAP version, you
can use
"peername.ip=10.6.21.0%255.255.255.0"
which likely will result in performance improvements (no need to run the
regex engine on everything). This is (a very small) one of the hundreds of
enhancements available since 2.0.
