--On Monday, March 04, 2013 2:03 PM -0800 Quanah Gibson-Mount
<[email protected]> wrote:
--On Monday, March 04, 2013 4:45 PM -0500 John Baker
<[email protected]> wrote:
Thanks for the reply,
gnutls is a pain but we've been able to make it work and the boss hates
it when we use source so I'm kind of stuck with it as it is unless I can
make a better case than ssl.
You need to use a current release, regardless of whether or not you avoid
using GnuTLS (although from a security standpoint, it should be avoided).
You really should read over
<https://www.openldap.org/software/release/changes.html> as well.
There's no point in configuring MMR or answering any questions about it
until you get to a current build, given all the MMR related fixes since
2.4.28.
One final note -- If you switch to using back-mdb instead of the
back-hdb/bdb databases, I wouldn't particularly worry about write load
either.
<http://wiki.zimbra.com/wiki/OpenLDAP_MDB_vs_HDB_performance>. back-mdb is
massively faster for writes than back-hdb/bdb ever were. It is also
massively faster for reads in the concurrent read tests (I'm working on
getting those posted, the wiki is under constant updating atm. ;) ).
Finally, if you are going to roll out MMR, I strongly advise delta-syncrepl
MMR for the primary database. I personally do not replicate cn=config, so
can't really speak to configuring it for replication.
--Quanah
--
Quanah Gibson-Mount
Sr. Member of Technical Staff
Zimbra, Inc
A Division of VMware, Inc.
--------------------
Zimbra :: the leader in open source messaging and collaboration
