From: "Chris Ridd" <chrisr...@mac.com>
A problem like this came up last year. Searching my list archives for
"IO::Socket::SSL Timeout" I think it got resolved by updating the
IO::Socket::SSL package. I don't follow that package closely to know what
might have changed...
It is most recent, 1.23.
But I got it: Using plain LDAP Net::LDAP (or IO::Socket) by default tries to
connect using IPv4. When one switches to LDAP-SSL it by default tries to
connect using IPv6! And when the connection over IPv6 fails (here a packet
filter) it does not fall back to IPv4 but failes with "Invalid argument".
Verified using tcpdump. Reconfigured the packet filter, works fine now. One
probably might also use inet6=>0 but if IPv6 is available...
BTW, on the old OpenBSD machines p5-IO-Socket-SSL-1.12 was installed. And
from the changelog:
v1.16_1 2008.09.19
- better support for IPv6:
- IPv6 is enabled by default if IO::Socket::INET6 is available
Thanks for the food for thoughts. HTH others, Helmut
