If I might add..
I use "HoldServerConnection" inside my <AuthBy LDAP2> so I only have two
connections to the LDAP server regardless of the authentication rate.
I authenticate against an OpenLDAP 2.0.7 server, I don't know if it works
against MSAD, but I think you should give it a try... establishing a TCP
connection takes its time... establishing hundreds only to do a small
LDAP query/response has probably too much connections establishment/tear-
down overhead...
El 2 Mar 2001, a las 15:57, Hugh Irvine escribió:
>
> Hello Fernanado -
>
> On Friday 02 March 2001 06:20, Fernando Almeida wrote:
> > I am making some performance tests with Auth by LDAP2. My LDAP
> > server is a NT machine running NT4 and Site Server 3 and my radiator is
> > running in a machine with FreeBSD 4.0.
> >
> > Basically, I used the script radpwtst with the iteractions parameter
> > of 10,20,50,200,500,1000.. and plot the this numbers versus the time spent
> > to complete the procedure. When the number is too high, (400 or more) the
> > radiator begins to log a lot of mesgs like "Could not bind with
> > o=Brprima..." and running a "netstat -na" I see a lot of connections to the
> > LDAP estabilished. If I try to telnet the LDAP Server in the port 389 in
> > the middle of the execution of radpwtst, the machine responds with
> > "Connection refused by host".
> >
> > I dont know exactly what is happening, but I feel that this is a
> > limitation of the LDAP (perhaps configurable), but Im not sure about it.
> >
>
> I would suggest that you start with just a small number of requests (say 10)
> and run Radiator with a trace 4 debug so you can see how much time is being
> taken by the LDAP queries. This will tell you a lot about what sort of
> performance you can expect from your setup.
>
> If you would like to send me a copy of your configuration file (no secrets)
> and a copy fo the trace 4 I will be happy to take a look.
>
> regards
>
> Hugh
>
>
> --
> Radiator: the most portable, flexible and configurable RADIUS server
> anywhere. Available on *NIX, *BSD, Windows 95/98/2000, NT, MacOS X.
> -
> Nets: internetwork inventory and management - graphical, extensible,
> flexible with hardware, software, platform and database independence.
>
> ===
> Archive at http://www.starport.net/~radiator/
> Announcements on [EMAIL PROTECTED]
> To unsubscribe, email '[EMAIL PROTECTED]' with
> 'unsubscribe radiator' in the body of the message.
===
Archive at http://www.starport.net/~radiator/
Announcements on [EMAIL PROTECTED]
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.
