Sponsored Content
Operating Systems Solaris Identify process sending ldap requests to old DNS server Post 302910567 by badoshi on Friday 25th of July 2014 11:50:50 AM
Old 07-25-2014
Identify process sending ldap requests to old DNS server

Hi,

I have a Solaris 10 system, which appears to be sending out LDAP queries to a server that is due to be decomissioned.

Is there a way to identify which process is sending out these queries? The problem is that the local port constantly changes, and the connections do not stay open long enough to query them using netstat or lsof.

I can see the outbound traffic in snoop:

Code:
solServer -> decomServer LDAP C port=39959
solServer -> decomServer LDAP C port=39959

and also in netstat:

Code:
solServer.38530   decomServer.ldap 65420      0 49640      0 TIME_WAIT
solServer.38215   decomServer.ldap 65420      0 49640      0 TIME_WAIT

But cant think of a way to identify what process is sending this out. I've checked resolv.conf & /etc/nsswitch.conf and the decom server is not listed anywhere.

I have no idea where the information for this decomServer is coming from, or which process is sending. Is there a way I can find this out?

Many thanks
 

9 More Discussions You Might Find Interesting

1. IP Networking

DHCP, DNS and LDAP

I have just started learning Unix on Solaris and have been asked to learn DHCP, DNS and LDAP very quick in order to implement them and maintain. Does anyone know how to do this or a decent book that will include all the above three which tells you how to install and maintain. All i have found so... (2 Replies)
Discussion started by: ollyparkhouse
2 Replies

2. Solaris

/etc/nsswitch.conf hosts ldap dns

Hi all Is there any reason to have "hosts ldap dns" as line in /etc/nsswitch.conf ? My understanding is that ldap does not contain any host information..(?) Best regards...Ludwig (1 Reply)
Discussion started by: ludwig
1 Replies

3. UNIX for Advanced & Expert Users

udp sockets of dns requests not showing anywhere...

Dear guys, I am facing the most weird problem I have ever encountered! Ok here is the situation: From my dns query.log file - it is generated using usual bind9 logging: logging { channel query.log { file "/var/log/bind9/query.log" versions 10 size 2m; severity debug 2;... (0 Replies)
Discussion started by: angeloio
0 Replies

4. Web Development

Sending two requests from one link

Hi everybody, Is it possible to have a URL link i.e. <a href=""></a>, which sends out two requests to a site? As an example, I want want to combine these two links. The first link loads files. The second link searches these files. But I want just one link, where went a user clicks on it,... (3 Replies)
Discussion started by: z1dane
3 Replies

5. Solaris

How to Configure DNS bind 9 with Ldap back-end

My environmnet : solaris 10 u 7 sparc To configure DNS bind use Ldap as zone record database, I use bind 9.7.0 and sun directory 5.2 I do follow http://imil.net/docs/Configuring_DNS_zones_with_LDAP.txt and stuck at make install Error from bind log "database: error: unsupported database... (0 Replies)
Discussion started by: tien86
0 Replies

6. UNIX for Advanced & Expert Users

DNS server choice: Windows DNS vs Linux BIND

I'd like to get some opnions on choosing DNS server: Windows DNS vs Linux BIND comparrsion: 1) managment, easy of use 2) Security 3) features 4) peformance 5) ?? I personally prefer Windows DNS server for management, it supports GUI and command line. But I am not sure about security... (2 Replies)
Discussion started by: honglus
2 Replies

7. Shell Programming and Scripting

Direction to create website to process grep and SED requests

hi I am seeking to create a cgi-bin type creation that will allow users browsing the site to be able to run searches that would be a grep command or SED in the backround. I am not sure how to go about this, if you would give me a pointer or direction about what technology i could inform myself... (0 Replies)
Discussion started by: cdc01
0 Replies

8. IP Networking

DNS requests through SSH/443

Anybody know how to force all DNS requests through port 443 or an SSH tunnel such as Putty in Ubuntu 10.4? (2 Replies)
Discussion started by: 3therk1ll
2 Replies

9. Solaris

LDAP Client not connecting to LDAP server

I have very limited knowledge on LDAP configuration and have been trying fix one issue, but unsuccessful. The server, I am working on, is Solaris-10 zone. sudoers is configured on LDAP (its not on local server). I have access to login directly on server with root, but somehow sudo is not working... (9 Replies)
Discussion started by: solaris_1977
9 Replies
UD(1)							      General Commands Manual							     UD(1)

NAME
ud - interactive LDAP Directory Server query program SYNOPSIS
ud [-Dv] [-s server] [-d debug-mask] [-l ldap-debug-mask] [-f file] DESCRIPTION
ud is used to interogate a directory server via the Lightweight Directory Access Protocol (LDAP). OPTIONS
-s server Used to specify the name of an LDAP server to which ud should connect. If this flag is omitted, the value specified in the ud configuration file is used. If no value is specified in the configuration file, or the configuration file does not exist, the name ldap is used. Of course, it is up to the system administrator to make sure that the name ldap can be resolved (presumably through the use of a CNAME or A record in the DNS and the appropriate search path specified in the resolver config file). -d debug-mask Sets the ud debug mask to the value specified. Values for the mask can be dumped by using the -D flag. -f file Sets the configuration file to the name specified. -l ldap-debug-mask Sets the LDAP debug mask to the value specified. -v Turns on verbose output. Also toggable via the ud verbose command. -D Prints out a list of valid ud debug masks. FILES
/etc/openldap/ud.conf The ud configuration file. SEE ALSO
ud.conf(5), ldap.conf(5), ldap(3) DIAGNOSTICS
ud will try to be nice about error conditions, and in most cases prints a warm and fuzzy error message when it encounters a problem. Some- times the error will be unexpected, and in these cases, ud uses the ldap_perror() routine to print an informative diagnostic. BUGS
Too numerous to mention. AUTHOR
Bryan Beecher, University of Michigan ACKNOWLEDGEMENTS
OpenLDAP is developed and maintained by The OpenLDAP Project (http://www.openldap.org/). OpenLDAP is derived from University of Michigan LDAP 3.3 Release. 4.3 Berkeley Distribution 20 August 2000 UD(1)
All times are GMT -4. The time now is 09:09 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy