Login or Register to Ask a Question and Join Our Community


AIX

Ldapsearch takes minutes when using FQDN vs IP

Login to Discuss or Reply to this Discussion in Our Community

 
Thread Tools Search this Thread
Operating Systems AIX Ldapsearch takes minutes when using FQDN vs IP
# 1  
Old 05-15-2015
Ldapsearch takes minutes when using FQDN vs IP
Hey All,

ldapsearch takes minutes when using FQDN vs IP. What could be some of the reasons for that?

Cheers,
DH
# 2  
Old 05-15-2015
DNS resolution. Check, how long it takes to resolve a host name from your DNS server.

Code:
$ time host -n myldapserver

This User Gave Thanks to agent.kgb For This Post:
Devyn
# 3  
Old 05-15-2015
Seems quick. Yet same issue with the ldapsearch command despite the quick time:

Code:
# time host -n ad01
ad01.test.com has address 10.0.0.10

real     0m0.11s
user    0m0.00s
sys      0m0.00s
#

nslookup and ping resolve quickly too. But not ldapsearch. Anything else that could be checked? There's a debug option to ldapsearch but I see no extra messages and no idea where the extra logs are kept on this AIX system:

Code:
  idsldap.clt32bit62.rte    6.2.0.32    C     F    Directory Server - 32 bit
  idsldap.clt64bit62.rte    6.2.0.32    C     F    Directory Server - 64 bit
  idsldap.clt_max_crypto32bit62.rte
  idsldap.clt_max_crypto64bit62.rte
  idsldap.cltbase62.adt     6.2.0.32    C     F    Directory Server - Base Client
  idsldap.cltbase62.rte     6.2.0.32    C     F    Directory Server - Base Client
  idsldap.cltjava62.rte     6.2.0.32    C     F    Directory Server - Java Client
  idsldap.ent62.rte          6.2.0.3    C     F    Directory Server - Entitlement
  idsldap.msg62.en_US       6.2.0.32    C     F    Directory Server - Messages -
  idsldap.srv_max_cryptobase64bit62.rte
  idsldap.srvbase64bit62.rte
  idsldap.srvproxy64bit62.rte
  idsldap.webadmin62.rte    6.2.0.32    C     F    Directory Server - Web
  idsldap.webadmin_max_crypto62.rte



grep -v "#" /etc/netsvc.conf
hosts=bind,local

I don't define anything in /etc/hosts though. keeping it clean. Noteworthy to say ssh to IP AND to FQDN is also slow.

Cheers,
DH
Last edited by Don Cragun; 05-15-2015 at 09:45 PM.. Reason: Add CODE and ICODE tags.
# 4  
Old 05-15-2015
If you'd like to trace IBM LDAP client libraries.

Quote:
$ export LDAP_DEBUG=65535
$ export LDAP_DEBUG_FILE=/tmp/ldap.debug
$ idsldapsearch ...
have luck speaking with IBM Tivoli support! ;-) I hope you are familiar with IBM escalation procedures.
These 2 Users Gave Thanks to agent.kgb For This Post:
Devyn rbatte1
# 5  
Old 05-15-2015
Yes I've had the misf.... er pleasure of speaking with support. (cough)

On the debug options, that looks like fun. Going to try it.

As an aside question, there is tprof, svmon, truss etc for tracing but none of these seem to grab a trace from start of a process I'm starting. On Linux I can run strace <PROGRAM> and it starts and traces from start. How to do the same on AIX?

Cheers,
DH
Last edited by Don Cragun; 05-15-2015 at 09:47 PM.. Reason: Add ICODE tags.
# 6  
Old 05-15-2015
truss -f <program> should trace a process and its children from the start.
Last edited by rbatte1; 05-19-2015 at 01:09 PM.. Reason: Added ICODE tags
This User Gave Thanks to jlliagre For This Post:
Devyn
# 7  
Old 05-16-2015
Quote:
Originally Posted by Devyn
Yes I've had the misf.... er pleasure of speaking with support. (cough)
I can wholeheartedly relate to that. Once they had the the most expensive machines and the best support. Their systems are still the most expensive ones.

The svmon you mentioned is a tool you use for performance monitoring because it keeps short-term and long-term statistics about virtual memory consumption. This is done for the system as a whole as well as on a per-process basis. It is a phantastic tool which i dearly missed in other unixoid systems but it won't help you any in your case.

Btw.:

Quote:
Originally Posted by Devyn
I don't define anything in /etc/hosts though. keeping it clean.
Some basic entries (like "localhost") should definitely be in there, everything else is not even supported. If you ever set up HACMP even removing the "::1" (aka IPv6-localhost alias) will confuse the cluster daemons, regardless of you using IPv6 or not! Clean /etc/hosts is one (and in fact a good) thing but to carry this to the one extreme is as bad as carrying it to the other.

I hope this helps.

bakunin
Last edited by bakunin; 05-16-2015 at 04:04 PM..
This User Gave Thanks to bakunin For This Post:
Devyn
Login or Register to Ask a Question

Previous Thread | Next Thread

10 More Discussions You Might Find Interesting

1. Shell Programming and Scripting

Check file creation Time minutes and if file older then 5 minutes execute some stuff

Hello all, Info: System RedHat 7.5 I need to create a script that based on the creation time, if the file is older then 5 minutes then execute some stuff, if not exit. I thought to get the creation time and minutes like this. CreationTime=$(stat -c %y /tmp/test.log | awk -F" " '{ print... (3 Replies)
Discussion started by: charli1
3 Replies

2. Shell Programming and Scripting

Grep a log file for the last 5 minutes of contents every 5 minutes

Hi all, System Ubuntu 16.04.3 LTS i have the following log INFO 2019-02-07 15:13:31,099 module.py:700] default: "POST /join/8550614e-3e94-4fa5-9ab2-135eefa69c1b HTTP/1.0" 500 2042 INFO 2019-02-07 15:13:31,569 module.py:700] default: "POST /join/6cb9c452-dcb1-45f3-bcca-e33f5d450105... (15 Replies)
Discussion started by: charli1
15 Replies

3. UNIX for Beginners Questions & Answers

How to convert days hours minutes seconds to minutes?

Hi, please help with below time conversion to minutes. one column values: 2 minutes 16 seconds 420 msec 43 seconds 750 msec 0 days 3 hours 29 minutes 58 seconds 480 msec 11 seconds 150 msec I need output in minutes(total elapsed time in minutes) (2 Replies)
Discussion started by: ramu.badugula
2 Replies

4. AIX

Named resolving old fqdn on AIX after change to new fqdn.

Hey All, We have defined abc.this.that in: /etc/named.conf and corresponding files but after the change that we verified through dig -x this.that ptr all is resolving correctly. However in the /var/log/named/named.log file we still see entries for: 4-May-2015 12:15:30.390 queries:... (6 Replies)
Discussion started by: Devyn
6 Replies

5. Shell Programming and Scripting

How to kill a child script if it takes more than 10 minutes?

Hi all, I have a query on killing a child process, if it takes more than 10 minutes myparent.sh has the following #!/bin/sh echo "My Parent Script" home/guru/initiateServer.sh The initiateServer is a child process and this might take 20 or more minutes to return. I want to kill this... (11 Replies)
Discussion started by: guruincredible
11 Replies

6. Shell Programming and Scripting

how to get the FQDN

Suppose I am in one server A .I want to know the FQDN of another host B then how can I get the FQDN of that host B from host A. (1 Reply)
Discussion started by: maitree
1 Replies

7. UNIX for Advanced & Expert Users

Parsing an FQDN

Hi, I want a shell command through which I can parse an FQDN (Fully Qualified Domain Name) and check whether it is correct or not? The FQDN can accept alphanumeric, . and - only. I tried grep -E "^|\-|." <file name>, but I am not able to get the correct result.:confused: Please provide... (1 Reply)
Discussion started by: g_rohit7
1 Replies

8. Solaris

Using sendmail without FQDN

Hello Folks, Am facing an issue regarding sendmail. Sendmail is working on the server but it does not have an FQDN and the server is not connected to internet ie it does not have a public IP, it is in the intranet with 192.xxx.xxx.xx IP. How do we go about sending mail from this sendmail... (1 Reply)
Discussion started by: rcmrulzz
1 Replies

9. Shell Programming and Scripting

Convert minutes to hours, minutes, seconds

How would you convert lets say a 1000 minutes to hours, minutes, seconds (1 Reply)
Discussion started by: Vozx
1 Replies

10. Programming

FQDN and getdomainname

I have a need to create a connection between an erlang node and my C program. the name of an erlang node looks something like monitor@host1.ipc.co.za. The piece of code I have to construct a node name looks like this: char *hostname, *domainname, *nodename = "monitor", *thisfullnodename; ... (1 Reply)
Discussion started by: NanoSec
1 Replies
Login or Register to Ask a Question