Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1923
Views
0
Helpful
1
Replies

Ironport C370 Ldap Accept problems

Go to solution
ALFONSO MONEO VILORIA
Level 1
Level 1

‎07-04-2013 01:49 AM

Hello all,

I'm having problems using ldap queries to validate recipients from my Cisco Ironport C370.

I'm receiving permanent Warning message like this:

The query CP_LDAP.accept failed with result inquiry timed out

I need to know how C370 establish TCP sessions for each Ldap host (one session for query, one session for all queries..). Ldap administrators are seeing lots of Established TCP connections fron Ironport C370 event though I've configured "Maximum number of simultaneous connections for each host" to 10.

I've checked it running the netstat command on C370 appliance (around 20 for each).

Is this a normal behaviour?

Thanks a lot.

Best Regards,

Alfonso Moneo

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Luis Silva Benavides
Cisco Employee
Cisco Employee

‎07-04-2013 11:13 AM

Hi Alfonso,

Do you have any kind of FW on the path or built-in FW on the email server?

In regards to your other question, the ESA will mantain a number of active TCP conns to your LDAP server (6 hours or 10,000 queries, what happens first).

HTH

Luis Silva

"If you need PDI (Planning, Design, Implement) assistance feel free to reach"

http://www.cisco.com/web/partners/tools/pdihd.html

Luis Silva

View solution in original post

0 Helpful
1 Reply 1

Go to solution
Luis Silva Benavides
Cisco Employee
Cisco Employee

‎07-04-2013 11:13 AM

Hi Alfonso,

Do you have any kind of FW on the path or built-in FW on the email server?

In regards to your other question, the ESA will mantain a number of active TCP conns to your LDAP server (6 hours or 10,000 queries, what happens first).

HTH

Luis Silva

"If you need PDI (Planning, Design, Implement) assistance feel free to reach"

http://www.cisco.com/web/partners/tools/pdihd.html

Luis Silva
0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents