Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations gkittelson on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

LDAP Bind/Connect Failed over TCP (ok over UDP)

Status
Not open for further replies.
damber

damber

Programmer
Feb 18, 2001
1,002
GB

I have a network with various subnets and on subnet 1 I have an Active Directory server providing LDAP. on subnets 2 and 3 I can connect to this ok using the ldp.exe command in Windows. However, when trying to connect to this from subnet 4 using ldp.exe and the default TCP connection it fails to return anything (error 94), however if I select the option to make it connectionless (UDP) then it works fine...??

The connection travels through an ISA server / Router to get to the LDAP Server, however this is set to allow all communications for these subnets, and allows other subnets to work fine (as they route through this too) - and can itself bind with the LDAP server

Can anyone shed some light on what this might be ?

Thanks
Damian
 
Sort by date Sort by votes
Thanks for the link bcastner, though the server is already fully patched - it was built only yesterday and has had all the patches MS has to offer applied via the windowsupdate site.

I think you might be on the right track with the Kerberos authentication though - do you have any other ideas?

Thanks in advance,
Damian
 
Upvote 0 Downvote
Bit of an update:

I have now tested the server in question in each of the subnets - and it works in these areas, so it appears to just be this subnet that was at fault, so I have changed the IP range for this and it still has the same problem. I have also changed the hardware switch for this area, as I thought by some remote chance it could be this, though this also didn't make a difference. And I've also moved other servers into the subnet in question - these also cannot run dcdiag correctly due to the LDAP issue.

Can anyone tell me what this could be, I've tried running Network Monitor on the router/ISA Server, but couldn't see any LDAP packets being sent, only a DNS lookup for the FQDN parameter of dcdiag.

It can't be the computer account in the domain, as it works in the different subnets, just not in this one.

I have looked through every bit of detail I can on the Router/ISA server to see what is different about this subnet, but cannot determine what it is. It may just be my understanding of this, but it is a little odd.

Anyone got any ideas ???

I would really appreciate some fresh thoughts...

Cheers
Damian
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

robocat
  • Locked
  • Question
Yet another TCP RST flag problem
Replies
0
Views
586
robocat
robocat
CryptoTuke
  • Locked
  • Question
Maximum buffer size on Winsock for sending one block of data over TCP / IP
Replies
1
Views
829
maybeimaleo
maybeimaleo
Vitor Fernandes-Neto
  • Locked
  • Question
Ldap authentication in classic asp, retrieving givenname, displayname etc
Replies
0
Views
702
Vitor Fernandes-Neto
Vitor Fernandes-Neto
jenalolo
  • Locked
  • Question
LDAP error
Replies
1
Views
605
jenalolo
jenalolo
TheFaz_
  • Locked
  • Question
Sending udp packets from fpga to the computer using Lwip tcp/ip stack using C programming
Replies
0
Views
563
TheFaz_
TheFaz_

Part and Inventory Search

Sponsor

Back
Top