But is dovecot job to authenticate, mysql replicate fine, it is dovecot that is not fine by ignoring desire effect by only talk localhost and not any other unless locahost auth not respond.
Silly offer one option if it cause denial of service, again setting up more third party softwares is not answer, more cogs in chain, more chances of breakage, we think dropping server altogether is better if server auth not work rather than overload master server because of dovecot design.
On Mon, Nov 11, 2013 at 6:30 PM, Robert Schetterer rs@sys4.de wrote:
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
Am 11.11.2013 06:24, schrieb Edwardo Garcia:
My company have 36 dovecots, one biggest ISP in country 3 million user, agree with Nick poster, we had stop use dovecot load balance because too bad effect on primary database, now use single localhost, we have script run every 30 second to test login, if fail sleep 30 second, try again, fail and down ethernet interface so hardware load balancer see server not answer and can not use, nagios soon tell us of problem, very very bad and stupid way, but only option is safe, we have look at alternative to dovecot for this and still look, not happy with unreliable softwares to immitate feature.
big network mean big time locate and fix problem when arise so you be good to say no extra point of failure. Too many cog in chain eventually lead to problem.
Wow thats big, and may have implications out of my scope, but database replication is not the job of dovecot, after all why not use loadbalancer like keepalived etc and setup proxies on them so you may combine check feaures from loadbalancers to target related dovecot proxies, which themselves conect to backhand dovecot servers, also its easy to monitor, for sure you may need some shared storage too, which is again not real related to dovecot , i tested ceph , so i think its possible to have seperate mount points with i.e ocfs2 for each domain.
At the end ,for such big setups there should be enough budget to get things solved by hire specialists for each software part which is involved
Best Regards MfG Robert Schetterer
[*] sys4 AG
http://sys4.de, +49 (89) 30 90 46 64 Franziskanerstraße 15, 81669 München
Sitz der Gesellschaft: München, Amtsgericht München: HRB 199263 Vorstand: Patrick Ben Koetter, Axel von der Ohe, Marc Schiffbauer Aufsichtsratsvorsitzender: Florian Kirstein -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/
iQEcBAEBAgAGBQJSgJWEAAoJEP8jBObu0LlEjpcIAKcZofBBiVGw9EqKzmEoGqTq y3A0CqnsmSmi21V5ofBlyrYpNSkusd+V2mKPFIUBoABwpFyWxUsQgO5n22lGX70+ 7Tkqa4ClBM7ImrXVfZ/uznkDlOwfIZGomIoouYPdm+4mq5oRVv+jmUv4PBg9fzi2 6cVOG8WBMuLtx/vBJypWoixxd075pv0/mCXSHZvFL9Th8TAk39p73rZ+woJPcN3w Qb6EKNcaOvl9PNVzjpquDP9jWrynUCCp70sUAhnHqc0778m2Gjx5boj2kXpSpgPz Tro9F6UesJU62sAyjzled2Jm2XH5EuhAhwLOlUZP88B1N7Ijs7vHTfnWPQelnaM= =pBeW -----END PGP SIGNATURE-----