[Dovecot] dovecot + dns srv registers
hi...
Dovecot support dns srv registers... for ldap service?
thanks in advance :)
-- Salu2 ;)
if dovecot can query dns for ldap service available... (i prefer not configure rr-dns for ldap service, i prefer use srv records).
maximatt
2009/11/4 Marcus Rueckert darix@opensu.se
On 2009-11-04 14:39:58 -0200, maximatt wrote:
Dovecot support dns srv registers... for ldap service?
what do you mean with it? resolving srv records?
darix
-- openSUSE - SUSE Linux is my linux openSUSE is good for you www.opensuse.org
-- Salu2 ;)
sorry the message send without finish them ....
if dovecot can query dns for ldap service available... and if docecot can autodiscover them (the service of course) (i prefer not configure rr-dns for ldap service).
thanks in advance
2009/11/4 maximatt azamax@gmail.com
if dovecot can query dns for ldap service available... (i prefer not configure rr-dns for ldap service, i prefer use srv records).
maximatt
2009/11/4 Marcus Rueckert darix@opensu.se
On 2009-11-04 14:39:58 -0200, maximatt wrote:
Dovecot support dns srv registers... for ldap service?
what do you mean with it? resolving srv records?
darix
-- openSUSE - SUSE Linux is my linux openSUSE is good for you www.opensuse.org
-- Salu2 ;)
-- Salu2 ;)
I still don't really understand. Probably because I don't know how exactly SRV records are supposed to even work. How would I query LDAP service with e.g. dig?
On Wed, 2009-11-04 at 15:14 -0200, maximatt wrote:
sorry the message send without finish them ....
if dovecot can query dns for ldap service available... and if docecot can autodiscover them (the service of course) (i prefer not configure rr-dns for ldap service).
thanks in advance
2009/11/4 maximatt azamax@gmail.com
if dovecot can query dns for ldap service available... (i prefer not configure rr-dns for ldap service, i prefer use srv records).
maximatt
2009/11/4 Marcus Rueckert darix@opensu.se
On 2009-11-04 14:39:58 -0200, maximatt wrote:
Dovecot support dns srv registers... for ldap service?
what do you mean with it? resolving srv records?
darix
-- openSUSE - SUSE Linux is my linux openSUSE is good for you www.opensuse.org
-- Salu2 ;)
On Wed, Nov 04, 2009 at 02:33:07PM -0500, Timo Sirainen wrote:
I still don't really understand. Probably because I don't know how exactly SRV records are supposed to even work. How would I query LDAP service with e.g. dig?
Latest versions of openldap do this automatically, IIRC you specify a LDAP url something like:
ldap:///DC=foo,DC=bar,DC=com
And it looks up _ldap._tcp.foo.bar.com: $ dig -t SRV _ldap._tcp.foo.bar.com. _ldap._tcp.foo.bar.com. 600 IN SRV 0 100 389 ldap.foo.bar.com.
And then it picks the best priority SRV and looks that up, and rotates around to the other ones if the first doesn't work.
SRV records are better than RR DNS because the priority field lets the client sort them. In MS implementations the DNS server will return priority fields that reflect the queriers subnet - it will dynamically make closer servers have better priority.
Jason
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
On Wed, 4 Nov 2009, Jason Gunthorpe wrote:
Look for RFC 2782. AD and Kerberos use it.
Regards,
Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (GNU/Linux)
iQEVAwUBSvK4RnWSIuGy1ktrAQKiYgf9FLJMvkJNtnfoM/MupjCDk48g6dtmQqYw T/pWkbY0nowRihswRWh5mq09VeOHawHd5o+2saq1OLruZn74qEkayOTZWmkWhBmK wxt/ubzhX+QCR6LDamG6V9YuTk72xQOemZMkvo1Te81kjl4vzCd6v4k7AgDpRqFj b/6TPxfb56NN5FWH8lREa6cCLFS5z8SHpQY4c62GCwWnzmYtIgAn6anp34GfZAqr LmHha0wsbcmXFx6CYaD8wJ8yNkG74J41OvnQzB9pJpZn0KJS9qxMaHPLj3L47gZc KaUHaAdD/Yk0iofljDTwEq31H6d2Rz9W8/FpncJYUPQt7Si0nJHmFg== =MT/p -----END PGP SIGNATURE-----
participants (5)
-
Jason Gunthorpe
-
Marcus Rueckert
-
maximatt
-
Steffen Kaiser
-
Timo Sirainen