LTM - Linux Servers not able to use load balanced LDAP
I recently created a load balanced LDAP VIP using the f5.ldap iAPP. It seems to work fine with windows machines, but we are having trouble with a couple different Linux systems. Is there any known "gotchas" with this? I have some different logs from the Linux servers. There is no firewall between these systems. I did a packet capture from the Linux system and it makes a complete TCP handshake (SYN, - SYN,ACK - ACK) but when the Linux system sends the bind request it receives an immediate [RST] similar to what the telnet log is showing below. The F5 appears to be closing the port immediately. I have posted my system model and software version. I will be opening a case with support but wanted to reach out here as well. If you have any other troubleshooting recommendations or tools let me know.
My F5 Environment
Platform Name BIG-IP 4200
Software Version BIG-IP v11.4.1 (Build 625.5)
Linux Log from Telnet
[LINUX MACHINE]$ telnet 10.39.1.1 389
Trying 10.39.1.1...
Connected to 10.39.1.1.
Escape character is '^]'.
Connection closed by foreign host
LDAP SEACH/BIND from LINUX SYSTEM
]$ ldapsearch -h 10.39.1.1 -p 389 -s base -d 1 -vv "DC=MYDOMAIN,DC=net"
ldap_initialize( ldap://10.39.1.1:389 )
ldap_create
ldap_url_parse_ext(ldap://10.39.1.1:389)
ldap_pvt_sasl_getmech
ldap_search
put_filter: "(objectclass=*)"
put_filter: simple
put_simple_filter: "objectclass=*"
ldap_send_initial_request
ldap_new_connection 1 1 0
ldap_int_open_connection
ldap_connect_to_host: TCP 10.39.1.1:389
ldap_new_socket: 3
ldap_prepare_socket: 3
ldap_connect_to_host: Trying 10.39.1.1:389
ldap_pvt_connect: fd: 3 tm: -1 async: 0
attempting to connect:
connect success
ldap_open_defconn: successful
ldap_send_server_request
ber_scanf fmt ({it) ber:
ber_scanf fmt ({) ber:
ber_flush2: 64 bytes to sd 3
ldap_result ld 0x1788270 msgid 1
wait4msg ld 0x1788270 msgid 1 (infinite timeout)
wait4msg continue ld 0x1788270 msgid 1 all 1
** ld 0x1788270 Connections:
- host: 10.39.1.1 port: 389 (default) refcnt: 2 status: Connected last used: Fri May 1 15:28:42 2015
** ld 0x1788270 Outstanding Requests:
- msgid 1, origid 1, status InProgress
outstanding referrals 0, parent count 0
ld 0x1788270 request count 1 (abandoned 0)
** ld 0x1788270 Response Queue:
Empty
ld 0x1788270 response count 0
ldap_chkResponseList ld 0x1788270 msgid 1 all 1
ldap_chkResponseList returns ld 0x1788270 NULL
ldap_int_select
read1msg: ld 0x1788270 msgid 1 all 1
ber_get_next
ldap_msgfree
ldap_err2string
ldap_sasl_interactive_bind_s: Can't contact LDAP server (-1)
ldap_free_request (origid 1, msgid 1)
ldap_free_connection 1 1
ldap_free_connection: actually freed