[Samba] Ldap performance

rruegner robert at ruegner.org
Mon Aug 30 14:13:18 GMT 2004 

Hi, perhaps you should setup a bdc and a fallback ldap server
hosting user profiles and homes on a bdc smb server may be a good idea
too.
Changing ethernet nic to gigabit, or a better lan card (some of them are 
well known to problems), changing
the partition type to reiser/nfs3/xfs, high your ram, or try to use some
performance parameters in smb.conf and in ldap.
Using a newer kernel may be a good solution too.
Have you run a name server relating to your networksetup (dns timeouts...)?
You should look in the log files what exact makes the problem, and use
tcpdump and top to see the network and memoryload.
log level higher than 2 can slow down performance, also
scanning files to viri in netlogon shares.
locking parameters may be set in netlogon...
Checking hardware switches and client nics for failure
ports.Broadcasts and unicast storms may slow down too,
...do all clients know their wins server?
Some of the gurus may help you out with info about
big setups, cause in such enviroment small failures may slow
down the system in extremo.

Best Regards

Bruno Gimenes Pereti schrieb:
> Hi,
> 
> I Have a PDC running Samba 3.0.4 with OpenLDAP (posix and sambaSAM). I have
> more than 1500 users and almost 200 machines in the domain. At 7 PM, when
> the students start to login in the win98, win2000 and winXP machine, it's
> impossible to change a password even with smbpasswd the linux console. When
> the server is idle, it takes me 1 minute to open the MS User Manager and see
> the property of a user.
> What should be the minimum hardware to this PDC?
> 
> Is it normal to have 36 slapd process, each using 33 MB?
> 
> Another thing that may be slowing the ldap is that I need to use scope =sub
> in my ldap.conf to find users and computers:
> 
> dc=homelan,dc=com,dc=br
>         Users
>                 students
>                 Teachers
>                 employees
>         Groups
>         Computers
> 
> the relevant part of my smb.conf:
> 
> passdb backend = ldapsam:ldap://localhost
> 
> ldap suffix = dc=homelan,dc=com,dc=br
> ldap admin dn = cn=admin,dc=homelan,dc=com,dc=br
> ldap filter = (uid=%u)
> ldap user suffix = ou=users
> ldap machine suffix = ou=computers
> ldap group suffix = ou=groups
> ldap port = 389
> ldap server = localhost
> ldap ssl = no
> ldap delete dn = yes
> ldap passwd sync = yes
> 
> admin users = administrator
> 
> ----
> 
> What I can do to make it work faster?
> 
> TIA.
> 
> Bruno Pereti
>

More information about the samba mailing list