On Tue, 2024-12-24 at 23:35 +0100, Jernej Jakob via FreeIPA-users wrote: > > From the 389-ds access log you sent, you can see the IP of the client > that's generating the requests (10.75.22.247)
That is not (just a) client, that is the IPA server itself. So it's hammering itself with all of those queries. > What's weird to me is that I looked at my own server and I couldn't > find the same SRCH bases as you have in my access logs for the past > 10 > days, and I have about 20 hosts enrolled and alive. So yeah, then that is weird. > If the IP is of a IPA server or replica, Not just any IPA server or replica but itself! > that's a whole different can > of worms I don't know much about. There are lots of things on a IPA > server that connect to LDAP, you can try shutting down each service > one > by one (httpd, pki-tomcat, named, ...) Which you know I cannot do without taking down the IPA server itself of course. I appreciate the insight an effort you took to look into this though as I am stumped myself. Cheers, b. -- _______________________________________________ FreeIPA-users mailing list -- [email protected] To unsubscribe send an email to [email protected] Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedorahosted.org/archives/list/[email protected] Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
