Hi all,

Has anyone tried Running OpenDirectory in 2 different subnets. I have a client in 172 subnet and the other 10 subnet. My OpenDirectory server has two Ethernet cards one from 172 subnet and the other from 10 subnet. can this server authenticate in two different subnets? anyone have ideas will be greatly appreciated.

thanks

tried the changeip command to gather information on the server, this is the result.

Primary address = 172.x.x.x

Current Hostname = test.com
DNS Hostname = test.com

from the information above this server should be able to authenticate to 172 clients.

now when i tried to turn off the 10 subnet, users cannot login.

DA settings are pointed to 172 server.

we tried connecting to the server using afp://server.com and use some user on the WGM, it will not authenticate, but using the diradmin will be able to authenticate to the server.

I don’t understand why this is happening.

anyone has ideas.

please help.

these are the result also fo netstat.

Proto Recv-Q Send-Q Local Address Foreign Address (state)
tcp4 0 0 10.11.0.103.ldap 10.11.0.103.52700 ESTABLISHED
tcp4 0 0 10.11.0.103.52700 10.11.0.103.ldap ESTABLISHED
tcp6 0 0 fe80:5::217:f2ff.22 fe80:5::200:5aff.59836 ESTABLISHED
tcp4 0 0 watan.tv.ldap 172.11.0.101.53939 ESTABLISHED
tcp4 0 0 10.11.0.103.ldap 10.11.0.15.49290 ESTABLISHED
tcp4 0 0 localhost.52329 localhost.apple-sasl CLOSE_WAIT
tcp4 0 0 localhost.52287 localhost.apple-sasl CLOSE_WAIT
tcp4 0 0 localhost.netinfo-loca localhost.954 ESTABLISHED
tcp4 0 0 localhost.954 localhost.netinfo-loca ESTABLISHED
tcp4 0 0 watan.tv.dec_dlm 172.11.0.50.54054 ESTABLISHED
tcp4 0 0 10.11.0.103.domain *.* LISTEN
tcp4 0 0 *.5900 *.* LISTEN
tcp4 0 0 localhost.netinfo-loca localhost.982 ESTABLISHED
tcp4 0 0 localhost.982 localhost.netinfo-loca ESTABLISHED
tcp4 0 0 localhost.netinfo-loca localhost.996 ESTABLISHED
tcp4 0 0 localhost.996 localhost.netinfo-loca ESTABLISHED
tcp4 0 0 localhost.ipp *.* LISTEN
tcp4 0 0 *.* *.* CLOSED
tcp4 0 0 *.* *.* CLOSED
tcp4 0 0 *.svrloc *.* LISTEN
tcp4 0 0 watan.tv.domain *.* LISTEN
tcp4 0 0 *.* *.* CLOSED
tcp4 0 0 *.* *.* CLOSED
tcp4 0 0 *.afpovertcp *.* LISTEN
tcp46 0 0 *.afpovertcp *.* LISTEN
tcp4 0 0 localhost.smtp *.* LISTEN
tcp4 0 0 localhost.netinfo-loca localhost.1021 ESTABLISHED
tcp4 0 0 localhost.1021 localhost.netinfo-loca ESTABLISHED
tcp4 0 0 *.asip-webadmin *.* LISTEN
tcp4 0 0 *.ldap *.* LISTEN
tcp6 0 0 *.389 *.* LISTEN
tcp4 0 0 *.apple-sasl *.* LISTEN
tcp4 0 0 *.3com-tsmux *.* LISTEN
tcp4 0 0 *.apple-sasl *.* LISTEN
tcp4 0 0 *.3com-tsmux *.* LISTEN
tcp4 0 0 localhost.netinfo-loca *.* LISTEN
tcp4 0 0 *.dec_dlm *.* LISTEN
tcp4 0 0 localhost.xns-ch *.* LISTEN
tcp4 0 0 localhost.domain *.* LISTEN
tcp4 0 0 *.ssh *.* LISTEN
tcp6 0 0 *.22 *.* LISTEN
tcp4 0 0 *.eppc *.* LISTEN
tcp6 0 0 *.3031 *.* LISTEN
udp4 0 0 *.* *.*
udp4 0 0 *.mdns *.*
udp4 0 0 *.mdns *.*
udp4 0 0 10.11.0.103.domain *.*
udp4 0 0 *.net-assistant *.*
udp4 0 0 *.ipp *.*
udp4 0 0 *.* *.*
udp4 0 0 *.svrloc *.*
udp4 0 0 watan.tv.domain *.*
udp4 0 0 *.* *.*
udp4 0 0 localhost.49162 localhost.1022
udp4 0 0 *.* *.*
udp4 0 0 *.49161 *.*
udp4 0 0 localhost.49160 localhost.1022
udp4 0 0 localhost.1022 *.*
udp4 0 0 localhost.49157 localhost.1023
udp4 0 0 localhost.1023 *.*
udp4 0 0 10.11.0.103.ntp *.*
udp6 0 0 fe80:4::217:f2ff.123 *.*
udp4 0 0 localhost.ntp *.*
udp6 0 0 fe80:1::1.123 *.*
udp6 0 0 localhost.123 *.*
udp6 0 0 *.123 *.*
udp4 0 0 *.ntp *.*
udp6 0 0 *.5353 *.*
udp4 0 0 *.mdns *.*
udp4 0 0 *.apple-sasl *.*
udp4 0 0 *.* *.*
udp4 0 0 localhost.netinfo-loca *.*
udp6 0 0 *.49153 *.*
udp4 0 0 *.49152 *.*
udp4 0 0 localhost.domain *.*
icm6 0 0 *.* *.*
icm6 0 0 *.* *.*

and ldap is running in 10 subnet. how do i cahnge this authentication port to 172 subnet? i’d like to use firewall also but don’t know how.