LDAP WAAS 4.1.1d

Unanswered Question
Apr 17th, 2009

I have noticed that our Directory Services traffic (LDAP) is showing an increase rather than a reduction. I've run into similar issues with Citrix and know that is due to Citrix native compression and encryption and deal with that by altering the policy to use only TFO. However, I don't see why the same thing should happen with LDAP as there are passthrough features for secure LDAP traffic. Does anyone have any ideas? Thanks...

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
dstolt Fri, 04/17/2009 - 13:18

Normally pure LDAP is extremely compressable, so I would look at the following classifiers to see if you have some non-LDAP traffic hitting them causing your reporting to be skewed.


LDAP (optimize full)

match dst port eq 389

match dst port eq 8404

LDAP-Global-Catalog (optimize full)

match dst port eq 3268

LDAP-Global-Catalog-Secure (passthrough)

match dst port eq 3269

LDAP-secure (passthrough)

match dst port eq 636

Maybe an encrypted/compressed application is using one of the LDAP ports?


JHaynes4 Mon, 04/20/2009 - 06:21

I agree Dan. I've seen the LDAP traffic being comprseed rather dramatically in the past. I will check it out.


This Discussion