Hello,
I setup a second LDAP-Connection. The first using localhost with Port 389, works perfect since years. But now, the OpenLDAP Server should move from localhost to a other VM. I setup a other application (znuny) with this new OpenLDAP Server over LDAPs and everything works with the URL ldaps://openldap-server.de:636.
But Nextcloud 28.0.8 say everytime I klick “continue”
“Lost connection to LDAP server.”
When I use nmap to check if the port is open:
I know, the OpenLDAP using a old, self-signet certificate. So I activate the option “Turn off SSL certificate validation.”.
I search in google and try, I think, everything, but its always the same “Lost connection to LDAP server.”. The slapd-process on the new server runs without a break, without problems.
Any ideas?
It looks like a bug to me
Edit: if I start “tcpdump port 636” an the new openldap-server, and click then “continue” in nextcloud:
06:52:43.166160 IP nextcloud-server.de.57140 > openldap-server.de.ldaps: Flags [S], seq 1119449502, win 64240, options [mss 1460,sackOK,TS val 1104231361 ecr 0,nop,wscale 7], length 0
06:52:43.166184 IP openldap-server.de.ldaps > nextcloud-server.de.57140: Flags [S.], seq 1173441248, ack 1119449503, win 65160, options [mss 1460,sackOK,TS val 1070242092 ecr 1104231361,nop,wscale 7], length 0
06:52:43.166494 IP nextcloud-server.de.57140 > sirius.yados.de.ldaps: Flags [.], ack 1, win 502, options [nop,nop,TS val 1104231361 ecr 1070242092], length 0
06:52:43.166715 IP nextcloud-server.de.57140 > sirius.yados.de.ldaps: Flags [P.], seq 1:338, ack 1, win 502, options [nop,nop,TS val 1104231362 ecr 1070242092], length 337
06:52:43.166724 IP openldap-server.de.ldaps > nextcloud-server.de.57140: Flags [.], ack 338, win 507, options [nop,nop,TS val 1070242092 ecr 1104231362], length 0
06:52:43.166993 IP openldap-server.de.ldaps > nextcloud-server.de.57140: Flags [P.], seq 1:129, ack 338, win 507, options [nop,nop,TS val 1070242093 ecr 1104231362], length 128
06:52:43.167062 IP openldap-server.de.ldaps > nextcloud-server.de.57140: Flags [P.], seq 129:135, ack 338, win 507, options [nop,nop,TS val 1070242093 ecr 1104231362], length 6
06:52:43.167251 IP nextcloud-server.de.57140 > openldap-server.de.ldaps: Flags [.], ack 129, win 501, options [nop,nop,TS val 1104231362 ecr 1070242093], length 0
06:52:43.167393 IP nextcloud-server.de.57140 > openldap-server.de.ldaps: Flags [.], ack 135, win 501, options [nop,nop,TS val 1104231362 ecr 1070242093], length 0
06:52:43.167570 IP nextcloud-server.de.57140 > openldap-server.de.ldaps: Flags [P.], seq 338:344, ack 135, win 501, options [nop,nop,TS val 1104231362 ecr 1070242093], length 6
06:52:43.174346 IP openldap-server.de.ldaps > nextcloud-server.de.57140: Flags [P.], seq 135:169, ack 344, win 507, options [nop,nop,TS val 1070242100 ecr 1104231362], length 34
06:52:43.174353 IP openldap-server.de.ldaps > nextcloud-server.de.57140: Flags [P.], seq 169:2839, ack 344, win 507, options [nop,nop,TS val 1070242100 ecr 1104231362], length 2670
06:52:43.174420 IP openldap-server.de.ldaps > nextcloud-server.de.57140: Flags [P.], seq 2839:3455, ack 344, win 507, options [nop,nop,TS val 1070242100 ecr 1104231362], length 616
06:52:43.174774 IP nextcloud-server.de.57140 > openldap-server.de.ldaps: Flags [.], ack 1617, win 501, options [nop,nop,TS val 1104231370 ecr 1070242100], length 0
06:52:43.174775 IP nextcloud-server.de.57140 > openldap-server.de.ldaps: Flags [.], ack 3455, win 501, options [nop,nop,TS val 1104231370 ecr 1070242100], length 0
06:52:43.175128 IP nextcloud-server.de.57140 > openldap-server.de.ldaps: Flags [P.], seq 344:418, ack 3455, win 501, options [nop,nop,TS val 1104231370 ecr 1070242100], length 74
06:52:43.175477 IP nextcloud-server.de.57140 > openldap-server.de.ldaps: Flags [F.], seq 418, ack 3455, win 501, options [nop,nop,TS val 1104231370 ecr 1070242100], length 0
06:52:43.175511 IP openldap-server.de.ldaps > nextcloud-server.de.57140: Flags [P.], seq 3455:3479, ack 419, win 507, options [nop,nop,TS val 1070242101 ecr 1104231370], length 24
06:52:43.175517 IP openldap-server.de.ldaps > nextcloud-server.de.57140: Flags [F.], seq 3479, ack 419, win 507, options [nop,nop,TS val 1070242101 ecr 1104231370], length 0
06:52:43.175736 IP nextcloud-server.de.57140 > openldap-server.de.ldaps: Flags [R], seq 1119449921, win 0, length 0
06:52:43.175781 IP nextcloud-server.de.57140 > openldap-server.de.ldaps: Flags [R], seq 1119449921, win 0, length 0
06:52:43.323136 IP nextcloud-server.de.57144 > openldap-server.de.ldaps: Flags [S], seq 505188172, win 64240, options [mss 1460,sackOK,TS val 1104231518 ecr 0,nop,wscale 7], length 0
06:52:43.323143 IP openldap-server.de.ldaps > nextcloud-server.de.57144: Flags [S.], seq 3345784707, ack 505188173, win 65160, options [mss 1460,sackOK,TS val 1070242249 ecr 1104231518,nop,wscale 7], length 0
06:52:43.323437 IP nextcloud-server.de.57144 > openldap-server.de.ldaps: Flags [.], ack 1, win 502, options [nop,nop,TS val 1104231518 ecr 1070242249], length 0
06:52:43.323658 IP nextcloud-server.de.57144 > openldap-server.de.ldaps: Flags [P.], seq 1:338, ack 1, win 502, options [nop,nop,TS val 1104231518 ecr 1070242249], length 337
06:52:43.323668 IP openldap-server.de.ldaps > nextcloud-server.de.57144: Flags [.], ack 338, win 507, options [nop,nop,TS val 1070242249 ecr 1104231518], length 0
06:52:43.323933 IP openldap-server.de.ldaps > nextcloud-server.de.57144: Flags [P.], seq 1:129, ack 338, win 507, options [nop,nop,TS val 1070242249 ecr 1104231518], length 128
06:52:43.323992 IP openldap-server.de.ldaps > nextcloud-server.de.57144: Flags [P.], seq 129:135, ack 338, win 507, options [nop,nop,TS val 1070242250 ecr 1104231518], length 6
06:52:43.324313 IP nextcloud-server.de.57144 > openldap-server.de.ldaps: Flags [.], ack 129, win 501, options [nop,nop,TS val 1104231519 ecr 1070242249], length 0
06:52:43.324330 IP nextcloud-server.de.57144 > openldap-server.de.ldaps: Flags [.], ack 135, win 501, options [nop,nop,TS val 1104231519 ecr 1070242250], length 0
06:52:43.324555 IP nextcloud-server.de.57144 > openldap-server.de.ldaps: Flags [P.], seq 338:344, ack 135, win 501, options [nop,nop,TS val 1104231519 ecr 1070242250], length 6
06:52:43.331300 IP openldap-server.de.ldaps > nextcloud-server.de.57144: Flags [P.], seq 135:169, ack 344, win 507, options [nop,nop,TS val 1070242257 ecr 1104231519], length 34
06:52:43.331307 IP openldap-server.de.ldaps > nextcloud-server.de.57144: Flags [P.], seq 169:2839, ack 344, win 507, options [nop,nop,TS val 1070242257 ecr 1104231519], length 2670
06:52:43.331378 IP openldap-server.de.ldaps > nextcloud-server.de.57144: Flags [P.], seq 2839:3455, ack 344, win 507, options [nop,nop,TS val 1070242257 ecr 1104231519], length 616
06:52:43.331612 IP nextcloud-server.de.57144 > openldap-server.de.ldaps: Flags [.], ack 1617, win 501, options [nop,nop,TS val 1104231526 ecr 1070242257], length 0
06:52:43.331641 IP nextcloud-server.de.57144 > openldap-server.de.ldaps: Flags [.], ack 3455, win 501, options [nop,nop,TS val 1104231526 ecr 1070242257], length 0
06:52:43.331938 IP nextcloud-server.de.57144 > openldap-server.de.ldaps: Flags [P.], seq 344:418, ack 3455, win 501, options [nop,nop,TS val 1104231527 ecr 1070242257], length 74
06:52:43.332332 IP nextcloud-server.de.57144 > openldap-server.de.ldaps: Flags [F.], seq 418, ack 3455, win 501, options [nop,nop,TS val 1104231527 ecr 1070242257], length 0
06:52:43.332366 IP openldap-server.de.ldaps > nextcloud-server.de.57144: Flags [P.], seq 3455:3479, ack 419, win 507, options [nop,nop,TS val 1070242258 ecr 1104231527], length 24
06:52:43.332374 IP openldap-server.de.ldaps > nextcloud-server.de.57144: Flags [F.], seq 3479, ack 419, win 507, options [nop,nop,TS val 1070242258 ecr 1104231527], length 0
06:52:43.332619 IP nextcloud-server.de.57144 > openldap-server.de.ldaps: Flags [R], seq 505188591, win 0, length 0
06:52:43.332619 IP nextcloud-server.de.57144 > openldap-server.de.ldaps: Flags [R], seq 505188591, win 0, length 0
So, nextcloud reach the new OpenLDAP-Server.
Every OS is Debian.