Issue with Search Results#

So we login and query for a specific IP address and the result looks like:
# filter: (networkAddress=1#\c0\a8\20\a1)
# requesting: networkaddress cn uid
#
# admin,NW_M01domain.info
dn: cn=admin,dc=NW_M01domain.info
uid: admin
networkaddress:: MSPAqCCh
cn: admin
The user disconnects and we query again:
# filter: (networkAddress=1#\c0\a8\20\a1)
# requesting: networkaddress cn uid
#

# admin,NW_M01domain.info
dn: cn=admin,dc=NW_M01domain.info
uid: admin
cn: admin
NOTICE: There is no value returned for the network address even though it was used in the search filter.

Imonitor shows Network Address

TimeStamp       Flags Type Length     Address
12-12-06 1:59:13 pm 1:1    Not Present     IP     4     192.168.32.161

NOTICE the "Not Present" BUT the issue is a values still shows.
Normally, "Not Present" would NOT show a value.

Issue With Linux#

Apparently on OES Linux and SLES (I checked this on SLES 10) the format of the Network Address is not the same as it is on OES Netware (or other Netware Versions)

A search for networkAddress returns as:

39-23-05-E1-C0-A8-01-79

From what I can tell, this breaks down as:

  • 9# - Implies this is a format of NT_TCP Transmission Control Protocol (TCP) address.
  • 05-E1 - This appears to be the port the user is connected to the Linux Host. However, I have not been able to find documentation for conformation.
  • C0-A8-01-79 - Is the IP address in this case it is 192.168.1.121

Imonitor shows#

Present TCP 6 192.168.1.121:1505

ndstrace Shows#

The ndstrace -c connections provides:
tcp:192.168.1.121:1505 .jim.butler.people.willeke.com

What this Means#

As far as I can tell there is no methodology of determining the client that has connected to eDirectory if you are provided only the IP address unless you Retrieve every networkaddress value and parse each values based on the NET_TYPE IP or TCP and then parse the string according to the NET_TYPE.

LDAP searches with Wild Cards all seem to fail. (networkAddress=*\c0\a8\01\79)
I get an error of:
Search failed Root error: (LDAP: error code 18 - Inappropriate Matching)

More Information on Network Address#

More Information#

There might be more information for this subject on one of the following:

Add new attachment

Only authorized users are allowed to upload new attachments.
« This page (revision-7) was last changed on 24-Nov-2012 09:36 by jim