bernhard.waldvogel(a)freesurf.ch wrote:
> I have a master directory server behind a firewall that uses NAT.
I
> want to place a read only server behind a different firewall. The new
>
> server does have a public IP address. Here is my setup:
>
> Master <--> Firewall (NAT) <--> Internet <--> Firewall <-->
Read-Only
>
Question, wath about LDAPS? Is there anything against to use ldaps for the
replication?
This should be secure enough, or not?
Well, I have considered this, but I have to make sure that any new
connections from the RO server to the master go through the SSH tunnel.