Applies to all LDAP servers and Active Directory when using LDAP lookups with the Barracuda Spam Firewall.
If your LDAP server has a consistently high system load, it may be due to the search filters being to broad on your Barracuda Spam Firewall. When configuring the LDAP settings on the Barracuda Spam Firewall, the Test LDAP lookup near the bottom of the Domains > Edit Domain page should take less than one second. If it is taking too long, you can remove additional search filters from the LDAP Filter field on the same page. If you're using Active Directory, you can also change the LDAP Port to 3268 since connections made on the Global Catalog port generally respond more quickly.
For more information on writing custom LDAP filters, see Solution #00001802.
Link to This Page: