hi
please help me
i have running Release 7.2.0_GA_2669.RHEL6_64_20120410002025 RHEL6_64 FOSS edition works great

...
zindus doing ok. but when im trying to connect zimbra LDAP to Openfire got problem
this mail server got 2 eth behind NAT
eth1 192.168.1.201 connect router for internal LAN 10.x.x.x
eth0 10.100.100.2 connect router for internet/WAN

already setup split dns using dnsmasq


[zimbra@mail ~]$ dig mail.xxxxxxxx.com mx

; <<>> DiG 9.7.3-P3-RedHat-9.7.3-8.P3.el6 <<>> mail.xxxxxxxx.com mx
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 62954
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;mail.xxxxxxxx.com. IN MX

;; AUTHORITY SECTION:
xxxxxxxx.com. 1800 IN SOA ns1.xx.net. admin.domain.com. 2007052328 3600 600

1209600 3600

;; Query time: 62 msec
;; SERVER: 127.0.0.1#53(127.0.0.1)
;; WHEN: Tue Jan 29 11:47:56 2013
;; MSG SIZE rcvd: 105


[zimbra@mail ~]$ dig mail.xxxxxxxx.com any

; <<>> DiG 9.7.3-P3-RedHat-9.7.3-8.P3.el6 <<>> mail.xxxxxxxx.com any
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 44067
;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 0

;; QUESTION SECTION:
;mail.xxxxxxxx.com. IN ANY

;; ANSWER SECTION:
mail.xxxxxxxx.com. 0 IN A 10.100.100.2

;; Query time: 0 msec
;; SERVER: 127.0.0.1#53(127.0.0.1)
;; WHEN: Tue Jan 29 11:48:25 2013
;; MSG SIZE rcvd: 53


[zimbra@mail ~]$ host $(hostname)

mail.xxxxxxxx.com has address 10.100.100.2


[zimbra@mail ~]$ cat /etc/resolv.conf

# Generated by NetworkManager
search xxxxxxxx.com
nameserver 127.0.0.1
nameserver 192.168.1.201

[zimbra@mail ~]$ cat /etc/hosts

127.0.0.1 localhost localhost.localdomain localhost4 localhost4.localdomain4
::1 localhost localhost.localdomain localhost6 localhost6.localdomain6

10.100.100.2 mail.xxxxxxxx.com mail


[zimbra@mail ~]$ cat /etc/dnsmasq.conf

server=118.x.x.x ---> public IP/WAN
server=8.8.8.8
domain=xxxxxxxx.com
mx-host=xxxxxxxx.com,mail.xxxxxxxx.com,5
listen-address=127.0.0.1
srv-host=_ldap._tcp.xxxxxxxx.com,mail.xxxxxxxx.com,389


LDAP start work ok, but i can not connect.
trying to start ldap manually

[zimbra@mail ~]$ /opt/zimbra/openldap/sbin/slapd -d7 -l LOCAL0 -4 -u zimbra -h
ldap://mail.xxxxxxxx.com:389 -F /opt/zimbra/data/ldap/config

51074cb2 @(#) $OpenLDAP: slapd 2.4.30 (Mar 12 2012 17:11:57) $
build@zre-rhel6-64.eng.vmware.com:/home/build/p4/HELIX/ThirdParty/openldap/openldap-

2.4.30.6z/servers/slapd
ldap_pvt_gethostbyname_a: host=mail.xxxxxxxx.com, r=0
51074cb2 daemon_init: ldap://mail.xxxxxxxx.com:389
51074cb2 daemon_init: listen on ldap://mail.xxxxxxxx.com:389
51074cb2 daemon_init: 1 listeners to open...
ldap_url_parse_ext(ldap://mail.xxxxxxxx.com:389)
51074cb2 daemon: bind(7) failed errno=13 (Permission denied)
51074cb2 slap_open_listener: failed on ldap://mail.xxxxxxxx.com:389
51074cb2 slapd stopped.
51074cb2 connections_destroy: nothing to destroy.

already open port 389. is that because /etc/hosts have 10.100.100.2
but /etc/resolv have nameserver 192.168.1.201 ?

please help ...
thanks
dp