I bad the same problem recently but in reverse. Ldap was fast, ldaps was about 8x slower. Setting the VS to use the tcp-lan-optimised with no nagles etc sped it up... The reason for that is probably to do with the size of the object returned. Nagels algorithm goes out of its way to make the tcp stream efficient in terms of packets. But that usually means introducing a small delay in sending the data thats been written to the socket hoping we can put more data into ghe next packet being sent.
The difference between the ldap and ldaps timings is probably to do with the different sizes of data being sent for the sponses when encrypted or not.
Normally nagels would be bypassed at the host by setting TCP_NODELAY on the socket... But i think the issue is that the full proxy nature of bigip re-enables that delay because it doesnt realise that nagels was disabled by the app in the first place...
H
Cirrus
