Re: [Samba] Samba4 how to get a reverse dlz zone

2012-04-07 Thread steve 

On 03/04/12 02:10, Amitay Isaacs wrote:

On Tue, Apr 3, 2012 at 3:27 AM, stevest...@steve-ss.com  wrote:




You can use samba-tool dns commands to create a reverse zone.

To create a reverse zone for 192.168.1.0/24 subnet,

$ samba-tool dns zonecreateserver  1.168.192.in-addr.arpa

And then you can add record (e.g. test1.my.domain -  192.168.1.1)

$ samba-tool dns addserver  1.168.192.in-addr.arpa 1 PTR test1.my.domain

Amitay.


Hi Amitay

s4 seemed to create the forward zone by itself. We added the reverse 
zone as you mentioned. Our win 7 clients inject the forward zone with 
their details automatically by DHCP.


For our Linux clients authenticating against s4, we had to use fixed IP.

This is with bind9. Could you take a look at this for us?

hh1:/home/steve # samba-tool dns add 192.168.1.2 hh3.site hh10.hh3.site 
A 192.168.1.10

Password for [administra...@hh3.site]:
Record added successfully

hh1:/home/steve # samba-tool dns add 192.168.1.2 1.168.192.in-addr.arpa 
11 PTR hh11.hh3.site

Password for [administra...@hh3.site]:
Record added successfully

hh1:/home/steve # host hh10.hh3.site
hh10.hh3.site has address 192.168.1.10

hh1:/home/steve # host 192.168.1.10
10.1.168.192.in-addr.arpa domain name pointer hh10.hh3.site.

It seems to be working. Is this the correct way of proceeding?

Cheers,
Steve
--
To unsubscribe from this list go to the following URL and read the
instructions:  https://lists.samba.org/mailman/options/samba

Re: [Samba] Samba4 how to get a reverse dlz zone

2012-04-07 Thread steve 


Sorry.
That should have read:


hh1:/home/steve # samba-tool dns add 192.168.1.2 1.168.192.in-addr.arpa
10 PTR hh10.hh3.site
Password for [administra...@hh3.site]:
Record added successfully


Got carried away with the names-
Cheers,
Steve
--
To unsubscribe from this list go to the following URL and read the
instructions:  https://lists.samba.org/mailman/options/samba

Re: [Samba] Samba4 how to get a reverse dlz zone

2012-04-03 Thread Kai Blin 
On 2012-04-03 06:45, steve wrote:

 Thanks. That's good news. But for that to work, I would need to 
 have a fixed IP for each client no?

No idea about the BIND stuff, but in principle if there's a reverse
zone in DNS, the windows clients will try to update that when updating
their forward entry. Sans TKEY/TSIG, I've seen this working just fine
with the internal DNS. I see no reason why it shouldn't work with BIND.

Cheers,
Kai

-- 
Kai Blin
Worldforge developer http://www.worldforge.org/
Wine developer http://wiki.winehq.org/KaiBlin
Samba team member http://www.samba.org/samba/team/
-- 
To unsubscribe from this list go to the following URL and read the
instructions:  https://lists.samba.org/mailman/options/samba

Re: [Samba] Samba4 how to get a reverse dlz zone

2012-04-03 Thread Konstantin Pobudzey 
Hello
It worked for me. I did exactly same as for forward zone.
###
ls -l /var/named/dynamic


-rw-r--r-- 1 named named  619 Mar 28 22:52 168.192.in-addr.arpa.zone
-rw-r--r-- 1 named named 2174 Mar 28 22:39 168.192.in-addr.arpa.zone.jnl




# The reverse zone configuration is optional.  The following example assumes a
# subnet of 192.168.123.0/24:


zone 168.192.in-addr.arpa in {
type master;
file dynamic/168.192.in-addr.arpa.zone;
check-names ignore;

update-policy {

grant *.INC wildcard *.9.168.192.in-addr.arpa. PTR;
grant *.INC wildcard *.1.168.192.in-addr.arpa. PTR;
};
};

#


- Original Message -
From: Kai Blin k...@samba.org
To: steve st...@steve-ss.com
Cc: samba@lists.samba.org
Sent: Tuesday, April 3, 2012 5:13:47 AM
Subject: Re: [Samba] Samba4 how to get a reverse dlz zone

On 2012-04-03 06:45, steve wrote:

 Thanks. That's good news. But for that to work, I would need to 
 have a fixed IP for each client no?

No idea about the BIND stuff, but in principle if there's a reverse
zone in DNS, the windows clients will try to update that when updating
their forward entry. Sans TKEY/TSIG, I've seen this working just fine
with the internal DNS. I see no reason why it shouldn't work with BIND.

Cheers,
Kai

-- 
Kai Blin
Worldforge developer http://www.worldforge.org/
Wine developer http://wiki.winehq.org/KaiBlin
Samba team member http://www.samba.org/samba/team/
-- 
To unsubscribe from this list go to the following URL and read the
instructions:  https://lists.samba.org/mailman/options/samba
-- 
To unsubscribe from this list go to the following URL and read the
instructions:  https://lists.samba.org/mailman/options/samba

Re: [Samba] Samba4 how to get a reverse dlz zone

2012-04-03 Thread Kai Blin 
On 2012-04-03 11:41, Konstantin Pobudzey wrote:

Hi Konstantin,

 It worked for me. I did exactly same as for forward zone.

But that's using the flat-file backend, not the DLZ AD-based backend,
right?

Cheers,
Kai

-- 
Kai Blin
Worldforge developer http://www.worldforge.org/
Wine developer http://wiki.winehq.org/KaiBlin
Samba team member http://www.samba.org/samba/team/
-- 
To unsubscribe from this list go to the following URL and read the
instructions:  https://lists.samba.org/mailman/options/samba

Re: [Samba] Samba4 how to get a reverse dlz zone

2012-04-03 Thread steve 

On 03/04/12 11:13, Kai Blin wrote:

On 2012-04-03 06:45, steve wrote:


Thanks. That's good news. But for that to work, I would need to
have a fixed IP for each client no?


No idea about the BIND stuff, but in principle if there's a reverse
zone in DNS, the windows clients will try to update that when updating
their forward entry. Sans TKEY/TSIG, I've seen this working just fine
with the internal DNS. I see no reason why it shouldn't work with BIND.

Cheers,
Kai


Hi Kai
I want the reverse lookup for my Linux clients. As far as I can see, the 
only way I can get the reverse lookup working is to use static IP. I 
want my Linux clients using DHCP as do the windows clients. Can it be 
done? Is it easier if I switch to SAMBA_INTERNAL perhaps?


I just want a reverse lookup in the same way that forward lookup and 
update works for windows.


Cheers,
Steve
--
To unsubscribe from this list go to the following URL and read the
instructions:  https://lists.samba.org/mailman/options/samba

Re: [Samba] Samba4 how to get a reverse dlz zone

2012-04-03 Thread Kai Blin 
On 2012-04-03 14:04, steve wrote:

 I want the reverse lookup for my Linux clients. As far as I can
 see, the only way I can get the reverse lookup working is to use
 static IP. I want my Linux clients using DHCP as do the windows
 clients. Can it be done? Is it easier if I switch to SAMBA_INTERNAL
 perhaps?

What I'm saying is that it should make no difference if you run the
BIND DLZ or the internal server. No idea what DHCP client you're
using, and how that does DNS updates. If your DHCP client is able to
do GSS-TSIG updates against windows, it should be able to do the same
against Samba4. If the DHCP client can't update, you'll have to figure
out how to fix the client side of things.

 I just want a reverse lookup in the same way that forward lookup
 and update works for windows.

And I'm saying that it should work the same way, from the server side
of things.

Cheers,
Kai

-- 
Kai Blin
Worldforge developer http://www.worldforge.org/
Wine developer http://wiki.winehq.org/KaiBlin
Samba team member http://www.samba.org/samba/team/
-- 
To unsubscribe from this list go to the following URL and read the
instructions:  https://lists.samba.org/mailman/options/samba

[Samba] Samba4 how to get a reverse dlz zone

2012-04-02 Thread steve 

Hi
I have s4 with bind9 working fine. I see that it sets up a forward zone 
without using zone files (is that the dlz bit?)


Is it possible to get it to produce a reverse zone?

Thanks,
Steve pp lcb
--
To unsubscribe from this list go to the following URL and read the
instructions:  https://lists.samba.org/mailman/options/samba

Re: [Samba] Samba4 how to get a reverse dlz zone

2012-04-02 Thread steve 

El 02/04/12 18:12, fe...@epepm.cupet.cu escribió:

Hi
I have s4 with bind9 working fine. I see that it sets up a forward zone
without using zone files (is that the dlz bit?)

Is it possible to get it to produce a reverse zone?



Well, it's possible.
I have done it using the DNS mmc console from Windows.

Best regards,
Felix.

Hi
I'm not very good with windows. Is there a equivalent for Linux?
Cheers,
Steve
--
To unsubscribe from this list go to the following URL and read the
instructions:  https://lists.samba.org/mailman/options/samba

Re: [Samba] Samba4 how to get a reverse dlz zone

2012-04-02 Thread steve 

El 02/04/12 18:22, fe...@epepm.cupet.cu escribió:

El 02/04/12 18:12, fe...@epepm.cupet.cu escribió:

Hi
I have s4 with bind9 working fine. I see that it sets up a forward zone
without using zone files (is that the dlz bit?)

Is it possible to get it to produce a reverse zone?



Well, it's possible.
I have done it using the DNS mmc console from Windows.

Best regards,
Felix.

Hi
I'm not very good with windows. Is there a equivalent for Linux?
Cheers,
Steve


I don't know. It might be possible with samba-tool.

Cheers,
Felix


OK, thanks.
Anyone?
Steve
--
To unsubscribe from this list go to the following URL and read the
instructions:  https://lists.samba.org/mailman/options/samba

Re: [Samba] Samba4 how to get a reverse dlz zone

2012-04-02 Thread Amitay Isaacs 
On Tue, Apr 3, 2012 at 3:27 AM, steve st...@steve-ss.com wrote:
 El 02/04/12 18:22, fe...@epepm.cupet.cu escribió:

 El 02/04/12 18:12, fe...@epepm.cupet.cu escribió:

 Hi
 I have s4 with bind9 working fine. I see that it sets up a forward zone
 without using zone files (is that the dlz bit?)

 Is it possible to get it to produce a reverse zone?


 Well, it's possible.
 I have done it using the DNS mmc console from Windows.

 Best regards,
 Felix.

 Hi
 I'm not very good with windows. Is there a equivalent for Linux?
 Cheers,
 Steve


 I don't know. It might be possible with samba-tool.

 Cheers,
 Felix


 OK, thanks.
 Anyone?

 Steve

You can use samba-tool dns commands to create a reverse zone.

To create a reverse zone for 192.168.1.0/24 subnet,

$ samba-tool dns zonecreate server 1.168.192.in-addr.arpa

And then you can add record (e.g. test1.my.domain - 192.168.1.1)

$ samba-tool dns add server 1.168.192.in-addr.arpa 1 PTR test1.my.domain

Amitay.
-- 
To unsubscribe from this list go to the following URL and read the
instructions:  https://lists.samba.org/mailman/options/samba

Re: [Samba] Samba4 how to get a reverse dlz zone

2012-04-02 Thread steve 

El 03/04/12 02:10, Amitay Isaacs escribió:

On Tue, Apr 3, 2012 at 3:27 AM, stevest...@steve-ss.com  wrote:

El 02/04/12 18:22, fe...@epepm.cupet.cu escribió:


El 02/04/12 18:12, fe...@epepm.cupet.cu escribió:






OK, thanks.
Anyone?

Steve


You can use samba-tool dns commands to create a reverse zone.

To create a reverse zone for 192.168.1.0/24 subnet,

$ samba-tool dns zonecreateserver  1.168.192.in-addr.arpa

And then you can add record (e.g. test1.my.domain -  192.168.1.1)

$ samba-tool dns addserver  1.168.192.in-addr.arpa 1 PTR test1.my.domain

Amitay.



Thanks. That's good news. But for that to work, I would need to have a 
fixed IP for each client no?


The s4 provision produces a bind include for the forward zone and a tsig 
keytab for ddns on it. Is it possible to do the same for the reverse zone?


BTW, I only need this for Linux clients using Kerberized nfs. Win7 
clients don't seem to need it for anything.

Thanks,
Steve
--
To unsubscribe from this list go to the following URL and read the
instructions:  https://lists.samba.org/mailman/options/samba