Re: AW: [Samba] Samba server in a failover environment
On Thu, 13 Feb 2003, Alexander Skwar wrote: Oktay Akbal wrote: shared-storage or nfs (however this is made redundant in his case). Both servers would then have the same tdbs. Hm, this would mean he'd need to introduce a third server which holds the shared storage. And to have this server be secured, he should have a fourth server which is a clone of the third server. I don't think this is a good idea... If I remember the original posting right, he already uses samba-failover to re-export nfs from a third-server. In his case this should not be wrong. But generally you are right. But I don't see, why you should sync the tdbs, when you do not have redundant storage. Making Samba HA without the data on the shares is a bit mysterious to me. Oktay Akbal -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
AW: [Samba] Samba server in a failover environment
On Thu, 13 Feb 2003, Oktay Akbal wrote: On Wed, 12 Feb 2003, Hsu, Cheng (Consultant) wrote: But my experiment shows that I MUST explicitly join the NT domain in order for everything to work. Just a guess: Make sure that the server do not only have the same smb.conf, but also the same SID (MACHINE.SID or whatever setup of samba you use) This will not be enough in the long run... The SID is what identifies the machine all right. But on join your the machine registers a (random) password with the DC. Now if you join the second server with the same name/SID the DC will update the password to the 2nd machine's idea of what it should be and the 1st machine can't log into the domain any more :-( And it is worse... You could probably (r)sync smb.conf, MACHINE.SID plus the domain password (secrets.tdb?) between the two servers and things would work for a while. But you need to do this on a regular basis as the password is updated to a new random password every now and then (default once a week?) and the secondary server would be out of sync. Just as an suggestion to the samba team ... a hook like machine pwd update script = sync_secrets.sh in smb.conf would come in handy. Hope I was of any help Uli -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: AW: [Samba] Samba server in a failover environment
And it is worse... You could probably (r)sync smb.conf, MACHINE.SID plus the domain password (secrets.tdb?) between the two servers and things would work for a while. But you need to do this on a regular basis as the password is updated to a new random password every now and then (default once a week?) and the secondary server would be out of sync. Well, this sounds like he should have the samba-environment lying on shared-storage or nfs (however this is made redundant in his case). Both servers would then have the same tdbs. Oktay Akbal -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: AW: [Samba] Samba server in a failover environment
Oktay Akbal wrote: shared-storage or nfs (however this is made redundant in his case). Both servers would then have the same tdbs. Hm, this would mean he'd need to introduce a third server which holds the shared storage. And to have this server be secured, he should have a fourth server which is a clone of the third server. I don't think this is a good idea... Better rsync the tdb's quite often. Like once an hour, since those files aren't that big. Futher, if he'd use rsync, the sync would go very fast, as the files (probably) don't change all that much. Alexander Skwar -- How to quote: http://learn.to/quote (german) http://quote.6x.to (en) Homepage: http://www.iso-top.biz | Jabber: [EMAIL PROTECTED] iso-top.biz - Die günstige Art an Linux Distributionen zu kommen -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba