[Samba] DNS issue with second samba DC
I have samba4 installed on two systems: ncssamba1 and ncssamba2. ncssamba1 is the PDC, ncssamba2 was joined to the domain using the instructions here: http://wiki.samba.org/index.php/Samba4/HOWTO/Join_a_domain_as_a_DC I had to manually add the DNS information as mentioned on that page. I can add a user and the user is replicated. However, I have some issues with DNS resolving hostnames. Specifically, on the PDC, $ nslookup ncsfs1 Server: 10.179.2.25 Address: 10.179.2.25#53 Name: ncsfs1.ncs.k12.de.us Address: 10.179.2.6 But the same system is not found on the second DC $ nslookup ncsfs1 Server: 10.179.2.24 Address: 10.179.2.24#53 Non-authoritative answer: *** Can't find ncsfs1: No answer resolv.conf is identical between the two systems. /usr/local/samba/etc/smb.conf is likewise the same (except for netbios name) [global] workgroup = NEWARKCHARTER realm = ncs.k12.de.us netbios name = NCSSAMBA1 server role = active directory domain controller idmap_ldb:use rfc2307 = yes dns forwarder=10.1.1.10 allow dns updates=nonsecure and secure [netlogon] path = /usr/local/samba/var/locks/sysvol/ncs.k12.de.us/scripts read only = No [sysvol] path = /usr/local/samba/var/locks/sysvol read only = No A second DNS issue is that I have other systems that are multihomed (e.g. 10.179.2.13 and 192.168.0.254). Allowing the updates means that the 192.168.0.254 gets added to DNS which I do not want to happen. I want the dns updates only for the 10.179 addresses. Can this be done? Finally, I have to relocate the second DC to a new IP address (10.186.2.25/19) at a remote site. I found instructions here: https://lists.samba.org/archive/samba-technical/2013-May/092260.html But I assume I will need to manually create the reverse lookup zone? Sincerely, Dave Hopkins -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] DNS issue with second samba DC
Quick update: If I add domain ncs.k12.de.us to /etc/resolv.conf on the second DC, names resolve. However, I don't need this entry on the PDC. Sincerely, Dave Hopkins - Original Message - From: dahopk...@comcast.net To: samba samba@lists.samba.org Sent: Friday, August 2, 2013 3:57:28 PM Subject: [Samba] DNS issue with second samba DC I have samba4 installed on two systems: ncssamba1 and ncssamba2. ncssamba1 is the PDC, ncssamba2 was joined to the domain using the instructions here: http://wiki.samba.org/index.php/Samba4/HOWTO/Join_a_domain_as_a_DC I had to manually add the DNS information as mentioned on that page. I can add a user and the user is replicated. However, I have some issues with DNS resolving hostnames. Specifically, on the PDC, $ nslookup ncsfs1 Server: 10.179.2.25 Address: 10.179.2.25#53 Name: ncsfs1.ncs.k12.de.us Address: 10.179.2.6 But the same system is not found on the second DC $ nslookup ncsfs1 Server: 10.179.2.24 Address: 10.179.2.24#53 Non-authoritative answer: *** Can't find ncsfs1: No answer resolv.conf is identical between the two systems. /usr/local/samba/etc/smb.conf is likewise the same (except for netbios name) [global] workgroup = NEWARKCHARTER realm = ncs.k12.de.us netbios name = NCSSAMBA1 server role = active directory domain controller idmap_ldb:use rfc2307 = yes dns forwarder=10.1.1.10 allow dns updates=nonsecure and secure [netlogon] path = /usr/local/samba/var/locks/sysvol/ncs.k12.de.us/scripts read only = No [sysvol] path = /usr/local/samba/var/locks/sysvol read only = No A second DNS issue is that I have other systems that are multihomed (e.g. 10.179.2.13 and 192.168.0.254). Allowing the updates means that the 192.168.0.254 gets added to DNS which I do not want to happen. I want the dns updates only for the 10.179 addresses. Can this be done? Finally, I have to relocate the second DC to a new IP address (10.186.2.25/19) at a remote site. I found instructions here: https://lists.samba.org/archive/samba-technical/2013-May/092260.html But I assume I will need to manually create the reverse lookup zone? Sincerely, Dave Hopkins -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] DNS issue.
Does your DNS server allow client machines to update? I can't speak for Samba 4 but I would with Windows 200x DC's it was simpler to temporarily allow DNS updates while adding a DC. On 06/26/12 23:59, Pradeep Pal wrote: Hi All; Can any one help me, i am facing DNS related issue. this is my configuration. Centos 6.2 32bit OS samba4beta3 bind-9.8.3-P1 First i configure samba4 as a domain controller. then i configure other machine as a Additional domain controller, with samba4. but when i run this command it give errors. /usr/local/samba/bin/samba-tool drs showrepl Default-First-Site-Name\PDC DSA Options: 0x0001 DSA object GUID: 56003cd3-d15b-4825-915f-37b9e2952f2a DSA invocationId: ec8a9ed7-ce1a-449e-8321-97c715375445 INBOUND NEIGHBORS DC=DomainDnsZones,DC=abc,DC=com Default-First-Site-Name\BDC via RPC DSA object GUID: adf1d7c5-4e92-400f-9bfb-17986c6d20a2 Last attempt @ Wed Jun 27 08:51:47 2012 IST failed, result 2 (WERR_BADFILE) 216 consecutive failure(s). Last success @ NTTIME(0) DC=ForestDnsZones,DC=abc,DC=com Default-First-Site-Name\BDC via RPC DSA object GUID: adf1d7c5-4e92-400f-9bfb-17986c6d20a2 Last attempt @ Wed Jun 27 08:51:47 2012 IST failed, result 2 (WERR_BADFILE) 216 consecutive failure(s). Last success @ NTTIME(0) DC=abc,DC=com Default-First-Site-Name\BDC via RPC DSA object GUID: adf1d7c5-4e92-400f-9bfb-17986c6d20a2 Last attempt @ Wed Jun 27 08:51:47 2012 IST failed, result 2 (WERR_BADFILE) 216 consecutive failure(s). Last success @ NTTIME(0) CN=Schema,CN=Configuration,DC=abc,DC=com Default-First-Site-Name\BDC via RPC DSA object GUID: adf1d7c5-4e92-400f-9bfb-17986c6d20a2 Last attempt @ Wed Jun 27 08:51:48 2012 IST failed, result 2 (WERR_BADFILE) 216 consecutive failure(s). Last success @ NTTIME(0) CN=Configuration,DC=abc,DC=com Default-First-Site-Name\BDC via RPC DSA object GUID: adf1d7c5-4e92-400f-9bfb-17986c6d20a2 Last attempt @ Wed Jun 27 08:51:48 2012 IST failed, result 2 (WERR_BADFILE) 216 consecutive failure(s). Last success @ NTTIME(0) OUTBOUND NEIGHBORS DC=DomainDnsZones,DC=abc,DC=com Default-First-Site-Name\BDC via RPC DSA object GUID: adf1d7c5-4e92-400f-9bfb-17986c6d20a2 Last attempt @ Wed Jun 27 08:54:11 2012 IST failed, result 2 (WERR_BADFILE) 4 consecutive failure(s). Last success @ NTTIME(0) DC=ForestDnsZones,DC=abc,DC=com Default-First-Site-Name\BDC via RPC DSA object GUID: adf1d7c5-4e92-400f-9bfb-17986c6d20a2 Last attempt @ Wed Jun 27 08:54:12 2012 IST failed, result 2 (WERR_BADFILE) 4 consecutive failure(s). Last success @ NTTIME(0) DC=abc,DC=com Default-First-Site-Name\BDC via RPC DSA object GUID: adf1d7c5-4e92-400f-9bfb-17986c6d20a2 Last attempt @ Wed Jun 27 08:54:12 2012 IST failed, result 2 (WERR_BADFILE) 4 consecutive failure(s). Last success @ NTTIME(0) CN=Schema,CN=Configuration,DC=abc,DC=com Default-First-Site-Name\BDC via RPC DSA object GUID: adf1d7c5-4e92-400f-9bfb-17986c6d20a2 Last attempt @ Wed Jun 27 08:54:12 2012 IST failed, result 2 (WERR_BADFILE) 4 consecutive failure(s). Last success @ NTTIME(0) CN=Configuration,DC=abc,DC=com Default-First-Site-Name\BDC via RPC DSA object GUID: adf1d7c5-4e92-400f-9bfb-17986c6d20a2 Last attempt @ Wed Jun 27 08:54:12 2012 IST failed, result 2 (WERR_BADFILE) 4 consecutive failure(s). Last success @ NTTIME(0) KCC CONNECTION OBJECTS Connection -- Connection name: 251b24ae-5b5c-454a-834a-c2b3d7dc3f6f Enabled: TRUE Server DNS name : pdc.abc.com Server DN name : CN=NTDS Settings,CN=BDC,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=abc,DC=com TransportType: RPC options: 0x0001 Warning: No NC replicated for Connection! but when i add its numeric id in DNS _msdcs.abc.com with additional domain controller name it works but after, this i getting new error please help me to resolved this issue. /source4/dsdb/dns/dns_update.c:294: Failed DNS update - NT_STATUS_NOT_SAME_DEVICE this error show in additional domain controller log file... Regards Pradeep Pal -- To unsubscribe from this list go to the following URL and read the instructions:
[Samba] DNS issue.
Hi All; Can any one help me, i am facing DNS related issue. this is my configuration. Centos 6.2 32bit OS samba4beta3 bind-9.8.3-P1 First i configure samba4 as a domain controller. then i configure other machine as a Additional domain controller, with samba4. but when i run this command it give errors. /usr/local/samba/bin/samba-tool drs showrepl Default-First-Site-Name\PDC DSA Options: 0x0001 DSA object GUID: 56003cd3-d15b-4825-915f-37b9e2952f2a DSA invocationId: ec8a9ed7-ce1a-449e-8321-97c715375445 INBOUND NEIGHBORS DC=DomainDnsZones,DC=abc,DC=com Default-First-Site-Name\BDC via RPC DSA object GUID: adf1d7c5-4e92-400f-9bfb-17986c6d20a2 Last attempt @ Wed Jun 27 08:51:47 2012 IST failed, result 2 (WERR_BADFILE) 216 consecutive failure(s). Last success @ NTTIME(0) DC=ForestDnsZones,DC=abc,DC=com Default-First-Site-Name\BDC via RPC DSA object GUID: adf1d7c5-4e92-400f-9bfb-17986c6d20a2 Last attempt @ Wed Jun 27 08:51:47 2012 IST failed, result 2 (WERR_BADFILE) 216 consecutive failure(s). Last success @ NTTIME(0) DC=abc,DC=com Default-First-Site-Name\BDC via RPC DSA object GUID: adf1d7c5-4e92-400f-9bfb-17986c6d20a2 Last attempt @ Wed Jun 27 08:51:47 2012 IST failed, result 2 (WERR_BADFILE) 216 consecutive failure(s). Last success @ NTTIME(0) CN=Schema,CN=Configuration,DC=abc,DC=com Default-First-Site-Name\BDC via RPC DSA object GUID: adf1d7c5-4e92-400f-9bfb-17986c6d20a2 Last attempt @ Wed Jun 27 08:51:48 2012 IST failed, result 2 (WERR_BADFILE) 216 consecutive failure(s). Last success @ NTTIME(0) CN=Configuration,DC=abc,DC=com Default-First-Site-Name\BDC via RPC DSA object GUID: adf1d7c5-4e92-400f-9bfb-17986c6d20a2 Last attempt @ Wed Jun 27 08:51:48 2012 IST failed, result 2 (WERR_BADFILE) 216 consecutive failure(s). Last success @ NTTIME(0) OUTBOUND NEIGHBORS DC=DomainDnsZones,DC=abc,DC=com Default-First-Site-Name\BDC via RPC DSA object GUID: adf1d7c5-4e92-400f-9bfb-17986c6d20a2 Last attempt @ Wed Jun 27 08:54:11 2012 IST failed, result 2 (WERR_BADFILE) 4 consecutive failure(s). Last success @ NTTIME(0) DC=ForestDnsZones,DC=abc,DC=com Default-First-Site-Name\BDC via RPC DSA object GUID: adf1d7c5-4e92-400f-9bfb-17986c6d20a2 Last attempt @ Wed Jun 27 08:54:12 2012 IST failed, result 2 (WERR_BADFILE) 4 consecutive failure(s). Last success @ NTTIME(0) DC=abc,DC=com Default-First-Site-Name\BDC via RPC DSA object GUID: adf1d7c5-4e92-400f-9bfb-17986c6d20a2 Last attempt @ Wed Jun 27 08:54:12 2012 IST failed, result 2 (WERR_BADFILE) 4 consecutive failure(s). Last success @ NTTIME(0) CN=Schema,CN=Configuration,DC=abc,DC=com Default-First-Site-Name\BDC via RPC DSA object GUID: adf1d7c5-4e92-400f-9bfb-17986c6d20a2 Last attempt @ Wed Jun 27 08:54:12 2012 IST failed, result 2 (WERR_BADFILE) 4 consecutive failure(s). Last success @ NTTIME(0) CN=Configuration,DC=abc,DC=com Default-First-Site-Name\BDC via RPC DSA object GUID: adf1d7c5-4e92-400f-9bfb-17986c6d20a2 Last attempt @ Wed Jun 27 08:54:12 2012 IST failed, result 2 (WERR_BADFILE) 4 consecutive failure(s). Last success @ NTTIME(0) KCC CONNECTION OBJECTS Connection -- Connection name: 251b24ae-5b5c-454a-834a-c2b3d7dc3f6f Enabled: TRUE Server DNS name : pdc.abc.com Server DN name : CN=NTDS Settings,CN=BDC,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=abc,DC=com TransportType: RPC options: 0x0001 Warning: No NC replicated for Connection! but when i add its numeric id in DNS _msdcs.abc.com with additional domain controller name it works but after, this i getting new error please help me to resolved this issue. /source4/dsdb/dns/dns_update.c:294: Failed DNS update - NT_STATUS_NOT_SAME_DEVICE this error show in additional domain controller log file... Regards Pradeep Pal -- Thanks Regards Pradeep Pal -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
