samba - Sep 2015 - BIND DLZ zone transfers

I am looking at: https://wiki.samba.org/index.php/DNS_administration

I am using bind 9.9 on all my DNS servers.

To set up secondarying my Samba DNS zones to my other Bind servers. I 
come across the following:

https://bugzilla.samba.org/show_bug.cgi?id=9634

Is it possible to transfer the DLZ zones now as dates on this bug are 2 
years old?

On 09/07/2015 12:52 PM, Robert Moskowitz wrote:
> I am looking at: https://wiki.samba.org/index.php/DNS_administration
>
> I am using bind 9.9 on all my DNS servers.
>
> To set up secondarying my Samba DNS zones to my other Bind servers. I 
> come across the following:
>
> https://bugzilla.samba.org/show_bug.cgi?id=9634
>
> Is it possible to transfer the DLZ zones now as dates on this bug are 
> 2 years old?
So I tried it anyway:

In my main DNS server:

         zone "home.htt" {
                 type slave;
                 file "slaves/bak.home.htt";
                 masters {192.168.192.2; };
         };

I reload and there I see:

Sep 07 14:00:05 valeria.htt-consult.com systemd[1]: Reloaded Berkeley 
Internet Name Domain (DNS).
Sep 07 14:00:05 valeria.htt-consult.com named[2195]: dns_master_load: 
file format mismatch
Sep 07 14:00:05 valeria.htt-consult.com named[2195]: zone 
home.htt/IN/internal: loading from master file slaves/bak.home.htt 
failed: not implemented
Sep 07 14:00:05 valeria.htt-consult.com named[2195]: all zones loaded
Sep 07 14:00:05 valeria.htt-consult.com named[2195]: running
Sep 07 14:00:05 valeria.htt-consult.com named[2195]: zone 
home.htt/IN/internal: Transfer started.
Sep 07 14:00:05 valeria.htt-consult.com named[2195]: transfer of 
'home.htt/IN/internal' from 192.168.192.2#53: connected using 
192.168.192.5#51888
Sep 07 14:00:05 valeria.htt-consult.com named[2195]: zone 
home.htt/IN/internal: transferred serial 3
Sep 07 14:00:05 valeria.htt-consult.com named[2195]: zone 
home.htt/IN/internal: transfer: could not set file modification time of 
'slaves/bak.home.htt': permission denied
Sep 07 14:00:05 valeria.htt-consult.com named[2195]: transfer of 
'home.htt/IN/internal' from 192.168.192.2#53: Transfer completed: 1 
messages, 23 records, 1000 bytes, 0.020 secs (50000 bytes/sec)

And over on homebase:

Sep  7 14:00:05 homebase named[1133]: client 192.168.192.5#51888 
(home.htt): transfer of 'home.htt/IN': AXFR started
Sep  7 14:00:05 homebase named[1133]: client 192.168.192.5#51888 
(home.htt): transfer of 'home.htt/IN': AXFR ended

But no file /var/named/slaves/bak.home.htt

And yet on my DNS server, I can resolve homebase.home.htt:

# dig homebase.home.htt

; <<>> DiG 9.9.4-RedHat-9.9.4-18.el7 <<>>
homebase.home.htt
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 55142
;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;homebase.home.htt.        IN    A

;; ANSWER SECTION:
homebase.home.htt.    900    IN    A    192.168.192.2

;; AUTHORITY SECTION:
home.htt.        900    IN    NS    homebase.home.htt.

;; Query time: 3 msec
;; SERVER: 192.168.192.5#53(192.168.192.5)
;; WHEN: Mon Sep 07 14:15:46 EDT 2015
;; MSG SIZE  rcvd: 76

Hello to everybody in the list.

I want to stop sharing the share named "My_Share" until the server is 
rebooted. I tried the following command, but it is not working:

         sudo smbcontrol smbd close-share My_Share

It is returning the following:

             Ignoring unknown parameter "use client drivers"
            WARNING: [printers] service MUST be printable!
            Ignoring unknown parameter "use client drivers"

also tried
       sudo smbcontrol smbd close-share 'My_Share'
       sudo smbcontrol smbd close-share "My_Share"

I will really appreciate any help. My server is Ubuntu 12.04LTS running 
Samba Version 3.6.3

Sincerely,

Carlos

Hi Robert,

yes it does work. But the DLZ bind will not notify any slaves, when the 
repository changes. This can be painful, especially for longer TTL values.

Regards,
  - lars.

Am 07.09.2015 um 20:16 schrieb Robert Moskowitz:
>
>
> On 09/07/2015 12:52 PM, Robert Moskowitz wrote:
>> I am looking at: https://wiki.samba.org/index.php/DNS_administration
>>
>> I am using bind 9.9 on all my DNS servers.
>>
>> To set up secondarying my Samba DNS zones to my other Bind servers. I
>> come across the following:
>>
>> https://bugzilla.samba.org/show_bug.cgi?id=9634
>>
>> Is it possible to transfer the DLZ zones now as dates on this bug are
>> 2 years old?
>
> So I tried it anyway:
>
> In my main DNS server:
>
>          zone "home.htt" {
>                  type slave;
>                  file "slaves/bak.home.htt";
>                  masters {192.168.192.2; };
>          };
>
> I reload and there I see:
>
> Sep 07 14:00:05 valeria.htt-consult.com systemd[1]: Reloaded Berkeley
> Internet Name Domain (DNS).
> Sep 07 14:00:05 valeria.htt-consult.com named[2195]: dns_master_load:
> file format mismatch
> Sep 07 14:00:05 valeria.htt-consult.com named[2195]: zone
> home.htt/IN/internal: loading from master file slaves/bak.home.htt
> failed: not implemented
> Sep 07 14:00:05 valeria.htt-consult.com named[2195]: all zones loaded
> Sep 07 14:00:05 valeria.htt-consult.com named[2195]: running
> Sep 07 14:00:05 valeria.htt-consult.com named[2195]: zone
> home.htt/IN/internal: Transfer started.
> Sep 07 14:00:05 valeria.htt-consult.com named[2195]: transfer of
> 'home.htt/IN/internal' from 192.168.192.2#53: connected using
> 192.168.192.5#51888
> Sep 07 14:00:05 valeria.htt-consult.com named[2195]: zone
> home.htt/IN/internal: transferred serial 3
> Sep 07 14:00:05 valeria.htt-consult.com named[2195]: zone
> home.htt/IN/internal: transfer: could not set file modification time of
> 'slaves/bak.home.htt': permission denied
> Sep 07 14:00:05 valeria.htt-consult.com named[2195]: transfer of
> 'home.htt/IN/internal' from 192.168.192.2#53: Transfer completed: 1
> messages, 23 records, 1000 bytes, 0.020 secs (50000 bytes/sec)
>
> And over on homebase:
>
> Sep  7 14:00:05 homebase named[1133]: client 192.168.192.5#51888
> (home.htt): transfer of 'home.htt/IN': AXFR started
> Sep  7 14:00:05 homebase named[1133]: client 192.168.192.5#51888
> (home.htt): transfer of 'home.htt/IN': AXFR ended
>
> But no file /var/named/slaves/bak.home.htt
>
> And yet on my DNS server, I can resolve homebase.home.htt:
>
> # dig homebase.home.htt
>
> ; <<>> DiG 9.9.4-RedHat-9.9.4-18.el7 <<>>
homebase.home.htt
> ;; global options: +cmd
> ;; Got answer:
> ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 55142
> ;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 1, ADDITIONAL: 1
>
> ;; OPT PSEUDOSECTION:
> ; EDNS: version: 0, flags:; udp: 4096
> ;; QUESTION SECTION:
> ;homebase.home.htt.        IN    A
>
> ;; ANSWER SECTION:
> homebase.home.htt.    900    IN    A    192.168.192.2
>
> ;; AUTHORITY SECTION:
> home.htt.        900    IN    NS    homebase.home.htt.
>
> ;; Query time: 3 msec
> ;; SERVER: 192.168.192.5#53(192.168.192.5)
> ;; WHEN: Mon Sep 07 14:15:46 EDT 2015
> ;; MSG SIZE  rcvd: 76
>
>
>

On Mon, Sep 7, 2015 at 12:30 PM, Carlos R. Pena Evertsz <
carlosrpevertsz at gmail.com> wrote:
> Hello to everybody in the list.
>
> I want to stop sharing the share named "My_Share" until the
server is
> rebooted.

Just add this to the share definition in smb.conf:

[My_Share]
available = no

-- 
Please update your records with my new email address.

Hai, 


I have my setup like this. 

Samba4 DC1. (bind9_dlz)		=> proxy1 (bind9 slave) 
				      => proxy2 (bind9 slave)
Samba4 DC2. (bind9_dlz)		+ backup config with slave bind settings, 
					  if dc1 is down. (a scripted setup) 
Dc1-2	Synced through samba AD. 

Pc's querie proxy 1 and proxy2. 
After adding or chaning a record, its synced within 5 min, have had any problems
with it.


Greetz, 

Louis



> -----Oorspronkelijk bericht-----
> Van: samba [mailto:samba-bounces at lists.samba.org] Namens Robert
Moskowitz
> Verzonden: maandag 7 september 2015 20:16
> Aan: samba at lists.samba.org
> Onderwerp: [Samba] Maybe working - Re: BIND DLZ zone transfers
> 
> 
> 
> On 09/07/2015 12:52 PM, Robert Moskowitz wrote:
> > I am looking at: https://wiki.samba.org/index.php/DNS_administration
> >
> > I am using bind 9.9 on all my DNS servers.
> >
> > To set up secondarying my Samba DNS zones to my other Bind servers. I
> > come across the following:
> >
> > https://bugzilla.samba.org/show_bug.cgi?id=9634
> >
> > Is it possible to transfer the DLZ zones now as dates on this bug are
> > 2 years old?
> 
> So I tried it anyway:
> 
> In my main DNS server:
> 
>          zone "home.htt" {
>                  type slave;
>                  file "slaves/bak.home.htt";
>                  masters {192.168.192.2; };
>          };
> 
> I reload and there I see:
> 
> Sep 07 14:00:05 valeria.htt-consult.com systemd[1]: Reloaded Berkeley
> Internet Name Domain (DNS).
> Sep 07 14:00:05 valeria.htt-consult.com named[2195]: dns_master_load:
> file format mismatch
> Sep 07 14:00:05 valeria.htt-consult.com named[2195]: zone
> home.htt/IN/internal: loading from master file slaves/bak.home.htt
> failed: not implemented
> Sep 07 14:00:05 valeria.htt-consult.com named[2195]: all zones loaded
> Sep 07 14:00:05 valeria.htt-consult.com named[2195]: running
> Sep 07 14:00:05 valeria.htt-consult.com named[2195]: zone
> home.htt/IN/internal: Transfer started.
> Sep 07 14:00:05 valeria.htt-consult.com named[2195]: transfer of
> 'home.htt/IN/internal' from 192.168.192.2#53: connected using
> 192.168.192.5#51888
> Sep 07 14:00:05 valeria.htt-consult.com named[2195]: zone
> home.htt/IN/internal: transferred serial 3
> Sep 07 14:00:05 valeria.htt-consult.com named[2195]: zone
> home.htt/IN/internal: transfer: could not set file modification time of
> 'slaves/bak.home.htt': permission denied
> Sep 07 14:00:05 valeria.htt-consult.com named[2195]: transfer of
> 'home.htt/IN/internal' from 192.168.192.2#53: Transfer completed: 1
> messages, 23 records, 1000 bytes, 0.020 secs (50000 bytes/sec)
> 
> And over on homebase:
> 
> Sep  7 14:00:05 homebase named[1133]: client 192.168.192.5#51888
> (home.htt): transfer of 'home.htt/IN': AXFR started
> Sep  7 14:00:05 homebase named[1133]: client 192.168.192.5#51888
> (home.htt): transfer of 'home.htt/IN': AXFR ended
> 
> But no file /var/named/slaves/bak.home.htt
> 
> And yet on my DNS server, I can resolve homebase.home.htt:
> 
> # dig homebase.home.htt
> 
> ; <<>> DiG 9.9.4-RedHat-9.9.4-18.el7 <<>>
homebase.home.htt
> ;; global options: +cmd
> ;; Got answer:
> ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 55142
> ;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 1, ADDITIONAL: 1
> 
> ;; OPT PSEUDOSECTION:
> ; EDNS: version: 0, flags:; udp: 4096
> ;; QUESTION SECTION:
> ;homebase.home.htt.        IN    A
> 
> ;; ANSWER SECTION:
> homebase.home.htt.    900    IN    A    192.168.192.2
> 
> ;; AUTHORITY SECTION:
> home.htt.        900    IN    NS    homebase.home.htt.
> 
> ;; Query time: 3 msec
> ;; SERVER: 192.168.192.5#53(192.168.192.5)
> ;; WHEN: Mon Sep 07 14:15:46 EDT 2015
> ;; MSG SIZE  rcvd: 76
> 
> 
> 
> --
> To unsubscribe from this list go to the following URL and read the
> instructions:  https://lists.samba.org/mailman/options/samba