Prunk Dump
2018-Mar-12 17:13 UTC
[Samba] Workaround for bind9 reload bug : samba_dlz Ignoring duplicate zone
Hi samba team ! I'm face with a new problem on a new Samba PDC install (Debian 9). I don't know why, but systemd run multiples "rndc reconfig" commands during the init script. So the bind9 log file show : -> A successful start -> A failed reconfig (samba_dlz Ignoring duplicate zone) at each boot/reboot. So I need to restart bind9 each time manually. I created a wrapper script and moved rndc to rndc.ORIG to intercept the reload and reconfig commands. But I don't like this solution as rndc is a binary and moving it prevent security updates to be applied on it. Is there a way to make "rndc reload" and "rndc reconfig" working with samba ? Is someone have an idea whose service send these "rndc reconfig" command ? I can't find the origin. Thanks ! Baptiste.
Andrew Bartlett
2018-Mar-12 17:42 UTC
[Samba] Workaround for bind9 reload bug : samba_dlz Ignoring duplicate zone
On Mon, 2018-03-12 at 18:13 +0100, Prunk Dump via samba wrote:> Hi samba team ! > > I'm face with a new problem on a new Samba PDC install (Debian 9). > > I don't know why, but systemd run multiples "rndc reconfig" commands > during the init script. So the bind9 log file show : > -> A successful start > -> A failed reconfig (samba_dlz Ignoring duplicate zone) > at each boot/reboot. > > So I need to restart bind9 each time manually. I created a wrapper > script and moved rndc to rndc.ORIG to intercept the reload and > reconfig commands. But I don't like this solution as rndc is a binary > and moving it prevent security updates to be applied on it. > > Is there a way to make "rndc reload" and "rndc reconfig" working with samba ?A patch (I think from Univention) was posted I think, but no developer has had the time to understand the full implications and apply it. Sorry!> Is someone have an idea whose service send these "rndc reconfig" > command ? I can't find the origin.Perhaps the log rotation? Andrew Bartlett -- Andrew Bartlett http://samba.org/~abartlet/ Authentication Developer, Samba Team http://samba.org Samba Developer, Catalyst IT http://catalyst.net.nz/services/samba
Harry Jede
2018-Mar-12 18:26 UTC
[Samba] Workaround for bind9 reload bug : samba_dlz Ignoring duplicate zone
Am Montag, 12. März 2018, 18:13:09 CET schrieb Prunk Dump via samba:> Hi samba team ! > > I'm face with a new problem on a new Samba PDC install (Debian 9). > > I don't know why, but systemd run multiples "rndc reconfig" commands > during the init script. So the bind9 log file show : > -> A successful start > -> A failed reconfig (samba_dlz Ignoring duplicate zone) > at each boot/reboot. > > So I need to restart bind9 each time manually. I created a wrapper > script and moved rndc to rndc.ORIG to intercept the reload and > reconfig commands. But I don't like this solution as rndc is a binary > and moving it prevent security updates to be applied on it. > > Is there a way to make "rndc reload" and "rndc reconfig" working with > samba ?I believe this comes from /etc/init.d/bind9. Change this init script to avoid playing with rndc. comment the reload part: # reload|force-reload) # log_daemon_msg "Reloading domain name service..." "bind9" # if ! check_network; then # log_action_msg "no networks configured" # log_end_msg 1 # fi # # /usr/sbin/rndc reload >/dev/null && log_end_msg 0 || log_end_msg 1 # ;; switch reload to restart: restart|reload|force-reload) Yes, it is slower. Yes, it interrupts the bind service for a short time. So what. Boot error is gone.> Is someone have an idea whose service send these "rndc reconfig" > command ? I can't find the origin. > > Thanks ! > > Baptiste.-- Gruss Harry Jede
L.P.H. van Belle
2018-Mar-13 07:23 UTC
[Samba] Workaround for bind9 reload bug : samba_dlz Ignoring duplicate zone
Almost Harry... For debian Stretch. systemctl cat bind9 # /lib/systemd/system/bind9.service [Unit] Description=BIND Domain Name Server Documentation=man:named(8) After=network.target Wants=nss-lookup.target Before=nss-lookup.target [Service] EnvironmentFile=/etc/default/bind9 ExecStart=/usr/sbin/named -f $OPTIONS ExecReload=/usr/sbin/rndc reload ExecStop=/usr/sbin/rndc stop [Install] WantedBy=multi-user.target The correct workaround is edit, and add.. systemctl edit bind9 Add : [Service] ExecReload And done. Greetz, Louis> -----Oorspronkelijk bericht----- > Van: samba [mailto:samba-bounces at lists.samba.org] Namens > Harry Jede via samba > Verzonden: maandag 12 maart 2018 19:26 > Aan: samba at lists.samba.org; Prunk Dump > Onderwerp: Re: [Samba] Workaround for bind9 reload bug : > samba_dlz Ignoring duplicate zone > > Am Montag, 12. März 2018, 18:13:09 CET schrieb Prunk Dump via samba: > > Hi samba team ! > > > > I'm face with a new problem on a new Samba PDC install (Debian 9). > > > > I don't know why, but systemd run multiples "rndc reconfig" commands > > during the init script. So the bind9 log file show : > > -> A successful start > > -> A failed reconfig (samba_dlz Ignoring duplicate zone) > > at each boot/reboot. > > > > So I need to restart bind9 each time manually. I created a wrapper > > script and moved rndc to rndc.ORIG to intercept the reload and > > reconfig commands. But I don't like this solution as rndc > is a binary > > and moving it prevent security updates to be applied on it. > > > > Is there a way to make "rndc reload" and "rndc reconfig" > working with > > samba ? > I believe this comes from /etc/init.d/bind9. > Change this init script to avoid playing with rndc. > > comment the reload part: > # reload|force-reload) > # log_daemon_msg "Reloading domain name service..." "bind9" > # if ! check_network; then > # log_action_msg "no networks configured" > # log_end_msg 1 > # fi > # > # /usr/sbin/rndc reload >/dev/null && log_end_msg 0 || > log_end_msg 1 > # ;; > > switch reload to restart: > restart|reload|force-reload) > > Yes, it is slower. Yes, it interrupts the bind service for a > short time. > So what. Boot error is gone. > > > Is someone have an idea whose service send these "rndc reconfig" > > command ? I can't find the origin. > > > > Thanks ! > > > > Baptiste. > > > -- > > Gruss > Harry Jede > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/options/samba > >
L.P.H. van Belle
2018-Mar-13 07:25 UTC
[Samba] Workaround for bind9 reload bug : samba_dlz Ignoring duplicate zone
Hai Baptiste, -> A failed reconfig (samba_dlz Ignoring duplicate zone) at each boot/reboot. So increase the debuglevel in bind, and check which zone it is. or stop and start en check the syslog Also check if this line is disabled. ( named.conf.local ) //include "/etc/bind/zones.rfc1918"; Greetz, Louis> -----Oorspronkelijk bericht----- > Van: samba [mailto:samba-bounces at lists.samba.org] Namens > Prunk Dump via samba > Verzonden: maandag 12 maart 2018 18:13 > Aan: samba at lists.samba.org > Onderwerp: [Samba] Workaround for bind9 reload bug : > samba_dlz Ignoring duplicate zone > > Hi samba team ! > > I'm face with a new problem on a new Samba PDC install (Debian 9). > > I don't know why, but systemd run multiples "rndc reconfig" commands > during the init script. So the bind9 log file show : > -> A successful start > -> A failed reconfig (samba_dlz Ignoring duplicate zone) > at each boot/reboot. > > So I need to restart bind9 each time manually. I created a wrapper > script and moved rndc to rndc.ORIG to intercept the reload and > reconfig commands. But I don't like this solution as rndc is a binary > and moving it prevent security updates to be applied on it. > > Is there a way to make "rndc reload" and "rndc reconfig" > working with samba ? > > Is someone have an idea whose service send these "rndc reconfig" > command ? I can't find the origin. > > Thanks ! > > Baptiste. > > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/options/samba > >
L.P.H. van Belle
2018-Mar-13 09:24 UTC
[Samba] Workaround for bind9 reload bug : samba_dlz Ignoring duplicate zone
Ps, just noticed this one also. Adding this to named.conf.options and in the options { } section // Dont load empty zones, this can conflict with samba bind_dlz zones. empty-zones-enable no; Greetz, Louis> -----Oorspronkelijk bericht----- > Van: samba [mailto:samba-bounces at lists.samba.org] Namens > L.P.H. van Belle via samba > Verzonden: dinsdag 13 maart 2018 8:25 > Aan: samba at lists.samba.org > Onderwerp: Re: [Samba] Workaround for bind9 reload bug : > samba_dlz Ignoring duplicate zone > > Hai Baptiste, > > -> A failed reconfig (samba_dlz Ignoring duplicate zone) > at each boot/reboot. > > So increase the debuglevel in bind, and check which zone it is. > or stop and start en check the syslog > > Also check if this line is disabled. > ( named.conf.local ) > //include "/etc/bind/zones.rfc1918"; > > Greetz, > > Louis > > > -----Oorspronkelijk bericht----- > > Van: samba [mailto:samba-bounces at lists.samba.org] Namens > > Prunk Dump via samba > > Verzonden: maandag 12 maart 2018 18:13 > > Aan: samba at lists.samba.org > > Onderwerp: [Samba] Workaround for bind9 reload bug : > > samba_dlz Ignoring duplicate zone > > > > Hi samba team ! > > > > I'm face with a new problem on a new Samba PDC install (Debian 9). > > > > I don't know why, but systemd run multiples "rndc reconfig" commands > > during the init script. So the bind9 log file show : > > -> A successful start > > -> A failed reconfig (samba_dlz Ignoring duplicate zone) > > at each boot/reboot. > > > > So I need to restart bind9 each time manually. I created a wrapper > > script and moved rndc to rndc.ORIG to intercept the reload and > > reconfig commands. But I don't like this solution as rndc > is a binary > > and moving it prevent security updates to be applied on it. > > > > Is there a way to make "rndc reload" and "rndc reconfig" > > working with samba ? > > > > Is someone have an idea whose service send these "rndc reconfig" > > command ? I can't find the origin. > > > > Thanks ! > > > > Baptiste. > > > > -- > > To unsubscribe from this list go to the following URL and read the > > instructions: https://lists.samba.org/mailman/options/samba > > > > > > > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/options/samba > >
Kristján Valur Jónsson
2018-Mar-13 10:34 UTC
[Samba] Workaround for bind9 reload bug : samba_dlz Ignoring duplicate zone
Not sure if it addresses your question, but "rndc reload" is currently broken. I have posted a defect, and a patch but there is apparently no interest... https://bugzilla.samba.org/show_bug.cgi?id=13214 https://github.com/samba-team/samba/pull/124 On 12 March 2018 at 17:13, Prunk Dump via samba <samba at lists.samba.org> wrote:> Hi samba team ! > > I'm face with a new problem on a new Samba PDC install (Debian 9). > > I don't know why, but systemd run multiples "rndc reconfig" commands > during the init script. So the bind9 log file show : > -> A successful start > -> A failed reconfig (samba_dlz Ignoring duplicate zone) > at each boot/reboot. > > So I need to restart bind9 each time manually. I created a wrapper > script and moved rndc to rndc.ORIG to intercept the reload and > reconfig commands. But I don't like this solution as rndc is a binary > and moving it prevent security updates to be applied on it. > > Is there a way to make "rndc reload" and "rndc reconfig" working with > samba ? > > Is someone have an idea whose service send these "rndc reconfig" > command ? I can't find the origin. > > Thanks ! > > Baptiste. > > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/options/samba >-- Kv, Kristján Valur Jónsson, RVX
Prunk Dump
2018-Mar-13 10:51 UTC
[Samba] Workaround for bind9 reload bug : samba_dlz Ignoring duplicate zone
Hi Samba Team ! First thank you all for your help ! Here some clarification on the problem. -> The problem affect only my reverse zone "16.172.in-addr.arpa" created with Samba. After the install, the zone contain only the PDC reverse entry. So when bind9 in reloaded or reconfigured the "nslookup 172.16.0.30" command fail. When bind9 is restarted it works. -> Here the bind9 logs. We see a "rndc reconfig" command that make bind9 fail. (Full log in attachment). ------------------- starting BIND 9.10.3-P4-Debian <id:ebd72b3> -f -u bind ... Loading 'AD DNS Zone' using driver dlopen samba_dlz: started for DN DC=lan,DC=lyc-guillaume-fichet,DC=ac-grenoble,DC=fr samba_dlz: starting configure samba_dlz: configured writeable zone 'lan.lyc-guillaume-fichet.ac-grenoble.fr' samba_dlz: configured writeable zone '16.172.in-addr.arpa' samba_dlz: configured writeable zone '_msdcs.lan.lyc-guillaume-fichet.ac-grenoble.fr' automatic empty zone: 10.IN-ADDR.ARPA ... all zones loaded running received control channel command 'reconfig' ... Loading 'AD DNS Zone' using driver dlopen samba_dlz: starting configure samba_dlz: Ignoring duplicate zone 'lan.lyc-guillaume-fichet.ac-grenoble.fr' from 'DC=@,DC=lan.lyc-guillaume-fichet.ac-grenoble.fr,CN=MicrosoftDNS,DC=DomainDnsZones,DC=lan,DC=lyc-guillaume-fichet,DC=ac-grenoble,DC=fr' samba_dlz: Ignoring duplicate zone '16.172.in-addr.arpa' from 'DC=@,DC=16.172.in-addr.arpa,CN=MicrosoftDNS,DC=DomainDnsZones,DC=lan,DC=lyc-guillaume-fichet,DC=ac-grenoble,DC=fr' samba_dlz: Ignoring duplicate zone '_msdcs.lan.lyc-guillaume-fichet.ac-grenoble.fr' from 'DC=@,DC=_msdcs.lan.lyc-guillaume-fichet.ac-grenoble.fr,CN=MicrosoftDNS,DC=ForestDnsZones,DC=lan,DC=lyc-guillaume-fichet,DC=ac-grenoble,DC=fr' automatic empty zone: 10.IN-ADDR.ARPA ... zone 16.172.in-addr.arpa/NONE: (other) removed ... zone lan.lyc-guillaume-fichet.ac-grenoble.fr/NONE: (other) removed zone _msdcs.lan.lyc-guillaume-fichet.ac-grenoble.fr/NONE: (other) removed reloading configuration succeeded any newly configured zones are now loaded samba_dlz: shutting down ------------------- -> Using some wrapper script, I have found that this is systemd that send the "rndc reconfig" command. But impossible to find in witch script ( this is not systemd-networkd that is not started ). -------------------- root at fichdc01:~# grep -r 'reconfig' /etc/init.d/ /etc/init.d/isc-dhcp-server: echo "Run 'dpkg-reconfigure isc-dhcp-server' to fix the problem." root at fichdc01:~# grep -r 'reconfig' /lib/systemd/ Fichier binaire /lib/systemd/systemd-networkd correspondant -------------------- -> Adding the "empty-zones-enable no;" option make the zone working ! But I still have the same logs in bind9. And the "samba_dlz: shutting down" line ! I don't know if bind9 will work correctly. -------------------- received control channel command 'reconfig' ... Loading 'AD DNS Zone' using driver dlopen samba_dlz: starting configure samba_dlz: Ignoring duplicate zone 'lan.lyc-guillaume-fichet.ac-grenoble.fr' from 'DC=@,DC=lan.lyc-guillaume-fichet.ac-grenoble.fr,CN=Micr... samba_dlz: Ignoring duplicate zone '16.172.in-addr.arpa' from 'DC=@,DC=16.172.in-addr.arpa,CN=MicrosoftDNS,DC=DomainDnsZones,DC=lan,DC=lyc.. samba_dlz: Ignoring duplicate zone '_msdcs.lan.lyc-guillaume-fichet.ac-grenoble.fr' from 'DC=@,DC=_msdcs.lan.lyc-guillaume-fichet.ac-greno.. ... Mar 13 11:23:49 fichdc01 named[463]: zone 16.172.in-addr.arpa/NONE: (other) removed Mar 13 11:23:49 fichdc01 named[463]: zone lan.lyc-guillaume-fichet.ac-grenoble.fr/NONE: (other) removed Mar 13 11:23:49 fichdc01 named[463]: zone _msdcs.lan.lyc-guillaume-fichet.ac-grenoble.fr/NONE: (other) removed Mar 13 11:23:49 fichdc01 named[463]: reloading configuration succeeded Mar 13 11:23:49 fichdc01 named[463]: any newly configured zones are now loaded Mar 13 11:23:49 fichdc01 named[463]: samba_dlz: shutting down -------------------- Thank again ! Baptiste.
L.P.H. van Belle
2018-Mar-13 11:19 UTC
[Samba] Workaround for bind9 reload bug : samba_dlz Ignoring duplicate zone
Hai Baptiste, You missed my first message but here it is again. . systemctl cat bind9 # /lib/systemd/system/bind9.service [Unit] Description=BIND Domain Name Server Documentation=man:named(8) After=network.target Wants=nss-lookup.target Before=nss-lookup.target [Service] EnvironmentFile=/etc/default/bind9 ExecStart=/usr/sbin/named -f $OPTIONS ExecReload=/usr/sbin/rndc reload ExecStop=/usr/sbin/rndc stop [Install] WantedBy=multi-user.target The correct workaround is edit, and add things in systemd. systemctl edit bind9 Add : [Service] ExecReload Save, type : systemctl restart bind9 The result is saved in : /etc/systemd/system/bind9.service.d/override.conf (optional, if you dont use the edit command) systemctl daemon-reload systemctl restart bind9 Greetz, Louis> -----Oorspronkelijk bericht----- > Van: samba [mailto:samba-bounces at lists.samba.org] Namens > Prunk Dump via samba > Verzonden: dinsdag 13 maart 2018 11:51 > Aan: samba at lists.samba.org > Onderwerp: Re: [Samba] Workaround for bind9 reload bug : > samba_dlz Ignoring duplicate zone > > Hi Samba Team ! > > First thank you all for your help ! > > Here some clarification on the problem. > > -> The problem affect only my reverse zone "16.172.in-addr.arpa" > created with Samba. After the install, the zone contain only the PDC > reverse entry. So when bind9 in reloaded or reconfigured the "nslookup > 172.16.0.30" command fail. When bind9 is restarted it works. > > -> Here the bind9 logs. We see a "rndc reconfig" command that make > bind9 fail. (Full log in attachment). > > ------------------- > starting BIND 9.10.3-P4-Debian <id:ebd72b3> -f -u bind > ... > Loading 'AD DNS Zone' using driver dlopen > samba_dlz: started for DN > DC=lan,DC=lyc-guillaume-fichet,DC=ac-grenoble,DC=fr > samba_dlz: starting configure > samba_dlz: configured writeable zone > 'lan.lyc-guillaume-fichet.ac-grenoble.fr' > samba_dlz: configured writeable zone '16.172.in-addr.arpa' > samba_dlz: configured writeable zone > '_msdcs.lan.lyc-guillaume-fichet.ac-grenoble.fr' > automatic empty zone: 10.IN-ADDR.ARPA > ... > all zones loaded > running > received control channel command 'reconfig' > ... > Loading 'AD DNS Zone' using driver dlopen > samba_dlz: starting configure > samba_dlz: Ignoring duplicate zone > 'lan.lyc-guillaume-fichet.ac-grenoble.fr' from > 'DC=@,DC=lan.lyc-guillaume-fichet.ac-grenoble.fr,CN=MicrosoftDNS,DC=DomainDnsZones,DC=lan,DC=lyc-guillaume-fichet,DC=ac-> grenoble,DC=fr'> samba_dlz: Ignoring duplicate zone '16.172.in-addr.arpa' from > 'DC=@,DC=16.172.in-addr.arpa,CN=MicrosoftDNS,DC=DomainDnsZones,DC=lan,DC=lyc-guillaume-fichet,DC=ac-grenoble,DC=fr'> samba_dlz: Ignoring duplicate zone > '_msdcs.lan.lyc-guillaume-fichet.ac-grenoble.fr' from > 'DC=@,DC=_msdcs.lan.lyc-guillaume-fichet.ac-grenoble.fr,CN=MicrosoftDNS,DC=ForestDnsZones,DC=lan,DC=lyc-guillaume-fichet,DC=ac-> grenoble,DC=fr'> automatic empty zone: 10.IN-ADDR.ARPA > ... > zone 16.172.in-addr.arpa/NONE: (other) removed > ... > zone lan.lyc-guillaume-fichet.ac-grenoble.fr/NONE: (other) removed > zone _msdcs.lan.lyc-guillaume-fichet.ac-grenoble.fr/NONE: > (other) removed > reloading configuration succeeded > any newly configured zones are now loaded > samba_dlz: shutting down > ------------------- > > -> Using some wrapper script, I have found that this is systemd that > send the "rndc reconfig" command. But impossible to find in witch > script ( this is not systemd-networkd that is not started ). > > -------------------- > root at fichdc01:~# grep -r 'reconfig' /etc/init.d/ > /etc/init.d/isc-dhcp-server: echo "Run 'dpkg-reconfigure > isc-dhcp-server' to fix the problem." > root at fichdc01:~# grep -r 'reconfig' /lib/systemd/ > Fichier binaire /lib/systemd/systemd-networkd correspondant > -------------------- > > -> Adding the "empty-zones-enable no;" option make the zone working ! > But I still have the same logs in bind9. And the "samba_dlz: shutting > down" line ! I don't know if bind9 will work correctly. > > -------------------- > received control channel command 'reconfig' > ... > Loading 'AD DNS Zone' using driver dlopen > samba_dlz: starting configure > samba_dlz: Ignoring duplicate zone > 'lan.lyc-guillaume-fichet.ac-grenoble.fr' from > 'DC=@,DC=lan.lyc-guillaume-fichet.ac-grenoble.fr,CN=Micr... > samba_dlz: Ignoring duplicate zone '16.172.in-addr.arpa' from > 'DC=@,DC=16.172.in-addr.arpa,CN=MicrosoftDNS,DC=DomainDnsZones,DC=lan,DC=lyc..> samba_dlz: Ignoring duplicate zone > '_msdcs.lan.lyc-guillaume-fichet.ac-grenoble.fr' from > 'DC=@,DC=_msdcs.lan.lyc-guillaume-fichet.ac-greno.. > ... > Mar 13 11:23:49 fichdc01 named[463]: zone 16.172.in-addr.arpa/NONE: > (other) removed > Mar 13 11:23:49 fichdc01 named[463]: zone > lan.lyc-guillaume-fichet.ac-grenoble.fr/NONE: (other) removed > Mar 13 11:23:49 fichdc01 named[463]: zone > _msdcs.lan.lyc-guillaume-fichet.ac-grenoble.fr/NONE: (other) removed > Mar 13 11:23:49 fichdc01 named[463]: reloading configuration succeeded > Mar 13 11:23:49 fichdc01 named[463]: any newly configured > zones are now loaded > Mar 13 11:23:49 fichdc01 named[463]: samba_dlz: shutting down > -------------------- > > Thank again ! > > Baptiste. > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/options/samba > >
L.P.H. van Belle
2018-Mar-13 12:08 UTC
[Samba] Workaround for bind9 reload bug : samba_dlz Ignoring duplicate zone
> -----Oorspronkelijk bericht----- > Van: samba [mailto:samba-bounces at lists.samba.org] Namens > Prunk Dump via samba > Verzonden: dinsdag 13 maart 2018 11:51 > Aan: samba at lists.samba.org > Onderwerp: Re: [Samba] Workaround for bind9 reload bug : > samba_dlz Ignoring duplicate zone > > Hi Samba Team ! > > First thank you all for your help ! > > Here some clarification on the problem. > > -> The problem affect only my reverse zone "16.172.in-addr.arpa" > created with Samba. After the install, the zone contain only the PDC > reverse entry. So when bind9 in reloaded or reconfigured the "nslookup > 172.16.0.30" command fail. When bind9 is restarted it works. > > -> Here the bind9 logs. We see a "rndc reconfig" command that make > bind9 fail. (Full log in attachment). > > ------------------- > starting BIND 9.10.3-P4-Debian <id:ebd72b3> -f -u bind > ... > Loading 'AD DNS Zone' using driver dlopen > samba_dlz: started for DN > DC=lan,DC=lyc-guillaume-fichet,DC=ac-grenoble,DC=fr > samba_dlz: starting configure > samba_dlz: configured writeable zone > 'lan.lyc-guillaume-fichet.ac-grenoble.fr' > samba_dlz: configured writeable zone '16.172.in-addr.arpa' > samba_dlz: configured writeable zone > '_msdcs.lan.lyc-guillaume-fichet.ac-grenoble.fr' > automatic empty zone: 10.IN-ADDR.ARPA > ... > all zones loaded > running > received control channel command 'reconfig' > ... > Loading 'AD DNS Zone' using driver dlopen > samba_dlz: starting configure > samba_dlz: Ignoring duplicate zone > 'lan.lyc-guillaume-fichet.ac-grenoble.fr' from > 'DC=@,DC=lan.lyc-guillaume-fichet.ac-grenoble.fr,CN=MicrosoftDNS,DC=DomainDnsZones,DC=lan,DC=lyc-guillaume-fichet,DC=ac-> grenoble,DC=fr'> samba_dlz: Ignoring duplicate zone '16.172.in-addr.arpa' from > 'DC=@,DC=16.172.in-addr.arpa,CN=MicrosoftDNS,DC=DomainDnsZones,DC=lan,DC=lyc-guillaume-fichet,DC=ac-grenoble,DC=fr'> samba_dlz: Ignoring duplicate zone > '_msdcs.lan.lyc-guillaume-fichet.ac-grenoble.fr' from > 'DC=@,DC=_msdcs.lan.lyc-guillaume-fichet.ac-grenoble.fr,CN=MicrosoftDNS,DC=ForestDnsZones,DC=lan,DC=lyc-guillaume-fichet,DC=ac-> grenoble,DC=fr'> automatic empty zone: 10.IN-ADDR.ARPA > ... > zone 16.172.in-addr.arpa/NONE: (other) removed > ... > zone lan.lyc-guillaume-fichet.ac-grenoble.fr/NONE: (other) removed > zone _msdcs.lan.lyc-guillaume-fichet.ac-grenoble.fr/NONE: > (other) removed > reloading configuration succeeded > any newly configured zones are now loaded > samba_dlz: shutting down > ------------------- > > -> Using some wrapper script, I have found that this is systemd that > send the "rndc reconfig" command. But impossible to find in witch > script ( this is not systemd-networkd that is not started ). > > -------------------- > root at fichdc01:~# grep -r 'reconfig' /etc/init.d/ > /etc/init.d/isc-dhcp-server: echo "Run 'dpkg-reconfigure > isc-dhcp-server' to fix the problem." > root at fichdc01:~# grep -r 'reconfig' /lib/systemd/ > Fichier binaire /lib/systemd/systemd-networkd correspondant > -------------------- > > -> Adding the "empty-zones-enable no;" option make the zone working ! > But I still have the same logs in bind9. And the "samba_dlz: shutting > down" line ! I don't know if bind9 will work correctly. > > -------------------- > received control channel command 'reconfig' > ... > Loading 'AD DNS Zone' using driver dlopen > samba_dlz: starting configure > samba_dlz: Ignoring duplicate zone > 'lan.lyc-guillaume-fichet.ac-grenoble.fr' from > 'DC=@,DC=lan.lyc-guillaume-fichet.ac-grenoble.fr,CN=Micr... > samba_dlz: Ignoring duplicate zone '16.172.in-addr.arpa' from > 'DC=@,DC=16.172.in-addr.arpa,CN=MicrosoftDNS,DC=DomainDnsZones,DC=lan,DC=lyc..> samba_dlz: Ignoring duplicate zone > '_msdcs.lan.lyc-guillaume-fichet.ac-grenoble.fr' from > 'DC=@,DC=_msdcs.lan.lyc-guillaume-fichet.ac-greno.. > ... > Mar 13 11:23:49 fichdc01 named[463]: zone 16.172.in-addr.arpa/NONE: > (other) removed > Mar 13 11:23:49 fichdc01 named[463]: zone > lan.lyc-guillaume-fichet.ac-grenoble.fr/NONE: (other) removed > Mar 13 11:23:49 fichdc01 named[463]: zone > _msdcs.lan.lyc-guillaume-fichet.ac-grenoble.fr/NONE: (other) removed > Mar 13 11:23:49 fichdc01 named[463]: reloading configuration succeeded > Mar 13 11:23:49 fichdc01 named[463]: any newly configured > zones are now loaded > Mar 13 11:23:49 fichdc01 named[463]: samba_dlz: shutting down > -------------------- > > Thank again ! > > Baptiste. > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/options/samba > >Ok, as far i know, only 2 point with reload commands. ( and rndc thaw also does a reload ) rgrep rndc /lib/systemd/* | grep reload /lib/systemd/system/bind9-pkcs11.service:ExecReload=/usr/sbin/rndc reload /lib/systemd/system/bind9.service:ExecReload=/usr/sbin/rndc reload rgrep rndc /etc/* | grep reload /etc/init.d/bind9: /usr/sbin/rndc reload >/dev/null && log_end_msg 0 || log_end_msg You already changed the systemd settings you could change the init script also. Just copy past the restart part into the reload part. Are you using dhcp also on the dc's ? ddns update might be a cause here. Greetz, Louis
Maybe Matching Threads
- Workaround for bind9 reload bug : samba_dlz Ignoring duplicate zone
- DRS stopped working after upgrade from debian Jessie to Stretch
- DRS stopped working after upgrade from debian Jessie to Stretch
- DRS stopped working after upgrade from debian Jessie to Stretch
- Existing DNS zone and Samba4 DLZ