On Thu, 31 May 2018 09:42:50 +0000 Paul Littlefield via samba <samba at lists.samba.org> wrote:> On 29/05/18 12:55, Paul Littlefield via samba wrote: > > Hello List, > > > > I have successfully migrated my DCs to 4.7.6-Ubuntu > > > > However, I still have some traces of the old DCs in the DNS... > > > > $ samba-tool dns query dc3 mydomain.com @ ALL > > Name=, Records=8, Children=0 > > SOA: serial=570, refresh=900, retry=600, expire=86400, > > minttl=0, ns=dc3.mydomain.com. NS: samba.mydomain.com. > > (flags=600000f0, serial=110, ttl=900) NS: dc3.mydomain.com. > > (flags=600000f0, serial=110, ttl=900) NS: dc4.mydomain.com. > > (flags=600000f0, serial=110, ttl=900) A: 192.168.0.208 > > (flags=600000f0, serial=110, ttl=900) A: 192.168.0.209 > > (flags=600000f0, serial=110, ttl=900) A: 192.168.0.218 > > (flags=600000f0, serial=110, ttl=900) A: 192.168.0.219 > > (flags=600000f0, serial=110, ttl=900) Name=_msdcs, Records=0, > > Children=0 Name=_sites, Records=0, Children=1 > > Name=_tcp, Records=0, Children=4 > > Name=_udp, Records=0, Children=2 > > > > > > ...so 'samba', '192.168.0.208' and '192.168.0.209' are now gone. > > > > How do I remove all entries in the DNS for these? > > > > I can use 'samba-tool' or the RSAT gui. > > > > Thanks in advance. > > > > Regards, > > > > > Hello List, > > Sorry to repost this, but could do with an answer. > > Many thanks, > > :-) >Well, you could have run this on a DC: samba-tool dns --help and from the output, you could have thought about running this: samba-tool dns delete --help Which would have got you this: Usage: samba-tool dns delete <server> <zone> <name> <A|AAAA|PTR|CNAME|NS|MX|SRV|TXT> <data> So using your data: samba-tool dns delete 127.0.0.1 mydomain.com @ A 192.168.0.208 Rowland
On 31/05/18 11:14, Rowland Penny via samba wrote:> samba-tool dns delete 127.0.0.1 mydomain.com @ A 192.168.0.208Thanks Rowland, I thought it would be that, but as this is a production server and very important domain wanted to double check with the experts before I go removing something I shouldn't. ;-) -- Paul Littlefield Telephone: 07801 125705 Email: info at paully.co.uk Wiki: http://wiki.indie-it.com/wiki/Special:AllPages LinkedIn: https://uk.linkedin.com/in/paullittlefield Paul Littlefield is environmentally responsible. Please consider the environment before printing this email. This email and any attachment is intended for the named addressee only, or person authorised to receive it on their behalf. The content should be treated as confidential and the recipient may not disclose this message or any attachment to anyone else without authorisation. If this transmission is received in error please notify the sender immediately and delete this message from your email system. All electronic transmissions to and from me are recorded and may be monitored. Finally, the recipient should check this email and any attachments for viruses. Paul Littlefield accepts no liability for any damage caused by any virus transmitted by this email. Ubuntu 18.04 LTS (x86_64)
On Thu, 2018-05-31 at 11:14 +0100, Rowland Penny via samba wrote:> > Well, you could have run this on a DC: > > samba-tool dns --help > > and from the output, you could have thought about running this: > > samba-tool dns delete --help > > Which would have got you this: > > Usage: samba-tool dns delete <server> <zone> <name> <A|AAAA|PTR|CNAME|NS|MX|SRV|TXT> <data> > > So using your data: > > samba-tool dns delete 127.0.0.1 mydomain.com @ A 192.168.0.208 > > RowlandAnd in master for Samba 4.9 there is a new command 'samba-tool dns cleanup' that will help with this. So there is also an easier option in the long term. Plus we will make the online demote clean up the extra records. Andrew Bartlett -- Andrew Bartlett http://samba.org/~abartlet/ Authentication Developer, Samba Team http://samba.org Samba Developer, Catalyst IT http://catalyst.net.nz/services/samba
On 31/05/18 18:44, Andrew Bartlett via samba wrote:> And in master for Samba 4.9 there is a new command 'samba-tool dns > cleanup' that will help with this. > > So there is also an easier option in the long term. Plus we will make > the online demote clean up the extra records.Wow, thanks Andrew. :-) -- Paul Littlefield
On 31/05/18 18:44, Andrew Bartlett via samba wrote:> So there is also an easier option in the long term. Plus we will make > the online demote clean up the extra records.That would be great, because I've just cleaned up about 40 entries using the Windows DNS Manager gui tool! I also learnt a lot about adding extra NS and PTR records using this gui tool (mydomain.com and _msdcs.mydomain.com), which would be nice to be able to do using 'samba-tool'. I have rebooted both DCs and tested logins and DNS. Everything is now definitely quicker without those old DCs in the DNS and AD. I can now perform the same cleanup on the live production network this weekend. Thanks, :) -- Paul Littlefield
Maybe Matching Threads
- Remove Redundant DCs internal DNS
- Failover DC did not work when Main DC failed
- DNS /16 reverse zone issues with children and octets
- Delete second IP address from aipServerAddrs and aipListenAddrs DC
- Delete second IP address from aipServerAddrs and aipListenAddrs DC