Zhuchenko Valery
2018-Oct-30 06:05 UTC
[Samba] NS records for all DCs, verifying and creating a DC DNS records
Hi, all! There is no check of NS records in this document https://wiki.samba.org/index.php/Verifying_and_Creating_a_DC_DNS_Record For example, with two DCs at myzone $ host -t NS myzone dc1 (or dc2, or myzone) must return two records: myzone name server dc1.myzone. myzone name server dc2.myzone. $ host -t NS _msdcs.myzone dc1 (or dc2, or myzone) must return two records: _msdcs.myzone name server dc1.myzone. _msdcs.myzone name server dc2.myzone. Is it right? Or existence of these records is optional? Best regards, Valery
Rowland Penny
2018-Oct-30 08:26 UTC
[Samba] NS records for all DCs, verifying and creating a DC DNS records
On Tue, 30 Oct 2018 10:05:16 +0400 Zhuchenko Valery via samba <samba at lists.samba.org> wrote:> Hi, all! > > There is no check of NS records in this document > https://wiki.samba.org/index.php/Verifying_and_Creating_a_DC_DNS_Record > > For example, with two DCs at myzone > > $ host -t NS myzone dc1 (or dc2, or myzone) > must return two records: > > myzone name server dc1.myzone. > myzone name server dc2.myzone. > > $ host -t NS _msdcs.myzone dc1 (or dc2, or myzone) > must return two records: > > _msdcs.myzone name server dc1.myzone. > _msdcs.myzone name server dc2.myzone. > > Is it right? Or existence of these records is optional? > > Best regards, Valery >Quite correct, each DC running a dns server is authoritative for the dns domain, try this on each DC: host -t soa samdom.example.com It should return something like this: samdom.example.com has SOA record dc4.samdom.example.com. hostmaster.samdom.example.com. 2455 900 600 86400 3600 The only difference between the DC's should be the short hostname. Rowland