Adam Abramson
2024-Oct-10 12:11 UTC
[Samba] Problem with a domain controller that is located in a separate site
it seems like I reduced the replication period to 15 minutes between sites and everything was successful, all connections appeared, I will test this behavior by creating another samba-based domain controller in a separate site On Thu, Oct 10, 2024 at 2:13?PM Adam Abramson <abramsona30 at gmail.com> wrote:> no, I did not try to run samba_k?c because there is no samba at the moment > in this structure, I wanted to see how it would work in windows, but for > some reason it does not work as I expect, ntds-connections did not appear > from all sides and this is strange, I also tried to run repadmin /kcc > Maybe I just don't understand something? > > On Thu, Oct 10, 2024 at 2:06?PM Christian Naumer via samba < > samba at lists.samba.org> wrote: > >> Have you tried running "samba_kcc"? Just this command and nothing else. >> For me it did create the topology. >> >> Regards >> >> Christian >> >> >> Am 10.10.24 um 12:48 schrieb Adam Abramson via samba: >> > thanks for the video provided, I watched it, I didn't understand >> > something very well, but still, as I understand it, >> > in order for the sites to start communicating with each other, >> > a linked site link is needed, and also if there is >> > only one dc on the site, we tell him to act as breadgehead, which I >> > did in the screenshots below, but this did not affect the creation of >> > ntdsconnections, but as I understand it, replication somehow functions >> > anyway, maybe there are some guesses why ntds connection is not being >> > created? >> > win2019-1 sites and services >> > https://ibb.co/QMbFy4J >> > https://ibb.co/7n28sZP >> > https://ibb.co/gM2BC8r >> > https://ibb.co/S3nfWfz >> > https://ibb.co/dgMJs1h >> > win2019-2 sites and services >> > https://ibb.co/BngP67j >> > https://ibb.co/FDRCxgB >> > >> > I am observing a discrepancy in the data >> > >> > On Thu, Oct 10, 2024 at 1:24?PM Adam Abramson <abramsona30 at gmail.com> >> wrote: >> > >> >> thanks for the video provided, I watched it, I didn't understand >> >> something very well, but still, as I understand it, in order for the >> sites >> >> to start communicating with each other, a linked site link is needed, >> and >> >> also if there is only one dc on the site, we tell him to act as >> >> breadgehead, which I did in the screenshots below, but this did not >> affect >> >> the creation of ntdsconnections, but as I understand it, replication >> >> somehow functions anyway, maybe there are some guesses why ntds >> connection >> >> is not being created? >> >> >> >> On Thu, Oct 10, 2024 at 12:04?PM Kees van Vloten via samba < >> >> samba at lists.samba.org> wrote: >> >> >> >>> >> >>> On 10-10-2024 10:35, Adam Abramson via samba wrote: >> >>>> it turns out that the main thing that is needed for replication is >> the >> >>>> created connections? And everything else is already samba magic? I >> just >> >>>> tried the same trick on the windows side and it seems like after some >> >>> time >> >>>> this attribute was still filled in, but I may be wrong, it turns out >> >>> that >> >>>> this is the norm for samba and should not interfere with full >> >>> functioning? >> >>> >> >>> This video from SambaXP 2024 explains how stuff gets replicated: >> >>> https://www.youtube.com/watch?v=k2YIGSDkjOE >> >>> >> >>> - Kees. >> >>>> >> >>>> On Thu, Oct 10, 2024 at 11:20?AM Rowland Penny via samba < >> >>>> samba at lists.samba.org> wrote: >> >>>> >> >>>>> On Wed, 9 Oct 2024 19:58:46 +0300 >> >>>>> Adam Abramson <abramsona30 at gmail.com> wrote: >> >>>>> >> >>>>>> And how does replication occur if repsTo is not filled, does it >> turn >> >>>>>> out that replication from a local DC should not occur to a remote >> DC >> >>>>>> in another site, or am I not thinking about this quite correctly? >> >>>>>> >> >>>>> It is my understanding that replication does not rely on the repsTo >> >>>>> attribute, there is deeper underlying code that carries this out, >> but >> >>>>> if repsTo is set, then the DC will always replicate everything to >> the >> >>>>> DC (which will be a local DC in its 'site') in that attribute >> before >> >>>>> all others. >> >>>>> >> >>>>> Or I could just say it is magic ;-) >> >>>>> >> >>>>> Rowland >> >>>>> >> >>>>> >> >>>>> -- >> >>>>> To unsubscribe from this list go to the following URL and read the >> >>>>> instructions: https://lists.samba.org/mailman/options/samba >> >>>>> >> >>> >> >>> -- >> >>> To unsubscribe from this list go to the following URL and read the >> >>> instructions: https://lists.samba.org/mailman/options/samba >> >>> >> >> >> >> >> -- >> To unsubscribe from this list go to the following URL and read the >> instructions: https://lists.samba.org/mailman/options/samba >> >
Adam Abramson
2024-Oct-10 13:56 UTC
[Samba] Problem with a domain controller that is located in a separate site
I was running samba 4.21 as a domain controller and now I see this situation , I have empty outbound neighbors, but if you look from the windows side, then this is the difference between windows controllers and samba, for some reason the repsTo attribute is not filled, for example, the configuration context, although windows controllers have both attributes fully filled, although they are the same there are some on the site, I also attach screenshots https://ibb.co/kyMDMpR https://ibb.co/CKL5BL9 https://ibb.co/fM4B3BV https://ibb.co/Pr9JhXG are there any thoughts on this? On Thu, Oct 10, 2024 at 3:11?PM Adam Abramson <abramsona30 at gmail.com> wrote:> it seems like I reduced the replication period to 15 minutes between sites > and everything was successful, all connections appeared, I will test this > behavior by creating another samba-based domain controller in a separate > site > > On Thu, Oct 10, 2024 at 2:13?PM Adam Abramson <abramsona30 at gmail.com> > wrote: > >> no, I did not try to run samba_k?c because there is no samba at the >> moment in this structure, I wanted to see how it would work in windows, but >> for some reason it does not work as I expect, ntds-connections did not >> appear from all sides and this is strange, I also tried to run repadmin /kcc >> Maybe I just don't understand something? >> >> On Thu, Oct 10, 2024 at 2:06?PM Christian Naumer via samba < >> samba at lists.samba.org> wrote: >> >>> Have you tried running "samba_kcc"? Just this command and nothing else. >>> For me it did create the topology. >>> >>> Regards >>> >>> Christian >>> >>> >>> Am 10.10.24 um 12:48 schrieb Adam Abramson via samba: >>> > thanks for the video provided, I watched it, I didn't understand >>> > something very well, but still, as I understand it, >>> > in order for the sites to start communicating with each other, >>> > a linked site link is needed, and also if there is >>> > only one dc on the site, we tell him to act as breadgehead, which I >>> > did in the screenshots below, but this did not affect the creation of >>> > ntdsconnections, but as I understand it, replication somehow functions >>> > anyway, maybe there are some guesses why ntds connection is not being >>> > created? >>> > win2019-1 sites and services >>> > https://ibb.co/QMbFy4J >>> > https://ibb.co/7n28sZP >>> > https://ibb.co/gM2BC8r >>> > https://ibb.co/S3nfWfz >>> > https://ibb.co/dgMJs1h >>> > win2019-2 sites and services >>> > https://ibb.co/BngP67j >>> > https://ibb.co/FDRCxgB >>> > >>> > I am observing a discrepancy in the data >>> > >>> > On Thu, Oct 10, 2024 at 1:24?PM Adam Abramson <abramsona30 at gmail.com> >>> wrote: >>> > >>> >> thanks for the video provided, I watched it, I didn't understand >>> >> something very well, but still, as I understand it, in order for the >>> sites >>> >> to start communicating with each other, a linked site link is needed, >>> and >>> >> also if there is only one dc on the site, we tell him to act as >>> >> breadgehead, which I did in the screenshots below, but this did not >>> affect >>> >> the creation of ntdsconnections, but as I understand it, replication >>> >> somehow functions anyway, maybe there are some guesses why ntds >>> connection >>> >> is not being created? >>> >> >>> >> On Thu, Oct 10, 2024 at 12:04?PM Kees van Vloten via samba < >>> >> samba at lists.samba.org> wrote: >>> >> >>> >>> >>> >>> On 10-10-2024 10:35, Adam Abramson via samba wrote: >>> >>>> it turns out that the main thing that is needed for replication is >>> the >>> >>>> created connections? And everything else is already samba magic? I >>> just >>> >>>> tried the same trick on the windows side and it seems like after >>> some >>> >>> time >>> >>>> this attribute was still filled in, but I may be wrong, it turns out >>> >>> that >>> >>>> this is the norm for samba and should not interfere with full >>> >>> functioning? >>> >>> >>> >>> This video from SambaXP 2024 explains how stuff gets replicated: >>> >>> https://www.youtube.com/watch?v=k2YIGSDkjOE >>> >>> >>> >>> - Kees. >>> >>>> >>> >>>> On Thu, Oct 10, 2024 at 11:20?AM Rowland Penny via samba < >>> >>>> samba at lists.samba.org> wrote: >>> >>>> >>> >>>>> On Wed, 9 Oct 2024 19:58:46 +0300 >>> >>>>> Adam Abramson <abramsona30 at gmail.com> wrote: >>> >>>>> >>> >>>>>> And how does replication occur if repsTo is not filled, does it >>> turn >>> >>>>>> out that replication from a local DC should not occur to a remote >>> DC >>> >>>>>> in another site, or am I not thinking about this quite correctly? >>> >>>>>> >>> >>>>> It is my understanding that replication does not rely on the repsTo >>> >>>>> attribute, there is deeper underlying code that carries this out, >>> but >>> >>>>> if repsTo is set, then the DC will always replicate everything to >>> the >>> >>>>> DC (which will be a local DC in its 'site') in that attribute >>> before >>> >>>>> all others. >>> >>>>> >>> >>>>> Or I could just say it is magic ;-) >>> >>>>> >>> >>>>> Rowland >>> >>>>> >>> >>>>> >>> >>>>> -- >>> >>>>> To unsubscribe from this list go to the following URL and read the >>> >>>>> instructions: https://lists.samba.org/mailman/options/samba >>> >>>>> >>> >>> >>> >>> -- >>> >>> To unsubscribe from this list go to the following URL and read the >>> >>> instructions: https://lists.samba.org/mailman/options/samba >>> >>> >>> >> >>> >>> >>> -- >>> To unsubscribe from this list go to the following URL and read the >>> instructions: https://lists.samba.org/mailman/options/samba >>> >>
Maybe Matching Threads
- Problem with a domain controller that is located in a separate site
- Problem with a domain controller that is located in a separate site
- Problem with a domain controller that is located in a separate site
- Problem with a domain controller that is located in a separate site
- Problem with a domain controller that is located in a separate site