samba - Apr 2005 - Aliased interface/multi-smb on one machine + security = DOMAIN model

Hello all,
 
    Have a little trouble here. I've got a single machine with multiple
instances of smb running attached to different services (for use with RedHat
HA). Each instances is bound to it's own aliased IP using the machine's
primary interface (eth0). I issue the `smbpasswd -j DOMAIN -r IP -c
/etc/samba/smb.conf.Apache -U admin%pass` and `smbpasswd -j DOMAIN -r IP -c
/etc/samba/smb.conf.FTP -U admin%pass`, however only the last config that I
joined the domain with works, the first keeps prompting me for a password.
Also neither of these instances register themselves with the WINS server, we
had to manually enter a static entry, this is not a problem with the same
configs (all same IP's) in the security = SERVER model.
 
    I'm running smb 2.2.12 on RedHat AS 2.1. Below are the config files, any
help would be greatly appreciated.....
 
 
/etc/samba/smb.conf.Apache
-------------------------------------------------------------------------
[global]
workgroup = PDCSERVER
lock directory = /var/cache/samba/Apache
pid directory = /var/cache/samba/Apache
bind interfaces only = yes
interfaces = 10.254.100.150
server string = Xisle Cluster Samba Server (Fear the Penguin)
debug level = 1
security = DOMAIN
password server = 192.192.192.130
domain master = no
local master = no
log file = /var/log/samba/log.%m
max log size = 100
name resolve order = wins lmhosts bcast
socket options = TCP_NODELAY
dns proxy = No
netbios name = smb-test-1
socket address = 10.254.100.150
wins server = 192.192.192.238
hosts allow = 192.192.192. 172.16. 192.168. 127.
guest account = nobody
encrypt passwords = yes
domain logons = no
------------------------------------------------------------------------- 
 
 
/etc/samba/smb.conf.FTP 
-------------------------------------------------------------------------
[global]
workgroup = PDCSERVER
lock directory = /var/cache/samba/FTP
pid directory = /var/cache/samba/FTP
bind interfaces only = yes
interfaces = 10.254.100.151
server string = Xisle Cluster Samba Server (Fear the Penguin)
debug level = 1
security = DOMAIN
password server = 192.192.192.130
domain master = no
local master = no
log file = /var/log/samba/log.%m
max log size = 100
name resolve order = wins lmhosts bcast
socket options = TCP_NODELAY
dns proxy = No
netbios name = smb-test-2
socket address = 10.254.100.151
wins server = 192.192.192.238
hosts allow = 192.192.192. 172.16. 192.168. 127.
guest account = nobody
encrypt passwords = yes
domain logons = no
-------------------------------------------------------------------------

 
 
Thanks for any help!
Chris Rutledge 
crutledge@tgic.com <mailto:crutledge@tgic.com>  

 
 

The information contained in this email and any attachments may be privileged
and/or confidential and protected from disclosure.  It is intended solely for
the use of the recipient(s) to whom it is addressed, or an employee or agent
responsible for delivering this message to the intended recipient(s).  You are
hereby notified that any dissemination, distribution, copying or other use of
this communication is strictly prohibited.  If you have received this
communication in error, please notify the sender by reply email and delete this
email and all attachments from your system.  Thank you.

After thinking about it, I ran a quick test and discovered that during the
smbpasswd domain registration it uses the machines primary IP, not the alias
per the config file...how do I tell smbpasswd to use a different IP when
registering?

- Chris

-----Original Message-----
From: samba-bounces+crutledge=tgic.com@lists.samba.org
[mailto:samba-bounces+crutledge=tgic.com@lists.samba.org]On Behalf Of
Chris Rutledge
Sent: Friday, April 01, 2005 2:25 PM
To: samba@lists.samba.org
Subject: [Samba] Aliased interface/multi-smb on one machine + security DOMAIN
model


Hello all,
 
    Have a little trouble here. I've got a single machine with multiple
instances of smb running attached to different services (for use with RedHat
HA). Each instances is bound to it's own aliased IP using the machine's
primary interface (eth0). I issue the `smbpasswd -j DOMAIN -r IP -c
/etc/samba/smb.conf.Apache -U admin%pass` and `smbpasswd -j DOMAIN -r IP -c
/etc/samba/smb.conf.FTP -U admin%pass`, however only the last config that I
joined the domain with works, the first keeps prompting me for a password.
Also neither of these instances register themselves with the WINS server, we
had to manually enter a static entry, this is not a problem with the same
configs (all same IP's) in the security = SERVER model.
 
    I'm running smb 2.2.12 on RedHat AS 2.1. Below are the config files, any
help would be greatly appreciated.....
 
 
/etc/samba/smb.conf.Apache
-------------------------------------------------------------------------
[global]
workgroup = PDCSERVER
lock directory = /var/cache/samba/Apache
pid directory = /var/cache/samba/Apache
bind interfaces only = yes
interfaces = 10.254.100.150
server string = Xisle Cluster Samba Server (Fear the Penguin)
debug level = 1
security = DOMAIN
password server = 192.192.192.130
domain master = no
local master = no
log file = /var/log/samba/log.%m
max log size = 100
name resolve order = wins lmhosts bcast
socket options = TCP_NODELAY
dns proxy = No
netbios name = smb-test-1
socket address = 10.254.100.150
wins server = 192.192.192.238
hosts allow = 192.192.192. 172.16. 192.168. 127.
guest account = nobody
encrypt passwords = yes
domain logons = no
------------------------------------------------------------------------- 
 
 
/etc/samba/smb.conf.FTP 
-------------------------------------------------------------------------
[global]
workgroup = PDCSERVER
lock directory = /var/cache/samba/FTP
pid directory = /var/cache/samba/FTP
bind interfaces only = yes
interfaces = 10.254.100.151
server string = Xisle Cluster Samba Server (Fear the Penguin)
debug level = 1
security = DOMAIN
password server = 192.192.192.130
domain master = no
local master = no
log file = /var/log/samba/log.%m
max log size = 100
name resolve order = wins lmhosts bcast
socket options = TCP_NODELAY
dns proxy = No
netbios name = smb-test-2
socket address = 10.254.100.151
wins server = 192.192.192.238
hosts allow = 192.192.192. 172.16. 192.168. 127.
guest account = nobody
encrypt passwords = yes
domain logons = no
-------------------------------------------------------------------------

 
 
Thanks for any help!
Chris Rutledge 
crutledge@tgic.com <mailto:crutledge@tgic.com>  

 
 

The information contained in this email and any attachments may be
privileged and/or confidential and protected from disclosure.  It is
intended solely for the use of the recipient(s) to whom it is addressed, or
an employee or agent responsible for delivering this message to the intended
recipient(s).  You are hereby notified that any dissemination, distribution,
copying or other use of this communication is strictly prohibited.  If you
have received this communication in error, please notify the sender by reply
email and delete this email and all attachments from your system.  Thank
you.

-- 
To unsubscribe from this list go to the following URL and read the
instructions:  https://lists.samba.org/mailman/listinfo/samba

Thanks, but these aliased hosts already are in DNS, so I don't think that is
the issue. Everything I do doesn't seem to change which IP smbpasswd uses to
bind to the PDC when joining the domain.

Here is the machine's IP layout......

eth0      Link encap:Ethernet  HWaddr 00:0B:CD:0F:1E:B1
          inet addr:10.254.100.100  Bcast:10.254.255.255  Mask:255.255.0.0
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
          RX packets:55377 errors:0 dropped:0 overruns:0 frame:0
          TX packets:55214 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:1000
          RX bytes:5964315 (5.6 Mb)  TX bytes:5527609 (5.2 Mb)
          Interrupt:11

eth0:0    Link encap:Ethernet  HWaddr 00:0B:CD:0F:1E:B1
          inet addr:10.254.100.150  Bcast:10.255.255.255  Mask:255.0.0.0
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
          RX packets:0 errors:0 dropped:0 overruns:0 frame:0
          TX packets:0 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:1000
          RX bytes:0 (0.0 b)  TX bytes:0 (0.0 b)
          Interrupt:11

eth0:1    Link encap:Ethernet  HWaddr 00:0B:CD:0F:1E:B1
          inet addr:10.254.100.151  Bcast:10.255.255.255  Mask:255.0.0.0
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
          RX packets:0 errors:0 dropped:0 overruns:0 frame:0
          TX packets:0 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:1000
          RX bytes:0 (0.0 b)  TX bytes:0 (0.0 b)
          Interrupt:11


The 2 SMB services in question are using the aliased interfaces, however
when I issue the smbpasswd -j/with options it uses 10.254.100.100 to bind
with the PDC.


Thanks,
Chris

-----Original Message-----
From: samba-bounces+crutledge=tgic.com@lists.samba.org
[mailto:samba-bounces+crutledge=tgic.com@lists.samba.org]On Behalf Of
Tony Earnshaw
Sent: Friday, April 01, 2005 4:11 PM
To: samba@lists.samba.org
Subject: RE: [Samba] Aliased interface/multi-smb on one machine +
security = DOMAIN model


Chris Rutledge:
> After thinking about it, I ran a quick test and discovered that
> during the smbpasswd domain registration it uses the machines
> primary IP, not the alias per the config file...how do I tell
> smbpasswd to use a different IP when registering?
Separate host/ip combo in /etc/hosts or DNS for each? That's what I
do for something completely different. Actually I use DNS,
including PTR records.

[...]

--Tonni

--
mail: tonye@billy.demon.nl
http://www.billy.demon.nl


-- 
To unsubscribe from this list go to the following URL and read the
instructions:  https://lists.samba.org/mailman/listinfo/samba

The information contained in this email and any attachments may be privileged
and/or confidential and protected from disclosure.  It is intended solely for
the use of the recipient(s) to whom it is addressed, or an employee or agent
responsible for delivering this message to the intended recipient(s).  You are
hereby notified that any dissemination, distribution, copying or other use of
this communication is strictly prohibited.  If you have received this
communication in error, please notify the sender by reply email and delete this
email and all attachments from your system.  Thank you.