samba - Oct 2005 - BDC cannot contact PDC on different subnet (3.0.10)

Hi everyone,

  I am struggling to promote a samba 3.0.10 standalone server to a BDC,
because it cannot contact the PDC which is on a different subnet
connected via a VPN.

  Having lost several days I believe this may be because it Samba is
broadcasting WINS domain discovery requests on its local subnet, which
of course it not reaching the PDC as broadcasts are not sent across the
VPN. The PDC is contactable by ping, and I can map networking drives to
it using SMB.

  I have tried editing the lmhosts file, but it has made no difference.
How can I tell the currently standalone server where to find the domain
controller for my domain so it can become a BDC?

  Thank you very much in advance!


  Here are the details:

  PDC Hostname: MASTER
  PDC IP: 10.0.50.254

  BDC Hostname: BACKUP
  BDC IP: 10.0.53.254

  I have created the following lmhosts file, which is in the same
directory as the smb.conf file:

  # Samba LMHOSTS file
  10.0.50.254 master
  10.0.50.254 master#20
  10.0.50.254 companydomain#1b

  How can I test this file is being used for resolution? I've read all the
docs on nmblookup without joy.

  Samba version: 3.0.10
  Server running on Mac OSX 10.3.9

  ...and this is my currently running smb.conf:

[global]
        log level = 2
        remote announce = 10.0.50.254
        display charset = UTF-8-MAC
        print command = /usr/sbin/PrintServiceAccess printps %p %s
        lprm command = /usr/sbin/PrintServiceAccess remove %p %j
        security = user
        guest account = unknown
        encrypt passwords = yes
        printing = BSD
        allow trusted domains = no
        preferred master = no
        remote browse sync = 10.0.50.254
        name resolve order = lmhosts host wins bcast
        lppause command = /usr/sbin/PrintServiceAccess hold %p %j
        netbios name = BACKUP
        wins support = yes
        max smbd processes = 0
        printcap         server string = BACKUP
        lpresume command = /usr/sbin/PrintServiceAccess release %p %j
        client ntlmv2 auth = no
        domain logons = no
        lpq command = /usr/sbin/PrintServiceAccess jobs %p
        passdb backend = opendirectorysam guest
        dos charset = CP437
        unix charset = UTF-8-MAC
        auth methods = guest opendirectory
        local master = yes
        use spnego = no
        map to guest = Bad User
        domain master = no
        printer admin = @admin, @staff
        defer sharing violations = no
        workgroup = COMPANYDOMAIN



Again, thank you very much in advance!

Regards,

John