hi all
I have a samba pdc with ldap backed, samba version being 3.0.21c, and
openldap 2.3.19.
All clients get ip through dhcp and dynamically updates dns also
The problem i am facing is from a windows 2000 client if i go to run and
browse another system
it connects to some other system
for example from START-> RUN->\\system1 , it will open some other system
say
system2
when i ping to system1 it shows the ip of system2. So i change ip in my zone
file and restart the named
service.
whenever a client gets ip from dhcpd , it updates zone file but it
overwrites with some other ip.
please guide me . For a samba pdc, what is the better dhcpd and
named.confconfiguration.
below are my configuration files, please guide me
dhcpd.conf
###################################default-lease-time 259200;
max-lease-time 259201;
option domain-name "msdpl.com";
option domain-name-servers 192.168.129.20;
option netbios-name-servers 192.168.129.20;
option netbios-node-type 8; ### Node type = Hybrid ###
ddns-updates on; ### Dynamic DNS enabled ###
ddns-update-style interim;
authoritative;
one-lease-per-client true;
option netbios-dd-server 192.168.1.2;
option netbios-node-type 8;
subnet 192.168.129.0 netmask 255.255.255.0 {
range dynamic-bootp 192.168.129.30 192.168.129.254;
option subnet-mask 255.255.255.0;
option routers 192.168.129.1;
allow unknown-clients;
}
#########################
my named.conf
#################################
[mniranja@mniranja pdc]$ cat named.conf
//
// named.conf for Red Hat caching-nameserver
//
options {
directory "/var/named";
dump-file "/var/named/data/cache_dump.db";
statistics-file "/var/named/data/named_stats.txt";
forwarders { 192.168.129.18; 192.168.130.3; 192.168.128.3; };
/*
* If there is a firewall between you and nameservers you want
* to talk to, you might need to uncomment the query-source
* directive below. Previous versions of BIND always asked
* questions using port 53, but BIND 8.1 uses an unprivileged
* port by default.
*/
// query-source address * port 53;
};
//
// a caching only nameserver config
//
controls {
inet 127.0.0.1 allow { localhost; } keys { rndckey; };
};
acl msdpl {
192.168.129.0/24;
192.168.128.0/24;
192.168.130.0/24;
};
zone "msdpl.com" IN {
type master;
file "msdpl.com.zone";
notify yes;
allow-query { msdpl; };
allow-transfer { msdpl; };
allow-update { msdpl; };
};
zone "129.168.192.in-addr.arpa" IN {
type master;
file "192.168.129.20.rev";
notify yes;
allow-query { msdpl; };
allow-transfer { msdpl; };
allow-update { msdpl; };
};
zone "130.168.192.in-addr.arpa" IN {
type master;
file "192.168.130.0.rev";
notify yes;
allow-query { msdpl; };
allow-transfer { msdpl; };
allow-update { msdpl; };
};
zone "128.168.192.in-addr.arpa" IN {
type master;
file "192.168.128.0.rev";
notify yes;
allow-query { msdpl; };
allow-transfer { msdpl; };
allow-update { msdpl; };
};
zone "." IN {
type hint;
file "named.ca";
};
zone "localdomain" IN {
type master;
file "localdomain.zone";
allow-update { none; };
};
zone "localhost" IN {
type master;
file "localhost.zone";
allow-update { none; };
};
zone "medhaindia.com" IN {
type master;
file "medhaindia.com.zone";
allow-update { none; };
};
zone "0.0.127.in-addr.arpa" IN {
type master;
file "named.local";
allow-update { none; };
};
zone
"0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.ip6.arpa"
IN {
type master;
file "named.ip6.local";
allow-update { none; };
};
zone "255.in-addr.arpa" IN {
type master;
file "named.broadcast";
allow-update { none; };
};
zone "0.in-addr.arpa" IN {
type master;
file "named.zero";
allow-update { none; };
};
include "/etc/rndc.key";
###################################################################
my smb.conf
###################################################################
[global]
workgroup = msdpl.com
netbios name = medhapdc
passdb backend = ldapsam:ldap://msdpl.com
server string = Domain Controller
hosts allow = 192.168.128. 192.168.129. 192.168.130. 127.
security = user
encrypt passwords = yes
socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
interfaces = eth0,lo
printing = cups
disable spoolss = Yes
printcap name = cups
max print jobs = 100
enable privileges = yes
log level = 2
password level = 8
username level = 8
bind interfaces only = yes
local master = Yes
os level = 65
domain master = yes
remote browse sync = 192.168.130.3
null passwords = no
hide unreadable = yes
hide dot files = yes
domain logons = yes
logon script = %u.bat
logon path logon drive = X:
logon home wins support = yes
name resolve order = wins lmhosts host bcast
dns proxy = no
time server = yes
log file = /var/log/samba/%m.log
max log size = 50
nt acl support = yes
ldap passwd sync = yes
add user script = /usr/local/sbin/smbldap-useradd -m "%u"
delete user script = /usr/local/sbin/smbldap-userdel "%u"
add machine script = /usr/local/sbin/smbldap-useradd -w "%m"
add group script = /usr/local/sbin/smbldap-groupadd -p "%g"
add user to group script = /usr/local/sbin/smbldap-groupmod -m "%u"
"%g"
delete user from group script = /usr/local/sbin/smbldap-groupmod -x
"%u"
"%g"
set primary group script = /usr/local/sbin/smbldap-usermod -g '%g'
'%u'
ldap delete dn = Yes
ldap ssl = no
ldap suffix = dc=msdpl,dc=com
ldap admin dn = cn=manager,dc=msdpl,dc=com
ldap group suffix = ou=Groups
ldap user suffix = ou=People
ldap machine suffix = ou=Computers
ldap idmap suffix = ou=Idmap
ldap timeout = 50
idmap backend = ldap:ldap://msdpl.com
idmap uid = 10000-20000
idmap gid = 10000-20000
check password script = /usr/local/bin/crackcheck -s
map acl inherit = yes
winbind use default domain = yes
template shell = /bin/false
######################################################[Share
Definations]###########################################
[homes]
comment = Home Directories
valid users = %S, root
browseable = no
read only = no
nt acl support = Yes
# Un-comment the following and create the netlogon directory for Domain
Logons
[netlogon]
comment = Network Logon Service
path = /netlogon/scripts
guest ok = yes
browseable = yes
write list = root, kr1233
#Profiles Share
[profiles]
comment = Profiles Share
path = /profiles/%U
read only = No
browseable = yes
writeable = yes
veto files = /lost+found/.Trash-root/*.sh/*.scr/.recycle/desktop.ini
##################################################################
Regards
Ashok
