samba - Feb 2013 - DNS IPv6 Question

Hi there,

Domaincontroller name: risky.home.schinz.de


dig dig @risky -tANY risky.home.schinz.de.

returns:

;; ANSWER SECTION:
risky.home.schinz.de.    900    IN    A    10.0.180.254
risky.home.schinz.de.    900    IN    AAAA    ::1

I have a strange behavior in my network. It's only concerning DNS, but 
maybe someone can help me.

If a do a ssh on risky from another machine (exact command: ssh 
root at risky, having domain/search set in resolv.conf) results in a 
loginattempt on localhost. But "host risky" returns 10.0.180.254.

First workaround was to update my /etc/hosts... But it's not a valid 
solution in my opinion. So I researched a little and used dig for that. 
There I found the above entry in DNS.

I'm not familiar with ipv6, but I think that ::1 is a shorthand for ipv6 
version of 127.0.0.1, i.e. localhost. So I concluded, that my ssh 
connect attempt returns a ipv6 entry, which points to localhost....

So now i tried to update/remove that ipv6 entry, but I always get the 
error: ERROR: Record does not exist

I tried these:

samba-tool dns delete risky.home.schinz.de home.schinz.de risky AAAA 
0:0:0:0:0:0:0:1 -UAdministrator
samba-tool dns delete risky.home.schinz.de home.schinz.de 
risky.home.schinz.de. AAAA 0:0:0:0:0:0:0:1 -UAdministrator
samba-tool dns delete risky.home.schinz.de home.schinz.de risky AAAA ::1 
-UAdministrator
....

same procedure with samba-tool dns update ....

How must be the syntax to get rid of this ipv6-dnsrecord or to get it 
updated to the right adress of eth0?

Another question is: Is this a good idea? I hope AD does not need this 
dnsrecord....

Kind regards
Uli

Hi there again,

now I could manage to remove/edit the dns-record.

The correct syntax for localhost-ipv6 is 
0000:0000:0000:0000:0000:0000:0000:0001, so this in mind following worked:

samba-tool dns delete risky.home.schinz.de home.schinz.de risky AAAA 
0000:0000:0000:0000:0000:0000:0000:0001 -UAdministrator

After that, I added the correct ipv6 adress of my eth0. Now my ssh-logon 
on risky is working again as expected.

Due to lack of time I could not verify if AD is still working fine. I'm 
gonna test this. If I'm getting problems I'm gonna report here.

Thanks and regards
Uli


Am 28.02.2013 13:16, schrieb Ulrich Schinz:
> Hi there,
>
> Domaincontroller name: risky.home.schinz.de
>
>
> dig dig @risky -tANY risky.home.schinz.de.
>
> returns:
>
> ;; ANSWER SECTION:
> risky.home.schinz.de.    900    IN    A    10.0.180.254
> risky.home.schinz.de.    900    IN    AAAA    ::1
>
> I have a strange behavior in my network. It's only concerning DNS, but 
> maybe someone can help me.
>
> If a do a ssh on risky from another machine (exact command: ssh 
> root at risky, having domain/search set in resolv.conf) results in a 
> loginattempt on localhost. But "host risky" returns 10.0.180.254.
>
> First workaround was to update my /etc/hosts... But it's not a valid 
> solution in my opinion. So I researched a little and used dig for 
> that. There I found the above entry in DNS.
>
> I'm not familiar with ipv6, but I think that ::1 is a shorthand for 
> ipv6 version of 127.0.0.1, i.e. localhost. So I concluded, that my ssh 
> connect attempt returns a ipv6 entry, which points to localhost....
>
> So now i tried to update/remove that ipv6 entry, but I always get the 
> error: ERROR: Record does not exist
>
> I tried these:
>
> samba-tool dns delete risky.home.schinz.de home.schinz.de risky AAAA 
> 0:0:0:0:0:0:0:1 -UAdministrator
> samba-tool dns delete risky.home.schinz.de home.schinz.de 
> risky.home.schinz.de. AAAA 0:0:0:0:0:0:0:1 -UAdministrator
> samba-tool dns delete risky.home.schinz.de home.schinz.de risky AAAA 
> ::1 -UAdministrator
> ....
>
> same procedure with samba-tool dns update ....
>
> How must be the syntax to get rid of this ipv6-dnsrecord or to get it 
> updated to the right adress of eth0?
>
> Another question is: Is this a good idea? I hope AD does not need this 
> dnsrecord....
>
> Kind regards
> Uli

-- 
***             Ulrich Schinz               ***
           Systemadministrator KSFH
-----------------------------------------------
      Don-Bosco-Str. 1, 83671 Benediktbeuern
              Tel.: 08857/88-506
          mailto:ulrich.schinz at ksfh.de
***         http://www.ksfh.de/             ***