So if i did read right . .. In my case.. I have 2 DC ( with bind9 dns DLZ ) and i have 2 proxy servers with DNS (bind9) slaves for the DC's. I should point my /etc/resolv.conf of the DC's also to the slave dns servers? and in case of just 2 dc's without slave dns servers, point the DC1 to DC2 dns and DC2 to DC1 dns ? If thats the case i have to change my scripts ;-) Greetz, Louis>-----Oorspronkelijk bericht----- >Van: mmuehlfeld at samba.org >[mailto:samba-bounces at lists.samba.org] Namens Marc Muehlfeld >Verzonden: vrijdag 30 januari 2015 15:33 >Aan: Rowland Penny; samba at lists.samba.org >Onderwerp: Re: [Samba] resolv.conf setup and DNS issue > >Am 29.01.2015 um 21:36 schrieb Rowland Penny: >> I just use 127.0.0.1 on each DC, after all, the DC should >use itself for >> DNS and if something has gone wrong, having another DC to >ask may not be >> any use. > > >If you're having more than one DC, then you should not use the own DNS >as primary on a DC. It can cause problems like DNS islanding. > >Some DNS best practices: >http://blogs.technet.com/b/askds/archive/2010/07/17/friday-mail >-sack-saturday-edition.aspx#dnsbest > > >We should mention this on the "Join as DC" page and somewhere >on the DNS >pages, too. I'll put this on my list. > > >Regards, >Marc >-- >To unsubscribe from this list go to the following URL and read the >instructions: https://lists.samba.org/mailman/options/samba > >
I'm happy to see that our "samba pros" do not share the same point of view. :-) In Marcs link, as far as I can see, number 3 points to Rowlands solution while number 2 seems to be Marcs preferred solution. Today I changed DNS settings on my DCs to Rowlands solution (127.0.0.1) and an issue I had with sysvolcheck seems to gone. So what best practise does the samba team have? @Marc: The topic seems to be more important than I initially thought. So thanks for putting this on your list to do. Am 30. Januar 2015 16:10:11 MEZ, schrieb "L.P.H. van Belle" <belle at bazuin.nl>:>So if i did read right . .. > >In my case.. >I have 2 DC ( with bind9 dns DLZ ) and i have 2 proxy servers with DNS >(bind9) slaves for the DC's. > >I should point my /etc/resolv.conf of the DC's also to the slave dns >servers? >and in case of just 2 dc's without slave dns servers, >point the DC1 to DC2 dns and DC2 to DC1 dns ? >If thats the case i have to change my scripts ;-) > > >Greetz, > >Louis > >>-----Oorspronkelijk bericht----- >>Van: mmuehlfeld at samba.org >>[mailto:samba-bounces at lists.samba.org] Namens Marc Muehlfeld >>Verzonden: vrijdag 30 januari 2015 15:33 >>Aan: Rowland Penny; samba at lists.samba.org >>Onderwerp: Re: [Samba] resolv.conf setup and DNS issue >> >>Am 29.01.2015 um 21:36 schrieb Rowland Penny: >>> I just use 127.0.0.1 on each DC, after all, the DC should >>use itself for >>> DNS and if something has gone wrong, having another DC to >>ask may not be >>> any use. >> >> >>If you're having more than one DC, then you should not use the own DNS >>as primary on a DC. It can cause problems like DNS islanding. >> >>Some DNS best practices: >>http://blogs.technet.com/b/askds/archive/2010/07/17/friday-mail >>-sack-saturday-edition.aspx#dnsbest >> >> >>We should mention this on the "Join as DC" page and somewhere >>on the DNS >>pages, too. I'll put this on my list. >> >> >>Regards, >>Marc >>-- >>To unsubscribe from this list go to the following URL and read the >>instructions: https://lists.samba.org/mailman/options/samba >> >> > >-- >To unsubscribe from this list go to the following URL and read the >instructions: https://lists.samba.org/mailman/options/samba
On 30/01/15 19:05, Tim wrote:> I'm happy to see that our "samba pros" do not share the same point of view. :-) > > In Marcs link, as far as I can see, number 3 points to Rowlands solution while number 2 seems to be Marcs preferred solution. > > Today I changed DNS settings on my DCs to Rowlands solution (127.0.0.1) and an issue I had with sysvolcheck seems to gone. > > So what best practise does the samba team have? > > @Marc: The topic seems to be more important than I initially thought. So thanks for putting this on your list to do. > > Am 30. Januar 2015 16:10:11 MEZ, schrieb "L.P.H. van Belle" <belle at bazuin.nl>: >> So if i did read right . .. >> >> In my case.. >> I have 2 DC ( with bind9 dns DLZ ) and i have 2 proxy servers with DNS >> (bind9) slaves for the DC's. >> >> I should point my /etc/resolv.conf of the DC's also to the slave dns >> servers? >> and in case of just 2 dc's without slave dns servers, >> point the DC1 to DC2 dns and DC2 to DC1 dns ? >> If thats the case i have to change my scripts ;-) >> >> >> Greetz, >> >> Louis >> >>> -----Oorspronkelijk bericht----- >>> Van: mmuehlfeld at samba.org >>> [mailto:samba-bounces at lists.samba.org] Namens Marc Muehlfeld >>> Verzonden: vrijdag 30 januari 2015 15:33 >>> Aan: Rowland Penny; samba at lists.samba.org >>> Onderwerp: Re: [Samba] resolv.conf setup and DNS issue >>> >>> Am 29.01.2015 um 21:36 schrieb Rowland Penny: >>>> I just use 127.0.0.1 on each DC, after all, the DC should >>> use itself for >>>> DNS and if something has gone wrong, having another DC to >>> ask may not be >>>> any use. >>> >>> If you're having more than one DC, then you should not use the own DNS >>> as primary on a DC. It can cause problems like DNS islanding. >>> >>> Some DNS best practices: >>> http://blogs.technet.com/b/askds/archive/2010/07/17/friday-mail >>> -sack-saturday-edition.aspx#dnsbest >>> >>> >>> We should mention this on the "Join as DC" page and somewhere >>> on the DNS >>> pages, too. I'll put this on my list. >>> >>> >>> Regards, >>> Marc >>> -- >>> To unsubscribe from this list go to the following URL and read the >>> instructions: https://lists.samba.org/mailman/options/samba >>> >>> >> -- >> To unsubscribe from this list go to the following URL and read the >> instructions: https://lists.samba.org/mailman/options/sambaI loved this bit: '(This is where the arguments usually start)' :-D Hmm, what I think it means is: If you have 2 DC's (in my case 192.168.0.2 & 192.168.0.3) you should have in /etc/resolv.conf on 192.168.0.2 search example.com nameserver 192.168.0.3 nameserver 127.0.0.1 and on 192.168.0.3 search example.com nameserver 192.168.0.2 nameserver 127.0.0.1 Rowland