NOTE: Please honour the "Reply-To" and do not "Reply-All". I'm reading the mailing list. I wouldn't be posting to it if I was not and I don't need two copies. Thanks! On Tue, 8 Sep 2015 10:32:33 -0400 Robert Moskowitz <rgm at htt-consult.com> wrote:>[snip]> > Oops. I missed that you had missed this! When you said flat zone > file, I took you literally to mean text-style dns zone files.I'll be using traditional (flat) zone files for everything else, but I'm going to let the Samba AD DC work the way it wants to. That means dynamic zone files for that sub-domain.> Not > use samba-tool to maintain the ldap entries used for dlz.I'm not certain what that meant? Regards, Jim -- Note: My mail server employs *very* aggressive anti-spam filtering. If you reply to this email and your email is rejected, please accept my apologies and let me know via my web form at <http://jimsun.LinxNet.com/contact/scform.php>.
On 09/08/2015 11:22 AM, Jim Seymour wrote:> NOTE: Please honour the "Reply-To" and do not "Reply-All". I'm reading > the mailing list. I wouldn't be posting to it if I was not and I don't > need two copies. Thanks!Each list is different, and some work right like this, others the only way to reply to list is to reply-all, thus I get a little lazy at times to get things to work most of the time...> > On Tue, 8 Sep 2015 10:32:33 -0400 > Robert Moskowitz <rgm at htt-consult.com> wrote: > > [snip] >> Oops. I missed that you had missed this! When you said flat zone >> file, I took you literally to mean text-style dns zone files. > I'll be using traditional (flat) zone files for everything else, but > I'm going to let the Samba AD DC work the way it wants to. That means > dynamic zone files for that sub-domain.That does not seem to be a problem at all. I have a few zones I am successfully mastering with flat files.> >> Not >> use samba-tool to maintain the ldap entries used for dlz. > I'm not certain what that meant?samba-tool does not maintain Bind, it maintains the ldap that bind queries is what I meant. Sorry for the cryptic reply.
Am 08.09.2015 um 17:57 schrieb Robert Moskowitz:> On 09/08/2015 11:22 AM, Jim Seymour wrote: >> NOTE: Please honour the "Reply-To" and do not "Reply-All". I'm reading >> the mailing list. I wouldn't be posting to it if I was not and I don't >> need two copies. Thanks! > > Each list is different, and some work right like this, others the only > way to reply to list is to reply-all, thus I get a little lazy at times > to get things to work most of the time...frankly there is a "List-Post: <mailto:samba at lists.samba.org>" header which *any* mailing-list has and a sane mail-client has a "reply-to-list" button, in thunderbird it's just one drag&drop in the toolbar BTW: by sending multiple copies you break that button for the offlist-reply and in case the RCPT filters duplicates it's a matter of luck which of the two copies survives -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 181 bytes Desc: OpenPGP digital signature URL: <http://lists.samba.org/pipermail/samba/attachments/20150908/78b2da40/signature.sig>
I provisioned with --dns-backend=BIND9_FLATFILE and have had no problems with DNS at all. When I see all the postings with questions on DLZ and SAMBA INTERNAL, I think I made the right choice. Like you (Robert) I have workstations, printers, postage meters, etc. assigned with static IPs for similar reasons as you. Also, for security, I have a process that monitors the DHCP log to see if anything is doing unauthorized connections to the LAN. I also port-forward specific port numbers to the Remote Desktop Access port on specific workstations, so they need to have static IPs. I have a combination of IPs statically assigned via /etc/dhcpd.conf and also using the domain zone file (for client devices that cannot do DHCP). All DNS settings were set up very simply using BIND9 and ran the first time. I've had no problems with the AD/DC using the native bind. I've also configured it to permit Windows workstations to update the zone files via Samba, which they want to do. And, named/dhcpd continue to work properly if for some reason Samba is down. If interested, I've posted my configuration in a message to this list dated 26 Aug 2015 17:56, subject "sernet documentation". I can re-post if you'd like. --Mark -----Original Message-----> Date: Tue, 8 Sep 2015 11:22:24 -0400 > From: Jim Seymour <jseymour at LinxNet.com> > To: samba at lists.samba.org > Subject: Re: [Samba] Samba AD DC, DHCP & Address Assignments > > On Tue, 8 Sep 2015 10:32:33 -0400 > Robert Moskowitz <rgm at htt-consult.com> wrote: > > > [snip] > > > > Oops. I missed that you had missed this! When you said flat zone > > file, I took you literally to mean text-style dns zone files. > > I'll be using traditional (flat) zone files for everything else, but > I'm going to let the Samba AD DC work the way it wants to. That means > dynamic zone files for that sub-domain. > > > Not > > use samba-tool to maintain the ldap entries used for dlz. > > I'm not certain what that meant? > > Regards, > Jim > -- > Note: My mail server employs *very* aggressive anti-spam > filtering. If you reply to this email and your email is > rejected, please accept my apologies and let me know via my > web form at <http://jimsun.LinxNet.com/contact/scform.php>. > > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/options/samba >