Jules Houantonon
2016-Feb-26 11:44 UTC
[Samba] Need Samba4 to resolve DNS request of another network
Dear all, i am working to deploy Samba4 on our main and remote sites. Each DCs are seperate by a router. So they only have one network interface card. Samba 4 on remote site should join existing Active Directory domain that is implemented on the main site. As we do not belong to the same network, i am having dns request trouble while i will try to join to the Domain. DC on the remote site should be coonfigure with the first DC as nameservers in /etc/resolv.conf and host -t A DC1.samdom.example.com should reply as explain in samba wiki article https://wiki.samba.org/index.php/Join_an_additional_Samba_DC_to_an_existing_Active_Directory Can anyone please provide me some advices or which precautions should i take on the configuration of the internal DNS so that it should accept dns request from the remote network. This is my configuration : Samba version 4.2 / Centos 6.7/ Virtual machine create with Vmware Workstation/ Pfsense install as router to simulate remote site. Thanks in advance Regards -- Jules HOUANTONON *Phone* : (00229) 97578914 *Email *: juleshoueto at gmail.com *Skype* : houantonon *linkedin* : www.linkedin.com/in/jhouantonon/en
Reindl Harald
2016-Feb-26 11:55 UTC
[Samba] Need Samba4 to resolve DNS request of another network
Am 26.02.2016 um 12:44 schrieb Jules Houantonon:> i am working to deploy Samba4 on our main and remote sites. > > Each DCs are seperate by a router. So they only have one network interface > card. > > Samba 4 on remote site should join existing Active Directory domain that is > implemented on the main site. > As we do not belong to the same network, i am having dns request trouble > while i will try to join to the Domaini would recommend a VPN tunnel between the machines / networks with openvpn and "client-to-client" on a tap-based (bridged) setup you can even connect different networks with working broadcasts we currently run 5 openvpn-server instances, for each external office a seperate one and with iptables forwarding-rules on each "client" which is in fact the central server for each office every machine can talk with each other including avahi-zeroconf which is multicast/broadcast between routed networks there is *no* broadcasting possible -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 181 bytes Desc: OpenPGP digital signature URL: <http://lists.samba.org/pipermail/samba/attachments/20160226/021d2e1c/signature.sig>