Hello Rowland,
here is my named.conf*
named.conf
include "/etc/bind/named.conf.options";
include "/etc/bind/named.conf.local";
include "/etc/bind/named.conf.default-zones";
named.conf.default-zones
zone "." {
type hint;
file "/etc/bind/db.root";
};
zone "localhost" {
type master;
file "/etc/bind/db.local";
};
zone "127.in-addr.arpa" {
type master;
file "/etc/bind/db.127";
};
zone "0.in-addr.arpa" {
type master;
file "/etc/bind/db.0";
};
zone "255.in-addr.arpa" {
type master;
file "/etc/bind/db.255";
};
named.conf.local
dlz "foo" {
# For BIND 9.10
database "dlopen
/usr/lib/x86_64-linux-gnu/samba/bind9/dlz_bind9_10.so";
};
named.conf.options
options {
directory "/var/cache/bind";
dnssec-validation auto;
auth-nxdomain no; # conform to RFC1035
listen-on-v6 { any; };
// samba
// see /var/lib/samba/private/named.txt
tkey-gssapi-keytab "/var/lib/samba/private/dns.keytab";
allow-update { 127.0.0.1/32; };
};
On 07.02.2017 17:27, Rowland Penny via samba wrote:> On Tue, 7 Feb 2017 16:59:39 +0100
> basti via samba <samba at lists.samba.org> wrote:
>
>> I use bind on the same maschine as samba (bind_dlz). there is no
>> additional bind9 in my test network. the default gw (kvm host) do nat.
>> and bind of this network does know nothink about zone "foo".
>
> If you are using Bind9 on the same machine as you are running the DC
> on, there will be a named.conf file (or on debian, there will be
> multiple subfiles), can you please post the named.conf files from the
> DC in question.
>
> Rowland
>
>
>
On Wed, 8 Feb 2017 08:31:18 +0100 basti via samba <samba at lists.samba.org> wrote:> Hello Rowland, > > here is my named.conf*And this my named.conf.local: include "/usr/local/samba/private/named.conf"; This is /usr/local/samba/private/named.conf # This DNS configuration is for BIND 9.8.0 or later with dlz_dlopen support. # # This file should be included in your main BIND configuration file # # For example with # include "/usr/local/samba/private/named.conf"; # # This configures dynamically loadable zones (DLZ) from AD schema # Uncomment only single database line, depending on your BIND version # dlz "AD DNS Zone" { # For BIND 9.8.x # database "dlopen /usr/local/samba/lib/bind9/dlz_bind9.so"; # For BIND 9.9.x database "dlopen /usr/local/samba/lib/bind9/dlz_bind9_9.so"; # For BIND 9.10.x # database "dlopen /usr/local/samba/lib/bind9/dlz_bind9_10.so"; }; Note the top commented portion. I use Bind 9.9.5 Here is my name.conf.options: options { directory "/var/cache/bind"; version "0.0.7"; notify no; empty-zones-enable no; allow-query { 127.0.0.1; 192.168.0.0/24; }; allow-recursion { 192.168.0.0/24; 127.0.0.1/32; }; forwarders { 8.8.8.8; }; allow-transfer { none; }; dnssec-validation no; dnssec-enable no; listen-on-v6 { none; }; listen-on port 53 { 192.168.0.2; 127.0.0.1; }; tkey-gssapi-keytab "/usr/local/samba/private/dns.keytab"; }; Rowland