Hi! I tested shutdown in server samba-dc101, but samba-dc102 e samba-dc103 dont replication each other. I wait for more 10 minutes!! In logs dont see information try connection. samba-dc102 <-> samba-dc103 It is problem..... Any Ideia ? Regards; On 23-03-2018 11:43, Carlos wrote:> > Hi! > > Thanks for answer ! > > This caught my attention, because in other Sambas (older, it all appears). > So when the DC101 drops(off-line) the DC12 and DC103 will replicate? > > Regards; > > > > On 23-03-2018 11:17, lingpanda101 via samba wrote: >> On 3/23/2018 9:56 AM, Carlos via samba wrote: >>> Hi! >>> >>> Any Ideia ? >>> >>> Regards; >>> >>> >>> On 22-03-2018 14:09, Carlos wrote: >>>> >>>> Hi!! >>>> >>>> I have 3 Dcs, all system and configuration equal. >>>> >>>> samba-dc101(FSMO) >>>> >>>> samba-dc102 >>>> >>>> samba-dc103 >>>> >>>> But, then i executed command samba-tool drs showrepl in dcs server: >>>> >>>> samba-dc101(FSMO) -> List 2 Dcs 102 and 103(for me is ok) >>>> >>>> samba-dc102 -> List only Dc 101 >>>> >>>> samba-dc102 -> List only Dc 101 >>>> >>>> >>>> samba -V >>>> >>>> Version 4.7.3 (Compiled by me) >>>> >>>> S.O : >>>> >>>> lsb_release -a >>>> No LSB modules are available. >>>> Distributor ID: Ubuntu >>>> Description: Ubuntu 16.04.2 LTS >>>> Release: 16.04 >>>> Codename: xenial >>>> >>>> smb.conf 3 dcs >>>> >>>> [global] >>>> netbios name = SAMBA-DCXX >>>> realm = XXXXXXX >>>> server services = s3fs, rpc, nbt, wrepl, ldap, cldap, kdc, >>>> drepl, winbindd, ntp_signd, kcc, dnsupdate >>>> workgroup = YYYYY >>>> server role = active directory domain controller >>>> >>>> ldap server require strong auth = no >>>> >>>> [netlogon] >>>> path = /opt/samba/var/locks/sysvol/XXXXX/scripts >>>> read only = No >>>> >>>> [sysvol] >>>> path = /opt/samba/var/locks/sysvol >>>> read only = No >>>> >>>> >>>> Any Ideia ? >>>> >>>> >>>> Regards; >>>> >>> >> This is normal. Samba no longer by default creates full mesh >> replication links. >> >
On 3/23/2018 11:29 AM, Carlos via samba wrote:> Hi! > > I tested shutdown in server samba-dc101, but samba-dc102 e samba-dc103 > dont replication each other. > > I wait for more 10 minutes!! > > In logs dont see information try connection. > > > samba-dc102 <-> samba-dc103 > > > It is problem..... > > Any Ideia ? > > > Regards; > On 23-03-2018 11:43, Carlos wrote: >> >> Hi! >> >> Thanks for answer ! >> >> This caught my attention, because in other Sambas (older, it all >> appears). >> So when the DC101 drops(off-line) the DC12 and DC103 will replicate? >> >> Regards; >> >> >> >> On 23-03-2018 11:17, lingpanda101 via samba wrote: >>> On 3/23/2018 9:56 AM, Carlos via samba wrote: >>>> Hi! >>>> >>>> Any Ideia ? >>>> >>>> Regards; >>>> >>>> >>>> On 22-03-2018 14:09, Carlos wrote: >>>>> >>>>> Hi!! >>>>> >>>>> I have 3 Dcs, all system and configuration equal. >>>>> >>>>> samba-dc101(FSMO) >>>>> >>>>> samba-dc102 >>>>> >>>>> samba-dc103 >>>>> >>>>> But, then i executed command samba-tool drs showrepl in dcs server: >>>>> >>>>> samba-dc101(FSMO) -> List 2 Dcs 102 and 103(for me is ok) >>>>> >>>>> samba-dc102 -> List only Dc 101 >>>>> >>>>> samba-dc102 -> List only Dc 101 >>>>> >>>>> >>>>> samba -V >>>>> >>>>> Version 4.7.3 (Compiled by me) >>>>> >>>>> S.O : >>>>> >>>>> lsb_release -a >>>>> No LSB modules are available. >>>>> Distributor ID: Ubuntu >>>>> Description: Ubuntu 16.04.2 LTS >>>>> Release: 16.04 >>>>> Codename: xenial >>>>> >>>>> smb.conf 3 dcs >>>>> >>>>> [global] >>>>> netbios name = SAMBA-DCXX >>>>> realm = XXXXXXX >>>>> server services = s3fs, rpc, nbt, wrepl, ldap, cldap, kdc, >>>>> drepl, winbindd, ntp_signd, kcc, dnsupdate >>>>> workgroup = YYYYY >>>>> server role = active directory domain controller >>>>> >>>>> ldap server require strong auth = no >>>>> >>>>> [netlogon] >>>>> path = /opt/samba/var/locks/sysvol/XXXXX/scripts >>>>> read only = No >>>>> >>>>> [sysvol] >>>>> path = /opt/samba/var/locks/sysvol >>>>> read only = No >>>>> >>>>> >>>>> Any Ideia ? >>>>> >>>>> >>>>> Regards; >>>>> >>>> >>> This is normal. Samba no longer by default creates full mesh >>> replication links. >>> >> >A few factors are at play here. Are all DC's in the same site? If not ensure Inter-Site Transports are configured properly. By default the KCC(Knowledge Consistency Checker) should make modifications to the replication topology every 15 minutes. You will not see instant site links created when a DC goes offline. -- -- James
Hi! DC101 and DC102 same network . DC103 other network. DC101 and DC102 same site DC103 other site. I wil shutdonw DC101 for 20 minutes for te teste. Regards; On 23-03-2018 12:58, lingpanda101 wrote:> On 3/23/2018 11:29 AM, Carlos via samba wrote: >> Hi! >> >> I tested shutdown in server samba-dc101, but samba-dc102 e >> samba-dc103 dont replication each other. >> >> I wait for more 10 minutes!! >> >> In logs dont see information try connection. >> >> >> samba-dc102 <-> samba-dc103 >> >> >> It is problem..... >> >> Any Ideia ? >> >> >> Regards; >> On 23-03-2018 11:43, Carlos wrote: >>> >>> Hi! >>> >>> Thanks for answer ! >>> >>> This caught my attention, because in other Sambas (older, it all >>> appears). >>> So when the DC101 drops(off-line) the DC12 and DC103 will replicate? >>> >>> Regards; >>> >>> >>> >>> On 23-03-2018 11:17, lingpanda101 via samba wrote: >>>> On 3/23/2018 9:56 AM, Carlos via samba wrote: >>>>> Hi! >>>>> >>>>> Any Ideia ? >>>>> >>>>> Regards; >>>>> >>>>> >>>>> On 22-03-2018 14:09, Carlos wrote: >>>>>> >>>>>> Hi!! >>>>>> >>>>>> I have 3 Dcs, all system and configuration equal. >>>>>> >>>>>> samba-dc101(FSMO) >>>>>> >>>>>> samba-dc102 >>>>>> >>>>>> samba-dc103 >>>>>> >>>>>> But, then i executed command samba-tool drs showrepl in dcs server: >>>>>> >>>>>> samba-dc101(FSMO) -> List 2 Dcs 102 and 103(for me is ok) >>>>>> >>>>>> samba-dc102 -> List only Dc 101 >>>>>> >>>>>> samba-dc102 -> List only Dc 101 >>>>>> >>>>>> >>>>>> samba -V >>>>>> >>>>>> Version 4.7.3 (Compiled by me) >>>>>> >>>>>> S.O : >>>>>> >>>>>> lsb_release -a >>>>>> No LSB modules are available. >>>>>> Distributor ID: Ubuntu >>>>>> Description: Ubuntu 16.04.2 LTS >>>>>> Release: 16.04 >>>>>> Codename: xenial >>>>>> >>>>>> smb.conf 3 dcs >>>>>> >>>>>> [global] >>>>>> netbios name = SAMBA-DCXX >>>>>> realm = XXXXXXX >>>>>> server services = s3fs, rpc, nbt, wrepl, ldap, cldap, >>>>>> kdc, drepl, winbindd, ntp_signd, kcc, dnsupdate >>>>>> workgroup = YYYYY >>>>>> server role = active directory domain controller >>>>>> >>>>>> ldap server require strong auth = no >>>>>> >>>>>> [netlogon] >>>>>> path = /opt/samba/var/locks/sysvol/XXXXX/scripts >>>>>> read only = No >>>>>> >>>>>> [sysvol] >>>>>> path = /opt/samba/var/locks/sysvol >>>>>> read only = No >>>>>> >>>>>> >>>>>> Any Ideia ? >>>>>> >>>>>> >>>>>> Regards; >>>>>> >>>>> >>>> This is normal. Samba no longer by default creates full mesh >>>> replication links. >>>> >>> >> > A few factors are at play here. Are all DC's in the same site? If not > ensure Inter-Site Transports are configured properly. > > By default the KCC(Knowledge Consistency Checker) should make > modifications to the replication topology every 15 minutes. You will > not see instant site links created when a DC goes offline. >