On Tue, 13 Nov 2018 12:36:20 +0100 admins aixtema via samba <samba at lists.samba.org> wrote:> Did all your advices, but nothing works > > it still creates the tempRANDOMID folder wtih > > bind-dns/empty > etc/smb.conf > private/all contains from var/lib/samba/private > state/sysvol > > > but the dns still fails with the same error as my first postI think you need to fix the DNS problem first, I have just upgraded a Samba DC running on Ubuntu 18.04 to 4.9.2 and it works for me. Can you post the following: /etc/hostname /etc/hosts /etc/resolv.conf /etc/krb5.conf smb.conf Your named conf file(s) I know you may have already have posted some of them, but please post them all. Rowland
cat /etc/hostname
phoenix
cat /etc/hosts
# IPv4 and IPv6 localhost aliases
127.0.0.1 localhost
::1 localhost
192.168.1.123 phoenix phoenix.aixtema.de
192.168.1.124 xineohp xineohp.aixtema.de
cat /etc/resolv.conf
search phoenix.aixtema.de
nameserver 192.168.1.123
cat /etc/krb5.conf
[libdefaults]
default_realm = AIXTEMA.DE
dns_lookup_realm = false
dns_lookup_kdc = true
smb.conf
# Global parameters
[global]
interfaces = ens4
log file = /var/log/samba/%m.log
logging = file
netbios name = PHOENIX
realm = AIXTEMA.DE
workgroup = AIXTEMA
server role = active directory domain controller
server services = s3fs, rpc, nbt, wrepl, ldap, cldap, kdc,
drepl, winbindd, ntp_signd, kcc, dnsupdate
time server = Yes
tls cafile = tls/ca.pem
tls certfile = tls/cert.pem
tls enabled = Yes
tls keyfile = tls/key.pem
winbind refresh tickets = Yes
spoolssd:prefork_child_min_life = 60
spoolssd:prefork_max_allowed_clients = 100
spoolssd:prefork_spawn_rate = 5
spoolssd:prefork_max_children = 25
spoolssd:prefork_min_children = 5
rpc_daemon:spoolssd = fork
rpc_server:spoolss = external
spoolss: architecture = Windows x64
idmap_ldb:use rfc2307 = yes
include = /etc/samba/printers.conf
[netlogon]
path = /var/lib/samba/sysvol/aixtema.de/scripts
read only = No
[sysvol]
path = /var/lib/samba/sysvol
read only = No
[printers]
browseable = No
create mask = 0700
path = /var/spool/samba/
printable = Yes
read only = No
[print$]
create mask = 0755
inherit permissions = Yes
path = /var/lib/samba/drivers
read only = No
write list = Administrator
named.conf
options {
directory "/var/bind";
// uncomment the following lines to turn on DNS forwarding,
// and change the forwarding ip address(es) :
//forward first;
forwarders {
ISP DNS;
ISP DNS;
};
listen-on-v6 { none; };
listen-on { 127.0.0.1; 192.168.1.123; };
// to allow only specific hosts to use the DNS server:
allow-query {
127.0.0.1;
192.168.1.0/21;
};
pid-file "/run/named/named.pid";
tkey-gssapi-keytab "/var/lib/samba/bind-dns/dns.keytab";
dnssec-enable no;
dnssec-validation auto;
auth-nxdomain no;
};
include "/var/lib/samba/bind-dns/named.conf";
include "/var/bind/db/blacklisted.zones";
zone "localhost" IN {
type master;
file "pri/localhost.zone";
allow-update { none; };
notify no;
};
zone "127.in-addr.arpa" IN {
type master;
file "pri/127.zone";
allow-update { none; };
notify no;
};
Am 13.11.18 um 13:10 schrieb Rowland Penny via samba:> On Tue, 13 Nov 2018 12:36:20 +0100
> admins aixtema via samba <samba at lists.samba.org> wrote:
>
>> Did all your advices, but nothing works
>>
>> it still creates the tempRANDOMID folder wtih
>>
>> bind-dns/empty
>> etc/smb.conf
>> private/all contains from var/lib/samba/private
>> state/sysvol
>>
>>
>> but the dns still fails with the same error as my first post
>
> I think you need to fix the DNS problem first, I have just upgraded a
> Samba DC running on Ubuntu 18.04 to 4.9.2 and it works for me.
>
> Can you post the following:
>
> /etc/hostname
> /etc/hosts
> /etc/resolv.conf
> /etc/krb5.conf
> smb.conf
> Your named conf file(s)
>
> I know you may have already have posted some of them, but please post
> them all.
>
> Rowland
>
Mit freundlichen Grüßen,
René Fuchs
--
***********************************************
aixtema GmbH
René Fuchs
Philipsstr. 8, 52068 Aachen, Germany
Tel.: +49 241 70515-1323, Fax: +49 241 70515-15
mailto:r.fuchs at aixtema.de
WWW: http://www.aixtema.de
Shop: http://shop.aixtema.de
Geschaeftsfuehrer: Oliver Rossbruch
HRB 8201, Amtsgericht Aachen
USt.-Id-Nr. DE 210 906 744
St.-Nr. 201/5942/3737, Finanzamt Aachen Stadt
***********************************************
When i change to dns-backend=SAMBA_INTERNAL the backup works, but not with BIND9_DLZ Am 13.11.18 um 13:38 schrieb admins aixtema via samba:> > > cat /etc/hostname > phoenix > > > cat /etc/hosts > > # IPv4 and IPv6 localhost aliases > 127.0.0.1 localhost > ::1 localhost > 192.168.1.123 phoenix phoenix.aixtema.de > 192.168.1.124 xineohp xineohp.aixtema.de > > > cat /etc/resolv.conf > search phoenix.aixtema.de > nameserver 192.168.1.123 > > > cat /etc/krb5.conf > [libdefaults] > default_realm = AIXTEMA.DE > dns_lookup_realm = false > dns_lookup_kdc = true > > > smb.conf > > # Global parameters > [global] > interfaces = ens4 > log file = /var/log/samba/%m.log > logging = file > netbios name = PHOENIX > realm = AIXTEMA.DE > workgroup = AIXTEMA > server role = active directory domain controller > server services = s3fs, rpc, nbt, wrepl, ldap, cldap, kdc, > drepl, winbindd, ntp_signd, kcc, dnsupdate > time server = Yes > tls cafile = tls/ca.pem > tls certfile = tls/cert.pem > tls enabled = Yes > tls keyfile = tls/key.pem > winbind refresh tickets = Yes > spoolssd:prefork_child_min_life = 60 > spoolssd:prefork_max_allowed_clients = 100 > spoolssd:prefork_spawn_rate = 5 > spoolssd:prefork_max_children = 25 > spoolssd:prefork_min_children = 5 > rpc_daemon:spoolssd = fork > rpc_server:spoolss = external > spoolss: architecture = Windows x64 > idmap_ldb:use rfc2307 = yes > include = /etc/samba/printers.conf > > > [netlogon] > path = /var/lib/samba/sysvol/aixtema.de/scripts > read only = No > > [sysvol] > path = /var/lib/samba/sysvol > read only = No > > [printers] > browseable = No > create mask = 0700 > path = /var/spool/samba/ > printable = Yes > read only = No > > [print$] > create mask = 0755 > inherit permissions = Yes > path = /var/lib/samba/drivers > read only = No > write list = Administrator > > > > named.conf > > > options { > directory "/var/bind"; > > // uncomment the following lines to turn on DNS forwarding, > // and change the forwarding ip address(es) : > //forward first; > forwarders { > ISP DNS; > ISP DNS; > }; > > listen-on-v6 { none; }; > > listen-on { 127.0.0.1; 192.168.1.123; }; > // to allow only specific hosts to use the DNS server: > allow-query { > 127.0.0.1; > 192.168.1.0/21; > }; > > pid-file "/run/named/named.pid"; > tkey-gssapi-keytab "/var/lib/samba/bind-dns/dns.keytab"; > > dnssec-enable no; > dnssec-validation auto; > auth-nxdomain no; > }; > > include "/var/lib/samba/bind-dns/named.conf"; > > include "/var/bind/db/blacklisted.zones"; > > zone "localhost" IN { > type master; > file "pri/localhost.zone"; > allow-update { none; }; > notify no; > }; > > zone "127.in-addr.arpa" IN { > type master; > file "pri/127.zone"; > allow-update { none; }; > notify no; > }; > > > > > Am 13.11.18 um 13:10 schrieb Rowland Penny via samba: >> On Tue, 13 Nov 2018 12:36:20 +0100 >> admins aixtema via samba <samba at lists.samba.org> wrote: >> >>> Did all your advices, but nothing works >>> >>> it still creates the tempRANDOMID folder wtih >>> >>> bind-dns/empty >>> etc/smb.conf >>> private/all contains from var/lib/samba/private >>> state/sysvol >>> >>> >>> but the dns still fails with the same error as my first post >> >> I think you need to fix the DNS problem first, I have just upgraded a >> Samba DC running on Ubuntu 18.04 to 4.9.2 and it works for me. >> >> Can you post the following: >> >> /etc/hostname >> /etc/hosts >> /etc/resolv.conf >> /etc/krb5.conf >> smb.conf >> Your named conf file(s) >> >> I know you may have already have posted some of them, but please post >> them all. >> >> Rowland >> > > Mit freundlichen Grüßen, > René Fuchs > >Mit freundlichen Grüßen, René Fuchs -- *********************************************** aixtema GmbH René Fuchs Philipsstr. 8, 52068 Aachen, Germany Tel.: +49 241 70515-1323, Fax: +49 241 70515-15 mailto:r.fuchs at aixtema.de WWW: http://www.aixtema.de Shop: http://shop.aixtema.de Geschaeftsfuehrer: Oliver Rossbruch HRB 8201, Amtsgericht Aachen USt.-Id-Nr. DE 210 906 744 St.-Nr. 201/5942/3737, Finanzamt Aachen Stadt ***********************************************
On Tue, 13 Nov 2018 13:38:36 +0100 admins aixtema via samba <samba at lists.samba.org> wrote:> > > cat /etc/hostname > phoenix > > > cat /etc/hosts > > # IPv4 and IPv6 localhost aliases > 127.0.0.1 localhost > ::1 localhost > 192.168.1.123 phoenix phoenix.aixtema.deWrong way around, should be: 192.168.1.123 phoenix.aixtema.de phoenix> 192.168.1.124 xineohp xineohp.aixtema.deIwould remove the line above, whatever it is, it should be found a DNS search.> > > cat /etc/resolv.conf > search phoenix.aixtema.deNo, it should just be 'search aixtema.de'> nameserver 192.168.1.123Everything else looks okay except for:> named.conf > include "/var/bind/db/blacklisted.zones";I haven't a clue what is in that file, but I would remove that line. Rowland
Hai, As Rowland said also, your config looks better the we often see.. :-) I can only see one thing thats little off in bind is the auth-nxdomain. https://wiki.samba.org/index.php/Setting_up_a_BIND_DNS_Server Shows auth-nxdomain yes; You ADDC is the Authoritive DNS server for your domains so i suggest turn it on. Greetz, Louis> -----Oorspronkelijk bericht----- > Van: samba [mailto:samba-bounces at lists.samba.org] Namens > admins aixtema via samba > Verzonden: dinsdag 13 november 2018 13:46 > Aan: samba at lists.samba.org > Onderwerp: Re: [Samba] Online Backup fails > > When i change to dns-backend=SAMBA_INTERNAL the backup works, but not > with BIND9_DLZ > > Am 13.11.18 um 13:38 schrieb admins aixtema via samba: > > > > > > cat /etc/hostname > > phoenix > > > > > > cat /etc/hosts > > > > # IPv4 and IPv6 localhost aliases > > 127.0.0.1 localhost > > ::1 localhost > > 192.168.1.123 phoenix phoenix.aixtema.de > > 192.168.1.124 xineohp xineohp.aixtema.de > > > > > > cat /etc/resolv.conf > > search phoenix.aixtema.de > > nameserver 192.168.1.123 > > > > > > cat /etc/krb5.conf > > [libdefaults] > > default_realm = AIXTEMA.DE > > dns_lookup_realm = false > > dns_lookup_kdc = true > > > > > > smb.conf > > > > # Global parameters > > [global] > > interfaces = ens4 > > log file = /var/log/samba/%m.log > > logging = file > > netbios name = PHOENIX > > realm = AIXTEMA.DE > > workgroup = AIXTEMA > > server role = active directory domain controller > > server services = s3fs, rpc, nbt, wrepl, ldap, cldap, kdc, > > drepl, winbindd, ntp_signd, kcc, dnsupdate > > time server = Yes > > tls cafile = tls/ca.pem > > tls certfile = tls/cert.pem > > tls enabled = Yes > > tls keyfile = tls/key.pem > > winbind refresh tickets = Yes > > spoolssd:prefork_child_min_life = 60 > > spoolssd:prefork_max_allowed_clients = 100 > > spoolssd:prefork_spawn_rate = 5 > > spoolssd:prefork_max_children = 25 > > spoolssd:prefork_min_children = 5 > > rpc_daemon:spoolssd = fork > > rpc_server:spoolss = external > > spoolss: architecture = Windows x64 > > idmap_ldb:use rfc2307 = yes > > include = /etc/samba/printers.conf > > > > > > [netlogon] > > path = /var/lib/samba/sysvol/aixtema.de/scripts > > read only = No > > > > [sysvol] > > path = /var/lib/samba/sysvol > > read only = No > > > > [printers] > > browseable = No > > create mask = 0700 > > path = /var/spool/samba/ > > printable = Yes > > read only = No > > > > [print$] > > create mask = 0755 > > inherit permissions = Yes > > path = /var/lib/samba/drivers > > read only = No > > write list = Administrator > > > > > > > > named.conf > > > > > > options { > > directory "/var/bind"; > > > > // uncomment the following lines to turn on DNS forwarding, > > // and change the forwarding ip address(es) : > > //forward first; > > forwarders { > > ISP DNS; > > ISP DNS; > > }; > > > > listen-on-v6 { none; }; > > > > listen-on { 127.0.0.1; 192.168.1.123; }; > > // to allow only specific hosts to use the DNS server: > > allow-query { > > 127.0.0.1; > > 192.168.1.0/21; > > }; > > > > pid-file "/run/named/named.pid"; > > tkey-gssapi-keytab "/var/lib/samba/bind-dns/dns.keytab"; > > > > dnssec-enable no; > > dnssec-validation auto; > > auth-nxdomain no; > > }; > > > > include "/var/lib/samba/bind-dns/named.conf"; > > > > include "/var/bind/db/blacklisted.zones"; > > > > zone "localhost" IN { > > type master; > > file "pri/localhost.zone"; > > allow-update { none; }; > > notify no; > > }; > > > > zone "127.in-addr.arpa" IN { > > type master; > > file "pri/127.zone"; > > allow-update { none; }; > > notify no; > > }; > > > > > > > > > > Am 13.11.18 um 13:10 schrieb Rowland Penny via samba: > >> On Tue, 13 Nov 2018 12:36:20 +0100 > >> admins aixtema via samba <samba at lists.samba.org> wrote: > >> > >>> Did all your advices, but nothing works > >>> > >>> it still creates the tempRANDOMID folder wtih > >>> > >>> bind-dns/empty > >>> etc/smb.conf > >>> private/all contains from var/lib/samba/private > >>> state/sysvol > >>> > >>> > >>> but the dns still fails with the same error as my first post > >> > >> I think you need to fix the DNS problem first, I have just > upgraded a > >> Samba DC running on Ubuntu 18.04 to 4.9.2 and it works for me. > >> > >> Can you post the following: > >> > >> /etc/hostname > >> /etc/hosts > >> /etc/resolv.conf > >> /etc/krb5.conf > >> smb.conf > >> Your named conf file(s) > >> > >> I know you may have already have posted some of them, but > please post > >> them all. > >> > >> Rowland > >> > > > > Mit freundlichen Grüßen, > > René Fuchs > > > > > > Mit freundlichen Grüßen, > René Fuchs > > > -- > *********************************************** > aixtema GmbH > René Fuchs > Philipsstr. 8, 52068 Aachen, Germany > Tel.: +49 241 70515-1323, Fax: +49 241 70515-15 > mailto:r.fuchs at aixtema.de > > WWW: http://www.aixtema.de > Shop: http://shop.aixtema.de > > Geschaeftsfuehrer: Oliver Rossbruch > HRB 8201, Amtsgericht Aachen > USt.-Id-Nr. DE 210 906 744 > St.-Nr. 201/5942/3737, Finanzamt Aachen Stadt > *********************************************** > > > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/options/samba >