thr3ads.net - samba - [Samba] DNS /16 reverse zone issues with children and octets [Nov 2020]

If this information is useful, please help other people find it:
Share via:

Paul Littlefield

2020-Nov-03 10:24 UTC

[Samba] DNS /16 reverse zone issues with children and octets

Hello Samba List,

I have 2 problems with dns - seeing the child entries and a zone with an extra
octet.


First...


I have created a /16 reverse zone as per the wiki page
(https://wiki.samba.org/index.php/DNS_Administration#To_create_a_.2F24_reverse_zone)...

$ samba-tool dns zonecreate dc3 130.130.in-addr.arpa

$ samba-tool dns zonelist --reverse dc3

   pszZoneName                 : 130.130.in-addr.arpa
   Flags                       : DNS_RPC_ZONE_DSINTEGRATED
DNS_RPC_ZONE_UPDATE_SECURE
   ZoneType                    : DNS_ZONE_TYPE_PRIMARY
   Version                     : 50
   dwDpFlags                   : DNS_DP_AUTOCREATED DNS_DP_DOMAIN_DEFAULT
DNS_DP_ENLISTED
   pszDpFqdn                   : DomainDnsZones.mydomain.com

$ samba-tool dns add dc3 130.130.in-addr.arpa 218.0 PTR dc3.mydomain.com
$ samba-tool dns add dc3 130.130.in-addr.arpa 219.0 PTR dc4.mydomain.com
$ samba-tool dns add dc3 130.130.in-addr.arpa 201.0 PTR server2.mydomain.com
etc

$ samba-tool dns query dc3 130.130.in-addr.arpa @ ALL

   Name=, Records=3, Children=0
     SOA: serial=32, refresh=900, retry=600, expire=86400, minttl=3600,
ns=dc3.mydomain.com., email=hostmaster.mydomain.com. (flags=600000f0, serial=32,
ttl=3600)
     NS: dc3.mydomain.com. (flags=600000f0, serial=1, ttl=3600)
     NS: dc4.mydomain.com. (flags=600000f0, serial=2, ttl=900)
   Name=0, Records=0, Children=15

How do I see the 'Children=15' entries using the samba-tool on the
command line?



Next...


When this /16 reverse zone is viewed in the Windows DNS Manager GUI an extra
octet appears in the IP address range and 3 question marks appear in a dialog
box.

Name               Type             Data
130.130.0.0.218    Pointer (PTR)    dc3.mydomain.com



Fully qualified domain name (FQDN):
???.in-addr.arpa

Host name:
dc3.mydomain.com



The screenshot of the offending article is here:-

https://ibb.co/gPZy7Ry



$ apt-cache policy samba
samba:
   Installed: 2:4.7.6+dfsg~ubuntu-0ubuntu2.21




Hope you can help.


Regards,

Paully

Mani Wieser

2020-Nov-03 11:33 UTC

head link

[Samba] DNS /16 reverse zone issues with children and octets

Hi Paully

I can help with showing the "subgroup" 0: instead of @ use 0

samba-tool dns query dc3 130.130.in-addr.arpa 0 ALL

the additional 0 might be a bug in 4.7, which is end of life; I would 
suggest to upgrade first......but Rowland will know more about it probably.

br

Mani


On 03.11.2020 11:24, Paul Littlefield via samba wrote:> Hello Samba List,
>
> I have 2 problems with dns - seeing the child entries and a zone with 
> an extra octet.
>
>
> First...
>
>
> I have created a /16 reverse zone as per the wiki page 
>
(https://wiki.samba.org/index.php/DNS_Administration#To_create_a_.2F24_reverse_zone)...
>
> $ samba-tool dns zonecreate dc3 130.130.in-addr.arpa
>
> $ samba-tool dns zonelist --reverse dc3
>
> ? pszZoneName???????????????? : 130.130.in-addr.arpa
> ? Flags?????????????????????? : DNS_RPC_ZONE_DSINTEGRATED 
> DNS_RPC_ZONE_UPDATE_SECURE
> ? ZoneType??????????????????? : DNS_ZONE_TYPE_PRIMARY
> ? Version???????????????????? : 50
> ? dwDpFlags?????????????????? : DNS_DP_AUTOCREATED 
> DNS_DP_DOMAIN_DEFAULT DNS_DP_ENLISTED
> ? pszDpFqdn?????????????????? : DomainDnsZones.mydomain.com
>
> $ samba-tool dns add dc3 130.130.in-addr.arpa 218.0 PTR dc3.mydomain.com
> $ samba-tool dns add dc3 130.130.in-addr.arpa 219.0 PTR dc4.mydomain.com
> $ samba-tool dns add dc3 130.130.in-addr.arpa 201.0 PTR 
> server2.mydomain.com
> etc
>
> $ samba-tool dns query dc3 130.130.in-addr.arpa @ ALL
>
> ? Name=, Records=3, Children=0
> ??? SOA: serial=32, refresh=900, retry=600, expire=86400, minttl=3600, 
> ns=dc3.mydomain.com., email=hostmaster.mydomain.com. (flags=600000f0, 
> serial=32, ttl=3600)
> ??? NS: dc3.mydomain.com. (flags=600000f0, serial=1, ttl=3600)
> ??? NS: dc4.mydomain.com. (flags=600000f0, serial=2, ttl=900)
> ? Name=0, Records=0, Children=15
>
> How do I see the 'Children=15' entries using the samba-tool on the 
> command line?
>
>
>
> Next...
>
>
> When this /16 reverse zone is viewed in the Windows DNS Manager GUI an 
> extra octet appears in the IP address range and 3 question marks 
> appear in a dialog box.
>
> Name?????????????? Type???????????? Data
> 130.130.0.0.218??? Pointer (PTR)??? dc3.mydomain.com
>
>
>
> Fully qualified domain name (FQDN):
> ???.in-addr.arpa
>
> Host name:
> dc3.mydomain.com
>
>
>
> The screenshot of the offending article is here:-
>
> https://ibb.co/gPZy7Ry
>
>
>
> $ apt-cache policy samba
> samba:
> ? Installed: 2:4.7.6+dfsg~ubuntu-0ubuntu2.21
>
>
>
>
> Hope you can help.
>
>
> Regards,
>
> Paully
>
>

Rowland penny

2020-Nov-03 11:49 UTC

head link

[Samba] DNS /16 reverse zone issues with children and octets

On 03/11/2020 10:24, Paul Littlefield via samba wrote:>
> $ samba-tool dns query dc3 130.130.in-addr.arpa @ ALL
>
> ? Name=, Records=3, Children=0
> ??? SOA: serial=32, refresh=900, retry=600, expire=86400, minttl=3600, 
> ns=dc3.mydomain.com., email=hostmaster.mydomain.com. (flags=600000f0, 
> serial=32, ttl=3600)
> ??? NS: dc3.mydomain.com. (flags=600000f0, serial=1, ttl=3600)
> ??? NS: dc4.mydomain.com. (flags=600000f0, serial=2, ttl=900)
> ? Name=0, Records=0, Children=15
>
> How do I see the 'Children=15' entries using the samba-tool on the 
> command line?I am not sure you can with the Samba tools, I think you will need to 
query each record individually.>
> When this /16 reverse zone is viewed in the Windows DNS Manager GUI an 
> extra octet appears in the IP address range and 3 question marks 
> appear in a dialog box.
>
> Name?????????????? Type???????????? Data
> 130.130.0.0.218??? Pointer (PTR)??? dc3.mydomain.com
>
> Fully qualified domain name (FQDN):
> ???.in-addr.arpa
That is strange, first thought is that it is possibly a Windows bug, if 
anything Windows should refuse to show any IPv4 address with more than 4 
octets. Have you tried checking the records in AD with ldbsearch ?

Rowland

Paul Littlefield

2020-Nov-03 12:02 UTC

head link

[Samba] DNS /16 reverse zone issues with children and octets

On 03/11/2020 11:33, Mani Wieser via samba wrote:> I can help with showing the "subgroup" 0: instead of @ use 0
> 
> samba-tool dns query dc3 130.130.in-addr.arpa 0 ALL
boom, that sorted it, thanks :) another example to add in the Samba Wiki
perhaps? ;-)

  > the additional 0 might be a bug in 4.7, which is end of life; I would
suggest to upgrade first......but Rowland will know more about it probably.
4.7 end of life... eeek. I'm on Ubuntu 18.04.5 LTS and still seeing
4.7.6+dfsg~ubuntu-0ubuntu2.21

Is there an official Ubuntu repo for Samba?

Paully

Paul Littlefield

2020-Nov-03 12:05 UTC

head link

[Samba] DNS /16 reverse zone issues with children and octets

On 03/11/2020 11:49, Rowland penny via samba wrote:> That is strange, first thought is that it is possibly a Windows bug, if
anything Windows should refuse to show any IPv4 address with more than 4 octets.
Have you tried checking the records in AD with ldbsearch ?
I haven't tried that 'ldbsearch' yet - can you give me an example
please?

Forward and reverse DNS lookups work...

$ host dc3
dc3.bigjigstoys.com has address 130.130.0.218

$ host 130.130.0.218
218.0.130.130.in-addr.arpa domain name pointer dc3.mydomain.com.

...errr, so not sure where the extra octet is appearing from in the Windows
GUI!?

:)

Paully

Reasonably Related Threads

Search for more apparently analagous threads

samba - Nov 2020 - DNS /16 reverse zone issues with children and octets

[Samba] DNS /16 reverse zone issues with children and octets

[Samba] DNS /16 reverse zone issues with children and octets

[Samba] DNS /16 reverse zone issues with children and octets

[Samba] DNS /16 reverse zone issues with children and octets

[Samba] DNS /16 reverse zone issues with children and octets

Reasonably Related Threads