James B. Byrne
2024-Feb-14 21:48 UTC
[Samba] Samba trying to connect to a non-existant DC for NTP?
On Wed Feb 14 21:18:09 UTC 2024 Rowland Penny rpenny at samba.org wrote:> What does this produce:samba-ldbsearch --cross-ncs --show-binary -H /var/db/samba4/private/sam.ldb -b 'DC=brockley,DC=harte-lyne,DC=ca' -s sub '(&(objectclass=dnsnode)(name=_ldap._tcp.pdc))' # record 1 dn: DC=_ldap._tcp.pdc,DC=_msdcs.brockley.harte-lyne.ca,CN=MicrosoftDNS,DC=ForestDnsZones,DC=brockley,DC=harte-lyne,DC=ca objectClass: top objectClass: dnsNode instanceType: 4 whenCreated: 20200626203452.0Z uSNCreated: 5218 showInAdvancedViewOnly: TRUE name: _ldap._tcp.pdc objectGUID: 7ae43ab4-454b-4aae-b411-f151c32a9078 objectCategory: CN=Dns-Node,CN=Schema,CN=Configuration,DC=brockley,DC=harte-lyne,DC=ca dc: _ldap._tcp.pdc dnsRecord: NDR: struct dnsp_DnssrvRpcRecord wDataLength : 0x0027 (39) wType : DNS_TYPE_SRV (33) version : 0x05 (5) rank : DNS_RANK_ZONE (240) flags : 0x0000 (0) dwSerial : 0x0000006e (110) dwTtlSeconds : 0x00000384 (900) dwReserved : 0x00000000 (0) dwTimeStamp : 0x00000000 (0) data : union dnsRecordData(case 33) srv: struct dnsp_srv wPriority : 0x0000 (0) wWeight : 0x0064 (100) wPort : 0x0185 (389) nameTarget : SMB4-1.brockley.harte-lyne.ca dnsRecord: NDR: struct dnsp_DnssrvRpcRecord wDataLength : 0x0027 (39) wType : DNS_TYPE_SRV (33) version : 0x05 (5) rank : DNS_RANK_ZONE (240) flags : 0x0000 (0) dwSerial : 0x0000006e (110) dwTtlSeconds : 0x00000384 (900) dwReserved : 0x00000000 (0) dwTimeStamp : 0x00000000 (0) data : union dnsRecordData(case 33) srv: struct dnsp_srv wPriority : 0x0000 (0) wWeight : 0x0064 (100) wPort : 0x0185 (389) nameTarget : smb4-2.brockley.harte-lyne.ca whenChanged: 20200721154750.0Z uSNChanged: 5347 distinguishedName: DC=_ldap._tcp.pdc,DC=_msdcs.brockley.harte-lyne.ca,CN=MicrosoftDNS,DC=ForestDnsZones,DC=brockley,DC=harte-lyne,DC=ca # returned 1 records # 1 entries # 0 referrals -- *** e-Mail is NOT a SECURE channel *** Do NOT transmit sensitive data via e-Mail Unencrypted messages have no legal claim to privacy Do NOT open attachments nor follow links sent by e-Mail James B. Byrne mailto:ByrneJB at Harte-Lyne.ca Harte & Lyne Limited http://www.harte-lyne.ca 9 Brockley Drive vox: +1 905 561 1241 Hamilton, Ontario fax: +1 905 561 0757 Canada L8E 3C3
Rowland Penny
2024-Feb-14 22:02 UTC
[Samba] Samba trying to connect to a non-existant DC for NTP?
On Wed, 14 Feb 2024 16:48:01 -0500 "James B. Byrne via samba" <samba at lists.samba.org> wrote:> On Wed Feb 14 21:18:09 UTC 2024 Rowland Penny rpenny at samba.org wrote: > > > What does this produce: > > samba-ldbsearch --cross-ncs --show-binary -H > /var/db/samba4/private/sam.ldb -b 'DC=brockley,DC=harte-lyne,DC=ca' > -s sub '(&(objectclass=dnsnode)(name=_ldap._tcp.pdc))' > > # record 1 > dn: > DC=_ldap._tcp.pdc,DC=_msdcs.brockley.harte-lyne.ca,CN=MicrosoftDNS,DC=ForestDnsZones,DC=brockley,DC=harte-lyne,DC=ca > objectClass: top > objectClass: dnsNode > instanceType: 4 > whenCreated: 20200626203452.0Z > uSNCreated: 5218 > showInAdvancedViewOnly: TRUE > name: _ldap._tcp.pdc > objectGUID: 7ae43ab4-454b-4aae-b411-f151c32a9078 > objectCategory: > CN=Dns-Node,CN=Schema,CN=Configuration,DC=brockley,DC=harte-lyne,DC=ca > dc: _ldap._tcp.pdc > dnsRecord: NDR: struct dnsp_DnssrvRpcRecord > wDataLength : 0x0027 (39) > wType : DNS_TYPE_SRV (33) > version : 0x05 (5) > rank : DNS_RANK_ZONE (240) > flags : 0x0000 (0) > dwSerial : 0x0000006e (110) > dwTtlSeconds : 0x00000384 (900) > dwReserved : 0x00000000 (0) > dwTimeStamp : 0x00000000 (0) > data : union dnsRecordData(case 33) > srv: struct dnsp_srv > wPriority : 0x0000 (0) > wWeight : 0x0064 (100) > wPort : 0x0185 (389) > nameTarget : SMB4-1.brockley.harte-lyne.ca > > dnsRecord: NDR: struct dnsp_DnssrvRpcRecord > wDataLength : 0x0027 (39) > wType : DNS_TYPE_SRV (33) > version : 0x05 (5) > rank : DNS_RANK_ZONE (240) > flags : 0x0000 (0) > dwSerial : 0x0000006e (110) > dwTtlSeconds : 0x00000384 (900) > dwReserved : 0x00000000 (0) > dwTimeStamp : 0x00000000 (0) > data : union dnsRecordData(case 33) > srv: struct dnsp_srv > wPriority : 0x0000 (0) > wWeight : 0x0064 (100) > wPort : 0x0185 (389) > nameTarget : smb4-2.brockley.harte-lyne.ca >That is what I expected, you have two SRV records for the PDC_Emulator FSMO role. As there should only be one, you need to remove the incorrect one. Rowland
James B. Byrne
2024-Feb-15 14:33 UTC
[Samba] Samba trying to connect to a non-existant DC for NTP?
On Wed Feb 14 22:02:48 UTC 2024 Rowland Penny rpenny at samba.org wrote:> > That is what I expected, you have two SRV records for the PDC_Emulator > FSMO role. As there should only be one, you need to remove the incorrect > one. >I cannot translate the information that I possess into a samba-tool dns delete command. When I query dns I see no SRV records. samba-tool dns query smb4-2.brockley.harte-lyne.ca brockley.harte-lyne.ca '@' all -U administrator Password for [BROCKLEY\administrator]: Name=, Records=4, Children=0 SOA: serial=25, refresh=900, retry=600, expire=86400, minttl=3600, ns=smb4-2.brockley.harte-lyne.ca., email=support.harte-lyne.ca. (flags=600000f0, serial=110, ttl=3600) NS: SMB4-1.brockley.harte-lyne.ca. (flags=600000f0, serial=110, ttl=900) NS: smb4-2.brockley.harte-lyne.ca. (flags=600000f0, serial=110, ttl=900) A: 192.168.18.162 (flags=600000f0, serial=110, ttl=900) Name=_msdcs, Records=0, Children=0 Name=_sites, Records=0, Children=1 Name=_tcp, Records=0, Children=4 Name=_udp, Records=0, Children=2 Name=AKL-M01, Records=1, Children=0 A: 192.168.18.38 (flags=f0, serial=110, ttl=1200) Name=BRWS-MS-V10-49, Records=1, Children=0 A: 192.168.18.81 (flags=f0, serial=110, ttl=1200) Name=BRWS-MS-V10-50, Records=1, Children=0 A: 192.168.18.82 (flags=f0, serial=110, ttl=1200) Name=BRWS-MS-V10-51, Records=1, Children=0 A: 192.168.18.83 (flags=f0, serial=110, ttl=1200) Name=BRWS-MS-V10-52, Records=1, Children=0 A: 192.168.18.84 (flags=f0, serial=110, ttl=1200) Name=BRWS-MS-V11-47, Records=1, Children=0 A: 192.168.18.54 (flags=f0, serial=110, ttl=1200) Name=BRWS-MS-V7-32, Records=1, Children=0 A: 192.168.8.72 (flags=f0, serial=110, ttl=1200) Name=BRWS-MS-V7-35, Records=1, Children=0 A: 192.168.18.34 (flags=f0, serial=110, ttl=1200) Name=BRWS-MS-V7-39, Records=1, Children=0 A: 192.168.18.52 (flags=f0, serial=110, ttl=1200) Name=BRWS-MS-V7-41, Records=1, Children=0 A: 192.168.18.33 (flags=f0, serial=110, ttl=1200) Name=BRWS-MS-V7-42, Records=1, Children=0 A: 192.168.18.32 (flags=f0, serial=110, ttl=1200) Name=BRWS-MS-V7-43, Records=1, Children=0 A: 192.168.18.35 (flags=f0, serial=110, ttl=1200) Name=BRWS-MS-V7-44, Records=1, Children=0 A: 192.168.18.37 (flags=f0, serial=110, ttl=1200) Name=BRWS-MS-V7-45, Records=1, Children=0 AAAA: 2002:d8b9:474d:0000:0000:0000:d8b9:474d (flags=f0, serial=110, ttl=1200) Name=BRWS-MS-V7-46, Records=2, Children=0 AAAA: 2002:d8b9:474b:0000:0000:0000:d8b9:474b (flags=f0, serial=110, ttl=1200) A: 216.185.71.75 (flags=f0, serial=110, ttl=1200) Name=BRWS-MS-V7-47, Records=1, Children=0 A: 192.168.18.53 (flags=f0, serial=110, ttl=1200) Name=DESKTOP-DTKISUE, Records=1, Children=0 A: 192.168.18.84 (flags=f0, serial=110, ttl=1200) Name=DESKTOP-IFO1AVO, Records=1, Children=0 A: 192.168.18.83 (flags=f0, serial=110, ttl=1200) Name=DESKTOP-SELG71G, Records=1, Children=0 A: 192.168.18.82 (flags=f0, serial=110, ttl=1200) Name=DomainDnsZones, Records=0, Children=2 Name=ForestDnsZones, Records=0, Children=2 Name=HLL-M25, Records=1, Children=0 A: 192.168.18.101 (flags=f0, serial=110, ttl=1200) Name=smb4-1, Records=1, Children=0 A: 192.168.18.161 (flags=f0, serial=110, ttl=900) Name=SMB4-2, Records=1, Children=0 A: 192.168.18.162 (flags=f0, serial=23, ttl=900) If I extend the domain name to include _udp I get a zone not found error: samba-tool dns query smb4-2.brockley.harte-lyne.ca _udp.brockley.harte-lyne.ca '@' all -U administrator Password for [BROCKLEY\administrator]: ERROR: Record or zone does not exist. The samba-tool dns delete command requires the exact RR record to be deleted. How do I get samba-tool to give me the SRV records for ntp? Thank you for all your help. -- *** e-Mail is NOT a SECURE channel *** Do NOT transmit sensitive data via e-Mail Unencrypted messages have no legal claim to privacy Do NOT open attachments nor follow links sent by e-Mail James B. Byrne mailto:ByrneJB at Harte-Lyne.ca Harte & Lyne Limited http://www.harte-lyne.ca 9 Brockley Drive vox: +1 905 561 1241 Hamilton, Ontario fax: +1 905 561 0757 Canada L8E 3C3