Displaying 5 results from an estimated 5 matches for "dc03x".
2018 Aug 21
3
Samba 4.8.4 + BIND 9.9.4 - possibility of nonsecure DNS updates
...ba.org/index.php/Testing_Dynamic_DNS_Updates
https://wiki.samba.org/index.php/BIND9_DLZ_DNS_Back_End#TroubleshootingAnd tried everything possible. Writing mail to lists is the last instance for me...On every of our DCs:
samba_dnsupdate --verbose
IPs: ['192.168.45.1']
Looking for DNS entry A dc03x.samdom.svmetal.cz 192.168.45.1 as dc03x.samdom.svmetal.cz.
Looking for DNS entry NS samdom.svmetal.cz dc03x.samdom.svmetal.cz as samdom.svmetal.cz.
Looking for DNS entry NS _msdcs.samdom.svmetal.cz dc03x.samdom.svmetal.cz as _msdcs.samdom.svmetal.cz.
Looking for DNS entry A samdom.svmetal.cz 192.16...
2018 Aug 21
0
Samba 4.8.4 + BIND 9.9.4 - possibility of nonsecure DNS updates
...ynamic_DNS_Updates
> https://wiki.samba.org/index.php/BIND9_DLZ_DNS_Back_End#Troubl
eshootingAnd tried everything possible. Writing mail to lists is > the last instance for me...On every of our DCs:
> samba_dnsupdate --verbose
> IPs: ['192.168.45.1']
> Looking for DNS entry A dc03x.samdom.svmetal.cz 192.168.45.1
> as dc03x.samdom.svmetal.cz.
> Looking for DNS entry NS samdom.svmetal.cz
> dc03x.samdom.svmetal.cz as samdom.svmetal.cz.
> Looking for DNS entry NS _msdcs.samdom.svmetal.cz
> dc03x.samdom.svmetal.cz as _msdcs.samdom.svmetal.cz.
> Looking for DNS...
2018 Aug 22
1
Samba 4.8.4 + BIND 9.9.4 - possibility of nonsecure DNS updates
...but finally I just switched to internal DNS.
It's been a long time, I'm gradually recalling how it was.
> OK, try this:
>
> samba_dnsupdate --verbose --all-names --use-samba-tool
samba_dnsupdate --verbose --all-names --use-samba-tool
IPs: ['192.168.45.1']
force update: A dc03x.samdom.svmetal.cz 192.168.45.1
force update: NS samdom.svmetal.cz dc03x.samdom.svmetal.cz
force update: NS _msdcs.samdom.svmetal.cz dc03x.samdom.svmetal.cz
force update: A samdom.svmetal.cz 192.168.45.1
force update: SRV _ldap._tcp.samdom.svmetal.cz dc03x.samdom.svmetal.cz 389
force update: SRV _ld...
2018 Aug 21
1
Samba 4.8.4 + BIND 9.9.4 - possibility of nonsecure DNS updates
...internal DNS as we have lived with the previous three years, but I was curious about why the Bind could not work too.
> Please post the log where an update fails.
There is nothing in /var/log/samba/log.samba even with "log level = dns:10".
>From /var/log/messages:
Aug 21 14:22:08 dc03x named[15860]: samba_dlz: starting transaction on zone samdom.svmetal.cz
Aug 21 14:22:08 dc03x named[15860]: client 192.168.45.26#63596: update 'samdom.svmetal.cz/IN' denied
Aug 21 14:22:08 dc03x named[15860]: samba_dlz: cancelling transaction on zone samdom.svmetal.cz
systemctl status name...
2018 Aug 24
0
Samba 4.8.4 + BIND 9.9.4 - possibility of nonsecure DNS updates
I have one more interesting thing.
I copied DC01 to LAB environment. I demoted "dead" servers DC02X and
DC03X. After that I changed DNS backend to BIND.
Now samba_dnsupdate --verbose --all-names run as expected (without TSIG
errors).
Also, I have one problematic client joined to domain during
troubleshooting and it cannot do DNS update with Bind. So I also cloned
it to LAB like DC01.
At the first start Bi...