similar to: Floating IP breaks AD replication

Maybe this is a stupid idea, but what we are doing here is using just the domain name for all sorts of services, i.e. LDAP. So instead of pointing a client to dc1.somedom.contoso.com or dc2.somedom.contoso.com, we point them to somedom.contoso.com which is then resolved to both and the client can pick. Best regards Johannes Am Mo., 23. Nov. 2020 um 17:02 Uhr schrieb Rowland penny via samba <

> we point them to somedom.contoso.com which is then > resolved to both and the client can pick I want to avoid Round-Robin DNS > You cannot use CTDB with AD DCs You can. /etc/ctdb/nodes 192.168.30.11 192.168.30.12 /etc/ctdb/public_addresses 192.168.30.10/24 ens18 /etc/ctdb/events/legacy/20.samba-ad.script #!/usr/bin/env bash function monitor_ldap() { ldbsearch -H

> Your DC's really should have fixed IP's Well, they have. But there are still projects which can not use multiple DNS Names. e.g. - https://gitlab.com/gitlab-org/gitlab/-/issues/139 - https://github.com/go-gitea/gitea/issues/6898 So I use an additional floating IP > I cannot recommend anyone using your method Why not? Even if AD replication is quite robust concerning multi

On 23/11/2020 16:50, Sven Wick via samba wrote: > >> You cannot use CTDB with AD DCs > You can. OK, I will change that to 'Do not use CTDB with Samba AD DCs' A cluster is where all the same data is stored on multiple computers but they act as if they were just one computer, which funnily enough is what Samba AD dc's do, so you are wrapping something that acts like one

I currently plan to move my storage to Gluster. One of the anticipated advantages is to have Gluster replicate data among physical nodes, i.e. if one node dies the file service can live on. AD for authentication also replicates nice on distinct physical nodes. So the remaining single point of failure is the samba file service. Is there something more intelligent than: if not \\severA\share

Hai,   I was just reading : https://www.howtoforge.com/tutorial/ata-over-ethernet-aoe-on-debian-8-jessie/   I was wondering, anyone tried AoE for sysvol, so i dont needs replication anymore. Anyone Pro’s and Con’s ?    Or can anyone tell of sysvol is going to be replicated by samba so we dont need scripts anymore.     Greetz,   Louis

Setup a DC using 4.0.3 - all appears to go fine... Setup a second DC and everything works fine to here...but I'm not sure if replication is actually working or not. Here's what I get from ./samba-tool drs showrepl I've also done. [./samba-tool drs kcc -Uadministrator dc2.samba.somedom.local] in an attempt to fix the replication problem. (or what I think is a problem.) [The outbound

Hello, maybe there is someone they can help and answer a question why i get these network screen on my ctdb clusters. I have two ctdb clusters. One physical and one in a vmware enviroment. So when i transfer any files (copy) in a samba share so i get such network curves with performance breaks. I dont see that the transfer will stop but why is that so? can i change anything or does anybody know

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Am 02.02.2015 um 13:30 schrieb Sven Schwedas: > On 2015-02-02 12:56, Lars Hanke wrote: >> I currently plan to move my storage to Gluster. One of the >> anticipated advantages is to have Gluster replicate data among >> physical nodes, i.e. if one node dies the file service can live >> on. >> >> AD for

Hi, i need some help. We have two Networks. A CTDB Cluster and one domain controller in the same network. All other domain controller are outside this network. They are both connected with a firewall / router. We activated netbios over tcp on the other domain controllers outside but it seems that when we remove the single internal domain controller ctdb will not start with the following error.

I''ve been trying to install Ferret on RedHat 7.3, Ruby 1.8 (let me know if more details would be helpful) using the gem install. I''ve tried every version >10 and it installs, but I get errors: Building native extensions. This could take a while... In file included from q_filtered_query.c:1: search.h:683: array size missing in ''comparables'' make: ***

Hi, I am in the middle of creating (or should that be re-creating) my test domain, creation of the first DC went without incidence, so I moved on to the second DC and this is where the problems started. I downloaded samba 4.3.1 and compiled it, I then setup bind9 etc and joined the new DC to the domain, everything seemed ok, so I then started testing DNS. This is where I found that my nice

Hello, is there a way to cluster samba4 with ctdb? The old [global] parameters of samba3 Will not work: Clustering=yes <--unknown with testparm Idmap backend= tdb2 <--unknown with testparm Greeetings Daniel ----------------------------------------------- EDV Daniel M?ller Leitung EDV Tropenklinik Paul-Lechler-Krankenhaus Paul-Lechler-Str. 24 72076 T?bingen Tel.: 07071/206-463, Fax:

Hi Rowland, I have similar problem with sernet 4.2.4 package: no dns entry created and logs are showing NOTAUTH for dnsupdate Here is my work around: New DC joins domain with: --dns-backend=BIND9_DLZ and --server=partnerDC.contoso.com Don't start samba or bind yet !! After that I've to correct some permissions rights on these folders/files (bind can read): - private - dns - dns/* -

Missing features from memory from following this mailinglist: - Win7 join to AD still requires two registry changes. - SYSVOL is not replicated, use a cronjob with rsync. - Domain-Trust works only in one direction (which one?). - winbind does not work on DCs, use a separate file server. - Joining an AD requires one of its DCs in the same subnet? - Cluster filesystems destroy TDB files, use CTDB. -

On 2017-09-08 14:21, Rowland Penny via samba wrote: > OK, you have convinced me ;-) If you know any other part of AD DNS that is tricky, I'd be interested to know before AD blows up again. ;-) > Seeing how you seem to know the required 'magic', do you feel up to > sharing it, if you do I will add a page to the Samba wiki. What magic? How to set up dnsmasq as caching proxy?

Hi, on our samba 4 domain member server we use the vfs objects module 'recycle'. Unfortunately we ran into a strange permission problem with deleted folders. The newly created folders in the recycle folder have the wrong permission. The deleted file(s) itself has the correct group (rw) permissions. The shares correct permissions: getfacl Papierkorb/ # file: Papierkorb/ # owner: root #

Hi, we are in the process of testing a migration from our NT Classic Domain with OpenLdap to Samba AD. In our test setup migration of all accounts, groups and computer accounts went well using the classicupgrade path. Next step now is testing how to add a member server for file server services. We were able to get the server to join the domain and also idmapping works mostly as expected.

There is a strange behaviour having two DCs joined in one Domain concerning the [home] share. The [home] is fixed on a replicating gluster volume on both DC. Now creating the users directory with ADUC ex.: \\s4master\home\%username% would do the necessary and the directory is created on both dcs. On the first DC all working fine without any issue but on the second the user cannot login their home

On 2017-09-08 12:26, Rowland Penny via samba wrote: > On Fri, 8 Sep 2017 12:03:53 +0200 > "L.P.H. van Belle via samba" <samba at lists.samba.org> wrote: > >> Thanks Rowland, >> >> Very appriciated. >> The dnsmasq servers are explained, these are no problem in his setup >> sofar i could tell/see. >> > Yes, but do the dnsmasq servers