[Samba] Wrong local DNS responses from samba4
Nick Semenkovich
semenko at alum.mit.edu
Sun Apr 21 20:50:06 MDT 2013
FWIW, this policy is called "Register this connection's addresses in DNS"
This turned out to be enabled, and doesn't update the entries. The
permissions on the DNS entries seem correct (with the domain computers
able to update the entries).
With debug mode I see:
Got a dns update request.
Update not allowed for unsigned packet.
Tkey handshake completed
Terminating connection - 'dns_tcp_call_loop:
tstream_read_pdu_blob_recv() - NT_STATUS_CONNECTION_DISCONNECTED'
single_terminate: reason[dns_tcp_call_loop:
tstream_read_pdu_blob_recv() - NT_STATUS_CONNECTION_DISCONNECTED]
Got a dns update request.
update count is 3
Looking at record:
discard_const(update): struct dns_res_rec
name : 'aio2.corp.example.com'
rr_type : DNS_QTYPE_AAAA (0x1C)
rr_class : DNS_QCLASS_ANY (0xFF)
ttl : 0x00000000 (0)
length : 0x0000 (0)
rdata : union dns_rdata(case 0x1C)
ipv6_record : (null)
unexpected : DATA_BLOB length=0
Looking at record:
discard_const(update): struct dns_res_rec
name : 'aio2.corp.example.com'
rr_type : DNS_QTYPE_A (0x1)
rr_class : DNS_QCLASS_ANY (0xFF)
ttl : 0x00000000 (0)
length : 0x0000 (0)
rdata : union dns_rdata(case 0x1)
ipv4_record : (null)
unexpected : DATA_BLOB length=0
Looking at record:
discard_const(update): struct dns_res_rec
name : 'aio2.corp.example.com'
rr_type : DNS_QTYPE_A (0x1)
rr_class : DNS_QCLASS_IN (0x1)
ttl : 0x000004b0 (1200)
length : 0x0004 (4)
rdata : union dns_rdata(case 0x1)
ipv4_record : 192.168.0.152
unexpected : DATA_BLOB length=0
Got a dns update request.
Update not allowed for unsigned packet.
Got a dns update request.
update count is 3
Looking at record:
discard_const(update): struct dns_res_rec
name : 'aio2.corp.example.com'
rr_type : DNS_QTYPE_AAAA (0x1C)
rr_class : DNS_QCLASS_ANY (0xFF)
ttl : 0x00000000 (0)
length : 0x0000 (0)
rdata : union dns_rdata(case 0x1C)
ipv6_record : (null)
unexpected : DATA_BLOB length=0
Looking at record:
discard_const(update): struct dns_res_rec
name : 'aio2.corp.example.com'
rr_type : DNS_QTYPE_A (0x1)
rr_class : DNS_QCLASS_ANY (0xFF)
ttl : 0x00000000 (0)
length : 0x0000 (0)
rdata : union dns_rdata(case 0x1)
ipv4_record : (null)
unexpected : DATA_BLOB length=0
Looking at record:
discard_const(update): struct dns_res_rec
name : 'aio2.corp.example.com'
rr_type : DNS_QTYPE_A (0x1)
rr_class : DNS_QCLASS_IN (0x1)
ttl : 0x000004b0 (1200)
length : 0x0004 (4)
rdata : union dns_rdata(case 0x1)
ipv4_record : 192.168.0.152
unexpected : DATA_BLOB length=0
On Wed, Apr 10, 2013 at 2:28 PM, Marc Muehlfeld <samba at marc-muehlfeld.de> wrote:
> Am 10.04.2013 20:29, schrieb Nick Semenkovich:
>
>> I'll take a look -- by what mechanism do clients update the AD with their
>> current IPs? (I think these were the IPs the machines had during domain
>> creation).
>
>
> In the settings of the IP protocol of the network adapter you can find in
> the DNS tab a checkbox 'register adresses of this connection in DNS' (don't
> know the exact english wording).
>
> Here is a description about dynamic DNS update:
> http://technet.microsoft.com/en-us/library/cc784052%28v=ws.10%29.aspx
> You can try forcing your machine to update the DNS registration:
> # ipconfig /registerdns
>
>
>
>
>
>> [Can I force samba to pass any missing record requests up to the relay
>> DNS?
>
>
> I'm not sure if you can do this. The samba DNS is authorative for the zone.
> Why should not resolvable records of it's own zone forwarded to a foreign
> server?
More information about the samba
mailing list