[Samba] Multiple DNS update issues in samba4

Michael Mol mikemol at gmail.com
Thu May 2 22:08:26 MDT 2013 

So far, I have three machines in the domain:

kaylee -- the DC. Gentoo. samba 4.0.3
saffron -- client. Gentoo. Samba 3.6.12
wash -- client (Also network router). Debian. Samba 3.5.6

I'm using bind_dlz as a backend, for the record.

I've joined saffron to the domain successfully, and the record shows up
in DNS.

$ samba-tool dns query kaylee firefly.michael.mol.name saffron all
  Name=, Records=1, Children=0
    A: 192.168.83.146 (flags=f0, serial=3, ttl=3600)

I *think* I've joined wash to the domain successfully:

# net ads join -U Administrator -S kaylee
Enter Administrator's password:
Using short domain name -- FIREFLY
Joined 'WASH' to realm 'firefly.michael.mol.name'
DNS update failed!

...except for that "DNS update failed" line. From named.log:

02-May-2013 23:06:44.772 database: info: samba_dlz: starting transaction
on zone firefly.michael.mol.name
02-May-2013 23:06:44.774 update: info: client 192.168.83.1#53960:
updating zone 'firefly.michael.mol.name/NONE': update unsuccessful:
wash.firefly.michael.mol.name/A: 'RRset exists (value dependent)'
prerequisite not satisfied (NXRRSET)
02-May-2013 23:06:44.774 database: info: samba_dlz: cancelling
transaction on zone firefly.michael.mol.name
02-May-2013 23:06:44.814 database: info: samba_dlz: starting transaction
on zone firefly.michael.mol.name
02-May-2013 23:06:44.816 database: error: samba_dlz: spnego update failed
02-May-2013 23:06:44.816 update: info: client 192.168.83.1#53960:
updating zone 'firefly.michael.mol.name/NONE': update failed: rejected
by secure update (REFUSED)
02-May-2013 23:06:44.816 database: info: samba_dlz: cancelling
transaction on zone firefly.michael.mol.name

However, when I search for the record:
$ samba-tool dns query kaylee firefly.michael.mol.name wash all
ERROR(runtime): uncaught exception - (9714,
'WERR_DNS_ERROR_NAME_DOES_NOT_EXIST')
  File "/usr/lib64/python2.7/site-packages/samba/netcmd/__init__.py",
line 175, in _run
    return self.run(*args, **kwargs)
  File "/usr/lib64/python2.7/site-packages/samba/netcmd/dns.py", line
974, in run
    None, record_type, select_flags, None, None)

...the record doesn't exist. So that's the first issue I'm struggling
with. It might be worth noting that wash has three IPv4 addresses and
four IPv6 addresses.

The second thing I'm struggling with: The Samba 3 clients aren't
registering their IPv6 addresses, only their IPv4 addresses. If I use
samba-tool to query for kaylee's addresses, I see an A and a AAAA
record. If I query for saffron's address in the same way, I only see an
A record. (I happen to know that saffron has two IPv6 addresses on two
different subnets.)

Anything I can do to diagnose either of these issues further? Wash isn't
getting any of its records recorded, and saffron is only getting its
IPv4 address entered.

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 555 bytes
Desc: OpenPGP digital signature
URL: <http://lists.samba.org/pipermail/samba/attachments/20130503/680f65e5/attachment.pgp>

More information about the samba mailing list