Multi-Samba4 DC Domain With Replication/DNS Issues
Matthieu Patou
mat at samba.org
Sat Dec 3 12:24:17 MST 2011
Hello Ted,
On 03/12/2011 17:23, Ted Salmon wrote:
>
>> The thing is that in order for replication to work correctly you need a
>> lot of DNS records.
>>
>> So it seems that you still have them, let's try to fix them.
>>
>> Can you enable the debug in bind like indicated here:
>> http://www.matws.net/pres/sambaxp_2011/#%2816%29 it's page 16 of my
>> presentation at last XP.
>> Also check that you can get a kerberos ticket on the second dc:
>> kinit administrator
> kinit Administrator works great on the second DC (see pastebin). I also turned on debugging per your link and the update-debug.log file is completely blank and no errors are seen in syslog :(
What is the IP of the DNS server on the second server (/etc/resolv.conf)
Can you make trace (with tcpdump) on the second server for all the
packet for DNS (ie. tcpdump -i any -n port 53).
>
>
>> Then restart samba and look at the debug file, you might find
>> informations on why your updates from second DC are not allowed on the
>> first DC.
> I rebooted both DCs and waited roughly 15 mins, nothing in the error log(s) and no new entries in DNS. My query log does seem to be getting flooded for requests on the UID of the secondary DC made by the PDC as shown in the pastebin.
Quite logical, the first DC most probably want to send info to the
second DC, and by default we try to notify this to the 2nd DC every 15
seconds ...
>> Matthieu.
>>
>> --
>> Matthieu Patou
>> Samba Team
>> http://samba.org
>>
>>
>
--
Matthieu Patou
Samba Team
http://samba.org
More information about the samba-technical
mailing list