Step 10 Configure kerberos DNS dynamic updates ERROR
Adam Thorn
alt36 at cam.ac.uk
Wed Jul 13 05:09:24 MDT 2011
I think the wiki might need updating: that line shouldn't be in your
named.conf. Here's what my bind files look like.. (alpha16 and Debian
Squeze) - some are just the Debian defaults, but I'm putting them in for
completeness. The important point to note is that the named.conf.update
file needs to be included in the zone definition for any zone you want
to be updated - bind's update-policy option "may only be defined in a
zone clause":
http://www.zytrax.com/books/dns/ch7/xfer.html#update-policy
On to the config files.
/etc/bind/named.conf
include "/etc/bind/named.conf.options";
include "/etc/bind/named.conf.local";
include "/etc/bind/named.conf.options";
/etc/bind/named.conf.options
options {
directory "/usr/local/samba/private/dns";
authx-nodomain no;
listen-on-v6 { any };
}
[NB: make sure that your bind/named user can write to whatever you pick
for the "directory" option]
/etc/bind/named.conf.local
zone "ad.example.com" {
type master;
file "ad.example.com.zone"
check-names ignore;
include "/usr/local/samba/private/named.conf.update";
}
zone "_msdcs.ad.example.com {
type master;
file "_msdcs.ad.example.com.zone"
check-names ignore;
include "/usr/local/samba/private/named.conf.update";
}
On Tue, 2011-07-12 at 19:12 -0300, ariel mannelli wrote:
> Hi There, I follow the Official HOWTO and i'm stuck at Step 10. I use Debian
> Squeeze and smb Version 4.0.0alpha17-GIT-8a234cb.
> When i include in /etc/bind/named.conf this file
> /usr/local/samba/private/named.conf.update,
> in /etc/default/bind9 i put the enviroment variables and chowned bind.bind
> dns.keytab and put the content of the HOWTO in the file
> /etc/bind/named.conf.options i get this error when i restart bind9 (version
> 9.7.3)
> Jul 12 08:34:21 samba named[30823]: starting BIND 9.7.3 -u bind
> Jul 12 08:34:21 samba named[30823]: built with '--prefix=/usr'
> '--mandir=/usr/share/man' '--infodir=/usr/share/info'
> '--sysconfdir=/etc/bind' '--localstatedir=/var' '--enable-threads'
> '--enable-largefile' '--with-libtool' '--enable-shared' '--enable-static'
> '--with-openssl=/usr' '--with-gssapi=/usr' '--with-gnu-ld'
> '--with-dlz-postgres=no' '--with-dlz-mysql=no' '--with-dlz-bdb=yes'
> '--with-dlz-filesystem=yes' '--with-dlz-ldap=yes' '--with-dlz-stub=yes'
> '--with-geoip=/usr' '--enable-ipv6' 'CFLAGS=-fno-strict-aliasing
> -DDIG_SIGCHASE -O2' 'LDFLAGS=' 'CPPFLAGS='
> Jul 12 08:34:21 samba named[30823]: adjusted limit on open files from 1024
> to 1048576
> Jul 12 08:34:21 samba named[30823]: found 1 CPU, using 1 worker thread
> Jul 12 08:34:21 samba named[30823]: using up to 4096 sockets
> Jul 12 08:34:21 samba named[30823]: loading configuration from
> '/etc/bind/named.conf'
> Jul 12 08:34:21 samba named[30823]:
> /usr/local/samba/private/named.conf.update:2: unknown option 'update-policy'
> Jul 12 08:34:21 samba named[30823]: loading configuration: failure
> Jul 12 08:34:21 samba named[30823]: exiting (due to fatal error)
>
> I apretiate your help!
> Ariel Mannelli
More information about the samba-technical
mailing list