[PATCH] Attempt to replicate DNS zones at domain join time (drepl server crash)
Andrew Bartlett
abartlet at samba.org
Fri Jun 22 02:08:17 MDT 2012
On Fri, 2012-06-22 at 17:17 +1000, Amitay Isaacs wrote:
> Hi Andrew,
>
> On Fri, Jun 22, 2012 at 9:48 AM, Andrew Bartlett <abartlet at samba.org> wrote:
> > On Thu, 2012-06-21 at 23:49 +1000, Andrew Bartlett wrote:
> >> This patch tries to reduce the pain around replicating DNS. We now do
> >> it at join time.
> >>
> >> However, at least during make test, it causes a segfault in the DRS
> >> server, which I can't yet pin down (even with valgrind I don't get a
> >> useful answer).
> >
> > I've found and fixed the segfault issue, so now I want testing of the
> > join.py modifications.
> >
> > https://git.samba.org/?p=abartlet/samba.git/.git;a=shortlog;h=refs/heads/fix-dns-replication
> >
> > If those who are having pain getting DNS replication up and going can
> > try with these 2 patches, I hope this may solve some of the issues.
>
> If the DNS role is not assigned to a (windows) DC, it never replicates
> the DNS partition and also does not have DNS NCs listed in
> msDS-hasMasterNCs. So, it appears that adding DNS NCs in
> msDS-hasMasterNCs attribute is equivalent to adding DNS role to the
> second DC.
>
> May be that'll fix the replication issue. I was under the assumption
> that msDS-hasMasterNCs attribute is set only after the replication is
> complete. But that's not true. It has to be set if the DC is going to
> hold a full replica of the NC.
OK. So, aside from fixing it to use the right attribute, we might be on
the way to a solution then.
> > You still need to run samba_upgradedns after the join, but I'll include
> > that when I get a chance. This should at least mean that the partitions
> > are correctly replicated, which has been the biggest pain point.
>
> Since you have added dns_backend option to join, we can potentially
> short-circuit running samba_upgradedns and run parts of dns provision
> directly.
That's essentially what I want to have happen.
The one query I have is: What happens if the DC we choose to replicate
the rest of the data from doesn't hold the DNS partitions?
Andrew Bartlett
--
Andrew Bartlett http://samba.org/~abartlet/
Authentication Developer, Samba Team http://samba.org
More information about the samba-technical
mailing list