Cannot see the domain controller
C.J. Adams-Collier KF7BMP
cjac at colliertech.org
Thu May 16 22:38:02 MDT 2013
Have you run mdns-scan ?
Shoot, my dc doesn't even show up when I scan:
cjac at foxtrot:~/public_html/src/samba3_bsd6$ mdns-scan
+ foxtrot._udisks-ssh._tcp.local
+ foxtrot [5e:14:58:d5:6f:91]._workstation._tcp.local
+ 088A4BD7088A._touch-able._tcp.local
+ foxtrot [04:1e:64:fc:6d:d5]._workstation._tcp.local
+ moo2 [00:14:22:fb:26:75]._workstation._tcp.local
+ italc cjac._italc._tcp.local
+ Virtualization Host moo2._libvirt._tcp.local
+ Virtualization Host calcifer._libvirt._tcp.local
+ calcifer [9e:84:e6:70:2a:b5]._workstation._tcp.local
+ calcifer [40:3c:fc:01:35:a5]._workstation._tcp.local
+ san0 [ba:d5:22:48:36:f1]._workstation._tcp.local
+ beefier._ssh._tcp.local
+ beefier._sftp-ssh._tcp.local
+ cjac's remote desktop on calcifer.esd.colliertech.org._rfb._tcp.local
cjac at foxtrot:~/public_html/src/samba3_bsd6$ smbclient //ad0/c$/ -c 'ls pagefile.sys'
WARNING: The "idmap backend" option is deprecated
WARNING: The "idmap uid" option is deprecated
WARNING: The "idmap gid" option is deprecated
Enter cjac's password:
Domain=[ESD] OS=[Windows Server 2008 R2 Enterprise 7601 Service Pack 1] Server=[Windows Server 2008 R2 Enterprise 6.1]
pagefile.sys AHS 15030231040 Wed May 15 03:35:39 2013
38138 blocks of size 8388608. 34558 blocks available
On Thu, 2013-05-16 at 21:22 -0600, admin at blackpenguin.org wrote:
> I got the multicast dns open previously and the issue is happening with
> all the ports open:
> <port protocol="tcp" port="5353"/>
> <port protocol="udp" port="5353"/>
>
>
> On , C.J. Adams-Collier wrote:
> > Open the ports for multicast dns
> > On May 16, 2013 7:35 PM, "BlackPenguin ADMIN" <admin at blackpenguin.org>
> > wrote:
> >
> >> I have samba-ad in the services list in the work zone:
> >>
> >> [root at pdc zones]# firewall-cmd --get-services
> >> cluster-suite pop3s bacula-client smtp ipp radius bacula ftp mdns
> >> samba dhcpv6-client https openvpn imaps samba-client http dns ntp
> >> vnc-server telnet libvirt ssh samba-ad ipsec ipp-client amanda-client
> >> tftp-client nfs tftp libvirt-tls
> >>
> >> The work zone looks like this:
> >>
> >> <?xml version="1.0" encoding="utf-8"?>
> >> <zone>
> >> <short>Work</short>
> >> <description>For use in work areas. You mostly trust the other
> >> computers on networks to not harm your computer. Only selected
> >> incoming connections are accepted.</description>
> >> <service name="ssh"/>
> >> <service name="samba-ad"/>
> >> <service name="mdns"/>
> >> <service name="ipp-client"/>
> >> <service name="dhcpv6-client"/>
> >> </zone>
> >>
> >> The samba-ad.xml looks like this:
> >>
> >> <?xml version="1.0" encoding="utf-8"?>
> >> <service>
> >> <short>Samba</short>
> >> <description>This option allows you to access and participate in
> >> Windows file and printer sharing networks. You need the samba package
> >> installed for this option to be useful.</description>
> >> <port protocol="tcp" port="1024"/>
> >> <port protocol="tcp" port="88"/>
> >> <port protocol="udp" port="88"/>
> >> <port protocol="tcp" port="464"/>
> >> <port protocol="udp" port="464"/>
> >> <port protocol="tcp" port="389"/>
> >> <port protocol="tcp" port="636"/>
> >> <port protocol="tcp" port="135"/>
> >> <port protocol="tcp" port="5353"/>
> >> <port protocol="udp" port="5353"/>
> >> <port protocol="tcp" port="53"/>
> >> <port protocol="udp" port="53"/>
> >> <port protocol="udp" port="137"/>
> >> <port protocol="udp" port="138"/>
> >> <port protocol="tcp" port="139"/>
> >> <port protocol="tcp" port="445"/>
> >> <module name="nf_conntrack_netbios_ns"/>
> >> </service>
> >>
> >> I still cannot find the domain controller in the machine list. Unless
> >> I specifically type \PDC, or \PDC.BLACKPENGUIN.ORG [7]. Fedora 18 does
> >> not even see it - same as before.
> >>
> >> On 05/16/2013 09:29 AM, Alexander Bokovoy wrote:
> >>
> >>> FirewallD documentation:
> >>> http://fedoraproject.org/wiki/FirewallD#Runtime_zone_handling [1]
> >>>
> >>> Now, you need to create a service definition since existing
> >>> /usr/lib/firewalld/services/samba.xml does not include LDAP ports
> >>> (and DNS, ...).
> >>> Copy samba.xml to, say, samba-ad.xml. Add needed ports inside and
> >>> use firewall-cmd to enable service in needed zone. Use --permanent
> >>> option to firewall-cmd to save the zone changes.
> >>>
> >>> On Thu, May 16, 2013 at 5:50 PM, Bogdan Bartos
> >>> <admin at blackpenguin.org <mailto:admin at blackpenguin.org>> wrote:
> >>>
> >>> I have firewalld running. What rule do I need to put in, so I
> >>> make
> >>> the browsing work?
> >>> -----------------------
> >>> BlackPenguin.Org Admin | Linux administration
> >>> h. 1.403.266.1513 [2] | c. 1.403.919.5699 [3]
> >>> admin at blackpenguin.org <mailto:admin at blackpenguin.org> |
> >>> http://www.blackpenguin.org [4]
> >>>
> >>> ------------------------------------------------------------------------
> >>> *From: * Alexander Bokovoy <ab at altlinux.org
> >>> <mailto:ab at altlinux.org>>
> >>> *Sender: * ab at 7ia.org <mailto:ab at 7ia.org>
> >>> *Date: *Thu, 16 May 2013 17:47:34 +0300
> >>> *To: *BlackPenguin ADMIN<admin at blackpenguin.org
> >>> <mailto:admin at blackpenguin.org>>
> >>> *ReplyTo: * ab at altlinux.org <mailto:ab at altlinux.org>
> >>> *Cc: *samba-technical<samba-technical at lists.samba.org
> >>> <mailto:samba-technical at lists.samba.org>>
> >>> *Subject: *Re: Cannot see the domain controller
> >>>
> >>> Make sure you have manual firewall or amended firewalld
> >>> configuration properly. Firewalld will otherwise conflict with
> >>> your setup in F18.
> >>>
> >>> -- / Alexander Bokovoy
> >>>
> >>> 16.05.2013 16:34 пользователь "bogdan_bartos"
> >>> <admin at blackpenguin.org <mailto:admin at blackpenguin.org>>
> >>> написал:
> >>>
> >>> I opened the ports specified for Windows 2008 server except
> >>> the dynamic ones
> >>> that I cannot predict:
> >>>
> >>> http://technet.microsoft.com/en-us/library/dd772723%28v=ws.10%29.aspx
> >>> [5]
> >>>
> >>> Like you noticed, the issue seems to be with a Samba 4.0.5
> >>> running on Fedora
> >>> 18 x64. Is samba 4 normally presenting itself for browsing?
> >>> Is
> >>> there a
> >>> configuration that I have to do, so the server becomes
> >>> visible
> >>> for browsing?
> >>> Thanks.
> >>>
> >>> --
> >>> View this message in context:
> >>>
> >>> http://samba.2283325.n4.nabble.com/Cannot-see-the-domain-controller-tp4648145p4648203.html
> >>> [6]
> >>> Sent from the Samba - samba-technical mailing list archive
> >>> at
> >>> Nabble.com.
> >>>
> >>> --
> >>> / Alexander Bokovoy
> >>
> >> --
> >> *BlackPenguin ADMIN | Linux administration*
> >> admin at blackpenguin.org | http://www.blackpenguin.org [4]
> >> h. 001.403.266.1513 | c. 001.403.919.5699
> >
> >
> > Links:
> > ------
> > [1] http://fedoraproject.org/wiki/FirewallD#Runtime_zone_handling
> > [2] tel:1.403.266.1513
> > [3] tel:1.403.919.5699
> > [4] http://www.blackpenguin.org
> > [5]
> > http://technet.microsoft.com/en-us/library/dd772723%28v=ws.10%29.aspx
> > [6]
> > http://samba.2283325.n4.nabble.com/Cannot-see-the-domain-controller-tp4648145p4648203.html
> > [7] http://PDC.BLACKPENGUIN.ORG
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 490 bytes
Desc: This is a digitally signed message part
URL: <http://lists.samba.org/pipermail/samba-technical/attachments/20130516/4e1e8cf4/attachment.pgp>
More information about the samba-technical
mailing list