Aw: Re: DNS server no in sync with database?

support at remsnet.de support at remsnet.de
Wed Feb 25 23:34:15 MST 2015 

Hello Amitay  & Andrew  and others

This "featger"  .. DB not in sync ..  exist when the dc runs awhile ... Same you can found on DLZ DB usage.

I ask again for  that :

- dns  IN NS , IN NS AUTO-generated in CN=MicrosoftDNS,CN=System,DC=samba,DC=example,DC=com - while deploy an DC or join as an DC
- dns for our OWN dns entries are get VALIDATED after an Join as DC ( either as an re-join  with the same SID ) 
- DC´s automatily added as IN NS for the zone 
- DC´s automaticy added as LDAP SRV for the zone
- an diff of the db  for "IN A " , IN SRV  and missing ldap SRV on an  joining DC´s are heavly CRITICAL  
  and shuold cause put an ERROR to admin-user saying failed join with details..
  an Kind of Verfication code are required here to make shure .
- an samba-tool option i.e "sambatool validateDC"  shuold be created that check and force correct any kind CORE DNS entries Issues as of desaster-recovery .


regards

Horst

--
Mit freundlichen Grüßen / Best Regards

Horst Venzke ; PGP NET : 1024G/082F2E6D ;  http://www.remsnet.de

Legal Notice: This transmittal and/or attachments may be privileged or confidential. It is intended solely for the addressee named above. Any review, dissemination, or copying is strictly prohibited. If you received this transmittal in error, please notify us immediately by reply and immediately delete this message and all its attachments. Thank you.


> Gesendet: Donnerstag, 26. Februar 2015 um 07:15 Uhr
> Von: "Amitay Isaacs" <amitay at gmail.com>
> An: "Andrew Bartlett" <abartlet at samba.org>
> Cc: "Samba Technical" <samba-technical at lists.samba.org>
> Betreff: Re: DNS server no in sync with database?
>
> Hi Andrew,
> 
> On Thu, Feb 26, 2015 at 4:06 PM, Andrew Bartlett <abartlet at samba.org> wrote:
> 
> > Kai,
> >
> > Can you help me understand what is going on with the internal DNS server
> > here?
> >
> > I get different results between ldbsearch and a DNS lookup:
> >
> > ubuntu at ad-dc-1:~/samba$ host gc._msdcs.samba.example.com 127.0.0.1
> > Using domain server:
> > Name: 127.0.0.1
> > Address: 127.0.0.1#53
> > Aliases:
> >
> > gc._msdcs.samba.example.com has address 10.0.2.6
> > gc._msdcs.samba.example.com has address 10.0.2.4
> >
> > While this is what I get when looking via ldbsearch:
> >
> > ubuntu at ad-dc-1:~/samba$ sudo bin/ldbsearch
> > -H /var/lib/samba/private/sam.ldb -b
> > DC=gc._msdcs,DC=samba.example.com,CN=MicrosoftDNS,DC=DomainDnsZones,DC=samba,DC=example,DC=com
> > -s base --show-binary
> > sudo: unable to resolve host ad-dc-1
> > # record 1
> > dn:
> > DC=gc._msdcs,DC=samba.example.com
> > ,CN=MicrosoftDNS,DC=DomainDnsZones,DC=samba,DC=example,DC=com
> > objectClass: top
> > objectClass: dnsNode
> > instanceType: 4
> > whenCreated: 20150226045441.0Z
> > whenChanged: 20150226045441.0Z
> > uSNCreated: 3719
> > showInAdvancedViewOnly: TRUE
> > name: gc._msdcs
> > objectGUID: a5218b75-7946-42e1-9b89-f087e37f8e04
> > objectCategory:
> > CN=Dns-Node,CN=Schema,CN=Configuration,DC=samba,DC=example,DC=com
> > dc: gc._msdcs
> > dnsRecord:     NDR: struct dnsp_DnssrvRpcRecord
> >         wDataLength              : 0x0004 (4)
> >         wType                    : DNS_TYPE_A (1)
> >         version                  : 0x05 (5)
> >         rank                     : DNS_RANK_ZONE (240)
> >         flags                    : 0x0000 (0)
> >         dwSerial                 : 0x00000004 (4)
> >         dwTtlSeconds             : 0x00000384 (900)
> >         dwReserved               : 0x00000000 (0)
> >         dwTimeStamp              : 0x00376534 (3630388)
> >         data                     : union dnsRecordData(case 1)
> >         ipv4                     : 10.0.2.4
> >
> > dnsRecord:     NDR: struct dnsp_DnssrvRpcRecord
> >         wDataLength              : 0x0004 (4)
> >         wType                    : DNS_TYPE_A (1)
> >         version                  : 0x05 (5)
> >         rank                     : DNS_RANK_ZONE (240)
> >         flags                    : 0x0000 (0)
> >         dwSerial                 : 0x00000007 (7)
> >         dwTtlSeconds             : 0x00000384 (900)
> >         dwReserved               : 0x00000000 (0)
> >         dwTimeStamp              : 0x00376534 (3630388)
> >         data                     : union dnsRecordData(case 1)
> >         ipv4                     : 10.56.240.4
> >
> > uSNChanged: 3725
> > distinguishedName:
> > DC=gc._msdcs,DC=samba.example.com
> > ,CN=MicrosoftDNS,DC=DomainDnsZones,DC=samba,DC=example,DC=com
> >
> > # returned 1 records
> > # 1 entries
> > # 0 referrals
> 
> 
> Can you check if you have dns records under:
> 
>   CN=MicrosoftDNS,CN=System,DC=samba,DC=example,DC=com
> 
> Amitay.
>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: addressbook.vcf
Type: text/x-vcard
Size: 901 bytes
Desc: not available
URL: <http://lists.samba.org/pipermail/samba-technical/attachments/20150226/38faa8e0/attachment.vcf>

More information about the samba-technical mailing list