[Samba] Mounting Shares from a Windows Server 2003 DC
Alex Ackerman
alex at darkhonor.com
Mon Nov 10 09:26:11 GMT 2003
I know this question has been asked several times, and I appoligize for
this being as long as it is, but I'm hoping someone may have it figured
out by now. Here is the situation: I can mount a share from my Windows
XP machine (RA), and from another Windows Server 2003 machine (MAAT).
But not from my Windows Server 2003 domain controller (BASTET). I am
running Samba 3.0.0 (standard RPM build) on a RedHat Linux 9 machine. I
have also tested this on a Fedora Core 1 machine. There is no firewall
in either place to stop traffic from flowing. Here is my relavent
configuration and logs:
Redhat 9 (seth):
samba-3.0.0-2
krb5-workstation-1.2.7-14
krb5-libs-1.2.7-14
krb5-devel-1.2.7-14
pam_krb5-1.60-1
openldap-2.0.27-8
openldap-clients-2.0.27-8
openldap-servers-2.0.27-8
openldap-devel-2.0.27-8
cyrus-sasl-2.1.10-4
cyrus-sasl-plain-2.1.10-4
cyrus-sasl-md5-2.1.10-4
cyrus-sasl-gssapi-2.1.10-4
cyrus-sasl-devel-2.1.10-4
Fedora Core 1 (magus):
samba-3.0.0-15
krb5-workstation-1.3.1-6
krb5-libs-1.3.1-6
krb5-devel-1.3.1-6
pam_krb5-2.0.4-1
openldap-2.1.22-8
openldap-devel-2.1.22-8
cyrus-sasl-2.1.15-6
cyrus-sasl-md5-2.1.15-6
cyrus-sasl-devel-2.1.15-6
cyrus-sasl-plain-2.1.15-6
seth /etc/samba/smb.conf:
[global]
netbios name = SETH
workgroup = DARKHONOR
server string = RedHat Samba Server
log file = /var/log/samba/log.%m
log level = 10
max log size = 50
realm = DARKHONOR.NET
security = user
password server = bastet.darkhonor.net
encrypt passwords = yes
client signing = yes
client use spnego = Yes
#server signing = Yes
#winbind separator = +
#idmap uid = 10000-20000
#winbind gid = 10000-20000
#winbind enum users = yes
#winbind enum groups = yes
#winbind use default domain = No
#template homedir = /home/winnt/%D/%U
#template shell = /bin/bash2
socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
local master = no
domain master = no
preferred master = no
dns proxy = no
magus /etc/samba/smb.conf
[global]
workgroup = DARKHONOR
server string = Samba Server
log file = /var/log/samba/%m.log
log level = 10
max log size = 50
security = ads
realm = DARKHONOR.NET
password server = bastet.darkhonor.net
client use spnego = yes
client signing = yes
socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
local master = no
domain master = no
preferred master = no
domain logons = no
dns proxy = no
Result from "smbclient -L bastet -U <admin user>" from magus:
Sharename Type Comment
--------- ---- -------
IPC$ IPC Remote IPC
NETLOGON Disk Logon server share
CertEnroll Disk Certificate Services share
ADMIN$ Disk Remote Admin
SYSVOL Disk Logon server share
wwwroot$ Disk
C$ Disk Default share
CS555 Disk
Server Comment
--------- -------
BASTET Domain Controller
ISIS Samba 3.0.0
MAAT
MAGUS Samba Server
Workgroup Master
--------- -------
DARKHONOR BASTET
Result from "smbmount //MAAT/Shared /iis -o username=<admin user>" from
magus:
INFO: Current debug levels:
all: True/10
tdb: False/0
printdrivers: False/0
lanman: False/0
smb: False/0
rpc_parse: False/0
rpc_srv: False/0
rpc_cli: False/0
passdb: False/0
sam: False/0
auth: False/0
winbind: False/0
vfs: False/0
idmap: False/0
doing parameter max log size = 50
doing parameter security = ads
doing parameter realm = DARKHONOR.NET
doing parameter password server = bastet.darkhonor.net
doing parameter client use spnego = yes
doing parameter client signing = yes
doing parameter socket options = TCP_NODELAY SO_RCVBUF=8192
SO_SNDBUF=8192
doing parameter local master = no
doing parameter domain master = no
doing parameter preferred master = no
doing parameter domain logons = no
doing parameter dns proxy = no
pm_process() returned Yes
lp_servicenumber: couldn't find homes
set_server_role: role = ROLE_DOMAIN_MEMBER
Substituting charset 'UTF-8' for LOCALE
Substituting charset 'UTF-8' for LOCALE
Substituting charset 'UTF-8' for LOCALE
Substituting charset 'UTF-8' for LOCALE
Substituting charset 'UTF-8' for LOCALE
Substituting charset 'UTF-8' for LOCALE
Substituting charset 'UTF-8' for LOCALE
Substituting charset 'UTF-8' for LOCALE
Substituting charset 'UTF-8' for LOCALE
Substituting charset 'UTF-8' for LOCALE
opts: username=<admin user>
mount.smbfs started (version 3.0.0-15)
added interface ip=192.168.42.49 bcast=192.168.42.255
nmask=255.255.255.0
internal_resolve_name: looking up MAAT#20
Opening cache file at /var/cache/samba/gencache.tdb
Returning valid cache entry: key = NBT/MAAT#20, value =
192.168.42.201:0, timeout = Mon Nov 10 09:15:11 2003
name MAAT#20 found.
Connecting to 192.168.42.201 at port 445
socket option SO_KEEPALIVE = 0
socket option SO_REUSEADDR = 0
socket option SO_BROADCAST = 0
socket option TCP_NODELAY = 1
socket option IPTOS_LOWDELAY = 0
socket option IPTOS_THROUGHPUT = 0
socket option SO_SNDBUF = 16384
socket option SO_RCVBUF = 16384
socket option SO_SNDLOWAT = 1
socket option SO_RCVLOWAT = 1
socket option SO_SNDTIMEO = 0
socket option SO_RCVTIMEO = 0
3059: session request ok
write_socket(4,183)
write_socket(4,183) wrote 183
got smb length of 107
size=107
smb_com=0x72
smb_rcls=0
smb_reh=0
smb_err=0
smb_flg=136
smb_flg2=49153
smb_tid=0
smb_pid=3059
smb_uid=0
smb_mid=1
smt_wct=17
smb_vwv[ 0]= 8 (0x8)
smb_vwv[ 1]=12803 (0x3203)
smb_vwv[ 2]= 256 (0x100)
smb_vwv[ 3]= 1024 (0x400)
smb_vwv[ 4]= 17 (0x11)
smb_vwv[ 5]= 0 (0x0)
smb_vwv[ 6]= 256 (0x100)
smb_vwv[ 7]= 0 (0x0)
smb_vwv[ 8]= 0 (0x0)
smb_vwv[ 9]=64768 (0xFD00)
smb_vwv[10]= 499 (0x1F3)
smb_vwv[11]=61440 (0xF000)
smb_vwv[12]=38332 (0x95BC)
smb_vwv[13]=27342 (0x6ACE)
smb_vwv[14]=50087 (0xC3A7)
smb_vwv[15]= 1 (0x1)
smb_vwv[16]= 2048 (0x800)
smb_bcc=38
[000] 6C 79 80 69 EF 63 25 CB 44 00 41 00 52 00 4B 00 ly.i.c%.
D.A.R.K.
[010] 48 00 4F 00 4E 00 4F 00 52 00 00 00 4D 00 41 00 H.O.N.O.
R...M.A.
[020] 41 00 54 00 00 00 A.T...
size=107
smb_com=0x72
smb_rcls=0
smb_reh=0
smb_err=0
smb_flg=136
smb_flg2=49153
smb_tid=0
smb_pid=3059
smb_uid=0
smb_mid=1
smt_wct=17
smb_vwv[ 0]= 8 (0x8)
smb_vwv[ 1]=12803 (0x3203)
smb_vwv[ 2]= 256 (0x100)
smb_vwv[ 3]= 1024 (0x400)
smb_vwv[ 4]= 17 (0x11)
smb_vwv[ 5]= 0 (0x0)
smb_vwv[ 6]= 256 (0x100)
smb_vwv[ 7]= 0 (0x0)
smb_vwv[ 8]= 0 (0x0)
smb_vwv[ 9]=64768 (0xFD00)
smb_vwv[10]= 499 (0x1F3)
smb_vwv[11]=61440 (0xF000)
smb_vwv[12]=38332 (0x95BC)
smb_vwv[13]=27342 (0x6ACE)
smb_vwv[14]=50087 (0xC3A7)
smb_vwv[15]= 1 (0x1)
smb_vwv[16]= 2048 (0x800)
smb_bcc=38
[000] 6C 79 80 69 EF 63 25 CB 44 00 41 00 52 00 4B 00 ly.i.c%.
D.A.R.K.
[010] 48 00 4F 00 4E 00 4F 00 52 00 00 00 4D 00 41 00 H.O.N.O.
R...M.A.
[020] 41 00 54 00 00 00 A.T...
Serverzone is 0
write_socket(4,148)
write_socket(4,148) wrote 148
got smb length of 100
size=100
smb_com=0x73
smb_rcls=0
smb_reh=0
smb_err=0
smb_flg=136
smb_flg2=1
smb_tid=0
smb_pid=3059
smb_uid=2051
smb_mid=2
smt_wct=3
smb_vwv[ 0]= 255 (0xFF)
smb_vwv[ 1]= 100 (0x64)
smb_vwv[ 2]= 0 (0x0)
smb_bcc=59
[000] 57 69 6E 64 6F 77 73 20 53 65 72 76 65 72 20 32 Windows Server
2
[010] 30 30 33 20 33 37 39 30 00 57 69 6E 64 6F 77 73 003 3790
.Windows
[020] 20 53 65 72 76 65 72 20 32 30 30 33 20 35 2E 32 Server 2003
5.2
[030] 00 44 41 52 4B 48 4F 4E 4F 52 00 .DARKHON OR.
3059: session setup ok
write_socket(4,68)
write_socket(4,68) wrote 68
got smb length of 49
size=49
smb_com=0x75
smb_rcls=0
smb_reh=0
smb_err=0
smb_flg=136
smb_flg2=1
smb_tid=2051
smb_pid=3059
smb_uid=2051
smb_mid=3
smt_wct=3
smb_vwv[ 0]= 255 (0xFF)
smb_vwv[ 1]= 49 (0x31)
smb_vwv[ 2]= 1 (0x1)
smb_bcc=8
[000] 41 3A 00 4E 54 46 53 00 A:.NTFS.
3059: tconx ok
Result from "smbmount //bastet/CS555 /iis -o username=<admin user>" from
magus:
INFO: Current debug levels:
all: True/10
tdb: False/0
printdrivers: False/0
lanman: False/0
smb: False/0
rpc_parse: False/0
rpc_srv: False/0
rpc_cli: False/0
passdb: False/0
sam: False/0
auth: False/0
winbind: False/0
vfs: False/0
idmap: False/0
doing parameter max log size = 50
doing parameter security = ads
doing parameter realm = DARKHONOR.NET
doing parameter password server = bastet.darkhonor.net
doing parameter client use spnego = yes
doing parameter client signing = yes
doing parameter socket options = TCP_NODELAY SO_RCVBUF=8192
SO_SNDBUF=8192
doing parameter local master = no
doing parameter domain master = no
doing parameter preferred master = no
doing parameter domain logons = no
doing parameter dns proxy = no
pm_process() returned Yes
lp_servicenumber: couldn't find homes
set_server_role: role = ROLE_DOMAIN_MEMBER
Substituting charset 'UTF-8' for LOCALE
Substituting charset 'UTF-8' for LOCALE
Substituting charset 'UTF-8' for LOCALE
Substituting charset 'UTF-8' for LOCALE
Substituting charset 'UTF-8' for LOCALE
Substituting charset 'UTF-8' for LOCALE
Substituting charset 'UTF-8' for LOCALE
Substituting charset 'UTF-8' for LOCALE
Substituting charset 'UTF-8' for LOCALE
Substituting charset 'UTF-8' for LOCALE
opts: username=<admin user>
mount.smbfs started (version 3.0.0-15)
added interface ip=192.168.42.49 bcast=192.168.42.255
nmask=255.255.255.0
internal_resolve_name: looking up bastet#20
Opening cache file at /var/cache/samba/gencache.tdb
Returning valid cache entry: key = NBT/BASTET#20, value =
192.168.42.200:0, timeout = Mon Nov 10 09:22:01 2003
name bastet#20 found.
Connecting to 192.168.42.200 at port 445
socket option SO_KEEPALIVE = 0
socket option SO_REUSEADDR = 0
socket option SO_BROADCAST = 0
socket option TCP_NODELAY = 1
socket option IPTOS_LOWDELAY = 0
socket option IPTOS_THROUGHPUT = 0
socket option SO_SNDBUF = 16384
socket option SO_RCVBUF = 16384
socket option SO_SNDLOWAT = 1
socket option SO_RCVLOWAT = 1
socket option SO_SNDTIMEO = 0
socket option SO_RCVTIMEO = 0
3042: session request ok
write_socket(4,183)
write_socket(4,183) wrote 183
got smb length of 111
size=111
smb_com=0x72
smb_rcls=0
smb_reh=0
smb_err=0
smb_flg=136
smb_flg2=49153
smb_tid=0
smb_pid=3042
smb_uid=0
smb_mid=1
smt_wct=17
smb_vwv[ 0]= 8 (0x8)
smb_vwv[ 1]=12815 (0x320F)
smb_vwv[ 2]= 256 (0x100)
smb_vwv[ 3]= 1024 (0x400)
smb_vwv[ 4]= 17 (0x11)
smb_vwv[ 5]= 0 (0x0)
smb_vwv[ 6]= 256 (0x100)
smb_vwv[ 7]= 0 (0x0)
smb_vwv[ 8]= 0 (0x0)
smb_vwv[ 9]=64768 (0xFD00)
smb_vwv[10]= 499 (0x1F3)
smb_vwv[11]=49152 (0xC000)
smb_vwv[12]=55616 (0xD940)
smb_vwv[13]=27291 (0x6A9B)
smb_vwv[14]=50087 (0xC3A7)
smb_vwv[15]= 1 (0x1)
smb_vwv[16]= 2048 (0x800)
smb_bcc=42
[000] 61 08 E0 2E 1C B3 AC B5 44 00 41 00 52 00 4B 00 a.......
D.A.R.K.
[010] 48 00 4F 00 4E 00 4F 00 52 00 00 00 42 00 41 00 H.O.N.O.
R...B.A.
[020] 53 00 54 00 45 00 54 00 00 00 S.T.E.T. ..
size=111
smb_com=0x72
smb_rcls=0
smb_reh=0
smb_err=0
smb_flg=136
smb_flg2=49153
smb_tid=0
smb_pid=3042
smb_uid=0
smb_mid=1
smt_wct=17
smb_vwv[ 0]= 8 (0x8)
smb_vwv[ 1]=12815 (0x320F)
smb_vwv[ 2]= 256 (0x100)
smb_vwv[ 3]= 1024 (0x400)
smb_vwv[ 4]= 17 (0x11)
smb_vwv[ 5]= 0 (0x0)
smb_vwv[ 6]= 256 (0x100)
smb_vwv[ 7]= 0 (0x0)
smb_vwv[ 8]= 0 (0x0)
smb_vwv[ 9]=64768 (0xFD00)
smb_vwv[10]= 499 (0x1F3)
smb_vwv[11]=49152 (0xC000)
smb_vwv[12]=55616 (0xD940)
smb_vwv[13]=27291 (0x6A9B)
smb_vwv[14]=50087 (0xC3A7)
smb_vwv[15]= 1 (0x1)
smb_vwv[16]= 2048 (0x800)
smb_bcc=42
[000] 61 08 E0 2E 1C B3 AC B5 44 00 41 00 52 00 4B 00 a.......
D.A.R.K.
[010] 48 00 4F 00 4E 00 4F 00 52 00 00 00 42 00 41 00 H.O.N.O.
R...B.A.
[020] 53 00 54 00 45 00 54 00 00 00 S.T.E.T. ..
Serverzone is 0
cli_negprot: SMB signing is mandatory and we have disabled it.
3042: protocol negotiation failed
--
Alex Ackerman <alex at darkhonor.com>
http://www.darkhonor.net
More information about the samba
mailing list