[Samba] "getpeername failed. Error was Transport endpoint is not
connected", don't solve?
Fernando Ribeiro
musb at nerdgroup.org
Tue Oct 19 17:36:54 GMT 2004
Hi all,
I'm using Samba 3.0.7, OpenLDAP 2.2.17, smbldap-tools-0.8.5
It has been configured pdc with tls.
tls work fine:
ldapsearch -x -ZZ -h ldap.domain.com.br -D cn=suport,dc=domain,dc=com,dc=br -L -W
...
...
# numResponses: 20
# numEntries: 19
my user has been found and accept password in the ldap
root at terra:~# id fernando.ribeiro
uid=1000(fernando.ribeiro) gid=1000(suporte) groups=1000(suporte),512(Domain Admins)
root at terra:~# smbclient -L ldap.domain.com.br -U fernando.ribeiro
Password:
Domain=[domain] OS=[Unix] Server=[Samba 3.0.7]
...
Workgroup Master
--------- ------
domain PDC
my ldap.conf
base dc=domain,dc=com,dc=br
uri ldap://ldap.domain.com.br
ssl start_tls
port 389
TLS_CACERT /usr/local/ssl/cacert.pem
rootbinddn cn=suporte,dc=domain,dc=com,dc=br
nss_base_passwd ou=Usuarios,dc=domain,dc=com,dc=br?one
nss_base_shadow ou=Usuarios,dc=domain,dc=com,dc=br?one
nss_base_group ou=Grupos,dc=domain,dc=com,dc=br?one
[global]
workgroup = domain
netbios name = PDC
server string = PDC
security = user
encrypt passwords = yes
load printers = yes
log file = /var/log/samba/%m.log
max log size = 50
log level = 5
os level = 255
local master = yes
domain master = yes
preferred master = yes
domain logons = yes
admin users = fernando.ribeiro, wesley.lago
logon script = %U.bat
logon path = \\%L\profiles\%U
# wins support = no
# wins proxy = no
# dns proxy = no
# name resolve order = wins lmhosts hosts bcast
# smb ports = 137 138 139 445
# interfaces = 10.0.0.0/24 127.0.0.1
# bind interfaces only = Yes
ldap passwd sync = yes
ldap delete dn = Yes
ldap port = 389
ldap ssl = start_tls
passdb backend = ldapsam:ldap://ldap.domain.com.br/
ldap admin dn = cn=suporte,dc=domain,dc=com,dc=br
ldap suffix = dc=domain,dc=com,dc=br
ldap group suffix = ou=Grupos
ldap user suffix = ou=Usuarios
ldap machine suffix = ou=Computadores
idmap uid = 10000-15000
idmap gid = 10000-15000
nt acl support = yes
create mask = 600
directory mask = 0700
force directory mode = 0700
passwd chat = *New*password* %n\n *Retype*new*password* %n\n*passwd:*all*authentication*tokens*updated*successfully*
socket options = TCP_NODELAY IPTOS_LOWDELAY SO_RCVBUF=8192 SO_SNDBUF=8192
add user script = /usr/local/sbin/smbldap-useradd -m "%u"
add group script = /usr/local/sbin/smbldap-groupadd -p "%g"
add machine script = /usr/local/sbin/smbldap-useradd -w "%u"
delete user script = /usr/local/sbin/smbldap-userdel "%u"
delete group script = /usr/local/sbin/smbldap-groupdel "%g"
add user to group script = /usr/local/sbin/smbldap-groupmod -m "%u" "%g"
delete user from group script = /usr/local/sbin/smbldap-groupmod -x "%u" "%g"
set primary group script = /usr/local/sbin/smbldap-usermod -g "%g" "%u"
dos charset = UTF-8
unix charset = UTF-8
cups server = 10.0.0.11
# use sendfile = no
[homes]
comment = Diretorio Home
browseable = no
writable = yes
force user = %U
[profiles]
path = /home/profiles
read only = No
create mask = 0600
directory mask = 0700
browseable = No
guest ok = Yes
profile acls = Yes
csc policy = disable
force user = %U
valid users = %U @"Domain Admins"
[netlogon]
path = /home/netlogon
browseable = No
read only = yes
[printers]
comment = Impressoras
path = /var/spool/samba
browseable = no
guest ok = no
writable = no
printable = yes
And while i try include a workstation (windows XP with SP2) it return
this error:
[2004/10/19 16:12:19, 0] lib/util_sock.c:get_peer_addr(1000)
getpeername failed. Error was Transport endpoint is not connected
[2004/10/19 16:12:19, 0] lib/util_sock.c:write_socket_data(430)
write_socket_data: write failure. Error = Connection reset by peer
[2004/10/19 16:12:19, 0] lib/util_sock.c:write_socket(455)
write_socket: Error writing 4 bytes to socket 22: ERRNO = Connection reset by peer
[2004/10/19 16:12:19, 0] lib/util_sock.c:send_smb(647)
Error writing 4 bytes to client. -1. (Connection reset by peer)
It created the windows$ entry in ldap:
root at terra:~# ldapsearch -x -ZZ -h ldap.domain.com.br -D
cn=suporte,dc=domain,dc=com,dc=br uid=windows$ -W -LLL
Enter LDAP Password:
dn: uid=windows$,ou=Computadores,dc=domain,dc=com,dc=br
objectClass: top
objectClass: inetOrgPerson
objectClass: posixAccount
cn: windows$
sn: windows$
uid: windows$
uidNumber: 1008
gidNumber: 1000
homeDirectory: /dev/null
loginShell: /bin/false
description: Computer
gecos: Computer
My wins.dat don't have entry to this machine:
root at terra:~# cat /usr/local/samba/var/locks/wins.dat
VERSION 1 0
"PDC#00" 1098458484 10.0.0.4 66R
"PDC#03" 1098458484 10.0.0.4 66R
"PDC#20" 1098458484 10.0.0.4 66R
"domain#00" 1098458484 255.255.255.255 e4R
"domain#1b" 1098458484 10.0.0.4 64R
"domain#1c" 1098458484 10.0.0.4 e4R
"domain#1e" 1098458484 255.255.255.255 e4R
I have dns working fine.
I don't have firewall, and network work fine too.
Anyone have a idea?
Thanks
--
Fernando Ribeiro - GPG-KEY: 0x8D7255F4
Linux Counter: #273768 - ICQ: 175630330
LPIC-2 - Advanced Linux
Death the graph! Death the mouse
Death patents! Death closed standards!
http://www.nerdgroup.org
http://musb.nerdgroup.org
--------------------------------------
"Grandes mentes discutem idéias;
Mentes medianas discutem eventos;
Mentes pequenas discutem pessoas."
More information about the samba
mailing list