[Samba] Samba 3.0.14 - very puzzling domain browsing problems

Jesse Spangenberger jesse at oceanlodge.biz
Mon Jan 23 14:54:16 GMT 2006 

 
Also, try to run Ethereal (www.ethereal.org) with the filter "nbns || smb"
and see if the samba server is broadcasting the right packets.

Umm, You could try "remote browser = <subnet of pdc>" making sure the PDC
and workstations are in the same subnet and not across a router.

-----Original Message-----
From: Anthony Messina [mailto:amessina at messinet.com] 
Sent: Friday, January 20, 2006 7:00 AM
To: Stephen Bosch
Cc: samba at lists.samba.org
Subject: Re: [Samba] Samba 3.0.14 - very puzzling domain browsing problems

Stephen Bosch wrote:
> Anthony Messina wrote:
> 
>>something simple, perhaps too simple...
>>
>>this once happened to me and i realized it was that the workgroup name 
>>that i had specified in samba was not the same as the one in windows, 
>>or that i had not joined the proper domain.
>>
>>or
>>
>>is your windows computer set up to use the right wins server?
> 
> 
> Alas, I wish it were this simple.
> 
> The domain in question is definitely consistent between workstations 
> and the PDC -- as I noted in a previous post, if the OS level is set 
> to 0 and the domain, preferred and local master are set to "no", one 
> of the Windows machines becomes the domain master browser and suddenly 
> workstations appear in the browse list.
> 
> I'm determined to find the cause of this problem, whatever it takes.
> I've followed the Samba how-to and everything should be working, but 
> obviously I'm missing something somewhere...
> 
> Here's my smb.conf:
> 
> ######################################################################
> #########
> # GLOBAL PARAMETERS
> ######################################################################
> #########
> 
> [global]
> # NOTE: change these parameters to suit your business workgroup = 
> HEDLIN-LAUDER netbios name = PDC passdb backend = 
> ldapsam:ldap://ldap.hedlinlauder.com/
> ldap admin dn = cn=samba,ou=dsa,dc=hedlinlauder,dc=com
> ldap suffix = dc=hedlinlauder,dc=com
> # interface list should be specified for machines with > 1 interface 
> ;interfaces = <IP1>,<IP2>,...
> 
> ######################################################################
> ######### # NOTE: You should not have to change any of the other 
> GLOBAL PARAMETERS
> #       beyond this point, as long as you are building a PDC without WINS
> #       using cups for printing. You may need to change the SHARE
> DEFINITIONS
> #       (see below) however.
> ######################################################################
> #########
> 
> server string = Samba Server %v
> domain logons = yes
> os level = 65
> domain master = yes
> preferred master = yes
> local master = yes
> wins support = yes
> time server = yes
> name resolve order = wins bcast lmhosts
> 
> logon script = %U.bat
> logon drive = H:
> logon path = \\%L\Profiles\%U
> ;logon home = \\%L\%U\.profile
> 
> # ldap configuration
> ldap group suffix = ou=Group
> ldap user suffix = ou=People
> ldap machine suffix = ou=Hosts
> ldap idmap suffix = ou=Idmap
> ldap ssl = start_tls
> ldap delete dn = yes
> add user script = /usr/sbin/smbldap-useradd -a -m "%u"
> delete user script = /usr/sbin/smbldap-userdel "%u"
> add machine script = /usr/sbin/smbldap-useradd -w "%u"
> add group script = /usr/sbin/smbldap-groupadd -p "%g"
> delete group script = /usr/sbin/smbldap-groupdel "%g"
> add user to group script = /usr/sbin/smbldap-groupmod -m "%u" "%g"
> delete user from group script = /usr/sbin/smbldap-groupmod -x "%u" "%g"
> set primary group script = /usr/sbin/smbldap-usermod -g "%g" "%u"
> 
> # printers configuration
> printer admin = @"Print Operators"
> load printers = yes
> create mask = 0640
> directory mask = 0750
> printing = cups
> printcap name = cups
> deadtime = 10
> 
> # other
> guest account = nobody
> map to guest = Bad User
> show add printer wizard = yes
> preserve case = yes
> short preserve case = yes
> case sensitive = no
> enable privileges = yes
> username map = /etc/samba/smbusers
> security = user
> encrypt passwords = yes
> obey pam restrictions = no
> ldap passwd sync = yes
> log level = 2
> syslog = 0
> log file = /var/log/samba/log.%m
> max log size = 5000
> socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192 Dos charset 
> = 850 Unix charset = ISO8859-1
> 
> -Stephen-
> 
> 
your smb.conf seems correct, and from what i'm understanding, if a windows
computer wins the election to be a master broswer, then workstations will
appear, if the pdc is the master browser, no workstations appear.  is that
correct?

if that is the case, it really sounds like a case of either a misconfigured
wins server or a problem with wins itself.

do your nmbd.logs give you any clue as to what might be wrong?

another thouhgt... what interfaces do you have on the system?
could you try specifying "interfaces = lo eth0" (substitute eth* for
whatever your lan interface is). and double check your windows clients wins
server address to make sure it matches your pdc lan address.

-a

More information about the samba mailing list