[Samba] Strange network file access behavior

Jason Baker jbaker at glastender.com
Fri Jul 13 18:04:00 GMT 2007 

I have a Samba PDC and a file server (domain member). They are both 
running CentOS 4, with Samba3-3.0.24-30 and LDAP 2.3 (on PDC). Domain 
authentication seems to be running fine and file access on the file 
server works also. I have one share on the file server that gives me 
trouble. Whenever I access files from this one directory, the network 
seems to lock up for close to a minute. I get 64% or more network 
utilization on the client PC, no packets seem to be moving. If I run TOP 
on the file server, I see that the top process is the SMBD command from 
the user who is accessing the directory in question. It shows about 16% 
or more CPU utilization on the server and the process will stay there 
for close to a minute. Also, during this "hang time" the PC client is 
pretty much frozen, I cannot minimize the browse window or bring up task 
manager. After about a minute or so, suddenly it will come back to life 
and I can access the file, or run the executable that I am trying to 
access from that directory. Any other directory seems to work fine. I 
don't no have any other slow-downs. See conf file below:

SMB Conf for PDC:
[global]
        unix charset = LOCALE
        workgroup = mynet
        netbios name = aster
        server string = Domain Controller running %v
        interfaces = eth1, lo
        bind interfaces only = yes
        os level = 255
        preferred master = yes
        local master = yes
        domain master = yes
        security = user
        time server = yes
        username map = /etc/samba/smbusers
        wins support = yes
        encrypt passwords = yes
        pam password change = yes
        name resolve order = wins bcast hosts
        winbind nested groups = no
        passdb backend = ldapsam:"ldap://myhost"
        ldap passwd sync = Yes
        ldap suffix = dc=mydomain,dc=com
        ldap admin dn = cn=Manager,dc=mydomain,dc=com
        ldap ssl = no
        ldap group suffix = ou=Groups
        ldap user suffix = ou=People
        ldap machine suffix = ou=People
        ldap idmap suffix = ou=Idmap
        idmap backend = ldap://myhost
        idmap uid = 10000-20000
        idmap gid = 10000-20000
        map acl inherit = yes
        add user script = /etc/smbldap-tools/smbldap-useradd -m "%u"
        #delete user script = /etc/smbldap-tools/smbldap-userdel "%u"
        add machine script = /etc/smbldap-tools/smbldap-useradd -w "%u"
        add group script = /etc/smbldap-tools/smbldap-groupadd -p "%g"
        add user to group script = /etc/smbldap-tools/smbldap-groupmod 
-m "%u" "%g"
        delete user from group script = 
/etc/smbldap-tools/smbldap-groupmod -x "%u" "%g"
        set primary group script = /etc/smbldap-tools/smbldap-usermod -g 
"%g" "%u"
        domain logons = yes
        log file = /var/log/samba/log.%m
        log level = 1
        syslog = 0
        max log size = 50
        #smb ports = 139 445
        smb ports = 139
        hosts allow = 127.0.0.1 192.168.0.0/255.255.255.0
        # User profiles and home directories
        logon drive = U:
        logon path = \\%L\profiles\%U
        logon script = %U.bat
        large readwrite = no
        read raw = no
        write raw = no
        printcap name = /etc/printcap
        load printers = no
        printing =
       template shell = /bin/false
       winbind use default domain = no

<cut>

SMB Conf for file server:

[global]
        unix charset = LOCALE
        workgroup = mynet
        server string = File Server
        security = domain
        username map = /etc/samba/smbusers
        log level = 1
        syslog = 0
        log file = /var/log/samba/%m.log
        max log size = 50
        smb ports = 139
        name resolve order = wins bcast hosts
        wins server = 192.168.0.1
        ldap suffix = dc=mydomain,dc=com
        ldap machine suffix = ou=People
        ldap user suffix = ou=People
        ldap group suffix = ou=Groups
        ldap idmap suffix = ou=Idmap
        ldap admin dn = cn=Manager,dc=mydomain,dc=com
        idmap backend = ldap:ldap://myhost.mydomain.com
        idmap uid = 10000-20000
        idmap gid = 10000-20000
        winbind trusted domains only = yes
        password server = 192.168.0.1
        template shell = /bin/false
        domain master = no
        local master = no
        os level = 0
        preferred master = no
        winbind use default domain = no
        veto oplock files = /*.mbd/
        large readwrite = no
        read raw = no
        write raw = no 
        printcap name = /etc/printcap
        load printers = no
        printing =

####### Shares########

[information_systems]
        comment = Infomation Systems
        valid users = @is
        path = /home/shares/infosys
        read only = no
        browseable = yes
        directory mask = 2770
        create mask = 2770
        force group = is
        vfs objects = recycle
        recycle:repository = recycle_bin
        recycle:versions = no
        recycle:touch_mtime = yes
        recycle:keeptree = yes
        recycle:exclude = 
?~$*,~$*,*.tmp,*.temp,*.TMP,*.cache,*Temp$$$.html,*.lnk,*.idlk,*.ldb,*.db,*.dwl,*.bak



-- 

*Jason Baker
*/IT Coordinator/


*Glastender Inc.*
5400 North Michigan Road
Saginaw, Michigan 48604 USA
800.748.0423
Phone: 989.752.4275 ext. 228
Fax: 989.752.4444
www.glastender.com <http://www.glastender.com>

-----BEGIN GEEK CODE BLOCK----- 
Version: 3.1
GIT$ d- s: a C++$ LU+++$ P+ L++>L++++ !E--- W+++ N o? K?
w !O M !V PS PE++ Y? PGP- t 5? X+ R+ tv+ b- DI-- D++ G e+ h--- 
r+++ y+++
------END GEEK CODE BLOCK------

More information about the samba mailing list