[Samba] BIND-DLZ refuses to update
Dmitry Khromov
icechrome at gmail.com
Sat Sep 29 04:06:01 MDT 2012
On Sat, 29 Sep 2012 13:21:21 +1000
Andrew Bartlett <abartlet at samba.org> wrote:
> The only suggestion I have here is to try turning up the debug level in
> the smb.conf
> named[12365]: client 192.168.1.32#1039: view realdns: update 'klin.kifato-mk.com/IN' denied
Excuse me, should had it done in the first place.
# sbin/samba -d 10 -i -M single 2> /tmp/smb_err.log | tee /tmp/smb_stdout.log
...
Kerberos: TGS-REQ authtime: 2012-09-29T13:39:44 starttime: 2012-09-29T13:39:47 endtime: 2012-09-29T23:39:44 renew till: unset
Received krb5 UDP packet of length 160 from ipv4:192.168.1.31:53550
Received KDC packet of length 156 from ipv4:192.168.1.31:53550
Kerberos: AS-REQ named at KLIN.KIFATO-MK.COM from ipv4:192.168.1.31:53550 for krbtgt/KLIN.KIFATO-MK.COM at KLIN.KIFATO-MK.COM
ldb: ldb_trace_request: SEARCH
dn: <rootDSE>
scope: sub
expr: (&(objectClass=user)(userPrincipalName=named at KLIN.KIFATO-MK.COM))
control: 1.2.840.113556.1.4.1340 crit:1 data:yes
ldb: ldb_trace_request: (resolve_oids)->search
ldb: ldb_trace_next_request: (rootdse)->search
ldb: ldb_trace_next_request: (schema_load)->search
ldb: ldb_trace_next_request: (lazy_commit)->search
ldb: ldb_trace_next_request: (dirsync)->search
ldb: ldb_trace_next_request: (paged_results)->search
ldb: ldb_trace_next_request: (ranged_results)->search
ldb: ldb_trace_next_request: (anr)->search
ldb: ldb_trace_next_request: (server_sort)->search
ldb: ldb_trace_next_request: (asq)->search
ldb: ldb_trace_next_request: (extended_dn_in)->search
ldb: ldb_trace_next_request: (descriptor)->search
ldb: ldb_trace_next_request: (acl)->search
ldb: ldb_trace_next_request: (aclread)->search
ldb: ldb_trace_next_request: (operational)->search
ldb: ldb_trace_next_request: (rdn_name)->search
ldb: ldb_trace_next_request: (extended_dn_out_ldb)->search
ldb: ldb_trace_next_request: (show_deleted)->search
ldb: ldb_trace_next_request: (partition)->search
ldb: partition_request() -> (metadata partition)
ldb: ldb_trace_next_request: (tdb)->search
ldb: ldb_trace_next_request: (aclread)->search
ldb: ldb_trace_next_request: (operational)->search
ldb: ldb_trace_next_request: (rdn_name)->search
ldb: ldb_trace_next_request: (extended_dn_out_ldb)->search
ldb: ldb_trace_next_request: (show_deleted)->search
ldb: ldb_trace_next_request: (partition)->search
ldb: partition_request() -> (metadata partition)
ldb: ldb_trace_next_request: (tdb)->search
ldb: partition_request() -> (metadata partition)
ldb: ldb_trace_next_request: (schema_data)->search
ldb: ldb_trace_next_request: (tdb)->search
ldb: partition_request() -> (metadata partition)
ldb: ldb_trace_next_request: (tdb)->search
ldb: partition_request() -> (metadata partition)
ldb: ldb_trace_next_request: (tdb)->search
ldb: partition_request() -> (metadata partition)
ldb: ldb_trace_next_request: (tdb)->search
ldb: partition_request() -> (metadata partition)
ldb: ldb_trace_next_request: (tdb)->search
ldb: ldb_trace_response: DONE
error: 0
ldb: ldb_trace_request: SEARCH
dn: CN=Partitions,CN=Configuration,DC=klin,DC=kifato-mk,DC=com
scope: one
expr: (&(objectClass=crossRef)(|(dnsRoot=KLIN.KIFATO-MK.COM)(netbiosName=KLIN.KIFATO-MK.COM))(systemFlags:1.2.840.113556.1.4.803:=2))
control: <NONE>
ldb: ldb_trace_request: (resolve_oids)->search
ldb: ldb_trace_next_request: (rootdse)->search
ldb: ldb_trace_next_request: (schema_load)->search
ldb: ldb_trace_next_request: (lazy_commit)->search
ldb: ldb_trace_next_request: (dirsync)->search
ldb: ldb_trace_next_request: (paged_results)->search
ldb: ldb_trace_next_request: (ranged_results)->search
ldb: ldb_trace_next_request: (anr)->search
ldb: ldb_trace_next_request: (server_sort)->search
ldb: ldb_trace_next_request: (asq)->search
ldb: ldb_trace_next_request: (extended_dn_in)->search
ldb: ldb_trace_next_request: (descriptor)->search
ldb: ldb_trace_next_request: (acl)->search
ldb: ldb_trace_next_request: (aclread)->search
ldb: ldb_trace_next_request: (operational)->search
ldb: ldb_trace_next_request: (rdn_name)->search
ldb: ldb_trace_next_request: (extended_dn_out_ldb)->search
ldb: ldb_trace_next_request: (show_deleted)->search
ldb: ldb_trace_next_request: (partition)->search
ldb: partition_request() -> (metadata partition)
ldb: ldb_trace_next_request: (tdb)->search
ldb: ldb_trace_next_request: (aclread)->search
ldb: ldb_trace_next_request: (operational)->search
ldb: ldb_trace_next_request: (rdn_name)->search
ldb: ldb_trace_next_request: (extended_dn_out_ldb)->search
ldb: ldb_trace_next_request: (show_deleted)->search
ldb: ldb_trace_next_request: (partition)->search
ldb: partition_request() -> (metadata partition)
ldb: ldb_trace_next_request: (tdb)->search
ldb: ldb_trace_response: ENTRY
dn: CN=MK_KLIN,CN=Partitions,CN=Configuration,DC=klin,DC=kifato-mk,DC=com
ldb: ldb_trace_response: DONE
error: 0
ldb: ldb_trace_request: SEARCH
dn: CN=Partitions,CN=Configuration,DC=klin,DC=kifato-mk,DC=com
scope: one
expr: (distinguishedName=CN=MK_KLIN,CN=Partitions,CN=Configuration,DC=klin,DC=kifato-mk,DC=com)
attr: ncName
attr: dnsRoot
control: <NONE>
ldb: ldb_trace_request: (resolve_oids)->search
ldb: ldb_trace_next_request: (rootdse)->search
ldb: ldb_trace_next_request: (schema_load)->search
ldb: ldb_trace_next_request: (lazy_commit)->search
ldb: ldb_trace_next_request: (dirsync)->search
ldb: ldb_trace_next_request: (paged_results)->search
ldb: ldb_trace_next_request: (ranged_results)->search
ldb: ldb_trace_next_request: (anr)->search
ldb: ldb_trace_next_request: (server_sort)->search
ldb: ldb_trace_next_request: (asq)->search
ldb: ldb_trace_next_request: (extended_dn_in)->search
ldb: ldb_trace_next_request: (descriptor)->search
ldb: ldb_trace_next_request: (acl)->search
ldb: ldb_trace_next_request: (aclread)->search
ldb: ldb_trace_next_request: (operational)->search
ldb: ldb_trace_next_request: (rdn_name)->search
ldb: ldb_trace_next_request: (extended_dn_out_ldb)->search
ldb: ldb_trace_next_request: (show_deleted)->search
ldb: ldb_trace_next_request: (partition)->search
ldb: partition_request() -> (metadata partition)
ldb: ldb_trace_next_request: (tdb)->search
ldb: ldb_trace_next_request: (aclread)->search
ldb: ldb_trace_next_request: (operational)->search
ldb: ldb_trace_next_request: (rdn_name)->search
ldb: ldb_trace_next_request: (extended_dn_out_ldb)->search
ldb: ldb_trace_next_request: (show_deleted)->search
ldb: ldb_trace_next_request: (partition)->search
ldb: partition_request() -> (metadata partition)
ldb: ldb_trace_next_request: (tdb)->search
ldb: ldb_trace_next_request: (show_deleted)->search
ldb: ldb_trace_next_request: (partition)->search
ldb: partition_request() -> (metadata partition)
ldb: ldb_trace_next_request: (tdb)->search
ldb: partition_request() -> (metadata partition)
ldb: ldb_trace_next_request: (schema_data)->search
ldb: ldb_trace_next_request: (tdb)->search
ldb: partition_request() -> (metadata partition)
ldb: ldb_trace_next_request: (tdb)->search
ldb: partition_request() -> (metadata partition)
ldb: ldb_trace_next_request: (tdb)->search
ldb: partition_request() -> (metadata partition)
ldb: ldb_trace_next_request: (tdb)->search
ldb: partition_request() -> (metadata partition)
ldb: ldb_trace_next_request: (tdb)->search
ldb: ldb_trace_response: ENTRY
dn: CN=MK_KLIN,CN=Partitions,CN=Configuration,DC=klin,DC=kifato-mk,DC=com
nCName: DC=klin,DC=kifato-mk,DC=com
dnsRoot: klin.kifato-mk.com
ldb: ldb_trace_response: DONE
error: 0
ldb: ldb_trace_request: SEARCH
dn: DC=klin,DC=kifato-mk,DC=com
scope: sub
expr: (&(objectClass=user)(samAccountName=named))
control: <NONE>
ldb: ldb_trace_request: (resolve_oids)->search
ldb: ldb_trace_next_request: (rootdse)->search
ldb: ldb_trace_next_request: (schema_load)->search
ldb: ldb_trace_next_request: (lazy_commit)->search
ldb: ldb_trace_next_request: (dirsync)->search
ldb: ldb_trace_next_request: (paged_results)->search
ldb: ldb_trace_next_request: (ranged_results)->search
ldb: ldb_trace_next_request: (anr)->search
ldb: ldb_trace_next_request: (server_sort)->search
ldb: ldb_trace_next_request: (asq)->search
ldb: ldb_trace_next_request: (extended_dn_in)->search
ldb: ldb_trace_next_request: (descriptor)->search
ldb: ldb_trace_next_request: (acl)->search
ldb: ldb_trace_next_request: (aclread)->search
ldb: ldb_trace_next_request: (operational)->search
ldb: ldb_trace_next_request: (rdn_name)->search
ldb: ldb_trace_next_request: (extended_dn_out_ldb)->search
ldb: ldb_trace_next_request: (show_deleted)->search
ldb: ldb_trace_next_request: (partition)->search
ldb: partition_request() -> (metadata partition)
ldb: ldb_trace_next_request: (tdb)->search
ldb: ldb_trace_next_request: (aclread)->search
ldb: ldb_trace_next_request: (operational)->search
ldb: ldb_trace_next_request: (rdn_name)->search
ldb: ldb_trace_next_request: (extended_dn_out_ldb)->search
ldb: ldb_trace_next_request: (show_deleted)->search
ldb: ldb_trace_next_request: (partition)->search
ldb: partition_request() -> (metadata partition)
ldb: ldb_trace_next_request: (tdb)->search
ldb: ldb_trace_response: REFERRAL
ref: ldap://klin.kifato-mk.com/CN=Configuration,DC=klin,DC=kifato-mk,DC=com
ldb: ldb_trace_response: REFERRAL
ref: ldap://klin.kifato-mk.com/DC=DomainDnsZones,DC=klin,DC=kifato-mk,DC=com
ldb: ldb_trace_response: REFERRAL
ref: ldap://klin.kifato-mk.com/DC=ForestDnsZones,DC=klin,DC=kifato-mk,DC=com
ldb: ldb_trace_response: DONE
error: 0
Kerberos: UNKNOWN -- named at KLIN.KIFATO-MK.COM: no such entry found in hdb
/usr/local/samba/sbin/samba_dnsupdate: dns_tkey_negotiategss: TKEY is unacceptable
--
Best regards,
Dmitry Khromov
More information about the samba
mailing list