[Samba] Samba4 internal DNS not responding to DNS requests

Lee Allen lee at leecallen.com
Wed Jan 9 09:51:27 MST 2013 

I was sure I had disabled firewall and SElinux on this box. But I can't
establish a netcat connection to the server so something is up.

Thank you!
On 09/01/13 15:20, Lee Allen wrote:

> I meant to include that in my original description.  Samba is definitely
> listening for the DNS requests.  Here it is:
>
> $ netstat -npl | grep 53 | grep LISTEN
> tcp        0      0 127.0.0.1:53                0.0.0.0:*
> LISTEN      15799/samba
> tcp        0      0 192.168.0.13:53             0.0.0.0:*
> LISTEN      15799/samba
>
> Lee
>
> On Wed, Jan 9, 2013 at 10:05 AM, Rowland Penny <rpenny at f2s.com> wrote:
>
>  On 09/01/13 14:32, Lee Allen wrote:
>>
>>  I am not able to get the Samba4 internal DNS server to respond to DNS
>>> requests on the network.
>>>
>>> I am running Samba4 4.1.0pre1-GIT-c1fb37d on my CentOS 6.3 system.  I
>>> followed the instructions here:
>>> https://wiki.samba.org/index.****php/Samba_AD_DC_HOWTO<https://wiki.samba.org/index.**php/Samba_AD_DC_HOWTO>
>>> <https:/**/wiki.samba.org/index.php/**Samba_AD_DC_HOWTO<https://wiki.samba.org/index.php/Samba_AD_DC_HOWTO>
>>> >
>>>
>>> I configured Samba4 to use the internal DNS server.  My Samba4 server is
>>> 192.168.0.13. Its full hostname is ubuntu-ad.allenlan.net.  The realm is
>>> ALLENLAN.NET.
>>>
>>> The DNS testing section of the document passes:
>>>
>>> $host -t SRV _ldap._tcp.allenlan.net.
>>>       _ldap._tcp.allenlan.net has SRV record 0 100 389
>>> ubuntu-ad.allenlan.net.
>>> $host -t SRV _kerberos._udp.allenlan.net.
>>>       _kerberos._udp.allenlan.net has SRV record 0 100 88
>>> ubuntu-ad.allenlan.net.
>>> $host -t A ubuntu-ad.allenlan.net.
>>>       ubuntu-ad.allenlan.net has address 192.168.0.13
>>>
>>> I configured my Windows XP system with a DNS of 192.168.0.13 (Samba4
>>> server).
>>> When I perform the Windows command "nslookup ubuntu-ad.allenlan.net" (or
>>> any variation of that) it reports:
>>>       DNS request timed out.
>>>           timeout was 2 seconds.
>>>       *** Can't find server name for address 192.168.0.13: Timed out
>>>       (above 3 messages repeat again)
>>>       Default servers are not available
>>>       Server: UnKnown
>>>       Address: 192.168.0.13
>>>
>>> The Windows system can ping the Samba4 server by IP address.
>>>
>>> Any help would be appreciated!  More configuration information below.
>>>
>>> /etc/resolv.conf:
>>> domain allenlan.net
>>> nameserver 192.168.0.13
>>>
>>> /usr/local/samba/etc/smb.conf:
>>> [global]
>>>           workgroup = ALLENLAN
>>>           realm = ALLENLAN.NET
>>>           netbios name = UBUNTU-AD
>>>           server role = active directory domain controller
>>>           dns forwarder = 192.168.0.1
>>>           interfaces = 192.168.0.13 127.0.0.1
>>>           bind interfaces only = yes
>>>           log level = 3
>>>           server services = smb, rpc, nbt, wrepl, ldap, cldap, kdc,
>>> drepl,
>>> winbind, ntp_signd, kcc, dnsupdate, dns
>>>
>>> /etc/hosts:
>>> 192.168.0.13    ubuntu-ad       ubuntu-ad.allenlan.net
>>> 127.0.0.1   localhost localhost.localdomain localhost4
>>> localhost4.localdomain4
>>> ::1         localhost localhost.localdomain localhost6
>>> localhost6.localdomain6
>>>
>>> $hostname
>>> ubuntu-ad.allenlan.net
>>>
>>> Thank you.
>>>
>>> Lee Allen
>>>
>>>  Hi, What does 'netstat -npl | grep 53 | grep LISTEN' return?
>>
>> Rowland
>>
>> --
>> This message has been scanned for viruses and
>> dangerous content by MailScanner, and is
>> believed to be clean.
>>
>> --
>> To unsubscribe from this list go to the following URL and read the
>> instructions:  https://lists.samba.org/****mailman/options/samba<https://lists.samba.org/**mailman/options/samba>
>> <https://**lists.samba.org/mailman/**options/samba<https://lists.samba.org/mailman/options/samba>
>> >
>>
>>
>
>  Hi, I thought that there may have been a possibility that dnsmasq was
running, the only other thoughts I have are:
How did you provision?
Is the firewall blocking port 53?
And that good old favourite, Selinux!

Rowland



-- 
This message has been scanned for viruses and
dangerous content by MailScanner, and is
believed to be clean.

-- 
To unsubscribe from this list go to the following URL and read the
instructions:  https://lists.samba.org/**mailman/options/samba<https://lists.samba.org/mailman/options/samba>

More information about the samba mailing list