[Samba] Samba 4 TSIG Error "NOTIMP"
Markus Schaufler
m.schaufler.ms at gmail.com
Fri Jan 11 06:26:27 MST 2013
Hi!
I've got troubles with dynamic dns updates.
Ubuntu: 12.04 / Samba 4.0.0 / followed off. howto
Winsrv: Server 2k8R2
root at tuxsrv:/home/schau# samba -V
Version 4.1.0pre1-GIT-94f11e9
root at tuxsrv:/home/schau# kinit administrator at SCHAU.LOCAL
Password for administrator at SCHAU.LOCAL:
root at tuxsrv:/home/schau# klist
Ticket cache: FILE:/tmp/krb5cc_0
Default principal: administrator at SCHAU.LOCAL
Valid starting Expires Service principal
11/01/13 14:24:08 12/01/13 00:24:10 krbtgt/SCHAU.LOCAL at SCHAU.LOCAL
renew until 12/01/13 00:24:08
My configs:
/etc/ntp.conf
server 127.127.1.0
fudge 127.127.1.0 stratum 10
server 0.pool.ntp.org iburst prefer
server 1.pool.ntp.org iburst prefer
driftfile /var/lib/ntp/ntp.drift
logfile /var/log/ntp
ntpsigndsocket /usr/local/samba/var/lib/ntp_signd/
restrict default kod nomodify notrap nopeer mssntp
restrict 127.0.0.1
restrict 0.pool.ntp.org mask 255.255.255.255 nomodify notrap nopeer noquery
restrict 1.pool.ntp.org mask 255.255.255.255 nomodify notrap nopeer noquery
/etc/krb5.conf
[libdefaults]
default_realm = SCHAU.LOCAL
dns_lookup_realm = false
dns_lookup_kdc = true
~
/usr/local/samba/etc/smb.conf
read only = No
[sysvol]
path = /usr/local/samba/var/locks/sysvol
read only = No
[test]
path = /data/test
comment = Test Share
read only = No
[printers]
comment = All Printers
path = /usr/local/samba/var/spool
browsable = Yes
read only = No
printable = Yes
[print$]
comment = Point and Print Printer Drivers
path = /usr/local/samba/var/print
read only = No
/etc/network/interfaces
# The loopback network interface
auto lo
iface lo inet loopback
# The primary network interface
auto eth0
iface eth0 inet static
address 10.0.0.20
netmask 255.0.0.0
network 10.0.0.0
broadcast 10.255.255.255
gateway 10.0.0.1
# dns-* options are implemented by the resolvconf package, if
installed
dns-nameservers 10.0.0.20
dns-search schau.local
dns-domain schau.local
/etc/resolv.conf
# Dynamic resolv.conf(5) file for glibc resolver(3) generated by
resolvconf(8)
# DO NOT EDIT THIS FILE BY HAND -- YOUR CHANGES WILL BE OVERWRITTEN
nameserver 10.0.0.20
search schau.local
when i test it with:
# /usr/local/samba/sbin/samba_dnsupdate --verbose --all-names
I get following error:
root at tuxsrv:/home/schau# /usr/local/samba/sbin/samba_dnsupdate --verbose
--all-names
IPs: ['fe80::a00:27ff:fe3b:4013%eth0', '10.0.0.20']
Calling nsupdate for A schau.local 10.0.0.20
Outgoing update query:
;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
;; flags:; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
;; UPDATE SECTION:
schau.local. 900 IN A 10.0.0.20
Calling nsupdate for A tuxsrv.schau.local 10.0.0.20
Outgoing update query:
;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
;; flags:; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
;; UPDATE SECTION:
tuxsrv.schau.local. 900 IN A 10.0.0.20
Calling nsupdate for A gc._msdcs.schau.local 10.0.0.20
Outgoing update query:
;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
;; flags:; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
;; UPDATE SECTION:
gc._msdcs.schau.local. 900 IN A 10.0.0.20
; TSIG error with server: tsig verify failure
update failed: NOTIMP
Failed nsupdate: 2
Calling nsupdate for CNAME
e22551f7-0de8-4773-a526-435b44971594._msdcs.schau.local tuxsrv.schau.local
Outgoing update query:
;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
;; flags:; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
;; UPDATE SECTION:
e22551f7-0de8-4773-a526-435b44971594._msdcs.schau.local. 900 IN CNAME
tuxsrv.schau.local.
; TSIG error with server: tsig verify failure
update failed: NOTIMP
Failed nsupdate: 2
Calling nsupdate for SRV _kpasswd._tcp.schau.local tuxsrv.schau.local 464
Outgoing update query:
;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
;; flags:; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
;; UPDATE SECTION:
_kpasswd._tcp.schau.local. 900 IN SRV 0 100 464
tuxsrv.schau.local.
Calling nsupdate for SRV _kpasswd._udp.schau.local tuxsrv.schau.local 464
Outgoing update query:
;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
;; flags:; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
;; UPDATE SECTION:
_kpasswd._udp.schau.local. 900 IN SRV 0 100 464
tuxsrv.schau.local.
Calling nsupdate for SRV _kerberos._tcp.schau.local tuxsrv.schau.local 88
Outgoing update query:
;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
;; flags:; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
;; UPDATE SECTION:
_kerberos._tcp.schau.local. 900 IN SRV 0 100 88 tuxsrv.schau.local.
Calling nsupdate for SRV _kerberos._tcp.dc._msdcs.schau.local
tuxsrv.schau.local 88
Outgoing update query:
;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
;; flags:; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
;; UPDATE SECTION:
_kerberos._tcp.dc._msdcs.schau.local. 900 IN SRV 0 100 88
tuxsrv.schau.local.
; TSIG error with server: tsig verify failure
update failed: NOTIMP
Failed nsupdate: 2
Calling nsupdate for SRV
_kerberos._tcp.default-first-site-name._sites.schau.local
tuxsrv.schau.local 88
Outgoing update query:
;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
;; flags:; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
;; UPDATE SECTION:
_kerberos._tcp.default-first-site-name._sites.schau.local. 900 IN SRV 0 100
88 tuxsrv.schau.local.
Calling nsupdate for SRV
_kerberos._tcp.default-first-site-name._sites.dc._msdcs.schau.local
tuxsrv.schau.local 88
Outgoing update query:
;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
;; flags:; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
;; UPDATE SECTION:
_kerberos._tcp.default-first-site-name._sites.dc._msdcs.schau.local. 900 IN
SRV0 100 88 tuxsrv.schau.local.
; TSIG error with server: tsig verify failure
update failed: NOTIMP
Failed nsupdate: 2
Calling nsupdate for SRV _kerberos._udp.schau.local tuxsrv.schau.local 88
Outgoing update query:
;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
;; flags:; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
;; UPDATE SECTION:
_kerberos._udp.schau.local. 900 IN SRV 0 100 88 tuxsrv.schau.local.
Calling nsupdate for SRV _ldap._tcp.schau.local tuxsrv.schau.local 389
Outgoing update query:
;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
;; flags:; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
;; UPDATE SECTION:
_ldap._tcp.schau.local. 900 IN SRV 0 100 389
tuxsrv.schau.local.
Calling nsupdate for SRV _ldap._tcp.dc._msdcs.schau.local
tuxsrv.schau.local 389
Outgoing update query:
;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
;; flags:; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
;; UPDATE SECTION:
_ldap._tcp.dc._msdcs.schau.local. 900 IN SRV 0 100 389
tuxsrv.schau.local.
; TSIG error with server: tsig verify failure
update failed: NOTIMP
Failed nsupdate: 2
Calling nsupdate for SRV _ldap._tcp.gc._msdcs.schau.local
tuxsrv.schau.local 3268
Outgoing update query:
;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
;; flags:; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
;; UPDATE SECTION:
_ldap._tcp.gc._msdcs.schau.local. 900 IN SRV 0 100 3268
tuxsrv.schau.local.
; TSIG error with server: tsig verify failure
update failed: NOTIMP
Failed nsupdate: 2
Calling nsupdate for SRV _ldap._tcp.pdc._msdcs.schau.local
tuxsrv.schau.local 389
Outgoing update query:
;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
;; flags:; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
;; UPDATE SECTION:
_ldap._tcp.pdc._msdcs.schau.local. 900 IN SRV 0 100 389
tuxsrv.schau.local.
; TSIG error with server: tsig verify failure
update failed: NOTIMP
Failed nsupdate: 2
Calling nsupdate for SRV
_ldap._tcp.default-first-site-name._sites.schau.local tuxsrv.schau.local 389
Outgoing update query:
;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
;; flags:; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
;; UPDATE SECTION:
_ldap._tcp.default-first-site-name._sites.schau.local. 900 IN SRV 0 100 389
tuxsrv.schau.local.
Calling nsupdate for SRV
_ldap._tcp.default-first-site-name._sites.dc._msdcs.schau.local
tuxsrv.schau.local 389
Outgoing update query:
;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
;; flags:; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
;; UPDATE SECTION:
_ldap._tcp.default-first-site-name._sites.dc._msdcs.schau.local. 900 IN SRV
0 100 389 tuxsrv.schau.local.
; TSIG error with server: tsig verify failure
update failed: NOTIMP
Failed nsupdate: 2
Calling nsupdate for SRV
_ldap._tcp.default-first-site-name._sites.gc._msdcs.schau.local
tuxsrv.schau.local 3268
Outgoing update query:
;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
;; flags:; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
;; UPDATE SECTION:
_ldap._tcp.default-first-site-name._sites.gc._msdcs.schau.local. 900 IN SRV
0 100 3268 tuxsrv.schau.local.
; TSIG error with server: tsig verify failure
update failed: NOTIMP
Failed nsupdate: 2
Calling nsupdate for SRV
_ldap._tcp.0dfc6e59-1d88-45de-84a3-639048374f40.domains._msdcs.schau.local
tuxsrv.schau.local 389
Outgoing update query:
;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
;; flags:; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
;; UPDATE SECTION:
_ldap._tcp.0dfc6e59-1d88-45de-84a3-639048374f40.domains._msdcs.schau.local.
900IN SRV 0 100 389 tuxsrv.schau.local.
; TSIG error with server: tsig verify failure
update failed: NOTIMP
Failed nsupdate: 2
Calling nsupdate for SRV _gc._tcp.schau.local tuxsrv.schau.local 3268
Outgoing update query:
;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
;; flags:; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
;; UPDATE SECTION:
_gc._tcp.schau.local. 900 IN SRV 0 100 3268
tuxsrv.schau.local.
Calling nsupdate for SRV
_gc._tcp.default-first-site-name._sites.schau.local tuxsrv.schau.local 3268
Outgoing update query:
;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 0
;; flags:; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
;; UPDATE SECTION:
_gc._tcp.default-first-site-name._sites.schau.local. 900 IN SRV 0 100 3268
tuxsrv.schau.local.
Failed update of 10 entries
Thanks for any help in advance!!
Markus
More information about the samba
mailing list