[Samba] Internal DNS and Replication

Dustin C. Hatch admiralnemo at gmail.com
Tue Mar 26 19:32:55 MDT 2013

On 3/26/2013 19:02, Alan Schmitz wrote:
> On 3/26/2013 14:48, Dustin C. Hatch wrote:
>> This sounds very similar to a problem I was having, though not quite. In
>> my situation, DNS changes on the existing DC were replicated to the
>> Samba server, but not vice versa. I ended up solving the problem by
>> manually listing the Samba server as holding a replica of the
>> DomainDnsZones and ForestDnsZones application partitions. Try running
>> these commands on a Windows machine:
>> ntdsutil "part man" "conn" "con to ser <windowsdc>" q "add nc replica
>> DC=DomainDnsZones,DC=<domain>,DC=<tld> <linuxdc>" q q
>> ntdsutil "part man" "conn" "con to ser <windowsdc>" q "add nc replica
>> DC=ForestDnsZones,DC=<domain>,DC=<tld> <linuxdc>" q q
>> Replace the items in angle brackets with their actual values (removing
>> the brackets), of course.
> I ran these commands on the Windows server (server1), and I'm seeing a
> slight improvement.  Thanks for the help.
> Samba4 (server2) now shows some outbound neighbors.
Can you post the full output of `samba-tool drs showrepl`?

> ...
> Are the IPs supposed to be populated during DNS replication, or is the
> client supposed to update both DCs?
No, the client is only supposed to update the DC it authenticated 
against. The replication should pass the information along.

Does the resolver on server2 need
> to be pointed to itself in order for DNS replication to work properly?
While this is generally accepted as best practice, it shouldn't 
technically matter as long as server2 can resolve everything in the forest.
> Thanks,
> Alan


More information about the samba mailing list