[Samba] Samba 4 internal DNS - how to modify SOA record

Rustam K. rkovhaev at gmail.com
Wed Oct 16 11:01:03 MDT 2013 

Hi,

You can use samba-tool or you can use Microsoft DNS mmc to update SOA
record.


2013/10/14 Jacó Ramos <j4c0r4m0s at gmail.com>

> Hi, guys...
>
> What line command for modify  SOA record?
>
> Thanks!
> Jacó Ramos
>
>
> 2013/10/14 Rustam K. <rkovhaev at gmail.com>
>
>> Hey guys,
>>
>> Just wanted to update this thread, I upgrade my samba installation to 4.1
>> and updated SOA record. Now dynamic DNS works fine for me!! Thanks for
>> implementing the feature!!!
>>
>> Cheers!!
>>
>>
>> 2013/8/9 Rustam K. <rkovhaev at gmail.com>
>>
>> > I thought I would update this email thread. So far editing the records
>> via
>> > ADSI messes up ldb database, if you do that zones won't load anymore,
>> just
>> > like Dmitry stated in his first email.
>> > I had to revert to a snapshot to get samba back, up and running.
>> >
>> > I am curious If I have to modify record manually via ldbmodify(ldbedit),
>> > would it understand hex/binary?
>> > because when I run ldbedit it shows me nothing compared to hex in my
>> > previous email, what is this format?
>> >
>> > # record 50
>> > dn:
>> DC=@,DC=officenet.local,CN=MicrosoftDNS,DC=DomainDnsZones,DC=officenet,DC=local
>> > objectClass: top
>> > objectClass: dnsNode
>> >
>> > ..... (cut)
>> >
>> > dnsRecord:: BAABAAXwAAB6AAAAAAADhAAAAAAAAAAAwKj6Aw==
>> > dnsRecord:: BAABAAXwAABuAAAAAAACWAAAAAAAAAAAwKj6Bg==
>> > dnsRecord::
>> GwACAAXwAAB6AAAAAAAAAAAAAAAjKzcAGQMHc3J2LXdpbglvZmZpY2VuZXQFbG9jYW
>> >  wA
>> > dnsRecord::
>> GgACAAXwAACGAAAAAAADhAAAAAArtw0IGAMGYWxmYWRjCW9mZmljZW5ldAVsb2NhbA
>> >  A=
>> > dnsRecord::
>> TgAGAAXwAAC9AAAAAAAAAAAAAAAYMDcAAAAAvQAAA4QAAAJYAAFRgAAAAAAaAwhzcn
>> >  YtYWxmYQlvZmZpY2VuZXQFbG9jYWwAHAMKaG9zdG1hc3RlcglvZmZpY2VuZXQFbG9jYWwA
>> >
>> > Cheers
>> >
>> >
>> >
>> > 2013/8/9 Rustam K. <rkovhaev at gmail.com>
>> >
>> > Hi,
>> >>
>> >> thanks for the follow up.
>> >>
>> >> I found the SOA record via ADSI edit :
>> >>
>> >>
>> >>
>> DC=@,DC=officenet.local,CN=MicrosoftDNS,DC=DomainDnsZones,DC=officenet,DC=local
>> >>
>> >>
>> DC=@,DC=_msdcs.officenet.local,CN=MicrosoftDNS,DC=ForestDnsZones,DC=officenet,DC=local
>> >>
>> >> there are two of them,and every one of them has attribute dnsRecord
>> which
>> >> is in hex, and it has string "srv-alfa" (apart from hostmaster email
>> ttl
>> >> etc) which I need to change to "alfadc"
>> >>
>> >> 4E 00 06 00 05 F0 00 00 BE 00 00 00 00 00 00 00 00 00 00 00 1C 30 37 00
>> >> 00 00 00 BE 00 00 03 84 00 00 02 58 00 01 51 80 00 00 00 00 1A 03 08
>> 73 72
>> >> 76 2D 61 6C 66 61 09 6F 66 66 69 63 65 6E 65 74 05 6C 6F 63 61 6C 00
>> 1C 03
>> >> 0A 68 6F 73 74 6D 61 73 74 65 72 09 6F 66 66 69 63 65 6E 65 74 05 6C
>> 6F 63
>> >> 61 6C 00
>> >>
>> >> This is where I am headed, and I'll try not to screw it up.
>> >>
>> >>
>> >> Cheers
>> >>
>> >>
>> >> 2013/8/9 Nico Kadel-Garcia <nkadel at gmail.com>
>> >>
>> >>> On Thu, Aug 8, 2013 at 4:14 AM, Kai Blin <kai at samba.org> wrote:
>> >>> > On 2013-08-08 10:02, Rustam K. wrote:
>> >>> >>
>> >>> >> Hello,
>> >>> >> I run samba 4.0.7, samba tool can't do the job, at least
>> help/syntax
>> >>> >> doesn't show that I can
>> >>> >
>> >>> >
>> >>> > Ah, yes. Apparently this functionality only exists in 4.1 and
>> master,
>> >>> sorry.
>> >>> > Should you try and run with that the command syntax is
>> >>> >
>> >>> > samba-tool dns update SOA "fqdn_dns fqdn_email serial refresh retry
>> >>> expire
>> >>> > minimumttl"
>> >>> >
>> >>> > HTH,
>> >>> >
>> >>> > Kai
>> >>>
>> >>> Rustam, I do hope that if you're manipulating your SOA directly, that
>> >>> you've actually looked up the guidelines for manipulating them? Just
>> >>> so you don't get surprised by things like the wraparound values for
>> >>> the serial numbers, or what reasonable values are for TTL's.
>> >>>
>> >>
>> >>
>> >>
>> >> --
>> >>
>> >> Rustam
>> >>
>> >
>> >
>> >
>> >
>>
>>
>> --
>>
>> Rustam
>>
>> --
>> To unsubscribe from this list go to the following URL and read the
>> instructions:  https://lists.samba.org/mailman/options/samba
>>
>
>
>
> --
>
> *"O homem não foi criado para ser feliz nem para vencer, mas para viver
> para Deus. Quando vive para Deus é feliz e vence." Isaltino Gomes
> *
> *
> $whoami*
>
>    - Perito Forense Computacional
>    - Pentester
>    - Esp. em Segurança de Redes de Computadores com enfâse a Perícia
>    Forense Computacional - FACID
>    - Bacharel em Ciência da Computação - UESPI
>    - Administrador de Redes de Computadores
>    - CCNA Modulo II
>    - Lattes: *http://lattes.cnpq.br/1591329268136905*
>
>
> Esta mensagem pode conter informações confidenciais e/ou privilegiadas. Se
> você não for o destinatário ou a pessoa autorizada a receber esta mensagem,
> não deve usar, copiar ou divulgar as informações nela contida ou tomar
> qualquer ação baseada nessas informações.
>

More information about the samba mailing list