[Samba] samba_dlz Failed to configure reverse zone

Rowland Penny rowlandpenny at googlemail.com
Mon Dec 29 14:01:42 MST 2014


On 29/12/14 18:20, support at remsnet.de wrote:
> Dear Roland,
>
> and here we have one reasons / prove regarding Debian and current Samba BIND DLZ issues :
> http://metadata.ftp-master.debian.org/changelogs//main/b/bind9/bind9_9.8.4.dfsg.P1-6+nmu2+deb7u3_changelog
>   MSG >> " * disable dlz until we get a patch to make it build again"
>
> Well Debian Maintainers seems seeking missing the dlz patches that RHEL & SLES maintainers created some times ago  .
>
> see http://bkraft.fr/blog/bind_9_10_1_and_bind_9_9_6_and_bind_9_8_8/
> and derived centos bind9 https://github.com/remsnet/CentOS-Bind-DLZ ,
> RPMS / SRPM /SPEC at https://www.dropbox.com/sh/56xu6o49pnkrrhv/AACaz6_nryOlSRsT_7CNKYWOa?dl=0
> .. was an hard days taking patching  to get it ... my special thanks to benjamin kraft´s exelent work...
>
>
> my  Rasberian had no load so bind9 dpkg install was quick :
>
> Neue Version der Konfigurationsdatei /etc/init.d/bind9 wird installiert ...
> [ ok ] Starting domain name service...: bind9.
> Trigger für libc-bin (2.19-13) werden verarbeitet ...
> Fehler traten auf beim Bearbeiten von:
>   slapd
> E: Sub-process /usr/bin/dpkg returned an error code (1)
>
> root at app1:~# cat /etc/debian_version
> jessie/sid
>
>
> root at app1:~# uname -a
> Linux app1 3.10.25+ #622 PREEMPT Fri Jan 3 18:41:00 GMT 2014 armv6l GNU/Linux
>
>
> root at app1:~# named -V
> BIND 9.9.5-7-Raspbian (Extended Support Version) <id:f9b8a50e> built by make with '--prefix=/usr' '--mandir=/usr/share/man' '--infodir=/usr/share/info' '--sysconfdir=/etc/bind' '--localstatedir=/var' '--enable-threads' '--enable-largefile' '--with-libtool' '--enable-shared' '--enable-static' '--with-openssl=/usr' '--with-gssapi=/usr' '--with-gnu-ld' '--with-geoip=/usr' '--with-atf=no' '--enable-ipv6' '--enable-rrl' '--enable-filter-aaaa' 'CFLAGS=-fno-strict-aliasing -fno-delete-null-pointer-checks -DDIG_SIGCHASE -O2'
> compiled by GCC 4.9.1
> using OpenSSL version: OpenSSL 1.0.1j 15 Oct 2014
> using libxml2 version: 2.9.1
>
> root at app1:~# date
> Mo 29. Dez 19:06:05 CET 2014
>
> DLZ been DISABLED  by debian bind9 pkg Maintainers at current.
>
> - and current bind9.9.x an up  don´t support "buildin" option anymore,
>    that way of configure has been  removed quite some time, notices for that can be found on the bind mailinglist.
>
> In this case - without DLZ -  the rebuild of the bind9 been _required_ to service samba4 dlz.
>
>
>
>
> --
> Mit freundlichen Grüßen / Best Regards
>
> Horst Venzke ; PGP NET : 1024G/082F2E6D ;  http://www.remsnet.de
>
> Legal Notice: This transmittal and/or attachments may be privileged or confidential. It is intended solely for the addressee named above. Any review, dissemination, or copying is strictly prohibited. If you received this transmittal in error, please notify us immediately by reply and immediately delete this message and all its attachments. Thank you.
>
>
>> Gesendet: Montag, 29. Dezember 2014 um 18:41 Uhr
>> Von: "Rowland Penny" <rowlandpenny at googlemail.com>
>> An: support at remsnet.de
>> Cc: samba at lists.samba.org
>> Betreff: Re: Aw: Re:  Re: [Samba] samba_dlz Failed to configure reverse zone
>>
>> On 29/12/14 17:32, support at remsnet.de wrote:
>>> Dear Rowland ,
>>>
>>> Just keep in mind that the Debian RPI maintated by rasperry.org PI fellows and _not_ mainly by the Mainsteam debian
>>> pkg maintainers,  and ways behind the main distro - allmost.
>>>
>>>> Even though there is no mention of dlopen, samba_dlz works.
>>>>
>>> yes/no   ->> its not displaying the DLZ file open <<- and that happen even on my now +1J old samba4.0 RPI samba4 ad.
>>>
>>> and thats why i reviewd the posted Bind startup
>>> we both know if the dlopen not happen cleanly , then any zoneload will be never succeeed.
>>>
>>> At monent i´m  build bind 9.9.5.7 on one of RPi cluster nodes , will tell you next days the Outcome and named -V output from package and selfcompiled. Compiling bind on RPI-II ( not croscompiling ) takes 4-6h , samba4 ~13-17h .
>> Hi, ok I take your point, but the OP never mentioned Rpi, come to think
>> of it, the OP has never mentioned their distro, wonder what it is.
>>
>> As for compiling S4 on rpi, been there, done that and yes it does take a
>> very long time. :-)
>>
>> Rowland
>>
>>>
>>> --
>>> Mit freundlichen Grüßen / Best Regards
>>>
>>> Horst Venzke ; PGP NET : 1024G/082F2E6D ;  http://www.remsnet.de
>>>
>>> Legal Notice: This transmittal and/or attachments may be privileged or confidential. It is intended solely for the addressee named above. Any review, dissemination, or copying is strictly prohibited. If you received this transmittal in error, please notify us immediately by reply and immediately delete this message and all its attachments. Thank you.
>>>
>>>
>>>> Gesendet: Montag, 29. Dezember 2014 um 18:06 Uhr
>>>> Von: "Rowland Penny" <rowlandpenny at googlemail.com>
>>>> An: support at remsnet.de
>>>> Cc: samba at lists.samba.org
>>>> Betreff: Re: Aw: Re: [Samba] samba_dlz Failed to configure reverse zone
>>>>
>>>> On 29/12/14 16:25, support at remsnet.de wrote:
>>>>> Hello ,
>>>>>
>>>>> review bind9 options ...
>>>>>
>>>>>>> Dec 22 12:25:55 verdandi named[18534]: starting BIND 9.9.5-7-Debian -u
>>>>>>> bind -4
>>>>>>> Dec 22 12:25:55 verdandi named[18534]: built with '--prefix=/usr'
>>>>>>> '--mandir=/usr/share/man' '--infodir=/usr/share/info'
>>>>>>> '--sysconfdir=/etc/bind' '--localstatedir=/var' '--enable-threads'
>>>>>>> '--enable-largefile' '--with-libtool' '--enable-shared'
>>>>>>> '--enable-static' '--with-openssl=/usr' '--with-gssapi=/usr'
>>>>>>> '--with-gnu-ld' '--with-geoip=/usr' '--with-atf=no' '--enable-ipv6'
>>>>>>> '--enable-rrl' '--enable-filter-aaaa' 'CFLAGS=-fno-strict-aliasing
>>>>>>> -fno-delete-null-pointer-checks -DDIG_SIGCHASE -O2'
>>>>>>> Dec 22 12:25:55 verdandi named[18534]:
>>>>> Due some currosity your Debian Bind seeems missing required Bind-dlz options,
>>>>>
>>>>> This Samba wiki explains it : https://wiki.samba.org/index.php/DNS,  in exact words not compiled in  required BIND-DLZ options :
>>>>>
>>>>> --with-dlopen=yes \
>>>>> --with-dlz-bdb \
>>>>> --with-dlz-ldap \
>>>>> --with-dlz-filesystem=yes \
>>>>>
>>>>>
>>>>> And here an HowTO for Debian to fix that :
>>>>>
>>>>> https://wiki.samba.org/index.php/DNS#Debian_.2F_Ubuntu_.2B_clones_-_Build_New_ISC_Bind_9.8_.2F_9.9_.2F_9.10
>>>>> ( just updated for debian as well. )
>>>>>
>>>>> Verify your Bind9 build options with "named -V" or "named-sdb -V":
>>>>>
>>>>>
>>>>>
>>>>>
>>>>> --
>>>>> Mit freundlichen Grüßen / Best Regards
>>>>>
>>>>> Horst Venzke ; PGP NET : 1024G/082F2E6D ;  http://www.remsnet.de
>>>>>
>>>>> Legal Notice: This transmittal and/or attachments may be privileged or confidential. It is intended solely for the addressee named above. Any review, dissemination, or copying is strictly prohibited. If you received this transmittal in error, please notify us immediately by reply and immediately delete this message and all its attachments. Thank you.
>>>>>
>>>> I must update that wiki page, the Debian bind9 package seems to have the
>>>> dlopen options built-in. I use 9.9.5 from wheezy backports:
>>>>
>>>> BIND 9.9.5-4~bpo70+1-Debian (Extended Support Version) <id:f9b8a50e>
>>>> built by make with '--prefix=/usr' '--mandir=/usr/share/man'
>>>> '--infodir=/usr/share/info' '--sysconfdir=/etc/bind'
>>>> '--localstatedir=/var' '--enable-threads' '--enable-largefile'
>>>> '--with-libtool' '--enable-shared' '--enable-static'
>>>> '--with-openssl=/usr' '--with-gssapi=/usr' '--with-gnu-ld'
>>>> '--with-geoip=/usr' '--with-atf=no' '--enable-ipv6' '--enable-rrl'
>>>> '--enable-filter-aaaa' 'CFLAGS=-fno-strict-aliasing -DDIG_SIGCHASE -O2'
>>>>
>>>> Even though there is no mention of dlopen, samba_dlz works.
>>>>
>>>> Rowland
>>>>
>>>>
> >

hang on a bit, the Debian link is for bind 9.8.x and the dlz reference 
is for 9.8.1.dfsg-1.

Rowland



More information about the samba mailing list