[Samba] Samba 4 replication causes bind dns to freeze

Nikos Mitas nkmitas at gmail.com
Mon Feb 24 15:10:07 MST 2014 

Missed the last questions......

-Which DNS server have you configured as primary in your old and new DCs
/etc/resolv.conf?

on domain1 the ip of domain1
on domain2 the ip of domain2
on new dc, as it does not have dns, the ip of both old dc

-Can you query the DNS on both hosts from each other?

yes, i have followed this wiki page,

https://wiki.samba.org/index.php/Samba4/HOWTO/Join_a_domain_as_a_DC
host resolution, guid names resolution etc, is working

-Any firewall stuff prevent from accessing port 53?

No firewall, no SELinux.

-Is the DLZ module for 9.9 enabled in /usr/local/samba/private/named.conf?
Yes, i have comment for 9.8 and enabled 9.9

-What Samba version are you running and is it self compiled or from where
you got it?

self compiled, samba 4.1.0

The old dc pair is working since october without problems.

Thanks

Nikos
On Feb 24, 2014 11:46 PM, "Marc Muehlfeld" <samba at marc-muehlfeld.de> wrote:

> Hello Nikos,
>
> Am 24.02.2014 21:49, schrieb Nikos Mitas:
>
>> Joined a new samba 4 dc to an existing pair of samba 4 domain controllers,
>> but i have a problem with replication.
>>
>
> Is the replication working before it hangs ('samba tool drs showrepl')?
>
>
>
>
>  5-10 minutes after starting samba services on the new samba 4 server,
>> both   dns servers on the old Domain controllers freeze.  Nothing works.
>>
>> all i can do is to kill all the services (ntp,named,samba) and start over
>> again.
>>
>> i get this message  on new dc in this file: /usr/local/samba/var/log.
>> samba:
>> ....
>> dreplsrv_notify: Failed to send DsReplicaSync to
>> 4d2038d4-3b1c-41a8-9865-142f7e9cadba._msdcs.example.com for
>> DC=example,DC=com - NT_STATUS_IO_TIMEOUT : WERR_SEM_TIMEOUT
>> .....
>> environment:
>> Redhat 6.5
>> Bind with dlz v9.9.5
>>
>
> Which DNS server have you configured as primary in your old and new DCs
> /etc/resolv.conf?
>
> Can you query the DNS on both hosts from each other?
>
> Any firewall stuff prevent from accessing port 53?
>
> Is the DLZ module for 9.9 enabled in /usr/local/samba/private/named.conf?
>
> What Samba version are you running and is it self compiled or from where
> you got it?
>
>
> Regards,
> Marc
>
>

More information about the samba mailing list