[Samba] DNS Setup

Zhia Chandra zhia.chandra at gmail.com
Thu Jan 23 10:08:01 MST 2014


Hi chan and denis

> Sorry to ask did samba internal dns currently support extra zone?
I dont know, can hou give me any clue

>>> so make another static dns like
>>>
>>> mail.company2.com

Yes most Simple workaround is make another dns record like mail1.local.lan
with different ip, but its nu good for user becouse they need to change
their mail cliet setting when they move from one site to other site,  and I
have plan to implement samba 4 ad in more than 2 site

>> I think you cannot use only Samba4 internal DNS for this kind of
specific setup. In this case I would define a zone company.com as Chan said
directly in bind9 flat files configuration, and not integrated into AD, and
I would keep the zone local.lan AD integrated. This way you can define the
zone differently on the two sites in the company.com zone (or use a bind
multiview to have a common configuration between the two sites).

Yes I got your idea I try to implement it .. I put static dns on my
site1-firewall,fyi, I use pfsense for my firewall and open vpn server ..
and I push the dns to site2 openvpn client. I only use samba 4 internal dns
for dc and client ip address, for service such email and web, I use dns
from other external dns, that I install in each site .. it need little
trick on client ip configuration, I need to put DC ip address after
external dns. If we put at first the samba internal domain wont resolve
other dns record with  local.lan domain from other/external dns server..



On Jan 22, 2014 6:32 PM, "Chan Min Wai" <dcmwai at gmail.com> wrote:
>
> Sorry to ask did samba internal dns currently support extra zone?
>
> That should be easier than bind dns.
>
> Thank you.
>
>
> On Wed, Jan 22, 2014 at 5:48 PM, Denis Cardon <
denis.cardon at tranquil-it-systems.fr> wrote:
>>
>> Hi Zhia,
>>>
>>>
>>> in that case you should not not mail.local.lan or local.lan domain
>>> use something else like
>>>
>>> mail.company.com
>>> and define statically on this company.com domain
>>>
>>> Of course that site2 dc will have a similar result.
>>> they are join...
>>>
>>> so make another static dns like
>>>
>>> mail.company2.com
>>>
>>> As for the NAT issue check on the openvpn configuration I'm not sure if
>>> that is possible.
>>> but it don't affect samba...
>>
>>
>> I think you cannot use only Samba4 internal DNS for this kind of
specific setup. In this case I would define a zone company.com as Chan said
directly in bind9 flat files configuration, and not integrated into AD, and
I would keep the zone local.lan AD integrated. This way you can define the
zone differently on the two sites in the company.com zone (or use a bind
multiview to have a common configuration between the two sites).
>>
>> Cheers,
>>
>> Denis
>>
>>>
>>>
>>>
>>> On Tue, Jan 21, 2014 at 3:35 PM, Zhia Chandra <zhia.chandra at gmail.com
>wrote:
>>>
>>>> hii guys
>>>>
>>>> i have some issue with dns in samba 4
>>>>
>>>> i have install and setup 2 samba dc in different Site
>>>> site2 dc joint to site1 dc, with internal dns
>>>> topology :
>>>>
>>>> site1 --- openvpn server --- firewall --- wan --- openvpn client ---
site2
>>>> 192.168.1.0/24
>>>> 192.168.2.0/24
>>>>
>>>> in site1 i have some application let say
>>>> email server:  mail.local.lan  > 192.168.1.2
>>>> web server : web.local.lan > 192.168.1.3
>>>>
>>>> my issue is, dont want any site2-client access site1 directly to
server in
>>>> site1
>>>> i want site2-client access viat NAT form site1-firewall
>>>> and i have issue with setting dns data in domain controller
>>>> if i set in dc dns mail.local.lan  > 192.168.1.2, site2-client will
have
>>>> same ip address for mail.local.lan , is there any way to change the ip
of
>>>> mail.local.lan in site2-dc  only effect in site2 ?
>>>>
>>>>
>>>>
>>>>
>>>> --
>>>>
>>>> Thx & Warm regards
>>>> Zhia Chandra
>>>> --
>>>> To unsubscribe from this list go to the following URL and read the
>>>> instructions:  https://lists.samba.org/mailman/options/samba
>>>>
>>
>>
>> --
>> Denis Cardon
>> Tranquil IT Systems
>> Les Espaces Jules Verne, bâtiment A
>> 12 avenue Jules Verne
>> 44230 Saint Sébastien sur Loire
>> tel : +33 (0) 2.40.97.57.55
>> http://www.tranquil-it-systems.fr
>>
>


More information about the samba mailing list