[Samba] Replication and DNS issue

Donaldson Jeff Jeff.Donaldson at ncs.k12.de.us
Wed Jul 16 14:34:19 MDT 2014

Our samba1 and Auth2 (hostnames) servers are on the same physical network and should be able to talk to each other without going through firewall and our two working DCs have no issues with replication. I still think it is something DNS related. Any other suggestions or things to look at? Any help is appreciated.


Sent from my mobile device

>> On Jul 16, 2014, at 4:19 PM, "steve" <steve at steve-ss.com> wrote:
>> On Wed, 2014-07-16 at 19:38 +0000, Donaldson Jeff wrote:
>> Port 135 issue?
> Yeah, that's it. But remember that you don't see anything about it on
> the DC which doesn't replicate (your latest DC). Look on the others.
> Best is to wait for some down time and lose the firewall all together.
> If you can get just one other close by that would be a bonus for
> testing.
> Cheers
>>>> On Jul 16, 2014, at 3:25 PM, "steve" <steve at steve-ss.com> wrote:
>>>> On Wed, 2014-07-16 at 18:21 +0000, Donaldson Jeff wrote:
>>>> Steve,
>>>> Thank you for the link. I manually added the failover DNS entries and all of the DNS checks return successfully on each server now. I am still having an issue with replication however. When I force the new DC to replicate to existing DCs using the following, samba-tool drs replicate ncssamba1 ncsauth2 DC=ncs,DC=k12,DC=de,DC=us or samba-tool drs replicate ncssamba1 ncsauth2 CN=Configuration,DC=ncs,DC=k12,DC=de,DC=us, I get the following error
>>>> ERROR(<class 'samba.drs_utils.drsException'>): DsReplicaSync failed - drsException: DsReplicaSync failed (-1073610723, 'NT_STATUS_RPC_PROTOCOL_ERROR')
>>>> File "/usr/local/samba/lib/python2.7/site-packages/samba/netcmd/drs.py", line 345, in run
>>>>  drs_utils.sendDsReplicaSync(self.drsuapi, self.drsuapi_handle, source_dsa_guid, NC, req_options)
>>>> File "/usr/local/samba/lib/python2.7/site-packages/samba/drs_utils.py", line 83, in sendDsReplicaSync
>>>>  raise drsException("DsReplicaSync failed %s" % estr)
>>>> Oddly, when I run the samba-tool drs showrepl command on the new DC, it no longer shows any outbound errors. It does however show an inbound error from my other DC specifically during replication of CN=Configuration,DC=ncs,DC=k12,DC=de,DC=us. The error is result 58 (WERR_BAD_NET_RESP). 
>>>> I'm not sure why running samba-tool drs showrepl shows no issues with outbound replication to my two other DCs now, but if I manually tell it to replicate to either of them I get the first error above. 
>>>> Any ideas? Thanks for your help!
>>> Hi
>>> The only other thing which comes to mind is the firewall.
>>> Steve

More information about the samba mailing list