[Samba] demote DC

Fernando Rodriguez fernando at solid-optics.com
Sun Jul 20 03:19:45 MDT 2014 

On 20/07/2014 3:24, Marc Muehlfeld wrote:
> Am 19.07.2014 19:05, schrieb Fernando Rodriguez:
>> root at volendam:/home/newhang# ping
>> cb1b21b6-e525-426d-a277-c86110644b38._msdcs.solid-optics.local
>> ping: unknown host
>> cb1b21b6-e525-426d-a277-c86110644b38._msdcs.solid-optics.local
>
> Don't worry that you can't ping the GUID entry, even if it resolves via
> 'host' to a valid host/ip. I saw the same here. Any one has an idea why?
>
>
>
>
>
>>> * Can you show the content of hoorns /etc/hosts, please?
>>
>> root at hoorn:/home/newhang# cat /etc/hosts
>> 127.0.0.1       localhost
>> 127.0.1.1       hoorn.solid-optics.local        hoorn
>
> The second line is something that could cause problems. The IP of
> 'hoorn.solid-optics.local' isn't 127.0.1.1 in your network. It's
> 192.168.10.37.
>
> If your /etc/nsswitch.conf says
>     hosts:      files dns...
> then hoorn uses the IP from the /etc/hosts entry when using the
> hostname. And if your Samba (or other services) isn't listening on that
> interface/IP, then this could lead to connection problems.
>
> Set this to hoorns real IP or remove that line. Your DNS should answer
> that also.
Line removed from hoorn.

Volendam and Tilbirg have the same entry:
root at tilburg:/home/newhang# cat /etc/hosts
127.0.0.1       localhost
127.0.1.1       tilburg.solid-optics.local      tilburg

# The following lines are desirable for IPv6 capable hosts
::1     localhost ip6-localhost ip6-loopback
ff02::1 ip6-allnodes
ff02::2 ip6-allrouters
root at tilburg:/home/newhang#

root at volendam:/home/newhang# cat /etc/hosts
127.0.0.1       localhost
127.0.1.1       volendam.solid-optics.local     volendam

# The following lines are desirable for IPv6 capable hosts
::1     localhost ip6-localhost ip6-loopback
ff02::1 ip6-allnodes
ff02::2 ip6-allrouters
root at volendam:/home/newhang#




> * Can you show your /etc/krb4.conf from hoorn?
[libdefaults]
  dns_lookup_realm = true
  dns_lookup_kdc = true
  default_realm = SOLID-OPTICS.LOCAL
root at hoorn:/home/newhang#


> * Can you 'kinit' (use uppercase for your realm)
>    # kinit administrator at SAMDOM.EXAMPLE.COM

root at hoorn:/home/newhang# kinit administrator at SOLID-OPTICS.LOCAL
kinit: Cannot contact any KDC for realm 'SOLID-OPTICS.LOCAL' while 
getting initial credentials

> Regards,
> Marc
>

More information about the samba mailing list