[Samba] Samba4: Wrong computer name / IP address assignment after DHCP reset

X-Dimension x-dimension at gmx.net
Tue Oct 21 12:48:18 MDT 2014 

Am 21.10.2014 um 18:23 schrieb steve:
> On 21/10/14 18:12, mots wrote:
>> I've read that just now, you didn't configure your DHCP server to update
>> DNS records if you've just followed that tutorial.
>>
>
> Hi
> bind will update windows clients with simply:
>
> tkey-gssapi-keytab "/path/to/samba/private/dns.keytab";
> at /path/to/named.conf
>
> Make sure named has r on the keytab and rw on the dns dbs. Is the 
> problem rather with Linux boxes not updating?
> Steve
>
>
Hi Steve,

i had take a look into /etc/bind/named.conf.options and 
"tkey-gssapi-keytab "/path/to/samba/private/dns.keytab"; is already set 
here.

I also looked into /var/log/syslog and i have found entrys like this:

client 192.168.1.82#49398: update 'mydomain.lan/IN' denied
named[1161]: samba_dlz: cancelling transaction on zone mydomain.lan
named[1161]: samba_dlz: starting transaction on zone mydomain.lan
named[1161]: samba_dlz: disallowing update of 
signer=computer-2\$\@MYDOMAIN.LAN name=Computer-2.mydomain.lan type=AA$
named[1161]: client 192.168.1.82#60064: updating zone 
'mydomain.lan/NONE': update failed: rejected by secure update (REFUSED)
named[1161]: samba_dlz: cancelling transaction on zone mydomain.lan

It looks like only some clients have this problem and most of the other 
are doing this:

named[1161]: client 192.168.1.78#59540: update 'mydomain.lan/IN' denied
named[1161]: samba_dlz: cancelling transaction on zone mydomain.lan
named[1161]: samba_dlz: starting transaction on zone mydomain.lan
named[1161]: samba_dlz: allowing update of 
signer=computer-3\$\@MYDOMAIN.LAN name=Computer-3.mydomain.lan tcpaddr= 
type=AA$
named[1161]: samba_dlz: allowing update of 
signer=computer-3\$\@MYDOMAIN.LAN name=Computer-3.mydomain.lan tcpaddr= 
type=A $
named[1161]: samba_dlz: allowing update of 
signer=computer-3\$\@MYDOMAIN.LAN name=Computer-3.mydomain.lan tcpaddr= 
type=A $
named[1161]: client 192.168.1.78#55412: updating zone 
'mydomain.lan/NONE': deleting rrset at 'Computer-3.mydomain.lan' AA$
named[1161]: client 192.168.1.78#55412: updating zone 
'mydomain.lan/NONE': deleting rrset at 'Computer-3.mydomain.lan' A
named[1161]: samba_dlz: subtracted rdataset Computer-3.mydomain.lan 
'Computer-3.mydomain.lan.#0111200#011IN#011A#011192.16$
named[1161]: client 192.168.1.78#55412: updating zone 
'mydomain.lan/NONE': adding an RR at 'Computer-3.mydomain.lan' A
named[1161]: samba_dlz: added rdataset Computer-3.mydomain.lan 
'Computer-3.mydomain.lan.#0111200#011IN#011A#011192.168.1.$
named[1161]: samba_dlz: committed transaction on zone mydomain.lan

If i understand it right, Computer-3 is updating fine and Computer-2 
doesn't?

More information about the samba mailing list