[Samba] DNS synchronisation problems
Olivier Weinstoerffer
olivier.weinstoerffer at adhoc-international.com
Tue Feb 10 10:59:38 MST 2015
Hi,
I have replications problems on one of my server. Replication was working
since month and yet stopped working.
on the remote server:
islad01:~ # samba-tool drs showrepl | more
Default-First-Site-Name\ISLAD01
DSA Options: 0x00000001
DSA object GUID: 3fe6bc7c-1116-4344-96a6-c58c43bc217f
DSA invocationId: 89351eec-7207-45f5-b6b9-cebfcacfd0e3
==== INBOUND NEIGHBORS ====
DC=ForestDnsZones,DC=simalaya-group,DC=com
Default-First-Site-Name\ADCAD01 via RPC
DSA object GUID: 1e3dc50c-5138-4760-bdd7-69fdf8ab2335
Last attempt @ Tue Feb 10 17:48:43 2015 CET was successful
0 consecutive failure(s).
Last success @ Tue Feb 10 17:48:43 2015 CET
DC=ForestDnsZones,DC=simalaya-group,DC=com
Default-First-Site-Name\ADCAD02 via RPC
DSA object GUID: 97b81951-bdf8-47bd-9afc-59eaf993de6b
Last attempt @ Tue Feb 10 17:48:43 2015 CET was successful
0 consecutive failure(s).
Last success @ Tue Feb 10 17:48:43 2015 CET
DC=ForestDnsZones,DC=simalaya-group,DC=com
Simalaya\SIMAD01 via RPC
DSA object GUID: 62d8e484-19cb-4e15-b741-88b5c54dc3f5
Last attempt @ Tue Feb 10 17:49:43 2015 CET failed, result
121 (WERR_SEM_TIMEOUT)
78908 consecutive failure(s).
Last success @ NTTIME(0)
CN=Schema,CN=Configuration,DC=simalaya-group,DC=com
Default-First-Site-Name\ADCAD01 via RPC
DSA object GUID: 1e3dc50c-5138-4760-bdd7-69fdf8ab2335
Last attempt @ Wed Feb 4 15:50:14 2015 CET was successful
0 consecutive failure(s).
Last success @ Wed Feb 4 15:50:14 2015 CET
CN=Schema,CN=Configuration,DC=simalaya-group,DC=com
Default-First-Site-Name\ADCAD02 via RPC
DSA object GUID: 97b81951-bdf8-47bd-9afc-59eaf993de6b
Last attempt @ Wed Feb 4 15:50:15 2015 CET was successful
0 consecutive failure(s).
Last success @ Wed Feb 4 15:50:15 2015 CET
CN=Schema,CN=Configuration,DC=simalaya-group,DC=com
Simalaya\SIMAD01 via RPC
DSA object GUID: 62d8e484-19cb-4e15-b741-88b5c54dc3f5
Last attempt @ Wed Feb 4 15:51:15 2015 CET failed, result
121 (WERR_SEM_TIMEOUT)
78885 consecutive failure(s).
Last success @ NTTIME(0)
DC=simalaya-group,DC=com
Default-First-Site-Name\ADCAD01 via RPC
DSA object GUID: 1e3dc50c-5138-4760-bdd7-69fdf8ab2335
Last attempt @ Wed Feb 4 15:51:15 2015 CET was successful
0 consecutive failure(s).
Last success @ Wed Feb 4 15:51:15 2015 CET
DC=simalaya-group,DC=com
Default-First-Site-Name\ADCAD02 via RPC
DSA object GUID: 97b81951-bdf8-47bd-9afc-59eaf993de6b
Last attempt @ Tue Feb 10 17:16:46 2015 CET was successful
0 consecutive failure(s).
Last success @ Tue Feb 10 17:16:46 2015 CET
DC=simalaya-group,DC=com
Simalaya\SIMAD01 via RPC
DSA object GUID: 62d8e484-19cb-4e15-b741-88b5c54dc3f5
Last attempt @ Wed Feb 4 15:52:16 2015 CET failed, result
121 (WERR_SEM_TIMEOUT)
78878 consecutive failure(s).
Last success @ NTTIME(0)
DC=DomainDnsZones,DC=simalaya-group,DC=com
Default-First-Site-Name\ADCAD01 via RPC
DSA object GUID: 1e3dc50c-5138-4760-bdd7-69fdf8ab2335
Last attempt @ Wed Feb 4 15:49:13 2015 CET was successful
0 consecutive failure(s).
Last success @ Wed Feb 4 15:49:13 2015 CET
DC=DomainDnsZones,DC=simalaya-group,DC=com
Default-First-Site-Name\ADCAD02 via RPC
DSA object GUID: 97b81951-bdf8-47bd-9afc-59eaf993de6b
Last attempt @ Wed Feb 4 15:49:14 2015 CET was successful
0 consecutive failure(s).
Last success @ Wed Feb 4 15:49:14 2015 CET
DC=DomainDnsZones,DC=simalaya-group,DC=com
Simalaya\SIMAD01 via RPC
DSA object GUID: 62d8e484-19cb-4e15-b741-88b5c54dc3f5
Last attempt @ Wed Feb 4 15:50:14 2015 CET failed, result
121 (WERR_SEM_TIMEOUT)
78892 consecutive failure(s).
Last success @ NTTIME(0)
CN=Configuration,DC=simalaya-group,DC=com
Default-First-Site-Name\ADCAD01 via RPC
DSA object GUID: 1e3dc50c-5138-4760-bdd7-69fdf8ab2335
Last attempt @ Wed Feb 4 15:52:17 2015 CET was successful
0 consecutive failure(s).
Last success @ Wed Feb 4 15:52:17 2015 CET
CN=Configuration,DC=simalaya-group,DC=com
Default-First-Site-Name\ADCAD02 via RPC
DSA object GUID: 97b81951-bdf8-47bd-9afc-59eaf993de6b
Last attempt @ Wed Feb 4 15:52:18 2015 CET was successful
0 consecutive failure(s).
Last success @ Wed Feb 4 15:52:18 2015 CET
CN=Configuration,DC=simalaya-group,DC=com
Simalaya\SIMAD01 via RPC
DSA object GUID: 62d8e484-19cb-4e15-b741-88b5c54dc3f5
Last attempt @ Wed Feb 4 15:53:18 2015 CET failed, result
121 (WERR_SEM_TIMEOUT)
78875 consecutive failure(s).
Last success @ NTTIME(0)
==== OUTBOUND NEIGHBORS ====
DC=ForestDnsZones,DC=simalaya-group,DC=com
Default-First-Site-Name\ADCAD01 via RPC
DSA object GUID: 1e3dc50c-5138-4760-bdd7-69fdf8ab2335
Last attempt @ NTTIME(0) was successful
0 consecutive failure(s).
Last success @ NTTIME(0)
DC=ForestDnsZones,DC=simalaya-group,DC=com
Default-First-Site-Name\ADCAD02 via RPC
DSA object GUID: 97b81951-bdf8-47bd-9afc-59eaf993de6b
Last attempt @ NTTIME(0) was successful
0 consecutive failure(s).
Last success @ NTTIME(0)
CN=Schema,CN=Configuration,DC=simalaya-group,DC=com
Default-First-Site-Name\ADCAD01 via RPC
DSA object GUID: 1e3dc50c-5138-4760-bdd7-69fdf8ab2335
Last attempt @ NTTIME(0) was successful
0 consecutive failure(s).
Last success @ NTTIME(0)
CN=Schema,CN=Configuration,DC=simalaya-group,DC=com
Default-First-Site-Name\ADCAD02 via RPC
DSA object GUID: 97b81951-bdf8-47bd-9afc-59eaf993de6b
Last attempt @ NTTIME(0) was successful
0 consecutive failure(s).
Last success @ NTTIME(0)
DC=simalaya-group,DC=com
Default-First-Site-Name\ADCAD01 via RPC
DSA object GUID: 1e3dc50c-5138-4760-bdd7-69fdf8ab2335
Last attempt @ NTTIME(0) was successful
0 consecutive failure(s).
Last success @ NTTIME(0)
DC=simalaya-group,DC=com
Default-First-Site-Name\ADCAD02 via RPC
DSA object GUID: 97b81951-bdf8-47bd-9afc-59eaf993de6b
Last attempt @ NTTIME(0) was successful
0 consecutive failure(s).
Last success @ NTTIME(0)
DC=DomainDnsZones,DC=simalaya-group,DC=com
Default-First-Site-Name\ADCAD01 via RPC
DSA object GUID: 1e3dc50c-5138-4760-bdd7-69fdf8ab2335
Last attempt @ NTTIME(0) was successful
0 consecutive failure(s).
Last success @ NTTIME(0)
DC=DomainDnsZones,DC=simalaya-group,DC=com
Default-First-Site-Name\ADCAD02 via RPC
DSA object GUID: 97b81951-bdf8-47bd-9afc-59eaf993de6b
Last attempt @ NTTIME(0) was successful
0 consecutive failure(s).
Last success @ NTTIME(0)
CN=Configuration,DC=simalaya-group,DC=com
Default-First-Site-Name\ADCAD01 via RPC
DSA object GUID: 1e3dc50c-5138-4760-bdd7-69fdf8ab2335
Last attempt @ NTTIME(0) was successful
0 consecutive failure(s).
Last success @ NTTIME(0)
CN=Configuration,DC=simalaya-group,DC=com
Default-First-Site-Name\ADCAD02 via RPC
DSA object GUID: 97b81951-bdf8-47bd-9afc-59eaf993de6b
Last attempt @ NTTIME(0) was successful
0 consecutive failure(s).
Last success @ NTTIME(0)
==== KCC CONNECTION OBJECTS ====
Connection --
Connection name: 0f4098f1-e024-4700-b0f8-c3b6a4586d21
Enabled : TRUE
Server DNS name : SIMAD01.simalaya-group.com
Server DN name : CN=NTDS
Settings,CN=SIMAD01,CN=Servers,CN=Simalaya,CN=Sites,CN=Configuration,DC=simalaya-group,DC=com
TransportType: RPC
options: 0x00000001
Warning: No NC replicated for Connection!
Connection --
Connection name: 82593202-59d1-4989-8d4d-5ef3ed7224fd
Enabled : TRUE
Server DNS name : ADCAD02.simalaya-group.com
Server DN name : CN=NTDS
Settings,CN=ADCAD02,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=simalaya-group,DC=com
TransportType: RPC
options: 0x00000001
Warning: No NC replicated for Connection!
Connection --
Connection name: 9d847694-8141-4998-85b1-488da11f3a5b
Enabled : TRUE
Server DNS name : adcad01.simalaya-group.com
Server DN name : CN=NTDS
Settings,CN=ADCAD01,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=simalaya-group,DC=com
TransportType: RPC
options: 0x00000001
Warning: No NC replicated for Connection!
islad01:~ #
Errors for SIMAD01 are normal here since the 2 sites are not connected
On the local site:
adcad01:/var/log/samba # samba-tool drs showrepl
Default-First-Site-Name\ADCAD01
DSA Options: 0x00000001
DSA object GUID: 1e3dc50c-5138-4760-bdd7-69fdf8ab2335
DSA invocationId: c0139cd5-bd25-4afd-a691-9f4f032f12e7
==== INBOUND NEIGHBORS ====
DC=ForestDnsZones,DC=simalaya-group,DC=com
Default-First-Site-Name\ADCAD02 via RPC
DSA object GUID: 97b81951-bdf8-47bd-9afc-59eaf993de6b
Last attempt @ Tue Feb 10 18:54:49 2015 CET was successful
0 consecutive failure(s).
Last success @ Tue Feb 10 18:54:49 2015 CET
DC=ForestDnsZones,DC=simalaya-group,DC=com
Default-First-Site-Name\ISLAD01 via RPC
DSA object GUID: 3fe6bc7c-1116-4344-96a6-c58c43bc217f
Last attempt @ Tue Feb 10 18:54:50 2015 CET was successful
0 consecutive failure(s).
Last success @ Tue Feb 10 18:54:50 2015 CET
DC=ForestDnsZones,DC=simalaya-group,DC=com
Simalaya\SIMAD01 via RPC
DSA object GUID: 62d8e484-19cb-4e15-b741-88b5c54dc3f5
Last attempt @ Tue Feb 10 18:54:50 2015 CET was successful
0 consecutive failure(s).
Last success @ Tue Feb 10 18:54:50 2015 CET
DC=DomainDnsZones,DC=simalaya-group,DC=com
Default-First-Site-Name\ADCAD02 via RPC
DSA object GUID: 97b81951-bdf8-47bd-9afc-59eaf993de6b
Last attempt @ Tue Feb 10 18:54:50 2015 CET was successful
0 consecutive failure(s).
Last success @ Tue Feb 10 18:54:50 2015 CET
DC=DomainDnsZones,DC=simalaya-group,DC=com
Default-First-Site-Name\ISLAD01 via RPC
DSA object GUID: 3fe6bc7c-1116-4344-96a6-c58c43bc217f
Last attempt @ Tue Feb 10 18:54:51 2015 CET was successful
0 consecutive failure(s).
Last success @ Tue Feb 10 18:54:51 2015 CET
DC=DomainDnsZones,DC=simalaya-group,DC=com
Simalaya\SIMAD01 via RPC
DSA object GUID: 62d8e484-19cb-4e15-b741-88b5c54dc3f5
Last attempt @ Tue Feb 10 18:54:52 2015 CET was successful
0 consecutive failure(s).
Last success @ Tue Feb 10 18:54:52 2015 CET
DC=simalaya-group,DC=com
Default-First-Site-Name\ADCAD02 via RPC
DSA object GUID: 97b81951-bdf8-47bd-9afc-59eaf993de6b
Last attempt @ Tue Feb 10 18:54:52 2015 CET was successful
0 consecutive failure(s).
Last success @ Tue Feb 10 18:54:52 2015 CET
DC=simalaya-group,DC=com
Default-First-Site-Name\ISLAD01 via RPC
DSA object GUID: 3fe6bc7c-1116-4344-96a6-c58c43bc217f
Last attempt @ Tue Feb 10 18:54:53 2015 CET was successful
0 consecutive failure(s).
Last success @ Tue Feb 10 18:54:53 2015 CET
DC=simalaya-group,DC=com
Simalaya\SIMAD01 via RPC
DSA object GUID: 62d8e484-19cb-4e15-b741-88b5c54dc3f5
Last attempt @ Tue Feb 10 18:54:53 2015 CET was successful
0 consecutive failure(s).
Last success @ Tue Feb 10 18:54:53 2015 CET
CN=Schema,CN=Configuration,DC=simalaya-group,DC=com
Default-First-Site-Name\ADCAD02 via RPC
DSA object GUID: 97b81951-bdf8-47bd-9afc-59eaf993de6b
Last attempt @ Tue Feb 10 18:54:54 2015 CET was successful
0 consecutive failure(s).
Last success @ Tue Feb 10 18:54:54 2015 CET
CN=Schema,CN=Configuration,DC=simalaya-group,DC=com
Default-First-Site-Name\ISLAD01 via RPC
DSA object GUID: 3fe6bc7c-1116-4344-96a6-c58c43bc217f
Last attempt @ Tue Feb 10 18:54:54 2015 CET was successful
0 consecutive failure(s).
Last success @ Tue Feb 10 18:54:54 2015 CET
CN=Schema,CN=Configuration,DC=simalaya-group,DC=com
Simalaya\SIMAD01 via RPC
DSA object GUID: 62d8e484-19cb-4e15-b741-88b5c54dc3f5
Last attempt @ Tue Feb 10 18:54:55 2015 CET was successful
0 consecutive failure(s).
Last success @ Tue Feb 10 18:54:55 2015 CET
CN=Configuration,DC=simalaya-group,DC=com
Default-First-Site-Name\ADCAD02 via RPC
DSA object GUID: 97b81951-bdf8-47bd-9afc-59eaf993de6b
Last attempt @ Tue Feb 10 18:54:55 2015 CET was successful
0 consecutive failure(s).
Last success @ Tue Feb 10 18:54:55 2015 CET
CN=Configuration,DC=simalaya-group,DC=com
Default-First-Site-Name\ISLAD01 via RPC
DSA object GUID: 3fe6bc7c-1116-4344-96a6-c58c43bc217f
Last attempt @ Tue Feb 10 18:54:56 2015 CET was successful
0 consecutive failure(s).
Last success @ Tue Feb 10 18:54:56 2015 CET
CN=Configuration,DC=simalaya-group,DC=com
Simalaya\SIMAD01 via RPC
DSA object GUID: 62d8e484-19cb-4e15-b741-88b5c54dc3f5
Last attempt @ Tue Feb 10 18:54:56 2015 CET was successful
0 consecutive failure(s).
Last success @ Tue Feb 10 18:54:56 2015 CET
==== OUTBOUND NEIGHBORS ====
DC=ForestDnsZones,DC=simalaya-group,DC=com
Default-First-Site-Name\ISLAD01 via RPC
DSA object GUID: 3fe6bc7c-1116-4344-96a6-c58c43bc217f
Last attempt @ Tue Feb 10 18:58:04 2015 CET failed, result
29 (WERR_WRITE_FAULT)
42 consecutive failure(s).
Last success @ NTTIME(0)
DC=ForestDnsZones,DC=simalaya-group,DC=com
Simalaya\SIMAD01 via RPC
DSA object GUID: 62d8e484-19cb-4e15-b741-88b5c54dc3f5
Last attempt @ Tue Feb 10 18:54:40 2015 CET was successful
0 consecutive failure(s).
Last success @ Tue Feb 10 18:54:40 2015 CET
DC=ForestDnsZones,DC=simalaya-group,DC=com
Default-First-Site-Name\ADCAD02 via RPC
DSA object GUID: 97b81951-bdf8-47bd-9afc-59eaf993de6b
Last attempt @ NTTIME(0) was successful
0 consecutive failure(s).
Last success @ NTTIME(0)
DC=DomainDnsZones,DC=simalaya-group,DC=com
Default-First-Site-Name\ISLAD01 via RPC
DSA object GUID: 3fe6bc7c-1116-4344-96a6-c58c43bc217f
Last attempt @ Tue Feb 10 18:58:04 2015 CET failed, result
29 (WERR_WRITE_FAULT)
42 consecutive failure(s).
Last success @ Tue Feb 10 18:48:21 2015 CET
DC=DomainDnsZones,DC=simalaya-group,DC=com
Simalaya\SIMAD01 via RPC
DSA object GUID: 62d8e484-19cb-4e15-b741-88b5c54dc3f5
Last attempt @ NTTIME(0) was successful
0 consecutive failure(s).
Last success @ NTTIME(0)
DC=DomainDnsZones,DC=simalaya-group,DC=com
Default-First-Site-Name\ADCAD02 via RPC
DSA object GUID: 97b81951-bdf8-47bd-9afc-59eaf993de6b
Last attempt @ NTTIME(0) was successful
0 consecutive failure(s).
Last success @ NTTIME(0)
DC=simalaya-group,DC=com
Default-First-Site-Name\ISLAD01 via RPC
DSA object GUID: 3fe6bc7c-1116-4344-96a6-c58c43bc217f
Last attempt @ Tue Feb 10 18:58:04 2015 CET failed, result
29 (WERR_WRITE_FAULT)
42 consecutive failure(s).
Last success @ Tue Feb 10 17:29:59 2015 CET
DC=simalaya-group,DC=com
Simalaya\SIMAD01 via RPC
DSA object GUID: 62d8e484-19cb-4e15-b741-88b5c54dc3f5
Last attempt @ NTTIME(0) was successful
0 consecutive failure(s).
Last success @ NTTIME(0)
DC=simalaya-group,DC=com
Default-First-Site-Name\ADCAD02 via RPC
DSA object GUID: 97b81951-bdf8-47bd-9afc-59eaf993de6b
Last attempt @ NTTIME(0) was successful
0 consecutive failure(s).
Last success @ NTTIME(0)
CN=Schema,CN=Configuration,DC=simalaya-group,DC=com
Default-First-Site-Name\ISLAD01 via RPC
DSA object GUID: 3fe6bc7c-1116-4344-96a6-c58c43bc217f
Last attempt @ Tue Feb 10 18:58:05 2015 CET failed, result
29 (WERR_WRITE_FAULT)
42 consecutive failure(s).
Last success @ Tue Feb 10 17:29:59 2015 CET
CN=Schema,CN=Configuration,DC=simalaya-group,DC=com
Simalaya\SIMAD01 via RPC
DSA object GUID: 62d8e484-19cb-4e15-b741-88b5c54dc3f5
Last attempt @ NTTIME(0) was successful
0 consecutive failure(s).
Last success @ NTTIME(0)
CN=Schema,CN=Configuration,DC=simalaya-group,DC=com
Default-First-Site-Name\ADCAD02 via RPC
DSA object GUID: 97b81951-bdf8-47bd-9afc-59eaf993de6b
Last attempt @ NTTIME(0) was successful
0 consecutive failure(s).
Last success @ NTTIME(0)
CN=Configuration,DC=simalaya-group,DC=com
Default-First-Site-Name\ISLAD01 via RPC
DSA object GUID: 3fe6bc7c-1116-4344-96a6-c58c43bc217f
Last attempt @ Tue Feb 10 18:58:05 2015 CET failed, result
29 (WERR_WRITE_FAULT)
42 consecutive failure(s).
Last success @ Tue Feb 10 17:29:59 2015 CET
CN=Configuration,DC=simalaya-group,DC=com
Simalaya\SIMAD01 via RPC
DSA object GUID: 62d8e484-19cb-4e15-b741-88b5c54dc3f5
Last attempt @ Tue Feb 10 18:54:42 2015 CET was successful
0 consecutive failure(s).
Last success @ Tue Feb 10 18:54:42 2015 CET
CN=Configuration,DC=simalaya-group,DC=com
Default-First-Site-Name\ADCAD02 via RPC
DSA object GUID: 97b81951-bdf8-47bd-9afc-59eaf993de6b
Last attempt @ NTTIME(0) was successful
0 consecutive failure(s).
Last success @ NTTIME(0)
==== KCC CONNECTION OBJECTS ====
Connection --
Connection name: adc8ad1d-0ee8-490e-b1b8-e90ca478b799
Enabled : TRUE
Server DNS name : ADCAD02.simalaya-group.com
Server DN name : CN=NTDS
Settings,CN=ADCAD02,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=simalaya-group,DC=com
TransportType: RPC
options: 0x00000001
Warning: No NC replicated for Connection!
Connection --
Connection name: efe2da86-8f41-4ab5-b586-6d4f0ba83732
Enabled : TRUE
Server DNS name : SIMAD01.simalaya-group.com
Server DN name : CN=NTDS
Settings,CN=SIMAD01,CN=Servers,CN=Simalaya,CN=Sites,CN=Configuration,DC=simalaya-group,DC=com
TransportType: RPC
options: 0x00000001
Warning: No NC replicated for Connection!
Connection --
Connection name: f3d0695d-88c6-453d-ba25-f8439ffe35d0
Enabled : TRUE
Server DNS name : ISLAD01.simalaya-group.com
Server DN name : CN=NTDS
Settings,CN=ISLAD01,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=simalaya-group,DC=com
TransportType: RPC
options: 0x00000001
Warning: No NC replicated for Connection!
adcad01:/var/log/samba #
I tried to replicate manualy and got an error
adcad01:/var/log/samba # samba-tool drs replicate islad01 adcad01
DC=DomainDnsZones,DC=simalaya-group,DC=com
ERROR(<class 'samba.drs_utils.drsException'>): DsReplicaSync failed -
drsException: DsReplicaSync failed (-1073610723,
'NT_STATUS_RPC_PROTOCOL_ERROR')
File "/usr/lib64/python2.6/site-packages/samba/netcmd/drs.py", line 345,
in run
drs_utils.sendDsReplicaSync(self.drsuapi, self.drsuapi_handle,
source_dsa_guid, NC, req_options)
File "/usr/lib64/python2.6/site-packages/samba/drs_utils.py", line 83, in
sendDsReplicaSync
raise drsException("DsReplicaSync failed %s" % estr)
Does someone have an Idea about the problem?
thanks in advance
Olivier
More information about the samba
mailing list