[Samba] Questions About Bind_DLZ
David Minard
david at scem.uws.edu.au
Mon Oct 12 02:25:54 UTC 2015
G'day Guys,
Sorry for the delay.
I've had the log level of samba at 5 for a while now. Nothing
interesting seems to be coming from the samba log.
Increasing the bind logs, to level 5, shows nothing different. I
get the same two warnings:
09-Oct-2015 12:46:01.421 database: warning: samba_dlz: Ignoring
duplicate zone 'samba4.scem.westernsydney.edu.au' from
'DC=@,DC=samba4.scem.westernsydney.edu.au,CN=MicrosoftDNS,DC=DomainDnsZones,DC=samba4,DC=scem,DC=westernsydney,DC=edu,DC=au'
09-Oct-2015 12:46:01.421 database: warning: samba_dlz: Ignoring
duplicate zone '_msdcs.samba4.scem.westernsydney.edu.au' from
'DC=@,DC=_msdcs.samba4.scem.westernsydney.edu.au,CN=MicrosoftDNS,DC=ForestDnsZones,DC=samba4,DC=scem,DC=westernsydney,DC=edu,DC=au'
Here is my named.conf file (Note: acls referencing IP Addresses for SCEM
have been removed:
----------------------
acl "SCEM" { KWD_Internal_Nets; PTA_Internal_Nets; CTN_Internal_Nets;
KWD_Private_Labs_Nets; PTA_Private_Labs_Nets; KWD_Private_Staff_Nets; };
#acl "Server_ADM_Network" { server_adm; };
options {
directory "/local/etc/named";
allow-transfer { none; };
# Samba4
tkey-gssapi-keytab "/usr/local/samba/private/dns.keytab";
#
notify yes;
forward only;
allow-query { SCEM; };
allow-update { key samba4.scem.westernsydney.edu.au; };
dnssec-validation no;
auth-nxdomain no; # conform to RFC1035
forwarders {
IP.Address.removed; # KWD-SCEM - internal DNS
IP.Address.removed; # PTA-SCEM - internal DNS
IP.Address.removed; # CTN-SCEM - internal DNS
};
};
logging{
channel simple_log {
file "/var/log/named.log" versions 3 size 5m;
severity warning;
print-time yes;
print-severity yes;
print-category yes;
};
category default{
simple_log;
};
};
# Master Zones
# Samba4
include "/usr/local/samba/private/named.conf";
----------------------------
> On 30/09/15 21:01, Marc Muehlfeld wrote:
> >/ Am 30.09.2015 um 03:50 schrieb David Minard:
> />>/ ldbsearch -H /usr/local/samba/private/sam.ldb '(objectClass=dnsZone)' -b
> />>/ 'DC=SAMBA4,DC=SCEM,DC=WESTERNSYDNEY,DC=EDU,DC=AU' --cross-ncs name
> />>/
> />>/ # record 1
> />>/ dn:
> />>/ DC=samba4.scem.westernsydney.edu.au,CN=MicrosoftDNS,DC=DomainDnsZones,DC=samba4,DC=scem,DC=westernsydney,DC=edu,DC=au
> />>/
> />>/ name: samba4.scem.westernsydney.edu.au
> />>/
> />>/ # record 2
> />>/ dn:
> />>/ DC=RootDNSServers,CN=MicrosoftDNS,DC=DomainDnsZones,DC=samba4,DC=scem,DC=westernsydney,DC=edu,DC=au
> />>/
> />>/ name: RootDNSServers
> />>/
> />>/ # record 3
> />>/ dn:
> />>/ DC=_msdcs.samba4.scem.westernsydney.edu.au,CN=MicrosoftDNS,DC=ForestDnsZones,DC=samba4,DC=scem,DC=westernsydney,DC=edu,DC=au
> />>/
> />>/ name: _msdcs.samba4.scem.westernsydney.edu.au
> />>/
> />>/ # record 4
> />>/ dn:
> />>/ DC=RootDNSServers,CN=MicrosoftDNS,CN=System,DC=samba4,DC=scem,DC=westernsydney,DC=edu,DC=au
> />>/
> />>/ name: RootDNSServers
> />>/
> />>/ # returned 4 records
> />>/ # 4 entries
> />>/ # 0 referrals
> />/ Looks like it should.
> />/
> />/ Do the duplicate zone messages appear in the Samba or BIND logs?
> /
> The messages are coming from Samba, to be precise, from dlz_bind9.c
>
> if (b9_zone_exists(state, zone)) {
> state->log(ISC_LOG_WARNING, "samba_dlz: Ignoring
> duplicate zone '%s' from '%s'",
> zone, ldb_dn_get_linearized(zone_dn));
> continue;
> }
>
> >/
> />/ What log level are you using in smb.conf?
> /
> I wonder if the log level is turned up too high, I personally have never
> seen this message.
>
> I think it may help if the OP was to post the bind9 conf files and more
> of the logfile that contains the error, bits of a log can so easily be
> mis-understood.
>
> Rowland
> >/
> />/ Regards,
> />/ Marc
> />/
> /
--
This message has been scanned for viruses and
dangerous content by MailScanner, and is
believed to be clean.
More information about the samba
mailing list