[Samba] which DNS backend ?

mathias dufresne infractory at gmail.com
Tue Mar 1 15:14:58 UTC 2016

Hi Reindl,

For me there lot of misunderstanding around DNS, especially when it comes
to AD and a bit more when that AD is Samba AD. This thread just shows that
once more time.

I'm relatively new in DNS world and learnt a lot these last months, thanks
to colleagues who are daily DNS admins and who accept to enlighten me a
little bit.

You claim to be a DNS admin and you said Rowland and you are speaking about
different things. Can you please develop? Telling us what are these
different things at least could help us to understand what are differences
between these two things you were thinking about.

I expect these two different things are clearly exposed in previous mails
but for me what are they is not clearly enough exposed, not for I can see
what you are thinking about with my little knowledge of DNS. And the bad
point is my little knowledge is very little when I face DNS protocol
questions but seems rather big when I speak with my colleagues or sometimes
even on the list. So if someone knowing _really_ DNS take time to share
knowledge, in a way understandable by stupid-non-dns-admin (me and
certainly some readers on the back-benches), that would be great for all of



2016-03-01 15:07 GMT+01:00 Reindl Harald <h.reindl at thelounge.net>:

> Am 01.03.2016 um 14:50 schrieb Rowland penny:
>> On 01/03/16 13:23, Reindl Harald wrote:
>>> Am 01.03.2016 um 11:23 schrieb mathias dufresne:
>>>> Several SOA is easy to design without breaking RFC: as every DNS server
>>>> in AD is able to modify the zone, every DNS server in AD is SOA. As any
>>>> DNS server is SOA and only one SOA can be returned, these DNS server
>>>> must reply "I am SOA".
>>>> 10 DC running a DNS server.
>>>> One client asking to DC07 for SOA.
>>>> DC07 replies "SOA is DC07".
>>>> One client asking to DC02 for SOA.
>>>> DC02 replies "SOA is DC02".
>>> yes, but that's not a SOA containing two nameservers - period
>>> nothing else is what i criticized because the term is wrong
>> OK, lets use 'nslookup' to get the SOA record from my netbook:
>> This shows that 'dc1.samdom.example.com' is authoritative for the domain.
>> Lets change the server that 'nslookup' uses:
>> Different server, different Authoritative server, *BUT* there is only
>> one SOA record in AD
>> Does that convince you ???
> there is nothing to convince
> we are talking about different things
> i spoke only with my DNS admin hat on
> that's it
> --
> To unsubscribe from this list go to the following URL and read the
> instructions:  https://lists.samba.org/mailman/options/samba

More information about the samba mailing list