[Samba] Are secure DNS updates truly working?

lingpanda101 lingpanda101 at gmail.com
Wed Aug 30 12:41:09 UTC 2017


On 8/29/2017 6:54 PM, George via samba wrote:
> On Tue, Aug 29, 2017 at 6:55 PM, lingpanda101 <lingpanda101 at gmail.com >
> wrote:
>
>>       I can confirm they work on 4.6.7. I do recall they have worked for
>> several prior versions as well. I can't seem to get PTR records to
>> register though.
>>
>> The refused request doesn't necessarily mean it's not working. Windows
>> will send an un-secure request first, followed by a secure request if
>> required.
>>
>>
>> --
>> --
>> James
>>
>>
> You are right with that, I was looking at the first unauthenticated
> attempt. Still, the 2nd authenticated attempt fails. Wireshark reports
> "Server failure" in this case, and Samba log as follows:
>
> [2017/08/29 19:25:27.837126,  2]
> ../source4/dns_server/dns_update.c:773(dns_server_process_update)
>    Got a dns update request.
> [2017/08/29 19:25:27.837704,  1]
> ../source4/dns_server/dns_update.c:684(handle_updates)
>    update count is 3
> [2017/08/29 19:25:27.837734,  2]
> ../source4/dns_server/dns_update.c:389(handle_one_update)
>    Looking at record:
> [2017/08/29 19:25:27.837743,  2]
> ../source4/dns_server/dns_update.c:390(handle_one_update)
> [2017/08/29 19:25:27.837748,  1] ../librpc/ndr/ndr.c:413(ndr_print_debug)
>         discard_const(update): struct dns_res_rec
>            name                     : 'foo.domain.com'
>            rr_type                  : DNS_QTYPE_AAAA (0x1C)
>            rr_class                 : DNS_QCLASS_ANY (0xFF)
>            ttl                      : 0x00000000 (0)
>            length                   : 0x0000 (0)
>            rdata                    : union dns_rdata(case 0x1C)
>            ipv6_record              : (null)
>            unexpected               : DATA_BLOB length=0
>
>
> Any ideas?
>
> --
> George

What you posted was a response to a IPv6 request (AAAA) record. What 
type of record are you attempting to register?

-- 
--
James




More information about the samba mailing list