[Samba] DHCP-DNS problems

Kristján Valur Jónsson kristjan at rvx.is
Mon Dec 18 15:55:10 UTC 2017


Hello there.
So, I have a Samba AD setup, with DHCP and samba_dlz  setup as described in
the wiki.

However, I find that after a while, dynamic DHCPD updates stop working.
The fix is for me to restart the named server.

When in this state, I get log messages like:

 DHCPREQUEST for 192.168.52.232 (192.168.60.2) from 8c:be:be:0d:cf:3c
(RedmiNote4-Gj?gur) via 192.168.52.253
Dec 18 15:39:44 dc02 dhcpd: DHCPACK on 192.168.52.232 to 8c:be:be:0d:cf:3c
(RedmiNote4-Gj?gur) via 192.168.52.253
Dec 18 15:39:46 dc02 dhcpd: domain is rvx.is
Dec 18 15:39:46 dc02 dhcpd: doing add
Dec 18 15:39:46 dc02 dhcpd: update failed: NOTAUTH
Dec 18 15:39:47 dc02 dhcpd: update failed: NOTAUTH
Dec 18 15:39:47 dc02 logger: DHCP-DNS Update failed: 22


In this state, clearing the /tmp/dhcpd-dyndns.cc and/or regeneraing the
/etc/dhcpduser.keytab will not fix things.
Only restarting the "named"  server does, after which I get stuff lke:
Dec 18 15:41:38 dc02 dhcpd: domain is rvx.is
Dec 18 15:41:38 dc02 dhcpd: doing add
Dec 18 15:41:39 dc02 named[17215]: samba_dlz: starting transaction on zone
rvx.is
Dec 18 15:41:39 dc02 named[17215]: samba_dlz: allowing update of
signer=dhcpduser\@RVX.IS name=RedmiNote4-Gj?gur.rvx.is tcpaddr=127.0.0.1
type=A key=17359283
17.sig-dc02.rvx.is/160/0
etc...

I am running centos 7, bind 9.9.4,
Samba 4.7.3 compiled from sources.


>From what I can gather, /usr/local/bin/dhcpd-dyndns.sh is talking to the
local samba daemon.  Samba AD maintains the actual DNS entries.  Why does
the AD need confirmation with the bind daemon to update its internal
database?  Shouldn't the bind dameon, using samba_dlz, just contain the
local DC when serving queries?

Does anybody else have this problem?

Cheers!


-- 
Kv,
Kristján Valur Jónsson, RVX


More information about the samba mailing list