[Samba] Internal DNS migrate to Bind9_DLZ
Rowland Penny
rpenny at samba.org
Tue Jul 31 09:41:56 UTC 2018
On Tue, 31 Jul 2018 11:05:05 +0200
Michal <Michal67M at seznam.cz> wrote:
> > So, you are using Samba without problem, it is just that when you
> > try to use Bind9 instead of the internal dns server, your problems
> > start.
> >
> > Let's just recap
> >
> > You have run 'samba_upgradedns'
> > You have altered smb.conf
> > You have configured 'named.conf' correctly
> > The Samba 'named.conf' file is readable by 'named' (this should be
> > 'rw-r--r--' i.e. world readable)
> >
> > But, even though everything looks okay, Bind9 will not start.
> >
> > This is strange, there doesn't seem to be any reason for it.
> >
> > Is anybody using the combination of Centos 7, Samba 4.8.3 and Bind9
> > without problems ?
> >
> >
> Eh, probably me... I mean
>
> # cat /etc/centos-release
> CentOS Linux release 7.5.1804 (Core)
>
> # named -V
> BIND 9.9.4-RedHat-9.9.4-61.el7 (Extended Support Version)
> <id:8f9657aa> built with '--build=x86_64-redhat-linux-gnu'
> '--host=x86_64-redhat-linux-gnu' '--program-prefix='
> '--disable-dependency-tracking' '--prefix=/usr' '--exec-prefix=/usr'
> '--bindir=/usr/bin' '--sbindir=/usr/sbin' '--sysconfdir=/etc'
> '--datadir=/usr/share' '--includedir=/usr/include'
> '--libdir=/usr/lib64' '--libexecdir=/usr/libexec'
> '--sharedstatedir=/var/lib' '--mandir=/usr/share/man'
> '--infodir=/usr/share/info' '--with-libtool' '--localstatedir=/var'
> '--enable-threads' '--with-geoip' '--enable-ipv6'
> '--enable-filter-aaaa' '--enable-rrl' '--with-pic' '--disable-static'
> '--disable-openssl-version-check' '--enable-exportlib'
> '--with-export-libdir=/usr/lib64'
> '--with-export-includedir=/usr/include'
> '--includedir=/usr/include/bind9' '--enable-native-pkcs11'
> '--with-pkcs11=/usr/lib64/pkcs11/libsofthsm2.so' '--with-dlopen=yes'
> '--with-dlz-ldap=yes' '--with-dlz-postgres=yes'
> '--with-dlz-mysql=yes' '--with-dlz-filesystem=yes'
> '--with-dlz-bdb=yes' '--with-gssapi=yes' '--disable-isc-spnego'
> '--enable-fixed-rrset' '--with-tuning=large'
> '--with-docbook-xsl=/usr/share/sgml/docbook/xsl-stylesheets'
> 'build_alias=x86_64-redhat-linux-gnu'
> 'host_alias=x86_64-redhat-linux-gnu' 'CFLAGS= -O2 -g -pipe -Wall
> -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong
> --param=ssp-buffer-size=4 -grecord-gcc-switches -m64 -mtune=generic'
> 'LDFLAGS=-Wl,-z,relro ' 'CPPFLAGS= -DDIG_SIGCHASE' using OpenSSL
> version: OpenSSL 1.0.2k 26 Jan 2017 using libxml2 version: 2.9.1
>
> # samba -V
> Version 4.8.3
>
> I am in process of migrating from samba3 NT4 domain into LDAP, so no
> production experience so far, but samba with BIND9_DLZ seems to be
> working. I start named as "named -f -g -d3" (not as a Centos service
> style) to be able to see whats happening.
> I followed samba wiki during configuring bind9_dlz. But as far as I
> remember I had to edit named.conf according to /var/named file
> structure (no "master" folder there).
>
Ah, so you are just testing at the moment.
Try running the classicupgrade again, but this time add
'--dns-backend=BIND9_DLZ'
Having said that, have you actually added any new clients (joined)
and/or do you have computers in your old NT4-style domain ?
Rowland
More information about the samba
mailing list