[Samba] samba dlz. bind9 nslookup is wrong

Mon Aug 5 09:31:07 UTC 2019

i only added this in the appropriote interface
 include "/var/lib/samba/private/named.conf";

root at server:/# cat /var/lib/samba/private/named.conf
# This DNS configuration is for BIND 9.8.0 or later with dlz_dlopen support.
#
# This file should be included in your main BIND configuration file
#
# For example with
# include "/var/lib/samba/private/named.conf";

#
# This configures dynamically loadable zones (DLZ) from AD schema
# Uncomment only single database line, depending on your BIND version
#
dlz "AD DNS Zone" {
    # For BIND 9.8.x
    # database "dlopen /usr/lib/x86_64-linux-gnu/samba/bind9/dlz_bind9.so";

    # For BIND 9.9.x
    # database "dlopen
/usr/lib/x86_64-linux-gnu/samba/bind9/dlz_bind9_9.so";

    # For BIND 9.10.x
    # database "dlopen
/usr/lib/x86_64-linux-gnu/samba/bind9/dlz_bind9_10.so";

    # For BIND 9.11.x
     database "dlopen
/usr/lib/x86_64-linux-gnu/samba/bind9/dlz_bind9_11.so";
};

*I am on Bind 9.11*

*Patrik*
WWW <https://patrikx3.com> | GitHub <https://github.com/patrikx3/> | NPM
<https://www.npmjs.com/~patrikx3> | Corifeus <https://corifeus.com> | +36
20 342 8046

On Mon, Aug 5, 2019 at 11:29 AM Patrik <alabard at gmail.com> wrote:

> ok, so i remove that nemd.conf.update, but the rest it looks good?
>
> *Patrik*
> WWW <https://patrikx3.com> | GitHub <https://github.com/patrikx3/> | NPM
> <https://www.npmjs.com/~patrikx3> | Corifeus <https://corifeus.com> | +36
> 20 342 8046
>
>
>
>
> On Mon, Aug 5, 2019 at 11:28 AM Rowland penny via samba <
> samba at lists.samba.org> wrote:
>
>> On 05/08/2019 10:14, Patrik wrote:
>> > I am not using flatfiles and i using BIND_DLZ it shows in my log and i
>> > do not use flatfiles. BIND_DLZ only.
>>
>> Oh yes you are, you have this in your /etc/bind/named.conf.local :
>>
>>      zone "patrikx3.com" {
>>          type master;
>>          file "/etc/bind/zones/enp1s0f3/patrikx3.com";
>>          include "/var/lib/samba/private/named.conf.update";
>>      };
>>
>> That means your AD records are being stored in
>> /etc/bind/zones/enp1s0f3/patrikx3.com and not in AD, this is known as
>> 'flatfile' and is not supported by Samba.
>>
>> You also seem to using bind9 as a dns server for domains that have
>> nothing to do with AD, this is not recommended.
>>
>> Rowland
>>
>>
>> --
>> To unsubscribe from this list go to the following URL and read the
>> instructions:  https://lists.samba.org/mailman/options/samba
>>
>