[Samba] samba dlz. bind9 nslookup is wrong
Rowland penny
rpenny at samba.org
Mon Aug 5 11:24:07 UTC 2019
On 05/08/2019 11:54, Patrik wrote:
> my problem is that this is a simple config, i have 2 subnets on 1
> server (business ISP with static ip / home for downloading and
> dynamic ip)
> *_
> _*
No, your problem is that you do not understand AD DNS ;-)
Your Samba AD DC is authoritative for the AD dns domain and should only
know about the AD domain, it should forward anything outside the AD dns
domain to another dns server.
From reading your output from Louis's script, it is clear that you are
trying to use a Samba AD DC as if it was a standalone server, this will
never work. Samba doesn't recommend using an AD DC as a fileserver, but
if you do, you must follow a few rules:
You must set all permissions from Windows, you cannot use things like
'force user' etc
You must use winbind for authentication, this means that the
libnss-winbind links must be set up.
There are others, see here:
https://wiki.samba.org/index.php/Setting_up_Samba_as_an_Active_Directory_Domain_Controller
https://wiki.samba.org/index.php/Setting_up_a_Share_Using_Windows_ACLs
You will probably be better off setting up a Unix domain member and
using this as the fileserver.
Rowland
More information about the samba
mailing list