[Samba] Samba BIND9_DLZ autoupdate PTR

Tue Jan 22 19:20:46 UTC 2019

@L.P.H.
this config looks more simple than
https://wiki.samba.org/index.php/Configure_DHCP_to_update_DNS_records_with_BIND9

do you update via DHCP?

@Rowland
thanks for the link. I have try dns/dhcp updates after the change of
auth-nxdomain yes;  does not show the result I want to see.

Sorry for this inconvenience.
I will try it tomorrow.
In the link you post a can read "don't forget to stop your windows
clients trying to update their own records, ..."

How is this done?

On 22.01.19 17:14, L.P.H. van Belle via samba wrote:
> This is my running config..
> (run :  named-checkconf -p)
> 
> What works... 
> PC static ip, the PC updates A and PTR records. 
> PC dhcp ip, the SERVER updates A and PTR records.  (DHCP server on the DC) 
> PC dhcp ip, the dhcp server outsite the samba domain. 
> 		the PC updates A and PTR records. 
> 
> My complete config. ( almost change a little here ) 
> 
> /etc/bind/named.conf.options
> acl thisserverip {
>         192.168.0.1;
>         };
> acl all-networks {
>         192.168.249.0/24;
>         };
> 
> options {
>         directory "/var/cache/bind";
>         version "0.0.7";
>         forwarders { 62.212.131.101; 62.212.128.130; 8.8.8.8; };
> 
>         dnssec-validation no;
>         auth-nxdomain yes;    # conform to RFC1035 =no
> 
>         listen-on-v6 { "none"; };
>         listen-on port 53 { "thisserverip"; 127.0.0.1; };
> 
>         notify no;
>         empty-zones-enable no;
> 
>         allow-query { "all-networks"; 127.0.0.1/32; };
>         allow-recursion {  "all-networks"; 127.0.0.1/32; };
> 
>         // https://wiki.samba.org/index.php/Dns-backend_bind
>         // DNS dynamic updates via Kerberos (optional, but recommended)
>         tkey-gssapi-keytab "/var/lib/samba/private/dns.keytab";
> };
> 
> include "/etc/bind/rndc.key";
>     controls {
>      inet 127.0.0.1 allow { localhost; } keys { rndc-key;};
> };
> 
> /etc/bind/named.conf.local
> // Consider adding the 1918 zones here, if they are not used in your organization 
> //include "/etc/bind/zones.rfc1918";
> // 
> // COMMENT LVB, Take note of...  Consider adding ...  if they are not used.
> // 
> 
> // adding the dlopen ( Bind DLZ ) module for samba.
> include "/var/lib/samba/private/named.conf";
> 
> 
> /etc/bind/named.conf.default-zones
> // prime the server with knowledge of the root servers
> zone "." {
>         type hint;
>         file "/etc/bind/db.root";
> };
> 
> // be authoritative for the localhost forward and reverse zones, and for
> // broadcast zones as per RFC 1912
> 
> zone "localhost" {
>         type master;
>         file "/etc/bind/db.local";
> };
> 
> zone "127.in-addr.arpa" {
>         type master;
>         file "/etc/bind/db.127";
> };
> 
> zone "0.in-addr.arpa" {
>         type master;
>         file "/etc/bind/db.0";
> };
> 
> zone "255.in-addr.arpa" {
>         type master;
>         file "/etc/bind/db.255";
> };
> 
> 
> 
> 
> 