[Samba] DLZ Backend DNS Hosed

Matthew Delfino mdelfino.list.samba at knockinc.com
Wed Jun 19 03:00:16 UTC 2019 

Hello,


I'm in trouble here with what appears to be a total meltdown of my DNS on my Domain Controllers.


I only have two DCs right now and I cannot resolve anything on either of them. I am on Ubuntu 16.04 with a compiled version of Samba 4.10.4.


I also have a compiled version of BIND 9.10.3-P4-Ubuntu <id:ebd72b3>


# service bind9 status
● bind9.service - BIND Domain Name Server
   Loaded: loaded (/lib/systemd/system/bind9.service; enabled; vendor preset: enabled)
  Drop-In: /run/systemd/generator/bind9.service.d
           └─50-insserv.conf-$named.conf
   Active: failed (Result: exit-code) since Tue 2019-06-18 21:14:39 CDT; 27min ago
     Docs: man:named(8)
  Process: 28347 ExecStop=/usr/sbin/rndc stop (code=exited, status=1/FAILURE)
  Process: 28329 ExecStart=/usr/sbin/named -f $OPTIONS (code=exited, status=1/FAILURE)
 Main PID: 28329 (code=exited, status=1/FAILURE)


Jun 18 21:14:39 cordelia named[28329]: samba_dlz: starting configure
Jun 18 21:14:39 cordelia named[28329]: zone mydomain.com/NONE: has no NS records
Jun 18 21:14:39 cordelia named[28329]: samba_dlz: Failed to configure zone 'mydomain.com'
Jun 18 21:14:39 cordelia named[28329]: loading configuration: bad zone
Jun 18 21:14:39 cordelia named[28329]: exiting (due to fatal error)
Jun 18 21:14:39 cordelia systemd[1]: bind9.service: Main process exited, code=exited, status=1/FAILURE
Jun 18 21:14:39 cordelia rndc[28347]: rndc: connect failed: 127.0.0.1#953: connection refused
Jun 18 21:14:39 cordelia systemd[1]: bind9.service: Control process exited, code=exited status=1
Jun 18 21:14:39 cordelia systemd[1]: bind9.service: Unit entered failed state.
Jun 18 21:14:39 cordelia systemd[1]: bind9.service: Failed with result 'exit-code'.


It appears that somehow I lost my NS records for one of my zones. It seems that I cannot get BIND up long enough to edit anything.


I've been able to delete my non-essential zones with samba-tool:



 #  samba-tool dns zonedelete localhost mydomain.com
 #  samba-tool dns zonedelete localhost 7.168.192.in-addr.arpa
 #  samba-tool dns zonedelete localhost 3.168.192.in-addr.arpa
 #  samba-tool dns zonedelete localhost 2.168.192.in-addr.arpa
 #  samba-tool dns zonedelete localhost 11.168.192.in-addr.arpa
 #  samba-tool dns zonedelete localhost 5.168.192.in-addr.arpa


But now my error is "zone _msdcs.samdom.mydomain.net/NONE: has no NS records" and I am real nervous to delete that zone.


Does anyone know what I can do to get my samba DC to have NS records that my BIND DNS server will understand and therefore load?



Thanks,
Matthew

© 2019 KNOCK, inc. All rights reserved. KNOCK is a registered trademark of KNOCK, inc. This message and any attachments contain information, which is confidential and/or privileged. If you are not the intended recipient, please refrain from any disclosure, copying, distribution or use of this information. Please be aware that such actions are prohibited. If you have received this transmission in error, kindly notify the sender by e-mail. Your cooperation is appreciated.

More information about the samba mailing list