[Samba] Problems with internal DNS

Thomas Schweikle tschweikle at gmail.com
Mon Oct 21 14:47:23 UTC 2019 

Hi!

Samba server set up for domain rufus.ada.de a proxy is reachable in
proxy.ada.de.

resolv.conf is configured to be:

domain rufus.ada.de.
search rufus.ada.de. miri.ada.de. ada.de.
nameserver 127.0.0.1

Internal servers are handled (by an external DNS, our internal samba DNS
forwards to):
# host proxy.ada.de
proxy.ada.de has address 10.169.16.3

For deb.debian.org:
# host deb.debian.org
deb.debian.org is an alias for static.debian.org.
static.debian.org has address 130.89.148.77
static.debian.org has address 128.31.0.62
static.debian.org has address 149.20.4.15
static.debian.org has IPv6 address 2001:4f8:1:c::15
static.debian.org has IPv6 address 2603:400a:ffff:bb8::801f:3e
static.debian.org has IPv6 address 2001:67c:2564:a119::77
static.debian.org mail is handled by 0 .

But now:
# LANG=C apt update
Err:1 http://cdn-fastly.deb.debian.org/debian testing InRelease
  Could not connect to proxy.ada.de:8080 (10.169.16.3), connection timed out
Err:2 http://cdn-fastly.deb.debian.org/debian testing-updates InRelease
  Unable to connect to proxy.ada.de:8080:
Err:3 http://deb.debian.org/debian testing InRelease
  Could not connect to proxy.ada.de:8080 (10.169.16.3), connection timed out
Err:4 http://deb.debian.org/debian testing-updates InRelease
  Unable to connect to proxy.ada.de:8080:
Reading package lists... Done
Building dependency tree
Reading state information... Done
All packages are up to date.
W: Failed to fetch
http://cdn-fastly.deb.debian.org/debian/dists/testing/InRelease  Could not
connect to proxy.ada.de:8080 (10.169.16.3), connection timed out
W: Failed to fetch http://deb.debian.org/debian/dists/testing/InRelease
 Could not connect to proxy.ada.de:8080 (10.169.16.3), connection timed out
W: Failed to fetch
http://cdn-fastly.deb.debian.org/debian/dists/testing-updates/InRelease
 Unable to connect to proxy.ada.de:8080:
W: Failed to fetch
http://deb.debian.org/debian/dists/testing-updates/InRelease  Unable to
connect to proxy.ada.de:8080:
W: Some index files failed to download. They have been ignored, or old ones
used instead.

If I replace /etc/resolv.conf nameserver line
"nameserver 127.0.0.1" with "nameserver 172.18.8.1" and stop samba it works.

Any idea what is going wrong here? Shouldn't the internal DNS just forward
everything it does not know about to the upstream, resolving DNS?
-- 
Thomas

More information about the samba mailing list