[Samba] Cannot remove old NS record

Paul R. Ganci ganci at nurdog.com
Sat Jan 4 01:26:34 UTC 2020


On 1/3/20 3:33 PM, Paul R. Ganci via samba wrote:
> On 1/2/20 1:00 AM, L.P.H. van Belle via samba wrote
>> Yes, you can use :
>>
>> install -d /var/lib/samba/bind-dns/ -o root -g bind -m 770
>> And rerun it.
>>
>> Just dont forget to adjust the bind config files also.
>
> So after moving everything, fixing the bind config and restarting 
> there is still an issue. While the forward zone myhome.nurdog.com is 
> working fine,  the reverse zone has a problem.
>
> > samba-tool dns query nureyev.myhome.nurdog.com 
> 1.168.192.in-addr.arpa @ all
> Password for [administrator at MYHOME.NURDOG.COM]:
>   Name=, Records=2, Children=0
>     SOA: serial=130, refresh=900, retry=600, expire=86400, 
> minttl=3600, ns=nikita.myhome.nurdog.com., 
> email=hostmaster.myhome.nurdog.com. (flags=600000f0, serial=130, 
> ttl=3600)
>     NS: nikita.myhome.nurdog.com. (flags=600000f0, serial=1, ttl=0)
>   Name=1, Records=1, Children=0
>     PTR: lan-A.myhome.nurdog.com (flags=f0, serial=50, ttl=900)
>   Name=12, Records=1, Children=0
>     PTR: dyn-192-168-1-12.myhome.nurdog.com (flags=f0, serial=80, 
> ttl=900)
>   Name=13, Records=1, Children=0
>     PTR: dyn-192-168-1-13.myhome.nurdog.com (flags=f0, serial=81, 
> ttl=900)
>   Name=14, Records=1, Children=0
>     PTR: dyn-192-168-1-14.myhome.nurdog.com (flags=f0, serial=82, 
> ttl=900)
>   Name=2, Records=1, Children=0
>     PTR: mcduff.myhome.nurdog.com (flags=f0, serial=3, ttl=0)
>   Name=3, Records=1, Children=0
>     PTR: shamu.myhome.nurdog.com (flags=f0, serial=4, ttl=0)
>   Name=4, Records=1, Children=0
>     PTR: mx.myhome.nurdog.com (flags=f0, serial=112, ttl=900)
>   Name=5, Records=1, Children=0
>     PTR: nas.myhome.nurdog.com (flags=f0, serial=98, ttl=900)
>   Name=6, Records=1, Children=0
>     PTR: www-new.myhome.nurdog.com (flags=f0, serial=100, ttl=900)
>   Name=7, Records=1, Children=0
>     PTR: edge-switch.myhome.nurdog.com (flags=f0, serial=104, ttl=900)
>   Name=8, Records=1, Children=0
>     PTR: nureyev.myhome.nurdog.com (flags=f0, serial=106, ttl=900)
>   Name=9, Records=1, Children=0
>     PTR: rpi3-server-2.myhome.nurdog.com (flags=f0, serial=108, ttl=900)
>
> Note that this zone appears to still be pointing at 
> nikita.myhome.nurdog.com (should be nureyev.myhome.nurdog.com) as its 
> nameserver and the records for Name=10 and Name=11 are missing. 
> Something still seems to be broken because if I add the missing entry:
>
> > samba-tool dns add nureyev.myhome.nurdog.com 1.168.192.in-addr.arpa 
> 10 PTR sasha.myhome.nurdog.com
> Record added successfully
>
> But subsequently:
>
> > samba-tool dns query nureyev.myhome.nurdog.com 
> 1.168.192.in-addr.arpa @ all
> Password for [administrator at MYHOME.NURDOG.COM]:
>   Name=, Records=2, Children=0
>     SOA: serial=131, refresh=900, retry=600, expire=86400, 
> minttl=3600, ns=nikita.myhome.nurdog.com., 
> email=hostmaster.myhome.nurdog.com. (flags=600000f0, serial=131, 
> ttl=3600)
>     NS: nikita.myhome.nurdog.com. (flags=600000f0, serial=1, ttl=0)
>   Name=1, Records=1, Children=0
>     PTR: lan-A.myhome.nurdog.com (flags=f0, serial=50, ttl=900)
>   Name=12, Records=1, Children=0
>     PTR: dyn-192-168-1-12.myhome.nurdog.com (flags=f0, serial=80, 
> ttl=900)
>   Name=13, Records=1, Children=0
>     PTR: dyn-192-168-1-13.myhome.nurdog.com (flags=f0, serial=81, 
> ttl=900)
>   Name=14, Records=1, Children=0
>     PTR: dyn-192-168-1-14.myhome.nurdog.com (flags=f0, serial=82, 
> ttl=900)
>   Name=2, Records=1, Children=0
>     PTR: mcduff.myhome.nurdog.com (flags=f0, serial=3, ttl=0)
>   Name=3, Records=1, Children=0
>     PTR: shamu.myhome.nurdog.com (flags=f0, serial=4, ttl=0)
>   Name=4, Records=1, Children=0
>     PTR: mx.myhome.nurdog.com (flags=f0, serial=112, ttl=900)
>   Name=5, Records=1, Children=0
>     PTR: nas.myhome.nurdog.com (flags=f0, serial=98, ttl=900)
>   Name=6, Records=1, Children=0
>     PTR: www-new.myhome.nurdog.com (flags=f0, serial=100, ttl=900)
>   Name=7, Records=1, Children=0
>     PTR: edge-switch.myhome.nurdog.com (flags=f0, serial=104, ttl=900)
>   Name=8, Records=1, Children=0
>     PTR: nureyev.myhome.nurdog.com (flags=f0, serial=106, ttl=900)
>   Name=9, Records=1, Children=0
>     PTR: rpi3-server-2.myhome.nurdog.com (flags=f0, serial=108, ttl=900)
>
> And still no Name=10 appears. It appears that there is a problem with 
> the reverse zone still pointing to something old. Admittedly this 
> problem is not so critical but I would like to fix it.
>
I should also add that if I try to add it again I get this error:

 > samba-tool dns add nureyev.myhome.nurdog.com 1.168.192.in-addr.arpa 
10 PTR sasha.myhome.nurdog.com
ERROR(runtime): uncaught exception - (9711, 
'WERR_DNS_ERROR_RECORD_ALREADY_EXISTS')
   File "/usr/lib64/python3.6/site-packages/samba/netcmd/__init__.py", 
line 186, in _run
     return self.run(*args, **kwargs)
   File "/usr/lib64/python3.6/site-packages/samba/netcmd/dns.py", line 
945, in run
     raise e
   File "/usr/lib64/python3.6/site-packages/samba/netcmd/dns.py", line 
941, in run
     0, server, zone, name, add_rec_buf, None)

What is also strange is that I have other reverse zones which do not 
have this problem. And I was able to at least fix the SOA and NS so that 
they now point to nureyev.myhome.nurdog.com like they should. I managed 
that by modifying those particular records from a Windows 10 using the 
DNS administrative tool. It seems some things I can update easily via 
Windows 10 Pro + Administrative tools. But I cannot add, modify or 
delete things in the 1.168.192.in-addr.arpa zone have it seen.

-- 
Paul (ganci at nurdog.com)
Cell: (303)257-5208



More information about the samba mailing list