[Samba] Mail samba

Rowland penny rpenny at samba.org
Sat Oct 10 13:34:57 UTC 2020 

On 10/10/2020 14:20, Philip Offermans wrote:
> I have 2 samba servers. A domain controller, and a domain member.
>
> Domain controller(GAIA):
>
> /etc/hosts
> 127.0.0.1       localhost
> 192.168.88.2    gaia.rompen.lokaal gaia
> ::1             localhost ip6-localhost ip6-loopback
> ff02::1         ip6-allnodes
> ff02::2         ip6-allrouters
>
> 127.0.1.1       gaia
I would remove the '127.0.1.1' from /etc/hosts, ensure whatever requires 
it isn't using port 53 on 127.0.0.1 and that 192.168.88.2 is a fixed 
ipaddress for gaia
>
> Firewall is turned of atm. And yes something is running on that port. 
> I am going to look for what it is. I also have a ntp-server running. 
> And ntp and dns are synced between all device on the network via the 
> DHCP-network settings. So the domain member has gaia as dns and ntp.
You need to find whatever is running on port 389, only Samba should be 
using this port.
>
> Domain Member(DNA):
> /etc/samba/smb.conf
> [global]
>   netbios name = DNA
>   workgroup = ROMPEN
>   security = ADS
>   realm = ROMPEN.LOKAAL
>   encrypt passwords = yes
>
>   acl allow execute always = yes
>
>   idmap config *:backend = tdb
>   idmap config *:range = 3000-7999
>   idmap config ROMPEN:backend = rid
>   #idmap config ROMPEN:schema_mode = rfc2307
>   idmap config ROMPEN:range = 10000-40000
>
>   winbind refresh tickets = Yes
>   vfs objects = acl_xattr
>   map acl inherit = Yes
>   store dos attributes = Yes
>
>   dedicated keytab file = /etc/krb5.keytab
>   kerberos method = secrets and keytab
>
>   winbind use default domain = yes
>
>   winbind enum users = yes
>   winbind enum groups = yes
>
>   username map = /etc/samba/user.map
>   dedicated keytab file = /etc/krb5.keytab
>   kerberos method = secrets and keytab
>
>   vfs objects = acl_xattr
>   map acl inherit = Yes
>   store dos attributes = Yes
>
>   username map = /etc/samba/user.map
>
>   admin users = administrator
>
You appear to have multiple duplicate lines (unless it is a cut&paste error)
> [share]
>        path = /data/share
>        read only = no
>
> [users]
>    path = /data/home
>    read only = no
>
> [philip]
>        path = /data/philip
>        read only = no
>
> /etc/hosts
> 127.0.0.1 localhost
> 192.168.88.3 dna.rompen.lokaal dna
> # The following lines are desirable for IPv6 capable hosts
> ::1 ip6-localhost ip6-loopback
> fe00::0 ip6-localnet
> ff00::0 ip6-mcastprefix
> ff02::1 ip6-allnodes
> ff02::2 ip6-allrouters
> ff02::3 ip6-allhosts
>
> (The ip6 addresses are from docker)
'docker' ???
> Firewall is turned off.
>
> The ldapsearch was from DNA(domain member)
>
> Maybe it is easier to solve this problem via phone.

Sorry, only help via this mailing list :-)

Rowland

More information about the samba mailing list