[Samba] Prevent Samba's internal DNS server from asking upstream DNS server about non-existent AD domain names

Rowland penny rpenny at samba.org
Wed Feb 17 07:54:42 UTC 2021

On 17/02/2021 04:34, Sebastian via samba wrote:
> Hello!
> I'd like to make Samba's internal DNS server authoritative for my AD domain, e.g. "ad.sebastian.intranet".

It already should be.

> It shall not query the configured upstream forward DNS server for names below its AD domain.
> If Samba's internal DNS server doesn't know a subdomain of the AD domain name, it simply does not exist.

Just remove the 'dns forwarder' line from your DC's smb.conf


More information about the samba mailing list