[Samba] Massive DNS queries to _kerberos._tcp.dc._msdcs.DOMAIN, COM.
Eric Gurevitz
gurevitz at qti.qualcomm.com
Wed Jul 10 17:34:01 UTC 2024
Hi All,
Our DNS admins are complaining about a massive number of DNS queries to :
SRV? _kerberos._tcp.dc._msdcs.DOMAIN,COM.
This is happening on thousands of systems. I see that every time the query is done, winbind updates /var/run/samba/smb_krb5/krb5.conf.DOMAIN (Ubuntu location).
I found adding "create krb5 conf = no" stops the DNS queries and the updates to the krb5.conf.DOMAIN file.
Are there any downsides to disabling the custom krb5 conf that winbind is creating and relying on the /etc/krb5.conf that our Kerberos admins install? Why is it updating every few seconds?
Thank you,
Eric
Eric Gurevitz
IT Engineer, Sr Staff| EMEA EngIT | +972-52-593-7432
More information about the samba
mailing list