[Samba] named wont start
Rowland Penny
rpenny at samba.org
Thu May 2 08:25:03 UTC 2024
On Wed, 1 May 2024 18:01:48 -0700
Peter Carlson via samba <samba at lists.samba.org> wrote:
> ok, but I am not getting resolution of the default records
>
> root at nc1:/etc/samba# host -t SRV _ldap._tcp.san***ent.local.
> Host _ldap._tcp.san***ent.local. not found: 3(NXDOMAIN)
> root at nc1:/etc/samba# host -t SRV _ldap._tcp.san***ent.local
> Host _ldap._tcp.san***ent.local not found: 3(NXDOMAIN)
You should get back lines like this:
_ldap._tcp.samdom.example.com has SRV record 0 100 389
rpidc1.samdom.example.com.
One for every DC you have.
>
> root at nc1:/etc/samba# samba-tool dns zonelist 127.0.0.1 -U peter
> 2 zone(s) found
>
> pszZoneName : san***ent.local
> Flags : DNS_RPC_ZONE_DSINTEGRATED
> DNS_RPC_ZONE_UPDATE_SECURE
> ZoneType : DNS_ZONE_TYPE_PRIMARY
> Version : 50
> dwDpFlags : DNS_DP_AUTOCREATED
> DNS_DP_DOMAIN_DEFAULT DNS_DP_ENLISTED
> pszDpFqdn : DomainDnsZones.san***ent.local
>
> pszZoneName : _msdcs.san***ent.local
> Flags : DNS_RPC_ZONE_DSINTEGRATED
> DNS_RPC_ZONE_UPDATE_SECURE
> ZoneType : DNS_ZONE_TYPE_PRIMARY
> Version : 50
> dwDpFlags : DNS_DP_AUTOCREATED
> DNS_DP_FOREST_DEFAULT DNS_DP_ENLISTED
> pszDpFqdn : ForestDnsZones.san***ent.local
No reversezone.
>
> root at nc1:/etc/samba# samba-tool dns zoneinfo 127.0.0.1
> san***ent.local -U peter
> pszZoneName : san***ent.local
> dwZoneType : DNS_ZONE_TYPE_PRIMARY
> fReverse : FALSE
> fAllowUpdate : DNS_ZONE_UPDATE_SECURE
> fPaused : FALSE
> fShutdown : FALSE
> fAutoCreated : FALSE
> fUseDatabase : TRUE
> pszDataFile : None
> aipMasters : []
> fSecureSecondaries : DNS_ZONE_SECSECURE_NO_XFER
> fNotifyLevel : DNS_ZONE_NOTIFY_LIST_ONLY
> aipSecondaries : []
> aipNotify : []
> fUseWins : FALSE
> fUseNbstat : FALSE
> fAging : FALSE
> dwNoRefreshInterval : 168
> dwRefreshInterval : 168
> dwAvailForScavengeTime : 0
> aipScavengeServers : []
> dwRpcStructureVersion : 0x2
> dwForwarderTimeout : 0
> fForwarderSlave : 0
> aipLocalMasters : []
> dwDpFlags : DNS_DP_AUTOCREATED
> DNS_DP_DOMAIN_DEFAULT DNS_DP_ENLISTED
> pszDpFqdn : DomainDnsZones.san***ent.local
> pwszZoneDn :
> DC=san***ent.local,CN=MicrosoftDNS,DC=DomainDnsZones,DC=san***ent,DC=local
> dwLastSuccessfulSoaCheck : 0
> dwLastSuccessfulXfr : 0
> fQueuedForBackgroundLoad : FALSE
> fBackgroundLoadInProgress : FALSE
> fReadOnlyZone : FALSE
> dwLastXfrAttempt : 0
> dwLastXfrResult : 0
> root at nc1:/etc/samba#
Nothing wrong there.
>
> root at nc1:/etc/samba# cat /etc/resolv.conf
> # Samba server IP address
> nameserver 192.168.10.11
> # fallback resolver
> nameserver 8.8.8.8
> # main domain for Samba
> search san***ent.local
I take it that 192.168.10.11 is the ipaddress for the DC
> root at nc1:/etc/samba# cat smb.conf
> # Global parameters
> [global]
> netbios name = NC1
> realm = SAN***ENT.LOCAL
> server role = active directory domain controller
> server services = s3fs, rpc, nbt, wrepl, ldap, cldap, kdc,
> drepl, winbindd, ntp_signd, kcc, dns, dnsupdate
> workgroup = SDCP
> idmap_ldb:use rfc2307 = yes
> ldap server require strong auth = no
>
> tls enabled = yes
> tls keyfile = tls/myKey.pem
> tls certfile = tls/myCert.pem
> # tls cafile = tls/myIntermediate .pem # if not required, set
> empty
>
> [sysvol]
> path = /var/lib/samba/sysvol
> read only = No
>
> [netlogon]
> path = /var/lib/samba/sysvol/san***ent.local/scripts
> read only = No
Have you read these wiki pages ?
https://wiki.samba.org/index.php/The_Samba_AD_DNS_Back_Ends
https://wiki.samba.org/index.php/Samba_Internal_DNS_Back_End
https://wiki.samba.org/index.php/Changing_the_DNS_Back_End_of_a_Samba_AD_DC
Rowland
More information about the samba
mailing list