[Samba] Suddenly can't delete reverse DNS records via DNS Mgmt MMC?
Peter
peter.alexander99 at gmail.com
Thu Feb 5 16:11:51 UTC 2026
Deleting and re-creating the 168.192.in-addr.arpa zone solved the issue.
I'm not sure how the zone got messed up like that in the first place, but
at least it's working now.
Peter
On Wed, Feb 4, 2026 at 2:49 PM Peter <peter.alexander99 at gmail.com> wrote:
> In my case, even samba-tool can't add, update or delete any records from
> the reverse zone:
>
> $ samba-tool dns add dc1 168.192.in-addr.arpa 10.1 PTR test.samdom.tld -d 0
> ERROR(runtime): uncaught exception - *(1383, 'WERR_INTERNAL_DB_ERROR')*
> File "/usr/lib/python3/dist-packages/samba/netcmd/__init_.py", line 186,
> in _run return self.run(*args, **kwargs)
> File "/usr/lib/python3/dist-packages/samba/netcmd/dns.py", line 1094, in
> run raise e
> File "/usr/lib/python3/dist-packages/samba/netcmd/dns.py", line 1087, in
> run dns_conn. DnssrvUpdateRecord2(dnsserver.DNS_CLIENT_VERSION_LONGHORN,
>
> $ samba-tool dns delete dc1 168.192.in-addr.arpa 11.1 PTR test.example.com
> -d 0
> ERROR(runtime): uncaught exception - (1383, 'WERR_INTERNAL_DB_ERROR')
> File "/usr/lib/python3/dist-packages/samba/netcmd/__init_.py", line 186,
> in _run return self.run(*args, **kwargs)
> File "/usr/lib/python3/dist-packages/samba/netcmd/dns.py", line 1094, in
> run raise e
> File "/usr/lib/python3/dist-packages/samba/netcmd/dns.py", line 1087, in
> run dns_conn. DnssrvUpdateRecord2(dnsserver.DNS_CLIENT_VERSION_LONGHORN,
>
> The forward zone is not affected.
> In the dnsmgmt.msc console, in the properties of the zone, the SOA tab is
> completely blank and just says "The data is not available", and the name
> servers tab is blank and won't let me add the Samba DC IPs.
> Troubleshooting with dig, it gives a weird response to an SOA query (the
> answer is the name of the zone instead of the expected SOA record).
>
> I will try deleting the reverse zone and re-creating it.
>
> Peter
>
> On Wed, Feb 4, 2026 at 1:00 PM Alexander Tregubov <
> tregubovav.dev at gmail.com> wrote:
>
>> Hello everyone,
>>
>> I have been experiencing the same issue periodically with internal DNS
>> dynamic updates. While the Active Directory DNS MMC fails to delete these
>> records, using samba-tool deletes them without any issues.
>>
>> Best regards,
>> @AT
>>
>> On Wed, Feb 4, 2026 at 7:56 AM Peter via samba <samba at lists.samba.org>
>> wrote:
>>
>>> Hi! Looking for advice, I have a set of Samba DCs (4.15.13, using
>>> dns-backend=BIND9_DLZ, stuck on this version until the next distro
>>> version
>>> is approved for use). These servers have been in production for about 6
>>> years now without any issues. However, starting yesterday, I noticed
>>> that I
>>> am no longer able to delete reverse DNS records using the Windows 11 24H2
>>> DNS Management MMC console. I can still delete (and create) forward
>>> records.
>>>
>>> When I try to delete a record, I get this message: *"The record cannot be
>>> deleted. The local security authority database contains an internal
>>> inconsistency"*. I get the same error on both DCs.
>>>
>>> The only recent changes I can think of prior to this issue were: 1)
>>> distro
>>> vendor upgraded glibc, 2) bind9 on the DC with the FSMO roles needed a
>>> new
>>> rndc.key (I don't remember the exact message, but most 'sudo rndc'
>>> commands
>>> resulted in an error stating there was some sort of cipher mismatch, and
>>> setting up a new rndc key resolved the issue).
>>>
>>> Any suggestions?
>>>
>>> Thanks,
>>>
>>> Peter
>>> --
>>> To unsubscribe from this list go to the following URL and read the
>>> instructions: https://lists.samba.org/mailman/options/samba
>>>
>>
More information about the samba
mailing list