Web lists-archives.com

[Samba] After upgrade to 4.9.4, internal DNS no longer working




Hi list,

I just upgraded my Samba AD DC to v4.9.4. Unfortunately, I can't recall
which version I had before that, I believe it must have been something
between 4.6 and 4.8.

Anyway, now that the upgrade is done, it looks like DNS is gone. Host
commands are timing out, netstat reveals that no process is listening on
:53.

Other than that, Samba is starting and working fine. I can list shares, I
can interact with the AD while I stay on localhost.

/etc/samba/smb.conf:
------------------------------------
[global]
        workgroup = samdom
        realm = samdom.example.com
        netbios name = dc1
        interfaces = lo br-lxc
        bind interfaces only = Yes
        server role = active directory domain controller
        dns forwarder = 192.168.1.2
        idmap_ldb:use rfc2307 = yes

[netlogon]
        path = /var/lib/samba/sysvol/samdom.example.com/scripts
        read only = No

[sysvol]
        path = /var/lib/samba/sysvol
        read only = No

/etc/hosts
------------------------------------

127.0.0.1       localhost.localdomain   localhost
::1             localhost.localdomain   localhost

192.168.1.1     dc1.samdom.example.com dc1


/etc/krb5.conf
------------------------------------
[libdefaults]
        default_realm = samdom.example.com
        dns_lookup_realm = false
        dns_lookup_kdc = true

# samba-tool dbcheck --cross-ncs
Checking 3539 objects
Checked 3539 objects (0 errors)

Last but not least, here are the relevant lines from the syslog:
--------------------------------------
Dez 22 21:08:31 dc1 systemd[1]: Starting Samba AD Daemon...
Dez 22 21:08:31 dc1 kernel: audit: type=1131 audit(1545509311.984:52):
pid=1 uid=0 auid=4294967295 ses=4294967295 msg='unit=samba comm="systemd"
exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=failed'
Dez 22 21:08:32 dc1 samba[733]: root process[733]: [2018/12/22
21:08:32.027397,  0] ../source4/smbd/server.c:510(binary_smbd_main)
Dez 22 21:08:32 dc1 samba[733]: root process[733]:   samba version 4.9.4
started.
Dez 22 21:08:32 dc1 samba[733]: root process[733]:   Copyright Andrew
Tridgell and the Samba Team 1992-2018
Dez 22 21:08:32 dc1 samba[733]: root process[733]: [2018/12/22
21:08:32.318878,  0] ../source4/smbd/server.c:696(binary_smbd_main)
Dez 22 21:08:32 dc1 samba[733]: root process[733]:   binary_smbd_main:
samba: using 'standard' process model
Dez 22 21:08:32 dc1 samba[737]: task[nbtd][737]: [2018/12/22
21:08:32.346083,  0]
../source4/dsdb/common/util.c:1815(samdb_reference_dn_is_our_ntdsa)
Dez 22 21:08:32 dc1 samba[737]: task[nbtd][737]:   Failed to find object
DC=samdom,DC=example,DC=ch for attribute fsmoRoleOwner - Cannot find DN
DC=samdom,DC=example,DC=ch to get attribute fsmoRoleOwner for reference dn:
No such Base DN:>
Dez 22 21:08:32 dc1 samba[742]: task[kdc][742]: [2018/12/22
21:08:32.347736,  0]
../source4/smbd/service_task.c:36(task_server_terminate)
Dez 22 21:08:32 dc1 samba[742]: task[kdc][742]:   task_server_terminate:
task_server_terminate: [kdc: krb5_init_context samdb RODC connect failed]
Dez 22 21:08:32 dc1 samba[743]: task[dreplsrv][743]: [2018/12/22
21:08:32.369585,  0]
../source4/smbd/service_task.c:36(task_server_terminate)
Dez 22 21:08:32 dc1 samba[743]: task[dreplsrv][743]:
task_server_terminate: task_server_terminate: [dreplsrv: Failed to connect
to local samdb: WERR_DS_UNAVAILABLE
Dez 22 21:08:32 dc1 samba[743]: task[dreplsrv][743]:   ]
Dez 22 21:08:32 dc1 samba[746]: task[kccsrv][746]: [2018/12/22
21:08:32.386039,  0]
../source4/smbd/service_task.c:36(task_server_terminate)
Dez 22 21:08:32 dc1 samba[748]: task[dns][748]: [2018/12/22
21:08:32.387265,  0]
../source4/smbd/service_task.c:36(task_server_terminate)
Dez 22 21:08:32 dc1 samba[748]: task[dns][748]:   task_server_terminate:
task_server_terminate: [dns: failed to load DNS zones]
Dez 22 21:08:32 dc1 samba[747]: task[dnsupdate][747]: [2018/12/22
21:08:32.389228,  0] ../source4/dsdb/dns/dns_update.c:127(dnsupdate_rebuild)
Dez 22 21:08:32 dc1 samba[746]: task[kccsrv][746]:   task_server_terminate:
task_server_terminate: [kccsrv: Failed to connect to local samdb:
WERR_DS_UNAVAILABLE
Dez 22 21:08:32 dc1 samba[746]: task[kccsrv][746]:   ]
Dez 22 21:08:32 dc1 smbd[758]: [2018/12/22 21:08:32.991583,  0]
../source3/passdb/pdb_interface.c:180(make_pdb_method_name)
Dez 22 21:08:33 dc1 smbd[759]: [2018/12/22 21:08:33.003232,  0]
../source3/passdb/pdb_interface.c:180(make_pdb_method_name)
Dez 22 21:08:33 dc1 smbd[758]:   pdb backend samba_dsdb did not correctly
init (error was NT_STATUS_UNSUCCESSFUL)
Dez 22 21:08:33 dc1 smbd[759]:   pdb backend samba_dsdb did not correctly
init (error was NT_STATUS_UNSUCCESSFUL)
Dez 22 21:08:33 dc1 winbindd[750]: [2018/12/22 21:08:33.013026,  0]
../source3/winbindd/winbindd_cache.c:3160(initialize_winbindd_cache)
Dez 22 21:08:33 dc1 winbindd[750]:   initialize_winbindd_cache: clearing
cache and re-creating with version number 2
Dez 22 21:08:33 dc1 systemd[1]: Started Samba AD Daemon.
Dez 22 21:08:33 dc1 audit[1]: SERVICE_START pid=1 uid=0 auid=4294967295
ses=4294967295 msg='unit=samba comm="systemd"
exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success'
Dez 22 21:08:33 dc1 winbindd[750]: [2018/12/22 21:08:33.182471,  0]
../lib/util/become_daemon.c:138(daemon_ready)
Dez 22 21:08:33 dc1 winbindd[750]:   daemon_ready: STATUS=daemon 'winbindd'
finished starting up and ready to serve connections
Dez 22 21:08:33 dc1 smbd[741]: [2018/12/22 21:08:33.183232,  0]
../lib/util/become_daemon.c:138(daemon_ready)
Dez 22 21:08:33 dc1 smbd[741]:   daemon_ready: STATUS=daemon 'smbd'
finished starting up and ready to serve connections
Dez 22 21:08:33 dc1 kernel: audit: type=1130 audit(1545509313.178:53):
pid=1 uid=0 auid=4294967295 ses=4294967295 msg='unit=samba comm="systemd"
exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success'
Dez 22 21:08:33 dc1 dbus-daemon[340]: [system] Activating via systemd:
service name='org.freedesktop.Avahi'
unit='dbus-org.freedesktop.Avahi.service' requested by ':1.249' (uid=0
pid=741 comm="/usr/bin/smbd -D --option=server role check:inhibi")
Dez 22 21:08:33 dc1 dbus-daemon[340]: [system] Activation via systemd
failed for unit 'dbus-org.freedesktop.Avahi.service': Unit
dbus-org.freedesktop.Avahi.service not found.
Dez 22 21:08:33 dc1 smbd[760]: [2018/12/22 21:08:33.206151,  0]
../source3/passdb/pdb_interface.c:180(make_pdb_method_name)
Dez 22 21:08:33 dc1 smbd[760]:   pdb backend samba_dsdb did not correctly
init (error was NT_STATUS_UNSUCCESSFUL)

Any advice what I could try to get DNS running again?

Thanks,
Viktor
-- 
To unsubscribe from this list go to the following URL and read the
instructions:  https://lists.samba.org/mailman/options/samba