Web lists-archives.com

Re: [Samba] Samba BIND9_DLZ autoupdate PTR




Set auth-nxdomain yes; 

And stop/start bind9 

Other source : 
https://blogs.technet.microsoft.com/teamdhcp/2015/09/10/a-description-of-the-dns-dynamic-update-message-format/

/snap
The DNS Client and Server services support the use of dynamic updates, as described in Request for
 Comments (RFC) 2136, "Dynamic Updates in the Domain Name System." The DNS Server service allows 
dynamic update to be enabled or disabled on a per-zone basis at each authoritative server 
configured to load either a standard primary or AD-integrated zone.

Greetz, 

Louis



> -----Oorspronkelijk bericht-----
> Van: basti [mailto:mailinglist@xxxxxxxxxxxxxxxx] 
> Verzonden: dinsdag 22 januari 2019 14:32
> Aan: L.P.H. van Belle
> Onderwerp: Re: [Samba] Samba BIND9_DLZ autoupdate PTR
> 
> root@dc1:/etc/bind# named-checkconf -p
> options {
> 	directory "/var/cache/bind";
> 	listen-on-v6 {
> 		"any";
> 	};
> 	tkey-gssapi-keytab "/var/lib/samba/private/dns.keytab";
> 	auth-nxdomain no;
> 	dnssec-enable yes;
> 	dnssec-validation yes;
> 	recursion yes;
> 	allow-query {
> 		192.168.30.0/24;
> 		"localhost";
> 		"localnets";
> 	};
> };
> acl "slaves" {
> 	192.168.30.6/32;
> };
> acl "lan" {
> 	192.168.30.0/24;
> };
> 
> zone "." {
> 	type hint;
> 	file "/etc/bind/db.root";
> };
> zone "localhost" {
> 	type master;
> 	file "/etc/bind/db.local";
> };
> zone "127.in-addr.arpa" {
> 	type master;
> 	file "/etc/bind/db.127";
> };
> zone "0.in-addr.arpa" {
> 	type master;
> 	file "/etc/bind/db.0";
> };
> zone "255.in-addr.arpa" {
> 	type master;
> 	file "/etc/bind/db.255";
> };
> dlz "AD DNS Zone" {
> 	database "dlopen 
> /usr/lib/x86_64-linux-gnu/samba/bind9/dlz_bind9_10.so";
> };
> root@dc1:/etc/bind#
> 
> Am 22.01.19 um 14:28 schrieb L.P.H. van Belle:
> > Hello Basti, 
> > 
> > 
> > Can you post your full bind config so we can look. 
> > 
> > Greetz, 
> > 
> > Louis
> > 
> >  
> > 
> >> -----Oorspronkelijk bericht-----
> >> Van: samba [mailto:samba-bounces@xxxxxxxxxxxxxxx] Namens 
> >> basti via samba
> >> Verzonden: dinsdag 22 januari 2019 14:23
> >> Aan: samba@xxxxxxxxxxxxxxx
> >> Onderwerp: [Samba] Samba BIND9_DLZ autoupdate PTR
> >>
> >> Hello,
> >> I have installed Samba 4 AD with bind9_dlz and automatic update.
> >> (https://wiki.samba.org/index.php/BIND9_DLZ_DNS_Back_End#Setti
> >> ng_up_Dynamic_DNS_Updates_Using_Kerberos)
> >>
> >> Is this only working for A records?
> >> The PTR is not updated, or my setup is not complete.
> >>
> >> Where should I include /var/lib/samba/private/named.conf.update ??
> >> Include this in /etc/bind/named.conf is no allowed. (unknown option
> >> 'update-policy').
> >>
> >> As I understand named.conf.update in the wright way is 
> only update A
> >> AAAA SRV and CNAME Records?
> >>
> >> My setup is:
> >>
> >> grep include /etc/bind/named.conf
> >> ...
> >> include "/var/lib/samba/private/named.conf";
> >>
> >>
> >> root@dc1:/etc/bind# cat /var/lib/samba/private/named.conf
> >> # This DNS configuration is for BIND 9.8.0 or later with 
> >> dlz_dlopen support.
> >> #
> >> # This file should be included in your main BIND configuration file
> >> #
> >> # For example with
> >> # include "/var/lib/samba/private/named.conf";
> >>
> >> #
> >> # This configures dynamically loadable zones (DLZ) from AD schema
> >> # Uncomment only single database line, depending on your 
> BIND version
> >> #
> >> dlz "AD DNS Zone" {
> >>     # For BIND 9.8.x
> >>     # database "dlopen 
> >> /usr/lib/x86_64-linux-gnu/samba/bind9/dlz_bind9.so";
> >>
> >>     # For BIND 9.9.x
> >>     # database "dlopen
> >> /usr/lib/x86_64-linux-gnu/samba/bind9/dlz_bind9_9.so";
> >>
> >>     # For BIND 9.10.x
> >>     database "dlopen 
> >> /usr/lib/x86_64-linux-gnu/samba/bind9/dlz_bind9_10.so";
> >> };
> >>
> >> Best Regards,
> >>
> >> -- 
> >> To unsubscribe from this list go to the following URL and read the
> >> instructions:  https://lists.samba.org/mailman/options/samba
> >>
> > 
> 
> 


-- 
To unsubscribe from this list go to the following URL and read the
instructions:  https://lists.samba.org/mailman/options/samba