Web lists-archives.com

Re: [Samba] Samba BIND9_DLZ autoupdate PTR




On Tue, 22 Jan 2019 16:51:58 +0100
basti via samba <samba@xxxxxxxxxxxxxxx> wrote:

> I have set this option to yes.
> 
> I think the problem is on an other place. The DHCP server is not the
> DNS Server. And I don't know how does the dhcp inform the dns server.
> 
> I a classic setup without DLZ somethink like the following is working
> well.
> 
> zone "example.com" in {
>   ...
>   include "/etc/bind/update-policy";
> }
> 
> zone "30.168.192.in-addr.arpa." {
>   ...
>   include "/etc/bind/update-policy";
> };
> 
> cat /etc/bind/update-policy
> // to be included by every zone configuration
> update-policy {
>     grant local-ddns zonesub any;
>     grant dhcpkey zonesub any;
> };
> 
> How can I do this with DLZ in samba?
> I have try this: https://kb.isc.org/docs/aa-00995
> My named.conf looks as follow:
> 
> root@dc1:/etc/bind# cat /var/lib/samba/private/named.conf
> # This DNS configuration is for BIND 9.8.0 or later with dlz_dlopen
> support. #
> # This file should be included in your main BIND configuration file
> #
> # For example with
> # include "/var/lib/samba/private/named.conf";
> 
> #
> # This configures dynamically loadable zones (DLZ) from AD schema
> # Uncomment only single database line, depending on your BIND version
> #
> dlz "ad_dns" {
> 
>     # For BIND 9.10.x
>     database
> "dlopen /usr/lib/x86_64-linux-gnu/samba/bind9/dlz_bind9_10.so"; };
> 
> key dhcpkey {
> 	algorithm hmac-md5;
> 	secret "......";
> };
> 
> controls {
>     inet 127.0.0.1 allow { localhost; } keys { dhcpkey; };
> };
> 
> zone "sam.domain.com." {
> 	type master;
> 	dlz ad_dns;
> 	include "/etc/bind/update-policy";	
> };
> 
> Jan 22 16:46:14 dc1 named[12777]: generating session key for dynamic
> DNS Jan 22 16:46:14 dc1 named[12777]: sizing zone task pool based on
> 8 zones Jan 22 16:46:14 dc1 named[12777]: Loading 'ad_dns' using
> driver dlopen Jan 22 16:46:14 dc1 named[12777]: samba_dlz: started
> for DN DC=sam,DC=domain,DC=com
> Jan 22 16:46:14 dc1 named[12777]: samba_dlz: starting configure
> Jan 22 16:46:14 dc1 named[12777]: samba_dlz: configured writeable zone
> '30.168.192.in-addr.arpa'
> Jan 22 16:46:14 dc1 named[12777]: samba_dlz: Failed to configure zone
> 'sam.domain.com'
> Jan 22 16:46:14 dc1 named[12777]: loading configuration: already
> exists Jan 22 16:46:14 dc1 named[12777]: exiting (due to fatal error)
> 

Why didn't you say that you were trying to set the dns records from
dhcp ?

Try reading this:

https://wiki.samba.org/index.php/Configure_DHCP_to_update_DNS_records_with_BIND9

This is written with Bind9 and dhcp running on the DC, but you should
be able to make it work with the dhcp on another computer, but the
BIND9 server must run on the DC.

Rowland



-- 
To unsubscribe from this list go to the following URL and read the
instructions:  https://lists.samba.org/mailman/options/samba