I am sorry to waste space on the mailing list for such a simple question, but can anyone tell me:
1. Does samba_internal backend work with MX records yet? 2. Will BIND9_FLATFILE allow dynamic DNS updates when a computer joins the domain? Thanks. GM On Sun, Jun 2, 2013 at 1:46 AM, Gary Maurizi <garymaur...@gmail.com> wrote: > This is a follow up to my previous... > > Thomas, I have tried everything else I can think of, I WAS able to get > further debugging information out of samba, winbind, bind9_dlz, and whats > going wrong in this process for us, but I am not a developer I have no way > of knowing if this will be useful to you or anyone but I figure I should > put it out so someday this can get fixed, Thanks: > > smbd_smb2_request_incoming: client read error NT_STATUS_CONNECTION_RESET > ..... > [2013/06/02 00:59:53.472357, 3] > ../source3/smbd/password.c:144(register_homes_share) > Adding homes service for user 'MTOLYMPUS\GM-BED-DESK-01$' using home > directory: '/home/MTOLYMPUS/GM-BED-DESK-01$' > [2013/06/02 00:59:53.509694, 3] ../source3/lib/access.c:338(allow_access) > Allowed connection from 10.0.0.106 (10.0.0.106) > [2013/06/02 00:59:53.509825, 3] > ../source3/smbd/service.c:612(make_connection_snum) > Connect path is '/tmp' for service [IPC$] > > ..... > > Module 'acl_xattr' loaded > [2013/06/02 00:59:53.512469, 3] ../source3/smbd/vfs.c:139(vfs_init_custom) > Initialising custom vfs hooks from [dfs_samba4] > [2013/06/02 00:59:53.512515, 2] > ../source3/modules/vfs_acl_xattr.c:193(connect_acl_xattr) > connect_acl_xattr: setting 'inherit acls = true' 'dos filemode = true' > and 'force unknown acl user = true' for service IPC$ > [2013/06/02 00:59:53.515689, 3] > ../source3/smbd/service.c:847(make_connection_snum) > 10.0.0.106 (ipv4:10.0.0.106:50958) connect to service IPC$ initially as > user MTOLYMPUS\GM-BED-DESK-01$ (uid=3000017, gid=3000018) (pid 6993) > [2013/06/02 01:00:05.459651, 3] ../source3/smbd/service.c:1121(close_cnum) > 10.0.0.106 (ipv4:10.0.0.106:50958) closed connection to service IPC$ > [2013/06/02 01:00:05.502497, 2] > ../source3/smbd/smb2_server.c:3250(smbd_smb2_request_incoming) > smbd_smb2_request_incoming: client read error NT_STATUS_CONNECTION_RESET > [2013/06/02 01:00:05.502695, 3] > ../source3/smbd/server_exit.c:218(exit_server_common) > Server exit (NT_STATUS_CONNECTION_RESET) > [2013/06/02 01:01:31.833681, 3] ../source3/lib/access.c:338(allow_access) > Allowed connection from 10.0.0.106 (10.0.0.106) > > .... > > > Initialising custom vfs hooks from [dfs_samba4] > [2013/06/02 01:01:32.006355, 2] > ../source3/modules/vfs_acl_xattr.c:193(connect_acl_xattr) > connect_acl_xattr: setting 'inherit acls = true' 'dos filemode = true' > and 'force unknown acl user = true' for service sysvol > [2013/06/02 01:01:32.009587, 1] > ../source3/smbd/service.c:847(make_connection_snum) > 10.0.0.106 (ipv4:10.0.0.106:50965) connect to service sysvol initially > as user MTOLYMPUS\Administrator (uid=0, gid=100) (pid 7020) > [2013/06/02 01:01:32.080520, 3] > ../source3/smbd/vfs.c:1140(check_reduced_name) > check_reduced_name > [mtolympus.local/Policies/{31B2F340-016D-11D2-945F-00C04FB984F9}/GPT.INI] > [/usr/local/samba/var/locks/sysvol] > [2013/06/02 01:01:32.080578, 3] > ../source3/smbd/vfs.c:1270(check_reduced_name) > check_reduced_name: > mtolympus.local/Policies/{31B2F340-016D-11D2-945F-00C04FB984F9}/GPT.INI > reduced to /usr/local/samba/var/locks/sysvol/mtolympus.local/P$ > [2013/06/02 01:01:32.080813, 3] ../source3/smbd/dosmode.c:160(unix_mode) > > unix_mode(mtolympus.local/Policies/{31B2F340-016D-11D2-945F-00C04FB984F9}/GPT.INI) > returning 0644 > [2013/06/02 01:01:32.080973, 2] ../source3/smbd/open.c:914(open_file) > MTOLYMPUS\Administrator opened file > mtolympus.local/Policies/{31B2F340-016D-11D2-945F-00C04FB984F9}/GPT.INI > read=Yes write=No (numopen=1) > [2013/06/02 01:01:32.118390, 3] > ../source3/smbd/smb2_read.c:352(smb2_read_complete) > smbd_smb2_read: fnum 3959339474, file > mtolympus.local/Policies/{31B2F340-016D-11D2-945F-00C04FB984F9}/GPT.INI, > length=20 offset=0 read=20 > [2013/06/02 01:01:43.963700, 2] > ../source3/smbd/close.c:850(close_normal_file) > MTOLYMPUS\Administrator closed file > mtolympus.local/Policies/{31B2F340-016D-11D2-945F-00C04FB984F9}/GPT.INI > (numopen=0) NT_STATUS_OK > [2013/06/02 01:01:56.053624, 1] ../source3/smbd/service.c:1121(close_cnum) > 10.0.0.106 (ipv4:10.0.0.106:50965) closed connection to service sysvol > [2013/06/02 01:01:56.101360, 2] > ../source3/smbd/smb2_server.c:3250(smbd_smb2_request_incoming) > smbd_smb2_request_incoming: client read error NT_STATUS_CONNECTION_RESET > [2013/06/02 01:01:56.101562, 3] > ../source3/smbd/server_exit.c:218(exit_server_common) > Server exit (NT_STATUS_CONNECTION_RESET) > [2013/06/02 01:14:53.720664, 3] ../source3/lib/access.c:338(allow_access) > Allowed connection from 10.0.0.106 (10.0.0.106) > [2013/06/02 01:14:53.720865, 3] ../source3/smbd/oplock.c:985(init_oplocks) > init_oplocks: initializing messages. > [2013/06/02 01:14:53.721068, 3] > ../source3/smbd/process.c:1794(process_smb) > Transaction 0 of length 159 (0 toread) > .... > [2013/06/02 01:14:53.935429, 3] ../source3/smbd/vfs.c:139(vfs_init_custom) > Initialising custom vfs hooks from [dfs_samba4] > [2013/06/02 01:14:53.935474, 2] > ../source3/modules/vfs_acl_xattr.c:193(connect_acl_xattr) > connect_acl_xattr: setting 'inherit acls = true' 'dos filemode = true' > and 'force unknown acl user = true' for service IPC$ > [2013/06/02 01:14:53.938641, 3] > ../source3/smbd/service.c:847(make_connection_snum) > 10.0.0.106 (ipv4:10.0.0.106:63570) connect to service IPC$ initially as > user MTOLYMPUS\GM-BED-DESK-01$ (uid=3000017, gid=3000018) (pid 7083) > [2013/06/02 01:15:05.833518, 3] ../source3/smbd/service.c:1121(close_cnum) > 10.0.0.106 (ipv4:10.0.0.106:63570) closed connection to service IPC$ > [2013/06/02 01:15:05.876373, 2] > ../source3/smbd/smb2_server.c:3250(smbd_smb2_request_incoming) > smbd_smb2_request_incoming: client read error NT_STATUS_CONNECTION_RESET > [2013/06/02 01:15:05.876577, 3] > ../source3/smbd/server_exit.c:218(exit_server_common) > Server exit (NT_STATUS_CONNECTION_RESET) > [2013/06/02 01:29:54.103668, 3] ../source3/lib/access.c:338(allow_access) > Allowed connection from 10.0.0.106 (10.0.0.106) > [2013/06/02 01:29:54.103869, 3] ../source3/smbd/oplock.c:985(init_oplocks) > ..... > [2013/06/02 01:29:54.172003, 3] > ../lib/ldb-samba/ldb_wrap.c:318(ldb_wrap_connect) > ldb_wrap open of secrets.ldb > [2013/06/02 01:29:54.265211, 3] > ../lib/ldb-samba/ldb_wrap.c:318(ldb_wrap_connect) > ldb_wrap open of secrets.ldb > [2013/06/02 01:29:54.273773, 3] > ../lib/ldb-samba/ldb_wrap.c:318(ldb_wrap_connect) > ldb_wrap open of privilege.ldb > [2013/06/02 01:29:54.313487, 2] > ../source3/smbd/smb2_server.c:3250(smbd_smb2_request_incoming) > smbd_smb2_request_incoming: client read error NT_STATUS_CONNECTION_RESET > [2013/06/02 01:29:54.313683, 3] > ../source3/smbd/server_exit.c:218(exit_server_common) > Server exit (NT_STATUS_CONNECTION_RESET) > [2013/06/02 01:29:54.355509, 3] ../source3/lib/access.c:338(allow_access) > Allowed connection from 10.0.0.106 (10.0.0.106) > [2013/06/02 01:29:54.355707, 3] ../source3/smbd/oplock.c:985(init_oplocks) > init_oplocks: initializing messages. > [2013/06/02 01:29:54.355914, 3] > ../source3/smbd/process.c:1794(process_smb) > Transaction 0 of length 110 (0 toread) > [2013/06/02 01:29:54.356143, 3] > ../source3/smbd/smb2_negprot.c:243(smbd_smb2_request_process_negprot) > Selected protocol SMB3_00 > [2013/06/02 01:29:54.358053, 3] > ../auth/gensec/gensec_start.c:868(gensec_register) > GENSEC backend 'gssapi_spnego' registered > [2013/06/02 01:29:54.358112, 3] > ../auth/gensec/gensec_start.c:868(gensec_register) > ............. > AUTH backend 'name_to_ntstatus' registered > [2013/06/02 01:29:54.378775, 3] > ../source4/auth/ntlm/auth.c:673(auth_register) > AUTH backend 'unix' registered > [2013/06/02 01:29:54.428154, 3] > ../lib/ldb-samba/ldb_wrap.c:318(ldb_wrap_connect) > ldb_wrap open of secrets.ldb > [2013/06/02 01:29:54.436766, 3] > ../lib/ldb-samba/ldb_wrap.c:318(ldb_wrap_connect) > ldb_wrap open of privilege.ldb > [2013/06/02 01:29:54.476359, 2] > ../source3/smbd/smb2_server.c:3250(smbd_smb2_request_incoming) > smbd_smb2_request_incoming: client read error NT_STATUS_CONNECTION_RESET > [2013/06/02 01:29:54.476559, 3] > ../source3/smbd/server_exit.c:218(exit_server_common) > Server exit (NT_STATUS_CONNECTION_RESET) > [2013/06/02 01:29:54.519457, 3] ../source3/lib/access.c:338(allow_access) > Allowed connection from 10.0.0.106 (10.0.0.106) > [2013/06/02 01:29:54.519661, 3] ../source3/smbd/oplock.c:985(init_oplocks) > ...... > [2013/06/02 01:29:54.705779, 3] > ../source4/auth/ntlm/auth.c:673(auth_register) > AUTH backend 'unix' registered > [2013/06/02 01:29:54.761056, 3] > ../lib/ldb-samba/ldb_wrap.c:318(ldb_wrap_connect) > ldb_wrap open of secrets.ldb > [2013/06/02 01:29:54.769570, 3] > ../lib/ldb-samba/ldb_wrap.c:318(ldb_wrap_connect) > ldb_wrap open of privilege.ldb > [2013/06/02 01:29:54.806357, 2] > ../source3/smbd/smb2_server.c:3250(smbd_smb2_request_incoming) > smbd_smb2_request_incoming: client read error NT_STATUS_CONNECTION_RESET > [2013/06/02 01:29:54.806565, 3] > ../source3/smbd/server_exit.c:218(exit_server_common) > Server exit (NT_STATUS_CONNECTION_RESET) > > > > > > On Sun, Jun 2, 2013 at 1:26 AM, Thomas Simmons <twsn...@gmail.com> wrote: > >> Hi Gary, >> >> Unfortunately, I have been all but taken away from my primary job over >> the past few month - our company headquarters just relocated this past >> weekend and I've been dealing with the preparation and execution of that. I >> hope to get back to this very soon. All I could do was increase my DHCP >> lease time so IPs would not change so frequently. When some system is >> showing weird, off-the-wall problems, the first thing I check is the DNS >> record. I've moved many systems to static IPs. Like you, I've been a Linux >> enthusiast for many years, and have been doing this for a living since the >> 90's. For 7-8 years I was the only person in IT and never had a problem I >> couldn't figure out before this. Unfortunately, there simply isn't enough >> information to troubleshoot the problem as nothing useful gets logged. The >> best information I've found was from BIND's debug output: >> >> 28-Mar-2013 08:26:15.759 failed gss_inquire_cred: GSSAPI error: Major >> = Unspecified GSS failure. Minor code may provide more information, >> Minor = Success. >> 28-Mar-2013 08:26:15.760 failed gss_accept_sec_context: GSSAPI error: >> Major = Unspecified GSS failure. Minor code may provide more >> information, Minor = . >> 28-Mar-2013 08:26:15.760 process_gsstkey(): dns_tsigerror_badkey >> >> >> Sadly, migrating to Windows Server may be the only solution. If you do come >> up with something, please let me know. In total, I spent at least 50-60 man >> hours on this and got nowhere. >> >> >> >> On Sun, Jun 2, 2013 at 3:56 AM, Gary Maurizi <garymaur...@gmail.com>wrote: >> >>> Thomas, >>> >>> Your post was exactly what I was referring too! small world. >>> >>> Unfortunately for me this is a feature I absolutely have to have working >>> for staff reasons, what did you end up doing ultimately? giving up? moving >>> distros? >>> >>> Thank you so much, I really appreciate your response and believe that if >>> this many people have had this issue without resolve this is a bug that >>> needs to be acknowledged, tracked, reported, and resolved. >>> >>> >>> On Sun, Jun 2, 2013 at 12:53 AM, Thomas Simmons <twsn...@gmail.com>wrote: >>> >>>> Myself and another person ran into this a few months back. We couldn't >>>> find a solution. >>>> >>>> https://lists.samba.org/archive/samba/2013-March/172368.html >>>> http://lists.samba.org/archive/samba/2013-April/172670.html >>>> >>>> >>>> On Sun, Jun 2, 2013 at 3:04 AM, Gary Maurizi <garymaur...@gmail.com>wrote: >>>> >>>>> I have tried everything, This is CentOS 6.4 with SELinux DISABLED, >>>>> Bind >>>>> version BIND 9.8.2rc1-RedHat-9.8.2-0.17, samba 4.0.6 downloaded as a >>>>> tar.gz >>>>> from samba.org -- I have read EVERY maillinglist, IRC Log, how-to on >>>>> google, tutorial on samba.org, and many many people have had this >>>>> problem >>>>> and not once have any of the posters resolved it, so I am now a >>>>> desperate >>>>> man reaching out to you with as much information as I can give, I >>>>> pray(and >>>>> I'm not a religious man) one of you can help me. I am on a timeclock >>>>> here. >>>>> >>>>> I have included every config, every related log, the output of every >>>>> command to test samba, at the following URL: >>>>> http://pastebin.com/2XvbRzQh >>>>> >>>>> I desperately do not want to install windows server, when I have the >>>>> opportunity to learn the samba way of things, I am an avid open source >>>>> enthusiast here, and I've been running some flavor of linux for 16 >>>>> years, >>>>> and samba for about as long. >>>>> >>>>> The error I am left with, and little to no other information in my >>>>> logs is >>>>> thus: >>>>> >>>>> 01-Jun-2013 14:56:05.799 samba_dlz: starting transaction on zone >>>>> mtolympus.local >>>>> 01-Jun-2013 14:56:05.800 client 10.0.0.106#60674: update >>>>> 'mtolympus.local/IN' denied >>>>> 01-Jun-2013 14:56:05.800 samba_dlz: cancelling transaction on zone >>>>> mtolympus.local >>>>> >>>>> Thanks beyond measure for your help, >>>>> Beers on me if you're a local. >>>>> --GM. >>>>> -- >>>>> To unsubscribe from this list go to the following URL and read the >>>>> instructions: https://lists.samba.org/mailman/options/samba >>>>> >>>> >>>> >>> >> > -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba