[Samba] Samba performance tuning
Hi all! I've seen a number of posts regarding Samba performance - either comments about perceived poor performance, or recommended parameter changes. Instead of some arbitrary buffer numbers, or "play with it until it works", are there any analysis tools that can give quantitative answers ? Something where instead of just saying, "Samba is too slow", I could say, "on a quad-opteron system, with 4G RAM, and full-duplex 100BaseT network, SambaMark reports a score of 237.". Maybe that's too much of a dream - is there a particular file size/copy/read technique and associated analysis that I should try? -- Daniel -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] SWAT smbpasswd authentication
On Tue, 2007-09-18 at 18:16 +0200, Antoine Jacoutot wrote: > On Monday 17 September 2007 20:44:23 Antoine Jacoutot wrote: > > Stupid question but is it possible to make SWAT use the smbpasswd file > > to authenticate users instead of the system passwd file? > > Hey guys. > > I'd just like to know if it's possible, please. This is not possible, in part due to concerns over the chicken-and-egg problem of setting up Samba to use smbpasswd while authenticating against smbpasswd, and mostly because that codepath hasn't been altered since 2001, when we didn't have 'encrypt passwords = yes' as a default. PAM and pam_smbpass would be one way around it, on Linux systems. Andrew Bartlett -- Andrew Bartlett http://samba.org/~abartlet/ Authentication Developer, Samba Team http://samba.org Samba Developer, Red Hat Inc. signature.asc Description: This is a digitally signed message part -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] numerous IPC$ connections
On Mon, 2007-10-01 at 10:06 -0400, Mike Davis wrote: > After upgrading to 3.0.26a and moving to linux my member > server gets hundreds of IPC$ connections when I run > smbstatus. I also see in my logs the following... > > [2007/10/01 10:01:15, 0] > lib/util_tdb.c:tdb_chainlock_with_timeout_internal(84) > tdb_chainlock_with_timeout_internal: alarm (10) timed out > for key VALDEZ in tdb /usr/local/samba/private/secrets.tdb > > I did a dump of secrets on my old server and there wasnt a > key for Valdez there. > > Now valdez is of teh DC's for the Domain. I dont start > seeing all of thsi until we get high activity. All the > clients do is login into teh domain and then we have a bat > file on the DC that mounts their home directory on this > server. > > Can anyone point me in the right direction for tracking down > why this is happening. I guess you are describing a situation where you have a lot of process hanging where the smbd is basically stuck. How many smbd process do you have a around when this happen? (ps xa |grep smbd|wc -l) How many clients? On what OS are you running this? Is /usr/local/samba a local file system (ext2/3?)? And most importantly can you reproduce this at will ? Simo. -- Simo Sorce Samba Team GPL Compliance Officer email: [EMAIL PROTECTED] http://samba.org -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Can't chown a file to an ADS username
the winbindd.log you posted contains winbind startup messages? if not try to restart winbind and check winbind log for errors . /etc/nsswitch.conf contains winbind related strings? On 10/8/07, Eric Diven <[EMAIL PROTECTED]> wrote: > I'm not actually getting much from it. I'm assuming that all of > winbinds logging goes to [logpath]/winbindd.log. > > If that's the case, I'm seeing nsswitch related stuff happening when > winbind starts up, but not when I run getent passwd. > I'm running winbind at debug level 3. > > [EMAIL PROTECTED] ~]# cat /var/log/samba/winbindd.log > [2007/10/08 13:18:23, 2] lib/interface.c:add_interface(81) > added interface ip=192.168.100.80 bcast=192.168.100.255 > nmask=255.255.255.0 > [2007/10/08 13:18:23, 2] lib/interface.c:add_interface(81) > added interface ip=192.168.100.80 bcast=192.168.100.255 > nmask=255.255.255.0 > [2007/10/08 13:18:23, 2] lib/tallocmsg.c:register_msg_pool_usage(61) > Registered MSG_REQ_POOL_USAGE > [2007/10/08 13:18:23, 2] lib/dmallocmsg.c:register_dmalloc_msgs(71) > Registered MSG_REQ_DMALLOC_MARK and LOG_CHANGED > [2007/10/08 13:18:23, 2] > nsswitch/winbindd_util.c:add_trusted_domain(175) > Added domain EDSI EDSI.EDSI-INT.COM > S-1-5-21-1993962763-329068152-1801674531 > [2007/10/08 13:18:23, 2] > nsswitch/winbindd_util.c:add_trusted_domain(175) > Added domain LOCALHOST S-1-5-21-9612232-2512366426-966941693 > [2007/10/08 13:18:23, 2] > nsswitch/winbindd_util.c:add_trusted_domain(175) > Added domain BUILTIN S-1-5-32 > [2007/10/08 13:18:23, 3] > nsswitch/winbindd_misc.c:winbindd_interface_version(483) > [0]: request interface version > [2007/10/08 13:18:23, 3] > nsswitch/winbindd_misc.c:winbindd_priv_pipe_dir(516) > [0]: request location of privileged pipe > [2007/10/08 13:18:23, 3] nsswitch/winbindd_misc.c:winbindd_ping(462) > [0]: ping > [EMAIL PROTECTED] ~]# > > This is the result of clearing the log, restarting samba, and running > getent passwd. Nothing gets added to the log when I run it. It's greek > to me what the stuff from winbind start up means, but I'm a little > suspicious that nothing shows up on getent passwd. > > ~Eric > > -Original Message- > From: Stas [mailto:[EMAIL PROTECTED] > Sent: Monday, October 08, 2007 12:50 PM > To: Eric Diven > Cc: samba@lists.samba.org > Subject: Re: [Samba] Can't chown a file to an ADS username > > winbind's log may be helpful > > > > On 10/8/07, Eric Diven <[EMAIL PROTECTED]> wrote: > > I've got a samba install on Linux with winbind installed, etc. I've > > configured it the same as I have under Solaris, but for some reason, I > > > can't chown a file to an AD username. I have joined the box to the > > domain, I can wbinfo -u/-g and get lists of users and groups on the > > domain. When I run getent passwd or getent group, however, I don't > > see any of the domain users and groups. I have winbind enum users and > > > groups = yes in the smb.conf file. > > > > Eventually, I need to be able to accomplish this with enum users and > > groups = no for a large domain, but I'm trying to duplicate a problem > > we're have with Solaris. > > > > Any ideas? I'm happy to furnish further info/configs/logs on request. > > > > ~Eric > > -- > > To unsubscribe from this list go to the following URL and read the > > instructions: https://lists.samba.org/mailman/listinfo/samba > > > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/listinfo/samba > -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
RE: [Samba] Can't chown a file to an ADS username
Okay, I've just tried this on my working solaris setup, and I definitely get stuff in the log file when I run getent passwd. Is there an nsswitch log that would tell me if nsswitch is even trying to call the winbind libraries? ~Eric -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Eric Diven Sent: Monday, October 08, 2007 4:15 PM To: samba@lists.samba.org Subject: RE: [Samba] Can't chown a file to an ADS username I'm not actually getting much from it. I'm assuming that all of winbinds logging goes to [logpath]/winbindd.log. If that's the case, I'm seeing nsswitch related stuff happening when winbind starts up, but not when I run getent passwd. I'm running winbind at debug level 3. [EMAIL PROTECTED] ~]# cat /var/log/samba/winbindd.log [2007/10/08 13:18:23, 2] lib/interface.c:add_interface(81) added interface ip=192.168.100.80 bcast=192.168.100.255 nmask=255.255.255.0 [2007/10/08 13:18:23, 2] lib/interface.c:add_interface(81) added interface ip=192.168.100.80 bcast=192.168.100.255 nmask=255.255.255.0 [2007/10/08 13:18:23, 2] lib/tallocmsg.c:register_msg_pool_usage(61) Registered MSG_REQ_POOL_USAGE [2007/10/08 13:18:23, 2] lib/dmallocmsg.c:register_dmalloc_msgs(71) Registered MSG_REQ_DMALLOC_MARK and LOG_CHANGED [2007/10/08 13:18:23, 2] nsswitch/winbindd_util.c:add_trusted_domain(175) Added domain EDSI EDSI.EDSI-INT.COM S-1-5-21-1993962763-329068152-1801674531 [2007/10/08 13:18:23, 2] nsswitch/winbindd_util.c:add_trusted_domain(175) Added domain LOCALHOST S-1-5-21-9612232-2512366426-966941693 [2007/10/08 13:18:23, 2] nsswitch/winbindd_util.c:add_trusted_domain(175) Added domain BUILTIN S-1-5-32 [2007/10/08 13:18:23, 3] nsswitch/winbindd_misc.c:winbindd_interface_version(483) [0]: request interface version [2007/10/08 13:18:23, 3] nsswitch/winbindd_misc.c:winbindd_priv_pipe_dir(516) [0]: request location of privileged pipe [2007/10/08 13:18:23, 3] nsswitch/winbindd_misc.c:winbindd_ping(462) [0]: ping [EMAIL PROTECTED] ~]# This is the result of clearing the log, restarting samba, and running getent passwd. Nothing gets added to the log when I run it. It's greek to me what the stuff from winbind start up means, but I'm a little suspicious that nothing shows up on getent passwd. ~Eric -Original Message- From: Stas [mailto:[EMAIL PROTECTED] Sent: Monday, October 08, 2007 12:50 PM To: Eric Diven Cc: samba@lists.samba.org Subject: Re: [Samba] Can't chown a file to an ADS username winbind's log may be helpful On 10/8/07, Eric Diven <[EMAIL PROTECTED]> wrote: > I've got a samba install on Linux with winbind installed, etc. I've > configured it the same as I have under Solaris, but for some reason, I > can't chown a file to an AD username. I have joined the box to the > domain, I can wbinfo -u/-g and get lists of users and groups on the > domain. When I run getent passwd or getent group, however, I don't > see any of the domain users and groups. I have winbind enum users and > groups = yes in the smb.conf file. > > Eventually, I need to be able to accomplish this with enum users and > groups = no for a large domain, but I'm trying to duplicate a problem > we're have with Solaris. > > Any ideas? I'm happy to furnish further info/configs/logs on request. > > ~Eric > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/listinfo/samba > -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba man/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Mysterious Messages in Log File
Hi everybody, I have some Problems with my Samba Server. My Log is full of these messages: Oct 8 19:01:12 smbd[6170]: getpeername failed. Error was Der Socket ist nicht verbunden Oct 8 19:01:12 smbd[27824]: getpeername failed. Error was Der Socket ist nicht verbunden Oct 8 19:01:12 smbd[27824]: write_data: write failure in writing to client 0.0.0.0. Error Die Verbindung wurde vom Kommunikationspartner zur??ckgesetzt Does anyone know this message and can explain me why this is logged twice a minute? The messages are: Der Socket ist nicht verbunden >> The socket is not connected Die Verbindung wurde vom Kommunikationspartner zur??ckgesetzt >> The connection was reset by peer I searched on google, but didn't got a hint what it could be... I hope you can help me! Matthias - sorry but english is not my native language... -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Samba v3.0.26a
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Adam Tauno Williams wrote: >> I got samba 3.0.26a on my Fedora 7, and when i try to add users with >> smbpasswd -a username, it only works if the user exists as a linux >> user... i got a Centos 4.4 system with samba 3.0.10 and it works even >> if the user doesn't exists on the system. >> Can anyone explain me why this happens? is it from this new version >> (3.0.26a) or may be a problem of >> Fedora 7? > > Your configuration on the FC7 box is incomplete, you need an add user > script to setup the user in NSS after which Samba will find the user and > add the Samba attributes. All documented in the Samba docs. To add to this, the user MUST exist as a Linux user. What the other poster suggests is happening is that the other box is adding a Linux user transparently. - -- _ _ _ _ ___ _ _ _ |Y#| | | |\/| | \ |\ | | |Ryan Novosielski - Systems Programmer II |$&| |__| | | |__/ | \| _| |[EMAIL PROTECTED] - 973/972.0922 (2-0922) \__/ Univ. of Med. and Dent.|IST/AST - NJMS Medical Science Bldg - C630 -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.6 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFHCo6smb+gadEcsb4RAtpiAJoCKZ8tUPqG4X9ukBmJvmT1G0vmbwCg4Ihl yvQlRP0cPvBADM2iLj5hgIQ= =6lqW -END PGP SIGNATURE- -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
RE: [Samba] Can't chown a file to an ADS username
I'm not actually getting much from it. I'm assuming that all of winbinds logging goes to [logpath]/winbindd.log. If that's the case, I'm seeing nsswitch related stuff happening when winbind starts up, but not when I run getent passwd. I'm running winbind at debug level 3. [EMAIL PROTECTED] ~]# cat /var/log/samba/winbindd.log [2007/10/08 13:18:23, 2] lib/interface.c:add_interface(81) added interface ip=192.168.100.80 bcast=192.168.100.255 nmask=255.255.255.0 [2007/10/08 13:18:23, 2] lib/interface.c:add_interface(81) added interface ip=192.168.100.80 bcast=192.168.100.255 nmask=255.255.255.0 [2007/10/08 13:18:23, 2] lib/tallocmsg.c:register_msg_pool_usage(61) Registered MSG_REQ_POOL_USAGE [2007/10/08 13:18:23, 2] lib/dmallocmsg.c:register_dmalloc_msgs(71) Registered MSG_REQ_DMALLOC_MARK and LOG_CHANGED [2007/10/08 13:18:23, 2] nsswitch/winbindd_util.c:add_trusted_domain(175) Added domain EDSI EDSI.EDSI-INT.COM S-1-5-21-1993962763-329068152-1801674531 [2007/10/08 13:18:23, 2] nsswitch/winbindd_util.c:add_trusted_domain(175) Added domain LOCALHOST S-1-5-21-9612232-2512366426-966941693 [2007/10/08 13:18:23, 2] nsswitch/winbindd_util.c:add_trusted_domain(175) Added domain BUILTIN S-1-5-32 [2007/10/08 13:18:23, 3] nsswitch/winbindd_misc.c:winbindd_interface_version(483) [0]: request interface version [2007/10/08 13:18:23, 3] nsswitch/winbindd_misc.c:winbindd_priv_pipe_dir(516) [0]: request location of privileged pipe [2007/10/08 13:18:23, 3] nsswitch/winbindd_misc.c:winbindd_ping(462) [0]: ping [EMAIL PROTECTED] ~]# This is the result of clearing the log, restarting samba, and running getent passwd. Nothing gets added to the log when I run it. It's greek to me what the stuff from winbind start up means, but I'm a little suspicious that nothing shows up on getent passwd. ~Eric -Original Message- From: Stas [mailto:[EMAIL PROTECTED] Sent: Monday, October 08, 2007 12:50 PM To: Eric Diven Cc: samba@lists.samba.org Subject: Re: [Samba] Can't chown a file to an ADS username winbind's log may be helpful On 10/8/07, Eric Diven <[EMAIL PROTECTED]> wrote: > I've got a samba install on Linux with winbind installed, etc. I've > configured it the same as I have under Solaris, but for some reason, I > can't chown a file to an AD username. I have joined the box to the > domain, I can wbinfo -u/-g and get lists of users and groups on the > domain. When I run getent passwd or getent group, however, I don't > see any of the domain users and groups. I have winbind enum users and > groups = yes in the smb.conf file. > > Eventually, I need to be able to accomplish this with enum users and > groups = no for a large domain, but I'm trying to duplicate a problem > we're have with Solaris. > > Any ideas? I'm happy to furnish further info/configs/logs on request. > > ~Eric > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/listinfo/samba > -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Re: Unusable performance over WAN (part 2)
On 10/8/07, Mike Eggleston <[EMAIL PROTECTED]> wrote: > On Mon, 08 Oct 2007, James Lamanna might have said: > > > On 10/8/07, Mike Eggleston <[EMAIL PROTECTED]> wrote: > > > On Mon, 08 Oct 2007, James Lamanna might have said: > > > > > > > So as it turns out, apparently it was a window scaling issue. > > > > Turning on an excessively large window size on the routers (thereby > > > > enabling dynamic TCP window scaling) seems to have fixed the issue. I > > > > now get transfer rates around 130-160k/s. > > > > > > Great. For hysterical porpoises please document what specific changes > > > you made on the windows boxes and what specific changes you made on > > > your router. > > > > > > Mike > > > > > > > The only change I made on the routers was I added the global > > configuration command (both Cisco routers btw) > > ip tcp window-size 75 > > > > -- James > > And the change on the windows box? > > Mike > Actually no changes to the windows box. They seem to behaving well now. Most of my tests were done with smbclient from a linux box anyways. -- James -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Re: Unusable performance over WAN (part 2)
On Mon, 08 Oct 2007, James Lamanna might have said: > On 10/8/07, Mike Eggleston <[EMAIL PROTECTED]> wrote: > > On Mon, 08 Oct 2007, James Lamanna might have said: > > > > > So as it turns out, apparently it was a window scaling issue. > > > Turning on an excessively large window size on the routers (thereby > > > enabling dynamic TCP window scaling) seems to have fixed the issue. I > > > now get transfer rates around 130-160k/s. > > > > Great. For hysterical porpoises please document what specific changes > > you made on the windows boxes and what specific changes you made on > > your router. > > > > Mike > > > > The only change I made on the routers was I added the global > configuration command (both Cisco routers btw) > ip tcp window-size 75 > > -- James And the change on the windows box? Mike -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Re: Unusable performance over WAN (part 2)
On 10/8/07, Mike Eggleston <[EMAIL PROTECTED]> wrote: > On Mon, 08 Oct 2007, James Lamanna might have said: > > > So as it turns out, apparently it was a window scaling issue. > > Turning on an excessively large window size on the routers (thereby > > enabling dynamic TCP window scaling) seems to have fixed the issue. I > > now get transfer rates around 130-160k/s. > > Great. For hysterical porpoises please document what specific changes > you made on the windows boxes and what specific changes you made on > your router. > > Mike > The only change I made on the routers was I added the global configuration command (both Cisco routers btw) ip tcp window-size 75 -- James -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Re: Unusable performance over WAN (part 2)
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Mike Eggleston wrote: > On Mon, 08 Oct 2007, James Lamanna might have said: > >> So as it turns out, apparently it was a window scaling issue. >> Turning on an excessively large window size on the routers (thereby >> enabling dynamic TCP window scaling) seems to have fixed the issue. I >> now get transfer rates around 130-160k/s. > > Great. For hysterical porpoises please document what specific changes > you made on the windows boxes and what specific changes you made on > your router. > > Mike Yes, I wanted to say myself: I have not necessarily had this problem (I really haven't checked since we have local SMB servers), but the path to solving it has been fascinating, and is helpful for not just SMB troubleshooting. - -- _ _ _ _ ___ _ _ _ |Y#| | | |\/| | \ |\ | | |Ryan Novosielski - Systems Programmer II |$&| |__| | | |__/ | \| _| |[EMAIL PROTECTED] - 973/972.0922 (2-0922) \__/ Univ. of Med. and Dent.|IST/AST - NJMS Medical Science Bldg - C630 -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.6 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFHCn78mb+gadEcsb4RAvWmAKCwKLOHSWnEhv9nFmIN7vEuy+DjXwCfdEtQ 3hhK2I1uN0Uhq7pTzRMbGAs= =ojhq -END PGP SIGNATURE- -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Re: Unusable performance over WAN (part 2)
On Mon, 08 Oct 2007, James Lamanna might have said: > So as it turns out, apparently it was a window scaling issue. > Turning on an excessively large window size on the routers (thereby > enabling dynamic TCP window scaling) seems to have fixed the issue. I > now get transfer rates around 130-160k/s. Great. For hysterical porpoises please document what specific changes you made on the windows boxes and what specific changes you made on your router. Mike -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Re: Unusable performance over WAN (part 2)
On 10/8/07, James Lamanna <[EMAIL PROTECTED]> wrote: > On 10/8/07, James Lamanna <[EMAIL PROTECTED]> wrote: > > On 10/8/07, James Lamanna <[EMAIL PROTECTED]> wrote: > > > On 10/7/07, James Lamanna <[EMAIL PROTECTED]> wrote: > > > > On 10/7/07, James Lamanna <[EMAIL PROTECTED]> wrote: > > > > > On 10/7/07, Volker Lendecke <[EMAIL PROTECTED]> wrote: > > > > > > On Sun, Oct 07, 2007 at 09:31:23AM -0700, James Lamanna wrote: > > > > > > > > > > > > > Server sends 1500 byte packet > > > > > > > Client sends 52 bye ACK > > > > > > > Server sends 1500 byte packet > > > > > > > Client sends 52 byte ACK > > > > > > > etc.. > > > > > > > > > > > > > > Can anyone think of a reason for this? > > > > > > > > > > > > I did not find a link spontaneously, but Windows sometimes > > > > > > falls back to something that we call "rabbit pellet" > > > > > > mode. Maybe google shows up something for you. > > > > > > > > > > > > Volker > > > > > > > > > > > > > > > > > > > > > > I actually see that behavior using smbclient from a linux machine, so > > > > > its not necessarily Windows related. > > > > > > > > > > -- James > > > > > > > > > > > > > I've put some tcpdump logs from my macbook up at: > > > > http://emagiccards.com/james/tcpdump-vpn-logs.tar.bz2. > > > > It contains 2 files: > > > > > > > > vpn-wan.log - Transferring a file from my macbook over the WAN (logged > > > > in through VPN) > > > > vpn-nowan2.log - Transferring a file from my macbook not over the WAN > > > > (logging through VPN) > > > > (I have separate VPN servers on each size of the WAN). > > > > > > > > Here are the smbclient outputs: > > > > > > > > No WAN: > > > > getting file \Jun07.xls of size 2321920 as Jun07.xls (23.8 kb/s) > > > > (average 23.8 kb/s) > > > > > > > > Using WAN: > > > > getting file \Jun07.xls of size 2321920 as Jun07.xls Short read when > > > > getting file \Jun07.xls. Only got 1032192 bytes. > > > > Error Call timed out: server did not respond after 2 milliseconds > > > > closing remote file > > > > (3.9 kb/s) (average 3.9 kb/s) > > > > > > > > -- James > > > > > > > > > > I've put up more logs this morning sans VPN. > > > They are in: > > > http://emagiccards.com/james/tcpdump-novpn-logs.tar.bz2 > > > > > > Both of these logs are from being directly plugged in on either side of > > > the WAN. > > > The 'nowan' log is the normal, fast transfer, whereas the 'wan' log is > > > over the WAN and has the unusable throughput. > > > > > > -- James > > > > > > > Another point of information: > > > > Samba (and only Samba, other protocols work fine) seems to drop a lot > > of packets. > > Looking at simultaneous tcpdump traces from both the server and client > > side, I see that lots of packets are dropped that are going from the > > samba server to the client. > > The sequence numbers look like this in some cases: > > > > Client RecvServer Send > > 1150 1150 > > 1152 1152 > > 1154 > > 1156 > > 1158 > > 1160 > > 1162 > > 1164 1164 > > 1166 1166 > > 1168 1168 > > 1170 1170 > > > > So in that case, a whole 5 packets were missed. > > I'm going to assume this isn't normal behavior, and other protocols > > (scp / ftp) don't seem to suffer from this problem. > > > > -- James > > > > Of course, it could also be tcpdump dropping packets too :) > So as it turns out, apparently it was a window scaling issue. Turning on an excessively large window size on the routers (thereby enabling dynamic TCP window scaling) seems to have fixed the issue. I now get transfer rates around 130-160k/s. -- James -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Migrate Files and Shares
I have read about the net commands and the possible use of robocopy for migrating shares and files (with ACL preservation) from Windows to Samba. I have also read about many users who have posted various errors with both methods (error 5, access_denied, etc). However, I have been unable to find any reponse/solutions to the same. I'd like to know if there is a solution to such problems and if there is any further documentation on how to achieve such a migration. Thank you Vijay -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Re: Unusable performance over WAN (part 2)
On 10/8/07, James Lamanna <[EMAIL PROTECTED]> wrote: > On 10/8/07, James Lamanna <[EMAIL PROTECTED]> wrote: > > On 10/7/07, James Lamanna <[EMAIL PROTECTED]> wrote: > > > On 10/7/07, James Lamanna <[EMAIL PROTECTED]> wrote: > > > > On 10/7/07, Volker Lendecke <[EMAIL PROTECTED]> wrote: > > > > > On Sun, Oct 07, 2007 at 09:31:23AM -0700, James Lamanna wrote: > > > > > > > > > > > Server sends 1500 byte packet > > > > > > Client sends 52 bye ACK > > > > > > Server sends 1500 byte packet > > > > > > Client sends 52 byte ACK > > > > > > etc.. > > > > > > > > > > > > Can anyone think of a reason for this? > > > > > > > > > > I did not find a link spontaneously, but Windows sometimes > > > > > falls back to something that we call "rabbit pellet" > > > > > mode. Maybe google shows up something for you. > > > > > > > > > > Volker > > > > > > > > > > > > > > > > > > I actually see that behavior using smbclient from a linux machine, so > > > > its not necessarily Windows related. > > > > > > > > -- James > > > > > > > > > > I've put some tcpdump logs from my macbook up at: > > > http://emagiccards.com/james/tcpdump-vpn-logs.tar.bz2. > > > It contains 2 files: > > > > > > vpn-wan.log - Transferring a file from my macbook over the WAN (logged > > > in through VPN) > > > vpn-nowan2.log - Transferring a file from my macbook not over the WAN > > > (logging through VPN) > > > (I have separate VPN servers on each size of the WAN). > > > > > > Here are the smbclient outputs: > > > > > > No WAN: > > > getting file \Jun07.xls of size 2321920 as Jun07.xls (23.8 kb/s) > > > (average 23.8 kb/s) > > > > > > Using WAN: > > > getting file \Jun07.xls of size 2321920 as Jun07.xls Short read when > > > getting file \Jun07.xls. Only got 1032192 bytes. > > > Error Call timed out: server did not respond after 2 milliseconds > > > closing remote file > > > (3.9 kb/s) (average 3.9 kb/s) > > > > > > -- James > > > > > > > I've put up more logs this morning sans VPN. > > They are in: > > http://emagiccards.com/james/tcpdump-novpn-logs.tar.bz2 > > > > Both of these logs are from being directly plugged in on either side of the > > WAN. > > The 'nowan' log is the normal, fast transfer, whereas the 'wan' log is > > over the WAN and has the unusable throughput. > > > > -- James > > > > Another point of information: > > Samba (and only Samba, other protocols work fine) seems to drop a lot > of packets. > Looking at simultaneous tcpdump traces from both the server and client > side, I see that lots of packets are dropped that are going from the > samba server to the client. > The sequence numbers look like this in some cases: > > Client RecvServer Send > 1150 1150 > 1152 1152 > 1154 > 1156 > 1158 > 1160 > 1162 > 1164 1164 > 1166 1166 > 1168 1168 > 1170 1170 > > So in that case, a whole 5 packets were missed. > I'm going to assume this isn't normal behavior, and other protocols > (scp / ftp) don't seem to suffer from this problem. > > -- James > Of course, it could also be tcpdump dropping packets too :) -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Re: Unusable performance over WAN (part 2)
On 10/8/07, James Lamanna <[EMAIL PROTECTED]> wrote: > On 10/7/07, James Lamanna <[EMAIL PROTECTED]> wrote: > > On 10/7/07, James Lamanna <[EMAIL PROTECTED]> wrote: > > > On 10/7/07, Volker Lendecke <[EMAIL PROTECTED]> wrote: > > > > On Sun, Oct 07, 2007 at 09:31:23AM -0700, James Lamanna wrote: > > > > > > > > > Server sends 1500 byte packet > > > > > Client sends 52 bye ACK > > > > > Server sends 1500 byte packet > > > > > Client sends 52 byte ACK > > > > > etc.. > > > > > > > > > > Can anyone think of a reason for this? > > > > > > > > I did not find a link spontaneously, but Windows sometimes > > > > falls back to something that we call "rabbit pellet" > > > > mode. Maybe google shows up something for you. > > > > > > > > Volker > > > > > > > > > > > > > > I actually see that behavior using smbclient from a linux machine, so > > > its not necessarily Windows related. > > > > > > -- James > > > > > > > I've put some tcpdump logs from my macbook up at: > > http://emagiccards.com/james/tcpdump-vpn-logs.tar.bz2. > > It contains 2 files: > > > > vpn-wan.log - Transferring a file from my macbook over the WAN (logged > > in through VPN) > > vpn-nowan2.log - Transferring a file from my macbook not over the WAN > > (logging through VPN) > > (I have separate VPN servers on each size of the WAN). > > > > Here are the smbclient outputs: > > > > No WAN: > > getting file \Jun07.xls of size 2321920 as Jun07.xls (23.8 kb/s) > > (average 23.8 kb/s) > > > > Using WAN: > > getting file \Jun07.xls of size 2321920 as Jun07.xls Short read when > > getting file \Jun07.xls. Only got 1032192 bytes. > > Error Call timed out: server did not respond after 2 milliseconds > > closing remote file > > (3.9 kb/s) (average 3.9 kb/s) > > > > -- James > > > > I've put up more logs this morning sans VPN. > They are in: > http://emagiccards.com/james/tcpdump-novpn-logs.tar.bz2 > > Both of these logs are from being directly plugged in on either side of the > WAN. > The 'nowan' log is the normal, fast transfer, whereas the 'wan' log is > over the WAN and has the unusable throughput. > > -- James > Another point of information: Samba (and only Samba, other protocols work fine) seems to drop a lot of packets. Looking at simultaneous tcpdump traces from both the server and client side, I see that lots of packets are dropped that are going from the samba server to the client. The sequence numbers look like this in some cases: Client RecvServer Send 1150 1150 1152 1152 1154 1156 1158 1160 1162 1164 1164 1166 1166 1168 1168 1170 1170 So in that case, a whole 5 packets were missed. I'm going to assume this isn't normal behavior, and other protocols (scp / ftp) don't seem to suffer from this problem. -- James -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Can't chown a file to an ADS username
winbind's log may be helpful On 10/8/07, Eric Diven <[EMAIL PROTECTED]> wrote: > I've got a samba install on Linux with winbind installed, etc. I've > configured it the same as I have under Solaris, but for some reason, I > can't chown a file to an AD username. I have joined the box to the > domain, I can wbinfo -u/-g and get lists of users and groups on the > domain. When I run getent passwd or getent group, however, I don't see > any of the domain users and groups. I have winbind enum users and > groups = yes in the smb.conf file. > > Eventually, I need to be able to accomplish this with enum users and > groups = no for a large domain, but I'm trying to duplicate a problem > we're have with Solaris. > > Any ideas? I'm happy to furnish further info/configs/logs on request. > > ~Eric > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/listinfo/samba > -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
RE: [Samba] Can't chown a file to an ADS username
Samba version is 3.0.24, running on CentOS 4.3, sorry about that. ~Eric -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Eric Diven Sent: Monday, October 08, 2007 12:35 PM To: samba@lists.samba.org Subject: [Samba] Can't chown a file to an ADS username I've got a samba install on Linux with winbind installed, etc. I've configured it the same as I have under Solaris, but for some reason, I can't chown a file to an AD username. I have joined the box to the domain, I can wbinfo -u/-g and get lists of users and groups on the domain. When I run getent passwd or getent group, however, I don't see any of the domain users and groups. I have winbind enum users and groups = yes in the smb.conf file. Eventually, I need to be able to accomplish this with enum users and groups = no for a large domain, but I'm trying to duplicate a problem we're have with Solaris. Any ideas? I'm happy to furnish further info/configs/logs on request. ~Eric -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba man/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Can't chown a file to an ADS username
I've got a samba install on Linux with winbind installed, etc. I've configured it the same as I have under Solaris, but for some reason, I can't chown a file to an AD username. I have joined the box to the domain, I can wbinfo -u/-g and get lists of users and groups on the domain. When I run getent passwd or getent group, however, I don't see any of the domain users and groups. I have winbind enum users and groups = yes in the smb.conf file. Eventually, I need to be able to accomplish this with enum users and groups = no for a large domain, but I'm trying to duplicate a problem we're have with Solaris. Any ideas? I'm happy to furnish further info/configs/logs on request. ~Eric -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] smbd process per user ( Samba 3 + Terminal server )
Terminal server already configured with "EnableMultiUser=1" , but all sessions from Terminal server appears under same PID : file-srv:~ # net status sessions PID Username Group Machine --- 8742 DOMAIN\user1 DOMAIN\domain users 10.163.128.42 (10.163.128.42) 8742 DOMAIN\user2 DOMAIN\domain users 10.163.128.42 (10.163.128.42) 8742 DOMAIN\terminal$ DOMAIN\domain computers 10.163.128.42 (10.163.128.42) So , if i kill PID 8742 all files opened by terminal server users will be closed . Thanks. On 10/8/07, Eric Roseme <[EMAIL PROTECTED]> wrote: > Depends upon your terminal server. NT4 and W2000 - yes. W2003 - no > (unless they added the EnableMultipleUsers parameter from W2000). I > wrote a kind of wordy paper about this: > http://www.docs.hp.com/en/5015/Samba-TerminalServer_104Final.pdf. This > paper version does not include the W2000 fix, which is the above > parameter and hotfix Q818528. I have not looked to see if Microsoft > ever fixed this on W2003. I can send you the whitepaper with the W2000 > fix incorporated, if you want it (i never posted the updated version). > > Eric Roseme > Hewlett-Packard > > Stas wrote: > > Hello all. > > It is possible to force Samba 3 server to create "smbd" process for > > each user that open file from Terminal Server ? > > Sometimes I need close files , but can't do that by "kill " since > > it should close all files that opened by terminal server users .. > > It any flexible way to manage open files on Samba ? > > > > Thanks . > -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Re: Samba + LDAP
> Ok, lets put this better, maybe i confused some stuff... > I got my ldap server on the centos machine, lots of users configured > there, and works fine on the samba of that machine. > Then i got Fedora 7 machine, with Samba configured to authenticate from > the centos machine LDAP. > When i try to connect to the Fedora 7 samba shares with some user that > exists on the LDAP but not on the Fedora 7 system, it gives me this > error: > Examples: > Fedora 7 machine: > smbclient //127.0.0.1/util -U drocha > Password: > session setup failed: NT_STATUS_LOGON_FAILURE > [2007/10/08 16:38:24, 1] auth/auth_util.c:make_server_info_sam(566) > User drocha in passdb, but getpwnam() fails! Yep; you need to complete the configuration of the FC7 box. You need to connect NSS on the FC7 box to your domain/DSA. getpwnam is a call to NSS. This is all documented in the Samba docs & "man nsswitch.conf" -- Consonance: an Open Source .NET OpenGroupware client. http://code.google.com/p/consonance/ - Searching for a bored Cairo# hacker. Contact:[EMAIL PROTECTED] http://www.opengroupware.org -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Re: Unusable performance over WAN (part 2)
On 10/7/07, James Lamanna <[EMAIL PROTECTED]> wrote: > On 10/7/07, James Lamanna <[EMAIL PROTECTED]> wrote: > > On 10/7/07, Volker Lendecke <[EMAIL PROTECTED]> wrote: > > > On Sun, Oct 07, 2007 at 09:31:23AM -0700, James Lamanna wrote: > > > > > > > Server sends 1500 byte packet > > > > Client sends 52 bye ACK > > > > Server sends 1500 byte packet > > > > Client sends 52 byte ACK > > > > etc.. > > > > > > > > Can anyone think of a reason for this? > > > > > > I did not find a link spontaneously, but Windows sometimes > > > falls back to something that we call "rabbit pellet" > > > mode. Maybe google shows up something for you. > > > > > > Volker > > > > > > > > > > I actually see that behavior using smbclient from a linux machine, so > > its not necessarily Windows related. > > > > -- James > > > > I've put some tcpdump logs from my macbook up at: > http://emagiccards.com/james/tcpdump-vpn-logs.tar.bz2. > It contains 2 files: > > vpn-wan.log - Transferring a file from my macbook over the WAN (logged > in through VPN) > vpn-nowan2.log - Transferring a file from my macbook not over the WAN > (logging through VPN) > (I have separate VPN servers on each size of the WAN). > > Here are the smbclient outputs: > > No WAN: > getting file \Jun07.xls of size 2321920 as Jun07.xls (23.8 kb/s) > (average 23.8 kb/s) > > Using WAN: > getting file \Jun07.xls of size 2321920 as Jun07.xls Short read when > getting file \Jun07.xls. Only got 1032192 bytes. > Error Call timed out: server did not respond after 2 milliseconds > closing remote file > (3.9 kb/s) (average 3.9 kb/s) > > -- James > I've put up more logs this morning sans VPN. They are in: http://emagiccards.com/james/tcpdump-novpn-logs.tar.bz2 Both of these logs are from being directly plugged in on either side of the WAN. The 'nowan' log is the normal, fast transfer, whereas the 'wan' log is over the WAN and has the unusable throughput. -- James -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Re: Samba + LDAP
Ok, lets put this better, maybe i confused some stuff... I got my ldap server on the centos machine, lots of users configured there, and works fine on the samba of that machine. Then i got Fedora 7 machine, with Samba configured to authenticate from the centos machine LDAP. When i try to connect to the Fedora 7 samba shares with some user that exists on the LDAP but not on the Fedora 7 system, it gives me this error: Examples: Fedora 7 machine: smbclient //127.0.0.1/util -U drocha Password: session setup failed: NT_STATUS_LOGON_FAILURE log.smbd : [2007/10/08 16:38:23, 0] passdb/pdb_get_set.c:pdb_get_group_sid(211) pdb_get_group_sid: Failed to find Unix account for drocha [2007/10/08 16:38:24, 1] auth/auth_util.c:make_server_info_sam(566) User drocha in passdb, but getpwnam() fails! [2007/10/08 16:38:24, 0] auth/auth_sam.c:check_sam_security(352) check_sam_security: make_server_info_sam() failed with 'NT_STATUS_NO_SUCH_USER' CentOS 4 machine: smbclient //127.0.0.1/util -U drocha Password: Domain=[VERSAOINTEGRAL] OS=[Unix] Server=[Samba 3.0.10-1.4E.12.2] smb: \> works fine. On Mon, 2007-10-08 at 15:45 +0100, Ricardo Manuel Esteves (VI) wrote: > Hi, > > I got samba 3.0.26a on my Fedora 7, and when i try to add users with > smbpasswd -a username, it only works if the user exists as a linux > user... i got a Centos 4.4 system with samba 3.0.10 and it works even > if the user doesn't exists on the system. > > Can anyone explain me why this happens? is it from this new version > (3.0.26a) or may be a problem of > Fedora 7? -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Samba v3.0.26a
> I got samba 3.0.26a on my Fedora 7, and when i try to add users with > smbpasswd -a username, it only works if the user exists as a linux > user... i got a Centos 4.4 system with samba 3.0.10 and it works even > if the user doesn't exists on the system. > Can anyone explain me why this happens? is it from this new version > (3.0.26a) or may be a problem of > Fedora 7? Your configuration on the FC7 box is incomplete, you need an add user script to setup the user in NSS after which Samba will find the user and add the Samba attributes. All documented in the Samba docs. -- Adam Tauno Williams, Network & Systems Administrator Consultant - http://www.whitemiceconsulting.com Developer - http://www.opengroupware.org -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] smbd process per user ( Samba 3 + Terminal server )
Depends upon your terminal server. NT4 and W2000 - yes. W2003 - no (unless they added the EnableMultipleUsers parameter from W2000). I wrote a kind of wordy paper about this: http://www.docs.hp.com/en/5015/Samba-TerminalServer_104Final.pdf. This paper version does not include the W2000 fix, which is the above parameter and hotfix Q818528. I have not looked to see if Microsoft ever fixed this on W2003. I can send you the whitepaper with the W2000 fix incorporated, if you want it (i never posted the updated version). Eric Roseme Hewlett-Packard Stas wrote: Hello all. It is possible to force Samba 3 server to create "smbd" process for each user that open file from Terminal Server ? Sometimes I need close files , but can't do that by "kill " since it should close all files that opened by terminal server users .. It any flexible way to manage open files on Samba ? Thanks . -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Samba + LDAP
On Mon, 08 Oct 2007, simo might have said: > On Mon, 2007-10-08 at 15:45 +0100, Ricardo Manuel Esteves (VI) wrote: > > Hi, > > > > I got samba 3.0.26a on my Fedora 7, and when i try to add users with > > smbpasswd -a username, it only works if the user exists as a linux > > user... i got a Centos 4.4 system with samba 3.0.10 and it works even > > if the user doesn't exists on the system. > > > > Can anyone explain me why this happens? is it from this new version > > (3.0.26a) or may be a problem of > > Fedora 7? > > Always been like that since I can remember, and it is by design. > Simo. The subject says Samba + LDAP. I use smbldap-passwd to add users to LDAP. Mike -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Samba v3.0.26a
Hi, I got samba 3.0.26a on my Fedora 7, and when i try to add users with smbpasswd -a username, it only works if the user exists as a linux user... i got a Centos 4.4 system with samba 3.0.10 and it works even if the user doesn't exists on the system. Can anyone explain me why this happens? is it from this new version (3.0.26a) or may be a problem of Fedora 7? -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Samba + LDAP
On Mon, 2007-10-08 at 15:45 +0100, Ricardo Manuel Esteves (VI) wrote: > Hi, > > I got samba 3.0.26a on my Fedora 7, and when i try to add users with > smbpasswd -a username, it only works if the user exists as a linux > user... i got a Centos 4.4 system with samba 3.0.10 and it works even > if the user doesn't exists on the system. > > Can anyone explain me why this happens? is it from this new version > (3.0.26a) or may be a problem of > Fedora 7? Always been like that since I can remember, and it is by design. Simo. -- Simo Sorce Samba Team GPL Compliance Officer email: [EMAIL PROTECTED] http://samba.org -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Samba + LDAP
Hi, I got samba 3.0.26a on my Fedora 7, and when i try to add users with smbpasswd -a username, it only works if the user exists as a linux user... i got a Centos 4.4 system with samba 3.0.10 and it works even if the user doesn't exists on the system. Can anyone explain me why this happens? is it from this new version (3.0.26a) or may be a problem of Fedora 7? -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] smbd process per user ( Samba 3 + Terminal server )
Hello all. It is possible to force Samba 3 server to create "smbd" process for each user that open file from Terminal Server ? Sometimes I need close files , but can't do that by "kill " since it should close all files that opened by terminal server users .. It any flexible way to manage open files on Samba ? Thanks . -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] ACL inherit and windows folder security settings
We have the following share: [users] path = /home read only = No inherit acls = yes inherit permissions = yes inherit owner = yes the /home permissions are: drwxr-xr-x ... root root ... /home There are /home/user1, /home/user2, ... folders. When they are created their permissions are set like this: drwx--Sr-x ... user1 "Domain Users" ... /home/user1 The server is a SuSE 9.3 Samba/LDAP PDC working fine. Granting no access to "Domain Users" to /home/user1 makes impossible to user2, user3 ... to go into the home folder of user1. The setgid flag makes all files and folders inside /home/user1 belong to the same group "Domain Users. The users may have /home//public_html folder, so we need access to other (non-Domain-Users) users, e.g. wwwrun running the apache server. User1 may grant access to e.g. user3, by changing \\SERVER\USERS\user1 folder security properties on a Windows workstation. We work now with Samba 3.0.23d, and the only caveat is that Everyone (other) get "No access" along with Read access, but this is fixed simply by granting read access to Everyone (other) explicitely. Then the user1 may propagate the \\SERVER\USERS\user1 security settings into his home folder. In the same way the User1 may revoke access from user3 to e.g. \\SERVER\USERS\user1\public_html or to his other folder. That works in Samba 3.0.23d, but doesn't function in the current version (3.0.26a), and in some previous versions I tried earlier. I tried various config settings concerning acls but with no success. In other words, I failed to find out a way to stop the inheritance of ACLs at the level of a folder in the current Samba version. The only way is setfacl -x ..., setfacl -b ... from a linux shell, which is surely not convenient for a Windows user. Another bad thing is when propagating the security settings of a \\SERVER\USERS\user1folder, e.g. with the settings like this: user1 - full access, user3 - read, domain users - no access, everyone (other) - read. After the propagation all files & folders have "domain users - read access" (?!). I'm still working with Samba 3.0.23d which doesn't have that bevaviour. Well, the current Samba version propagates also the rights of the root user and root group to the \\SERVER\USERS\user1 folder from /home, but that can be tolerated. I believe the configuration like mine may be popular. If anyone has a share used in a similar way, and his users work fine with granting/revoking/propagating permissions in the current Samba version from Windows workstations, an advice would be greately appreciated. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] uploading from osx incredible slow
Hi together, we have a network of windows and osx computers, which all using a debian linux server as dataslave in a 100 MBit network. Samba 3.024 is running on the debian box. Now transfering files from the debian box to the osx clients is working at full speed of the network. But transfering files from the osx clients to the debian box is incredible slow. nload of an example transfer Incoming: # # # # ## ## # # # # ## # # # # ## ## # # # # ## # # # | # ## ## # # # # ## # # # # # ## ## # # # # ## # . # # # # ## ## # # # # ## # # # # # # ## ## # # # # ## # # # # # # ## ## # # # ## ## # # # # # # ## ## # # # ## ## # # # # # # ## ## # # # ## ## # # # # # # ## ## # # # ## ## # # # ### # ## ### # # # ## ## # # # ### # ## ### # # |# ## ## # # # ### # ## ### # # ## ## ## # # # ### # ## ### # # ## ## ## Curr: 0.98 kBit/s # # # ### # ## ### # # ## ## ## Avg: 5242.02 kBit/s # # # # # ## # ## ### # # ## ## ## Min: 0.98 kBit/s # # # # ## ## # ## ### # # ## ## ## Max: 34930.20 kBit/s . # # # # ## ## # ## ## . # # # ## ## ## Ttl: 636.42 MByte Does anybody now a typical problem of osx clients with transfering files to a samba server? best regards Steffen -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] security = domain -- samba adds its netbios name as samba domain to LDAP
Ok. I think I understood something wrong. I thought the logfile was from a member server, not from a BDC. If a BDC creates its own name as a sambaDomain object in LDAP, then there's a misconfiguration or a bug. A BDC does not have a local SAM, only member servers do. In my case you were completely right. The configuration and logfile I posted are from a member server. But this member server is a separate samba "share instance" running additionaly on a machine that runs a "BDC instance" of samba, too. I found out, that it is necessary to join a member server to the BDC (or PDC) Domain. This is not done by smb.conf, but by this command: net rpc join MEMBER -U -n -s Done so, a machine account for the member server is ceated and access on the member server's shares is granted to users of the BDC domain. The next problem is: Having more than one such "share instances" on one machine, I would have to join the machine with different Netbios Names to the BDC domain. Which does not seem to work. net rpc join MEMBER -U -n NetbiosName1 -s SMB.conf1 net rpc join MEMBER -U -n NetbiosName2 -s SMB.conf2 net rpc testjoin MEMBER -U -n NetbiosName2 -s SMB.conf2 --> Join to 'MyCompany' is OK net rpc join MEMBER -U -n NetbiosName1 -s SMB.conf1 --> [2007/10/05 17:38:43, 0] utils/net_rpc_join.c:net_rpc_join_ok(70) --> net_rpc_join_ok: failed to get schannel session key from server VSERVER for domain MyCompany. --> Error was NT_STATUS_ACCESS_DENIED --> Join to domain 'MyCompany' is not valid It looks like both Netbios Names are registered in the same place and I do not know where. So either I find out how to join with two different Netbios Names or I have to make the share instances BDCs, too. Best regards Christian -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] create users on MS AD domain server
Hello, I use samba with winbind and I want to create users on a Microsoft Active Directory domain server. I used the command: net user ADD -U administrator%password -C The user is created, but disable. I'd like to enable it, and to add a start session script attached to this user. The man page and the command 'net help user' talk about [-F user flags] and [misc. options], but don't explain how to do. Thanks for help. -- Sincères salutations. Vincent MALIEN Avant d'imprimer, pensez à l'environnement. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba