Re: [Samba] wbinfo, net, getent and groups
I've found at least part of the problem. PAM was not properly configured. Apparently I had used a configuration for a previous version of pam which did not work with my setup.. On 1/22/2010 2:49 PM, Robert Steinmetz AIA wrote: I have two servers running Samba 2.3.3, one as a Domain Controller one as a Member Server. Both are running Ubuntu 8.10. smbd, nmbd and winbindd using the tdb back end are running on both. I am don't understand the results. As far as I can tell I have everything configured as it should be. The basic globals for the DC [global] workgroup = ATLANTA time server = Yes hostname lookups = Yes domain logons = Yes preferred master = Yes domain master = Yes wins support = Yes idmap uid = 1-2 idmap gid = 1-2 winbind enum users = Yes winbind enum groups = Yes hide dot files = No The glbals for the Member Server [global] workgroup = ATLANTA security = DOMAIN password server = 192.168.1.24 name resolve order = wins bcast hosts wins proxy = Yes wins server = 192.168.1.24 idmap uid = 1-2 idmap gid = 1-2 template shell = /bin/bash winbind enum users = Yes winbind enum groups = Yes hosts allow = 192.168.1.0/255.255.255.0 getent does not return the names on any domain groups or users. wbinfo does return the names on domains groups and users. BUILTIN\administrators BUILTIN\users ATLANTA\domain users ATLANTA\domain guests ATLANTA\domain admins net groupmap list on the DC shows mapping to groups Backup Operators (S-1-5-32-551) -> backup Power Users (S-1-5-32-547) -> atlanta Replicators (S-1-5-32-552) -> staff Domain Users (S-1-5-21-4166445610-3302986456-3838465043-513) -> samba Domain Guests (S-1-5-21-4166445610-3302986456-3838465043-514) -> nogroup Administrators (S-1-5-32-544) -> staff Account Operators (S-1-5-32-548) -> account Users (S-1-5-32-545) -> samba Print Operators (S-1-5-32-550) -> print Guests (S-1-5-32-546) -> nogroup System Operators (S-1-5-32-549) -> operator Domain Admins (S-1-5-21-4166445610-3302986456-3838465043-512) -> staff net groupmap list on the Member Server shows only the builtin in groups Administrators (S-1-5-32-544) -> BUILTIN\administrators Users (S-1-5-32-545) -> BUILTIN\users -- *Robert Steinmetz, AIA* Principal *Steinmetz & Associates* -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Samba Permissions Problem
On 1/22/2010 4:23 PM, Dale Schroeder wrote: On 01/22/2010 3:25 PM, Robert Steinmetz AIA wrote: Dale Schroeder wrote: On 01/21/2010 3:08 PM, Robert Steinmetz AIA wrote: I need help understanding what is happening and trouble shooting. I have two servers running Samba 2.3.3, one as a Domain Controller one as a Member Server. Both are running Ubuntu 8.10. smbd, nmbd and winbindd using the tdb back end are running on both. I have two shares on the member server and as far as I can tell they are identical. [Projects] works as expected but [Windows] always asks for a login name even though the smb.conf entries for both are are the same. If I comment out the "force group" in [Windows] users can access the share but there are errors writing and creating files. If I create a new share it acts as the [Windows] share. Here are the share definitions and a list of the files in the directory; [Projects] Comment = Project Files path = /files/Lucretia/Projects writeable = yes browseable = yes create mask = 0764 directory mask = 0775 force group = "ATLANTA\domain users" [Windows] comment = Atlanta Windows Files path = /files/Lucretia/Windows browseable = yes writeable = yes create mask = 0764 directory mask = 0775 force group = "ATLANTA\domain users" r...@louise:/files/Lucretia# ls -l total 66 drwxrwsr-x 2 root 1000148 2008-07-17 03:17 Arris -rw-r-Sr-- 1 root 10001 5952 2008-07-17 04:25 list drwxrwsr-x 74 ATLANTA\rob 10001 17040 2009-12-17 15:25 Office drwxrwsr-x 67 rob 10001 14456 1969-12-31 19:00 Office.orig drwxrwsr-x 51 ATLANTA\trish 10001 4528 2010-01-14 14:26 Projects drwxrwsr-x 8 ATLANTA\rob 10001 400 2009-07-10 15:52 Sigma drwxrwsr-x 6 rob 10001 304 2008-07-17 02:50 Sigma.old drwxrws*r-x* 314 ATLANTA\trish 10001 24280 2010-01-13 09:49 Windows Testparm shows no problems although it does rearrange the share definitions somewhat. The problem must be in windows permissions but I don't know how to check them, especially since I have only ssh access because the site is remote. I have to rely on local users for testing. How can I get a list of ATLANTA\domain admin group users? How can I change the permissions? Any possibility of acl's, especially default acl's? getfacl /files/Lucretia/Projects getfacl /files/Lucretia/Windows Looks like not; r...@louise:/etc/samba# getfacl /files/Lucretia/Projects getfacl: Removing leading '/' from absolute path names # file: files/Lucretia/Projects # owner: ATLANTA\134trish # group: 10001 user::rwx group::rwx other::r-x r...@louise:/etc/samba# getfacl /files/Lucretia/Windows getfacl: Removing leading '/' from absolute path names # file: files/Lucretia/Windows # owner: ATLANTA\134trish # group: 10001 user::rwx group::rwx *other::rwx * If it's not a typo, it is odd that ls and getfacl return different results for "other" in the "Windows" share ls = r-x getfacl = rwx Even if it's not a typo, it makes no sense that the share with the most permissions is the one that's inaccessible. This is a strange one. Dale I apparently changed the permissions between the two listings it is rwx for other now when I list the files in the directory. drwxrwsrwx 290 ATLANTA\trish 10001 23576 2010-01-20 15:51 Windows -- *Robert Steinmetz, AIA* Principal *Steinmetz & Associates* -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Samba+LDAP + Primary GIDs
What does your 'net getdomainsid' or 'net getlocalsid' output look like? Kris Lou wrote: Hi Rob, Thanks for the quick reply - Here it is (mostly with some cut and paste). CentOS 5.4 Samba 3.2.15 dn: cn=Domain Admins,ou=Group,dc=themusiclink,dc=net description: Netbios Domain Administrators sambaSID: S-1-5-21-957249707-1866601452-441284377-512 sambaGroupType: 2 displayName: Domain Admins structuralObjectClass: posixGroup entryUUID: 1a60146c-cfad-102d-96b0-6fd9fc452718 creatorsName: cn=Manager,dc=themusiclink,dc=net createTimestamp: 20090507234700Z gidNumber: 512 cn: Domain Admins userPassword:: e2NyeXB0fXg= objectClass: posixGroup objectClass: top objectClass: sambaGroupMapping memberUid: memberUid: memberUid: entryCSN: 20091028001757Z#01#00#00 modifiersName: cn=Manager,dc=themusiclink,dc=net modifyTimestamp: 20091028001757Z dn: cn=Domain Users,ou=Group,dc=themusiclink,dc=net description: Netbios Domain Users sambaSID: S-1-5-21-957249707-1866601452-441284377-513 sambaGroupType: 2 displayName: Domain Users structuralObjectClass: posixGroup entryUUID: 1a7ebb60-cfad-102d-96b1-6fd9fc452718 creatorsName: cn=Manager,dc=themusiclink,dc=net createTimestamp: 20090507234700Z gidNumber: 513 cn: Domain Users userPassword:: e2NyeXB0fXg= objectClass: posixGroup objectClass: top objectClass: sambaGroupMapping memberUid: memberUid: entryCSN: 20091215225639Z#01#00#00 modifiersName: cn=Manager,dc=themusiclink,dc=net modifyTimestamp: 20091215225639Z dn: cn=Domain Guests,ou=Group,dc=themusiclink,dc=net description: Netbios Domain Guests Users sambaSID: S-1-5-21-957249707-1866601452-441284377-514 sambaGroupType: 2 displayName: Domain Guests structuralObjectClass: posixGroup entryUUID: 1a845502-cfad-102d-96b2-6fd9fc452718 creatorsName: cn=Manager,dc=themusiclink,dc=net createTimestamp: 20090507234700Z objectClass: posixGroup objectClass: top objectClass: sambaGroupMapping gidNumber: 514 cn: Domain Guests userPassword:: e2NyeXB0fXg= memberUid: design memberUid: fedex memberUid: infobox memberUid: mailbox memberUid: test entryCSN: 20090521203023Z#02#00#00 modifiersName: cn=Manager,dc=themusiclink,dc=net modifyTimestamp: 20090521203023Z dn: cn=Domain Computers,ou=Group,dc=themusiclink,dc=net objectClass: top objectClass: posixGroup objectClass: sambaGroupMapping gidNumber: 515 cn: Domain Computers description: Netbios Domain Computers accounts sambaSID: S-1-5-21-957249707-1866601452-441284377-515 sambaGroupType: 2 displayName: Domain Computers structuralObjectClass: posixGroup entryUUID: 1a8ab492-cfad-102d-96b3-6fd9fc452718 creatorsName: cn=Manager,dc=themusiclink,dc=net createTimestamp: 20090507234700Z entryCSN: 20090507234700Z#04#00#00 modifiersName: cn=Manager,dc=themusiclink,dc=net modifyTimestamp: 20090507234700Z dn: cn=Administrators,ou=Group,dc=themusiclink,dc=net description: Netbios Domain Members can fully administer the computer/sambaDom ainName sambaSID: S-1-5-32-544 sambaGroupType: 5 displayName: Administrators structuralObjectClass: posixGroup entryUUID: 1a905d16-cfad-102d-96b4-6fd9fc452718 creatorsName: cn=Manager,dc=themusiclink,dc=net createTimestamp: 20090507234700Z objectClass: top objectClass: posixGroup objectClass: sambaGroupMapping gidNumber: 544 cn: Administrators userPassword: memberUid: administrator memberUid: root entryCSN: 20090516003337Z#01#00#00 modifiersName: cn=Manager,dc=themusiclink,dc=net modifyTimestamp: 20090516003337Z dn: sambaDomainName=MLC,dc=themusiclink,dc=net objectClass: top objectClass: sambaDomain objectClass: sambaUnixIdPool sambaDomainName: MLC sambaSID: S-1-5-21-957249707-1866601452-441284377 structuralObjectClass: sambaDomain entryUUID: 1aab5d3c-cfad-102d-96b9-6fd9fc452718 creatorsName: cn=Manager,dc=themusiclink,dc=net createTimestamp: 20090507234701Z sambaLockoutThreshold: 0 sambaRefuseMachinePwdChange: 0 sambaMinPwdLength: 5 sambaLogonToChgPwd: 0 sambaForceLogoff: -1 sambaMinPwdAge: 0 sambaMaxPwdAge: -1 sambaPwdHistoryLength: 0 gidNumber: 1033 uidNumber: 1043 sambaNextRid: 1100 entryCSN: 20100104223853Z#02#00#00 modifiersName: cn=Manager,dc=themusiclink,dc=net modifyTimestamp: 20100104223853Z n: cn=TML.Accounting,ou=Group,dc=themusiclink,dc=net objectClass: posixGroup objectClass: top objectClass: sambaGroupMapping cn: TML.Accounting userPassword:: e2NyeXB0fXg= gidNumber: 1145 structuralObjectClass: posixGroup entryUUID: 90185732-cfad-102d-97b9-6fd9fc452718 creatorsName: cn=Manager,dc=themusiclink,dc=net createTimestamp: 20090507235018Z sambaSID: S-1-5-21-957249707-1866601452-441284377-1011 sambaGroupType: 2 displayName: TML Accounting description: Domain Unix group memberUid: mailman memberUid: mtong memberUid: psmith memberUid: spatrino memberUid: klou memberUid: tocampo entryCSN: 20091202193050Z#03#00#00 modifiersName: cn=Manager,dc=themusiclink,dc=net modifyTimestamp: 20091202193050Z dn: cn=TML.CustomerService,ou=Group,dc=themusiclink,dc=net objectClass: posixGroup objectClass: top objectClass: sambaGroup
Re: [Samba] single stream performance issue, Win2K, WinXP, Samba 3.2.5-4lenny7 (Debian Lenny)
Stan Hoeppner put forth on 1/23/2010 2:11 PM: > Absolutely not. Both interfaces (Samba server and Win2K workstation) are > configured and confirmed to be operating in full duplex mode. I confirmed > this > by forcing the Win2k box to 100FDX. This broke the switch which wants full > autonegotiation, forcing the link to half duplex. It dropped performance by > over 60%. I reenabled full autonegotiation, and performed a test which I had > not previously. I launched two copy operations of the same ~600MB file, one > up, > one down, and according to NetMeter, was running ~7.5MB/s up to the Samba > server > and 6.5MB/s down to the workstation. Combined this is 14MB/s, more than a HDX > link can provide. I'm ashamed I can't get that close to the ideal 22MB/s. > There are two possibilities for this that I can think of: I just did some additional testing to see how FTP would perform with full duplex put/get to/from the xfs filesystem backing the Samba share for comparison to Samba performance. I used two sessions of the Windows 2000 inbuilt FTP command line client with default settings. I used the same 600MB+ file up/down, two copies, different names. full duplex get/put: get ftp: 678624350 bytes received in 65.92Seconds 10294.35Kbytes/sec. put ftp: 678624350 bytes sent in 89.88Seconds 7550.76Kbytes/sec. one way get: get ftp: 678624350 bytes received in 57.84Seconds 11731.97Kbytes/sec. The up/down is very uneven with the concurrent ftp transfers, downloads receiving more b/w than up. ProFTPD doesn't balance or shape traffic by default. I looked into using mod_shaper but it's not compiled into the Debian ProFTP daemon, and frankly I have no use for the traffic shaper beyond this testing. The headache of installing it or another ftp daemon which does shaping is more hassle than it's worth at this point. Anyway, as you can see from the numbers above, one transfer ran considerably longer than the other as it received less b/w during concurrency, about 25 seconds, which artificially inflates its transfer rate a bit as it gets all 11MB/s of the b/w for the remainder of its transfer after the other transfer has completed. With that caveat mentioned, I'll point out that watching the output of NetMeter during concurrency clearly showed a combined total of 16MB/s up+down. I ran the same test, same 600MB+ file, and traffic to/from Samba averages only 13MB/s. Remember, I'm reporting raw numbers, so protocol overhead is irrelevant. This testing demonstrates that due to one or multiple factors, hardware and/or software, my combined maximum full duplex throughput between my Win2K workstation and the Debian Lenny Samba server is approximately 16MB/s with my fastest applications tested to date, those being FTP client and server. Best one-way performance achieved to date is the maximum for switched fast ethernet, just over 11MB/s, obtained with FTP. Full duplex performance maximization would be great, but frankly it doesn't concern me as it is not one of my needs. What is a need is maximizing one-way single stream performance between the Samba server and my workstation. So, again, what can I do to bring my single stream raw transfer Win2K<->Debian Samba server performance up near the level of my FTP performance. FTP performance peaks at 11MB/s with a single stream yet SMB performance peaks at only 8MB/s single stream. Again, this is measuring raw packet performance on the interface, so protocol overhead is already in the numbers. Samba 3.2.5 or Win2K, or the combination of the two, simply will not saturate the interface with a single stream. With two streams going the same direction, they _do_ saturate the interface at 11MB/s. What's the solution to getting that last 3MB/s out of a single stream? Or, put a better way, that last 30% that's being left on the table. From other posts I've read here, people using GigE are also seeing something similar. They can't get that last 30% or so into the interface with a single stream. I don't think this problem is merely affecting me on Fast Ethernet. I guess I really needed the extra performance I could go buy some GigE cards (if they make them in regular PCI) and a GigE switch. However, I'd really just like to maximize what I already have, and not go spending money I don't want to. ;) -- Stan -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] single stream performance issue, Win2K, WinXP, Samba 3.2.5-4lenny7 (Debian Lenny)
Learner Study put forth on 1/23/2010 3:31 AM: > Hi Linda: > > Looking at some internet resources, it appears that both encryption > and packet signing are off by default. Can u pls let me know how to > disable these on samba server side (on 3.0.x) Pretty sure they are both off in my case. I did not enable them in smb.conf. > On Sat, Jan 23, 2010 at 12:48 AM, Linda Walsh wrote: >> Igor wrote: >>> >>> I don't find it strange at all. Your computer is acting as a traffic >>> proxy between two samba servers. If you have 100Mb network interface >>> your bandwidth should split exactly in two. >> >> But he said he doesn't get a split in two when a win2k server >> is used (he gets 11Mbps).I.e. Two network streams in two different >> directions should NOT halve throughput, _unless_ something is operating >> in half-duplex mode. "100Mbps, full duplex" should, _easily_, >> allow two 8 MBps streams if they are going in opposite directions. The 11MB/s was a different test, which I clearly stated. It consisted of two concurrent single stream file copies _from_ the Samba server _to_ a Win2K workstation using standard Windows Explorer as the file copy program. This test saturated one leg of the 100FDX ethernet connection at ~11.5MB/s. >> Stan wrote: >>> >>> Interestingly, if I launch a file copy with the SH> source file being >>> on one smb share on the server, and the destination being SH> another >>> smb share (separate filesystem) on the server, the combined throughput >>> SH> is also 8MB/s, 4 up and 4 down, which is very strange as this >>> should be two SH> distinct streams. >> >> --- >>I agree. Is it possible your network device isn't running in FULL >> duplex? Absolutely not. Both interfaces (Samba server and Win2K workstation) are configured and confirmed to be operating in full duplex mode. I confirmed this by forcing the Win2k box to 100FDX. This broke the switch which wants full autonegotiation, forcing the link to half duplex. It dropped performance by over 60%. I reenabled full autonegotiation, and performed a test which I had not previously. I launched two copy operations of the same ~600MB file, one up, one down, and according to NetMeter, was running ~7.5MB/s up to the Samba server and 6.5MB/s down to the workstation. Combined this is 14MB/s, more than a HDX link can provide. I'm ashamed I can't get that close to the ideal 22MB/s. There are two possibilities for this that I can think of: 1. The two switches involved are soho/consumer class, both unmanaged. One of the two is a $10 Rosewill (no name Chinese) 8 port desktop jobby. The other is a circa 2003/4 SMC rack mount combo 8port 100FDX switch and firewall router, which is a much better piece of gear, ran me about $100 in '03, but still pretty low end. The cost/quality of these two may or may not be a factor, but at this point I assume it might be. 2. The machines themselves may not be up to it, although I would think they should be given their specs, and that we're talking about merely 100FDX with a theoretical max of 12.5MB/s. This is something I'll investigate further, after I figure out the single stream problem. >>Other things to check (to optimize speed compared to ftp): >> >>1) Ensure your communications are using TCP (port 445) and not >> UDP (port 139). For raw bandwidth maximization, what port and protocol are used won't make much difference, if any. In fact it shouldn't make _any_ difference in raw b/w. Communications between the Samba server and Win2K client appear to be exclusively over TCP 139 at this point according to netstat, instead I'm misreading or looking in the wrong place. Proto Recv-Q Send-Q Local Address Foreign Address State tcp0 0 0.0.0.0:139 0.0.0.0:* LISTEN tcp0 0 0.0.0.0:445 0.0.0.0:* LISTEN tcp0 0 192.168.100.9:139 192.168.100.53:1128 ESTABLISHED udp0 0 192.168.100.9:137 0.0.0.0:* udp0 0 0.0.0.0:137 0.0.0.0:* udp0 0 192.168.100.9:138 0.0.0.0:* udp0 0 0.0.0.0:138 0.0.0.0:* >>2) Ensure encryption (Sealing) is off. >>3) Ensure packet Signing is off. I assume these are off by default. I didn't enable them in smb.conf. >> The overhead of 2 & 3 contribute to around a 15% performance hit according >> to 1 MS source. (Obviously turning such things off presumes you are on >> a 'safe' network consistent with FTP usage, vs. SCP/SSH). The network is private, thus safe in this context. I'm pretty sure both of my measuring tools are reporting raw bandwidth, iftop on Linux and NetMeter on Windows 2000, so even if there is SMB overhead in the mix, it's irrelevant at this point. My problem is I can't max out single stream _raw_ bandwidth to/from the Samba server. I'm only getting 65Mb/s raw with a single file copy. I get 92Mb/s with two
[Samba] samba client (cifs) read size
Hi: How can I change the samba client's read size on linux/windows PC? Linux appears to be doing 16k reads no matter the socket buffer size...any ideas? thanks for your help! -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] Help to fix the remaining problems when migration from windows to a linux print server
Hi, i am trying to migrate my print servers from windows to linux , everything is getting really nice but i still face a few problems , and since i don't know if i need help from cups or samba guys i will post to both lists, so maybe someone can give me some help. Well, i have now cups and samba working just fine, i can authenticate my users in cups from Active Directory using winbind and they can print just fine. The remaining problems/doubts are: 1) Is there a way to run cupsaddsmb when security = ads in smb.conf ? I always have to set security = user before running cupsaddsmb or it will fail. 2) Even though my cups printers are configured to DefaultPage = A4, after a cupsaddsmb all windows clients still default to LETTER. What am i doing wrong? Is there a way to mass set all printer queues in windows to use A4 ? Some rpcclient parameter to change this ? I have over 1k queues, so manually change each one in windows GUI is kinda very time consuming. 3) Why do i always get count page = 1 when printing from windows ? I thought since i was using the right PPD for each printer and adobe postscripts + cups drivers exported from cupsaddsmb , page accounting would work, but apparently not. 4) now the critical problem , sometimes when im trying to print a big job, over 400 hundred pages with lots of pictures to a cups class from Word for example , word starts spooling to the samba spool but after it finishes printing the only thing really printed in cups is the BANNER page, the job itself never gets there. Thanks in advance. -- []'s Salatiel "O maior prazer do inteligente é bancar o idiota diante de um idiota que banca o inteligente". -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Samba Serving NFS Mounted Directories
The Sun 7310 is a storage appliance. It is not running Solaris 10 but runs an OS based on Open Solaris with CIFS and Windows style authentication integrated in the kernel. Installing Samba is not an option. You really should be using the integrated CIFs server. It is probably simpler to set up than Samba but is probably not as flexible (has fewer configuration options). There is a simulator you can play with to learn how to set it up. Sun offer courses on setting it up. Sun offer a service to set it up for you. The manual is available on the Internet or from the storage device. There is a forum where these devices are discussed. You almost certainly got a support contract when you bough the device. If you cannot use its CIFS server (ie if you are using a NT 4 style domain or a Samba PDC) perhaps using iSCSI to the Linux box and sharing with Samba is the next best option. See: http://wikis.sun.com/display/FishWorks/Fishworks http://forums.sun.com/forum.jspa?forumID=831 Nick Jon Forrest wrote: I have a Sun 7310 storage server. This is running Solaris 10 but it's self-contained and I can't login to it or run Samba on it. I manage it with a web interface. I have a CentOS 5.3 machine that mounts a bunch of file systems via NFS from the Sun server. This works fine. I installed Samba 3.4.5 on the CentOS machine and configured it to share some of the directories that are actually NFS mounts from the Sun server. I'm able to map these directories from both Windows XP and Windows 7. I'm seeing several problems: 1) Accessing the mapped directories from Windows when running Microsoft Office apps is extremely slow. I don't have any exact numbers but let's say the speed is unusable. Ironically, other programs, such as 'vim' and 'notepad' don't have this speed problem when accessing the same shares. 2) Again, using Microsoft Office apps, Windows XP machines see files as read-only. Windows 7 works fine on the same files. The Sun has a non-Samba CIFS implementation but it's non-intuitive to set up so I haven't tried it. I'm wondering if what I describe should work. Here's the smb.conf configuration for the share: [bgroup] valid users = bgroup path = /home/bgroup public = no writeable = yes browseable = no create mask = 012 create mode = 0660 directory mode = 0770 Any comments or suggestions? Cordially, -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] possible bug
On Wed, Jan 20, 2010 at 04:26:16PM +0100, Christiane Baier wrote: > don't know if this behavior is a bug, but I want to share this > information. > > samba server version 3.4.3 is installed on solaris10 x86 > compiled with gcc > Reading specs from /usr/sfw/lib/gcc/i386-pc-solaris2.10/3.4.3/specs > Configured with: /builds/sfw10-gate/usr/src/cmd/gcc/gcc-3.4.3/configure > --prefix=/usr/sfw --with-as=/usr/sfw/bin/gas --with-gnu-as > --with-ld=/usr/ccs/bin/ld --without-gnu-ld --enable-languages=c,c++ > --enable-shared > Thread model: posix > gcc version 3.4.3 (csl-sol210-3_4-branch+sol_rpath) > > and options > CFLAG=-02 ./configure --with-configdir=/etc/samba --disable-swat > --with-privatedir=/etc/samba/private --with-lockdir=/var/lock > --with-piddir=/var/run --with-logfilebase=/var/log --disable-cups > --without-krb5 --with-utmp --prefix=/export/samba343 > > There have to be some symlinks in /usr/lib > ln -s /export/samba343/lib/libtalloc.so libtalloc.so > ln -s /export/samba343/lib/libtalloc.so.1 libtalloc.so.1 > ln -s /export/samba343/lib/libtdb.so.1 libtdb.so.1 > ln -s /export/samba343/lib/libtdb.so libtdb.so > ln -s /export/samba343/lib/libwbclient.so libwbclient.so > ln -s /export/samba343/lib/libwbclient.so.0 libwbclient.so.0 > otherwise samba won't find the libraries. It's started via inetd and > works fine with linux and windows clients > > But with Mac OS X 10.4.11 mount_smbfs fails with the error message > mount_smbfs: negotiate phase failed: syserr = Connection reset by peer > > smbclient on the same Mac works fine. > > If debugging is enabled for smbd and level set to 10 (nothing else > changed) > # inetadm -m svc:/network/netbios-ssn/tcp:default > exec="/export/samba343/sbin/smbd -d 10" > # svcadm refresh svc:/network/inetd:default > # svcadm restart svc:/network/inetd:default > mount_smbfs works from Mac client > > So why does it not work if debugging level is set to anything below 10? Good question. Can you send a network trace of both cases? http://wiki.samba.org/index.php/Capture_Packets Thanks, Volker signature.asc Description: Digital signature -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] Samba 3.2.5 not appearing in Windows 7 network browser?
I have a small NAS (called LS1) device running samba 3.2.5. I have two laptops and desktop, all running Windows 7. They can all see each under Network in an exploring window, but not the NAS. They can all connect to and use the NAS just fine and I can browse the NAS if I type \\LS1\ into the address bar. I've searched the archives and Google; however, the only related threads I found were resolved when the questioner started/restarted nmbd. Nmbd is running and I have restarted it multiple times, allowing many hours for LS1 to show up. What additional steps are required to make Samba show up? -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Samba Serving NFS Mounted Directories
On Fri, Jan 22, 2010 at 04:49:33PM -0800, Jon Forrest wrote: > I have a Sun 7310 storage server. This is > running Solaris 10 but it's self-contained > and I can't login to it or run Samba on it. > I manage it with a web interface. You need to get over that. Running Samba on NFS imports is a really bad idea. At least every month people report strange lockups, timeouts and other weird things on this list that can be attributed to NFS imports. You should really contact SUN for information how to log into that box and install Samba. Volker signature.asc Description: Digital signature -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] single stream performance issue, Win2K, WinXP, Samba 3.2.5-4lenny7 (Debian Lenny)
Hi Linda: Looking at some internet resources, it appears that both encryption and packet signing are off by default. Can u pls let me know how to disable these on samba server side (on 3.0.x) Thanks. On Sat, Jan 23, 2010 at 12:48 AM, Linda Walsh wrote: > Igor wrote: >> >> I don't find it strange at all. Your computer is acting as a traffic >> proxy between two samba servers. If you have 100Mb network interface >> your bandwidth should split exactly in two. > > But he said he doesn't get a split in two when a win2k server > is used (he gets 11Mbps).I.e. Two network streams in two different > directions should NOT halve throughput, _unless_ something is operating > in half-duplex mode. "100Mbps, full duplex" should, _easily_, > allow two 8 MBps streams if they are going in opposite directions. > > Stan wrote: >> >> Interestingly, if I launch a file copy with the SH> source file being >> on one smb share on the server, and the destination being SH> another >> smb share (separate filesystem) on the server, the combined throughput >> SH> is also 8MB/s, 4 up and 4 down, which is very strange as this >> should be two SH> distinct streams. > > --- >I agree. Is it possible your network device isn't running in FULL > duplex? >Other things to check (to optimize speed compared to ftp): > >1) Ensure your communications are using TCP (port 445) and not > UDP (port 139). > >2) Ensure encryption (Sealing) is off. >3) Ensure packet Signing is off. > The overhead of 2 & 3 contribute to around a 15% performance hit according > to 1 MS source. (Obviously turning such things off presumes you are on > a 'safe' network consistent with FTP usage, vs. SCP/SSH). > >You need to make sure that, at least, one side has each of Sign and > Seal turned off and the other side has it set to 'no' or 'auto'. > If one side has 'require' set for the feature, and the other has the same > feature turned off, it will prohibit communications. > > Linda > (who's been bummed by the huge drop in networking and disk performance > in windows 7). > > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/options/samba > -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] single stream performance issue, Win2K, WinXP, Samba 3.2.5-4lenny7 (Debian Lenny)
Igor wrote: I don't find it strange at all. Your computer is acting as a traffic proxy between two samba servers. If you have 100Mb network interface your bandwidth should split exactly in two. But he said he doesn't get a split in two when a win2k server is used (he gets 11Mbps).I.e. Two network streams in two different directions should NOT halve throughput, _unless_ something is operating in half-duplex mode. "100Mbps, full duplex" should, _easily_, allow two 8 MBps streams if they are going in opposite directions. Stan wrote: Interestingly, if I launch a file copy with the SH> source file being on one smb share on the server, and the destination being SH> another smb share (separate filesystem) on the server, the combined throughput SH> is also 8MB/s, 4 up and 4 down, which is very strange as this should be two SH> distinct streams. --- I agree. Is it possible your network device isn't running in FULL duplex? Other things to check (to optimize speed compared to ftp): 1) Ensure your communications are using TCP (port 445) and not UDP (port 139). 2) Ensure encryption (Sealing) is off. 3) Ensure packet Signing is off. The overhead of 2 & 3 contribute to around a 15% performance hit according to 1 MS source. (Obviously turning such things off presumes you are on a 'safe' network consistent with FTP usage, vs. SCP/SSH). You need to make sure that, at least, one side has each of Sign and Seal turned off and the other side has it set to 'no' or 'auto'. If one side has 'require' set for the feature, and the other has the same feature turned off, it will prohibit communications. Linda (who's been bummed by the huge drop in networking and disk performance in windows 7). -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
