Re: [Samba] Configure samba to not look for domain master browser

2011-12-08 Thread Timothy Madden 

On 06.12.2011 17:54, TAKAHASHI Motonobu wrote:

On 12/06/2011 10:26 AM, Timothy Madden wrote:


On my network there is no domain master browser, and my nmbd is
spamming my /var/log/messages file with messages that it cound not
find one. Can I configure nmbd not to look for the domain master
browser ?


After a while, nmbd will find a master browser (or a domain master
browser) or will try to become a master browser by myself?

If yes, this is expected behavior.

If not, something will be wrong. Can you show the spamming messages?


I keep getting the messages for ever and nmbd does not become a domain 
master. You have the syslogd messages below.


The nmbd has
preferred master = yes
in smb.conf. I do not know how to check if it is the local master, but I 
believe it is (although there is also a Windows 7 64-bit machine on the 
same subnet).


The nmbd is also a WINS server, but I only set it up for my VPN clients 
to be able to resolve computer names over VPN, and otherwise I do not 
want the server. I want a decentralized sub-net where I can reboot any 
machine as needed  (for our product testing )and everything just works. 
So the other 7 samba machines in the subnet do not have the WINS server 
in smb.conf, nor is it announced by the DHCP server (which is a router).


Also, the nmbd is on the VPN server machine, so most of the time it has 
two network interfaces to work with (the actual ethernet adapter and the 
virtual (VPN) tunnel interface), and I can see in syslog the following:

Dec  6 20:37:07 console nmbd[5973]: [2011/12/06 20:37:07, 0]
nmbd/asyncdns.c:start_async_dns(151)
Dec  6 20:37:07 console nmbd[5973]:   started asyncdns process 5974
Dec  6 20:37:30 console nmbd[5973]: [2011/12/06 20:37:30, 0]
nmbd/nmbd_become_lmb.c:become_local_master_stage2(396)
Dec  6 20:37:30 console nmbd[5973]:   *
Dec  6 20:37:30 console nmbd[5973]:
Dec  6 20:37:30 console nmbd[5973]:   Samba name server CONSOLE is now
a local master browser for workgroup MYGROUP on subnet
192.168.0.100
Dec  6 20:37:30 console nmbd[5973]:
Dec  6 20:37:30 console nmbd[5973]:   *

Dec  7 16:23:19 console nmbd[5973]: [2011/12/07 16:23:19, 0]
nmbd/nmbd_become_lmb.c:become_local_master_stage2(396)
Dec  7 16:23:19 console nmbd[5973]:   *
Dec  7 16:23:19 console nmbd[5973]:
Dec  7 16:23:19 console nmbd[5973]:   Samba name server CONSOLE is now
a local master browser for workgroup MYGROUP on subnet
172.16.0.1
Dec  7 16:23:19 console nmbd[5973]:
Dec  7 16:23:19 console nmbd[5973]:   *

However the virtual subnet 172.16.0.0/24 is *not* broadcast-capable, 
which is giving me quite some problems...


I thought a domain master browser is not always used, but only on routed 
networks where several sub-nets share the same workgroup.

Is a local master browser not enough for Network Neighborhood ?

So I get the following non-stop messages in /var/log/messages:

Dec  8 10:43:20 console nmbd[5973]:   Unable to sync browse lists in 
this workgroup.
Dec  8 10:58:21 console nmbd[5973]: [2011/12/08 10:58:21, 0] 
nmbd/nmbd_browsesync.c:find_domain_master_name_query_fail(351)

Dec  8 10:58:21 console nmbd[5973]:   find_domain_master_name_query_fail:
Dec  8 10:58:21 console nmbd[5973]:   Unable to find the Domain Master 
Browser name MYGROUP1b for the workgroup MYGROUP.
Dec  8 10:58:21 console nmbd[5973]:   Unable to sync browse lists in 
this workgroup.
Dec  8 10:58:21 console nmbd[5973]: [2011/12/08 10:58:21, 0] 
nmbd/nmbd_browsesync.c:find_domain_master_name_query_fail(351)

Dec  8 10:58:21 console nmbd[5973]:   find_domain_master_name_query_fail:
Dec  8 10:58:21 console nmbd[5973]:   Unable to find the Domain Master 
Browser name MYGROUP1b for the workgroup MYGROUP.
Dec  8 10:58:21 console nmbd[5973]:   Unable to sync browse lists in 
this workgroup.
Dec  8 11:13:29 console nmbd[5973]: [2011/12/08 11:13:29, 0] 
nmbd/nmbd_browsesync.c:find_domain_master_name_query_fail(351)

Dec  8 11:13:29 console nmbd[5973]:   find_domain_master_name_query_fail:
Dec  8 11:13:29 console nmbd[5973]:   Unable to find the Domain Master 
Browser name MYGROUP1b for the workgroup MYGROUP.
Dec  8 11:13:29 console nmbd[5973]:   Unable to sync browse lists in 
this workgroup.
Dec  8 11:13:29 console nmbd[5973]: [2011/12/08 11:13:29, 0] 
nmbd/nmbd_browsesync.c:find_domain_master_name_query_fail(351)

Dec  8 11:13:29 console nmbd[5973]:   find_domain_master_name_query_fail:
Dec  8 11:13:29 console nmbd[5973]:   Unable to find the Domain Master 
Browser name MYGROUP1b for the workgroup MYGROUP.
Dec  8 11:13:29 console nmbd[5973]:   Unable to sync browse lists in 
this workgroup.
Dec  8 11:28:40 console nmbd[5973]: [2011/12/08 11:28:40, 0] 
nmbd/nmbd_browsesync.c:find_domain_master_name_query_fail(351)

Dec  8 11:28:40 console nmbd[5973]:   find_domain_master_name_query_fail:
Dec  8 11:28:40 console nmbd[5973]:   Unable to find

[Samba] WINS backup/failover with Samba 3 ?

2011-12-08 Thread Timothy Madden 

Hello

I have Samba 3.0.33-3.29.el5 on Centos 5.7 and I hear there is no WINS 
replication for it. I have a sub-net where I would like to use all 
machines for production (they are product testing servers), and I would 
like to be able to reboot any one of them as needed.


Since the sub-net is behind a cheap commercial home router, I need VPN 
to access the network directly. So I set up 3 openvpn servers, and 
the VPN client will automatically try them in order, and connect to the 
first one that answers. Each VPN server has a forwarded port on the router.


To get samba name resolving to work across the VPN connection I need a 
WINS server, preferably on the VPN server machine.


The problem is I can not have three WINS servers, to use the first one 
that works, as I can have 3 VPN servers. Is there a way around this 
problem ?


Trying to set just 'wins proxy', without 'wins support' or 'wins 
server', did not help, VPN client machines could not resolve computer 
names from VPN server sub-net.


I see in the 'wins server' description for smb.conf that I can list more 
than one server there, but still the 'wins support' option says there 
should only be *one* wins server in my network. Is there a way to have 
more WINS servers ?


Thank you,
Timothy Madden

--
To unsubscribe from this list go to the following URL and read the
instructions:  https://lists.samba.org/mailman/options/samba

[Samba] Configure samba to not look for domain master browser

2011-12-06 Thread Timothy Madden 

Hello

On my network there is no domain master browser, and my nmbd is spamming 
my /var/log/messages file with messages that it cound not find one. Can 
I configure nmbd not to look for the domain master browser ?


Thank you,
Timothy Madden

--
To unsubscribe from this list go to the following URL and read the
instructions:  https://lists.samba.org/mailman/options/samba

[Samba] Windows client with two NICs

2011-12-05 Thread Timothy Madden 

Hello

I have a Windows 7 SP1 computer at work, and I want to connect to a 
different subnet over an OpenVPN connection.


First I have this question: if I have a Windows client with two NICs, 
each one with its own sub-net (172.16.0.0/24 and 10.0.0.0/8) and no 
routing, should I be able to see and ping all samba computer names from 
both networks ?


I am asking because the 172.15.0.0/24 network is the virtual (OpenVPN) 
network, with only two nodes: my computer and the VPN server. The VPN 
server has computer name 'console', and has samba 3.033-3.29.el5_7.4 on 
CentOS 5.7. From within its own sub-net, where all nodes run smb/nmb and 
use wins for name resolving, I can `ping consoleĀ“ successfully and the 
name is found. However from my computer, on the same (virtual) network 
as console, computer name console is no longer found. Do I have to do 
something for my Windows client to see the computer names from both 
networks ?


Also, I would like to have all the samba computer names from the VPN 
server network, 192.168.0.0/24, visible on my windows client. Can I set 
broadcast propagation somehow so the names from 192.168.0.0/24 network 
are visible on the 172.16.0.0/24 network ?


Everyone says that over routed networks I can use a WINS server for name 
resolution, and of course as soon as I set up the samba server running 
on the VPN server machine as a WINS server, and set the openvpn built-in 
DHCP server to announce it to the clients, the names became visible 
(although look-up is very slow). However the VPN server network is a 
small one (8 computers) and I would like not to set up any of them as a 
server, so I would like a decentralized (broadast) way to make the names 
visible to my Windows 7 client through VPN.


Thank you,
Timothy Madden

--
To unsubscribe from this list go to the following URL and read the
instructions:  https://lists.samba.org/mailman/options/samba