Re: [Samba] remove wins entries - samba 3
Geoff, Sorry about the hour; I didn't realize you were still up--I went to bed A number of questions, and some updates. I can find no evidence of active named logging, although I did find one log with named entries. In particular, what is the relevant log(s)? There is no syslog or system log. Running a FIND on *log didn't turn up anything even remotely close. I've obviously not got logging turned on properly I also notice that, where John's example has several instantiations of named running, I have only one, and it's very difficult to terminate that one--I have to kill pid to do it. Service daemon restart works fine for all the others, and service named start works fine, too. Just service stop/restart do not work--the latter hangs on the stop part. In the files below, why all the changes to mail from lserver1? I thought from John's examples these were supposed to be the server name? Geoff Scott wrote: Eric Hines wrote: Geoff Scott wrote: What do your logs say for bind starting up? Can you restart bind and watch your logs? Do you have any errors for it? f you mean winbind, a tail -f on log.winbindd just showed it No Berkely Internet Name Daemon - BIND The daemon is actually named named Grep for the entries for that daemon (named)in the relevant log, /var/log/... Syslog? In log /var/log/messages, named starts successfully, loads all the zone files OK, and it outputs the log entry lame server resolving 'lserver1.test.biz' (in 'test.biz'?): 206.16.250.17#53, also ... .18#53 several times. These are owned by a company in Barcelona, Spain. There also are cases (fewer) of resolving localhost.lserver1.test.biz to the same IP addresses/ports. tail -f messages and pinging lserver1 produced no immediate result. I could find no other log that had named entires in it. According to log.nmbd, Samba server LSERVER1 and samba name server LSERVER1 repeatedly became domain master browser and local master browser, respectively, on 192.168.1.103. tail -f log.nmbd also did not respond to an unsuccessful ping of lserver1. You asked whether I could tell my router/firewall not to send dhcp stuff to lserver1 only. That would take a specific MAC address exclusion capability, and this router/firewall does not have that. Can I, instead, tell lserver1 not to look to the router/firewall, but only to look to itself (/e.g./, via the dhcpd.conf or via lserver1's System Settings|Network GUI, using the DNS and/or hosts tab)? Or would that lock lserver1 into itself, never to get access to the Internet? I've done some other poking around in response to the DNS doc for which you sent me the URL last night, and noticed these things: /etc/sysconfig/networking/devices/ifcfg-eth0 is set as follows (emphasis added) DEVICE=eth0 BOOTPROTO=dhcp ONBOOT=yes TYPE=Ethernet DHCP_HOSTNAME=*lserver1* I have the same thing for eth1 (there are two NIC chips on the motherboard), except it's turned off. dhcpd.leases has pserver1 (my print server) at 192.168.1.96, even though it's hardwired via its own setup functionality to a static address of 198.162.1.10, and it responds to pings at the .10 address. Finally, I made the zone file changes, and I still cannot ping lserver1 or lserver1.test.biz--unknown host in both cases. snip Regards Geoff Scott -- He can compress the most words into the smallest ideas of any man I ever met. - Abraham Lincoln -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
RE: [Samba] remove wins entries - samba 3
Eric Hines wrote: Geoff, Sorry about the hour; I didn't realize you were still up--I went to bed I'm in Australia, GMT+10. You think I'm a party animal? Nah, I'm just at work. ;-) A number of questions, and some updates. I can find no evidence of active named logging, although I did find one log with named entries. In particular, what is the relevant log(s)? There is no syslog or The relevant log is whatever had instances of named logging to it, in your case from below it would appear to be /var/log/messages. In the files below, why all the changes to mail from lserver1? I thought from John's examples these were supposed to be the server name? You had an MX record in there. If you are going to learn to configure an MTA then the mailserver shouldn't be a cname. And seeing as you had mail.XXX.XXX CNAME'd to lserver1 I switched it around. It is considered bad form from what I have read, to use a CNAME for a mail server. In log /var/log/messages, named starts successfully, loads all the zone files OK, and it outputs the log entry lame server resolving 'lserver1.test.biz' (in 'test.biz'?): 206.16.250.17#53, also ... .18#53 several times. These are owned by a company in Barcelona, Spain. There also are cases (fewer) of resolving OK. So your machine doesn't look to itself as being the master of that domain. John provides enough info for you to figure out why. According to log.nmbd, Samba server LSERVER1 and samba name server LSERVER1 repeatedly became domain master browser and local master browser, respectively, on 192.168.1.103. tail -f log.nmbd also did not respond to an unsuccessful ping of lserver1. You asked whether I could tell my router/firewall not to send dhcp stuff to lserver1 only. That would take a specific MAC address exclusion capability, and this router/firewall does not have that. No, I asked if you could turn off the DHCP server on your router / firewall completely and use the dhcp server on your samba server to deal with your local networks needs. Can I, instead, tell lserver1 not to look to the router/firewall, but only to look to itself (/e.g./, via the dhcpd.conf or via lserver1's System As people have said to you *many* times the easiest way to do this is by using a static ip on your server. USE A STATIC IP! CONFIGURE THINGS STATICALLY. Settings|Network GUI, using the DNS and/or hosts tab)? Or would that lock lserver1 into itself, never to get access to the Internet? I've done some other poking around in response to the DNS doc for which you sent me the URL last night, and noticed these things: /etc/sysconfig/networking/devices/ifcfg-eth0 is set as follows (emphasis added) DEVICE=eth0 BOOTPROTO=dhcp ONBOOT=yes TYPE=Ethernet DHCP_HOSTNAME=*lserver1* I have the same thing for eth1 (there are two NIC chips on the motherboard), except it's turned off. This is why I said to you originally to use the gui. It's easier to do it with the GUI, then poke around your system and see what's been changed. You need to read more about the basic configuration of your Linux flavour before you start on these tasks. That way you would know exactly what files control what configurations and where exactly to find them. or lserver1.test.biz--unknown host in both cases. It looks like your server doesn't think it's the authoritative master for your internal DNS. Or something is wrong with your zone files. Read the DNS docs again. And again. And again Geoff -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] remove wins entries - samba 3
Hi, Farshad, I'm too new at this to be of much help. My WINS seems to be working, but I'm clueless as to why, just as I'm clueless as to why my DNS is not working. Eric Hines Farshad Abasi wrote: Hi, I am having the same problem. Did you figure out how to do this? Any help in how to remove stale WINS entries from Samba would be greatly appreciated. Cheers, -farshad -- He can compress the most words into the smallest ideas of any man I ever met. - Abraham Lincoln -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
RE: [Samba] remove wins entries - samba 3
Eric Hines wrote: Hi, Farshad, I'm too new at this to be of much help. My WINS seems to be working, but I'm clueless as to why, just as I'm clueless as to why my DNS is not working. Eric Hines The questions you need to ask yourself are simple. Where is my DNS server? Where is my machine that I am pinging from pointing to in terms of DNS? Does that DNS server have the records to do with my lserver1 samba server? Are you running a local name server as per JHT's docs? Are you pointing your DNS on your lserver1 samba server to an external name server? Answer each of these questions for us and we'll see where we can help. Regards Geoff Scott -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] remove wins entries - samba 3
I have the following setup. It's not fancy as I'm just trying to learn Linux and Samba. My test LAN consists of a Win2k, SP4 box (mustelidae) and an FC3 (kernel 2.6.11-1.35_FC3) server (lserver1) running Samba 3.0.14a. A Samsung printer also is present via a print server plugged into its back. I can print to it from lserver1, although the URI for the printer uses its IP address, so this probably doesn't mean much. As mustelidae also can be on a larger home LAN with access to the Internet, and lserver1 also has access to the Internet, the whole arrangement sits behind an 8-port Linksys router/firewall. As I have only a 2 box set up, I'm only struggling with one subnet out of the two that John has in his BYEXAMPLE book (adding a second subnet ought to be a piece of cake after I get this part running and understood). My DNS server sits on lserver1. I'm trying to ping lserver1 from lserver1. With nsswitch set only to files or only to wins (/e.g./, hosts: files), this is successful. With nsswitch set only to dns, I cannot get name resolution, although I can successfully ping by IP address. I can ping lserver1 by name or by IP successfully from mustelidae. Where is lserver1 pointing in terms of DNS? How do I tell? At this point, all I can say is that I've set up named.conf (and dhcpd.conf) as John has them in his Chapt 3 example, with the sole differences being that I'm using one subnet and not two (a DHCP issue), I'm calling my server lserver1.test.biz, vice diamond.abmas.biz, and lserver1's IP address is 192.168.1.103, vice the one John's using in his example. Aside from these edits, named.conf (and dhcpd.conf) are cut and pastes from John's latest on line. Is /etc/resolv.conf part of this answer? That's the file I can't keep from being overwritten by dhclient-script, even with the two dhclient-enter-hooks examples posted earlier today. Same, probably not very responsive, answer for whether this DNS server has the records to do with lserver1. The router/firewall has its own DHCP server, and it gets its config from our ISP and from a list of DNS servers that were loaded into the router/firewall when it was provisioned. lserver1 gets it address from this router. There's been some discussion earlier of the wisdom of this, but it's a stable address, if not static, as it's a long-term lease. I do intend to put lserver1 onto a static address, but only after I've worked out all the files that have lserver1 stored by its current address, so I can keep them current. Lserver1's address hasn't changed in months, and as I'm on it daily, its address won't change anytime soon under the present arrangement. My named.conf and dhcpd.conf are built from John's example, as mentioned above. /Etc/hosts has the IP address/name pairs he calls for. I think that means I'm running a local name server. As you can see, I have very little understanding of what's going on here; I've rather slavishly followed John's example, and I'm clearly making mistakes I'm not recognizing. Thanks Eric Hines Geoff Scott wrote: Eric Hines wrote: Hi, Farshad, I'm too new at this to be of much help. My WINS seems to be working, but I'm clueless as to why, just as I'm clueless as to why my DNS is not working. Eric Hines The questions you need to ask yourself are simple. Where is my DNS server? Where is my machine that I am pinging from pointing to in terms of DNS? Does that DNS server have the records to do with my lserver1 samba server? Are you running a local name server as per JHT's docs? Are you pointing your DNS on your lserver1 samba server to an external name server? Answer each of these questions for us and we'll see where we can help. Regards Geoff Scott -- He can compress the most words into the smallest ideas of any man I ever met. - Abraham Lincoln -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
RE: [Samba] remove wins entries - samba 3
Eric Hines wrote: My DNS server sits on lserver1. I'm trying to ping lserver1 from Do: ping lserver1.test.biz Response is? lserver1. With nsswitch set only to files or only to wins (/e.g./, hosts: files), this is successful. With nsswitch set only to dns, I cannot get name resolution, although I can successfully ping by IP address. I can ping lserver1 by name or by IP successfully from mustelidae. Where is lserver1 pointing in terms of DNS? How do I tell? At this John also mentions setting in resolv.conf nameserver 127.0.0.1(this is your loopback address) nameserver 192.168.0.2 (this should be the ip of your router/firewall) (you can have a maximum of 3 nameserver listed point, all I can say is that I've set up named.conf (and dhcpd.conf) as John has them in his Chapt 3 example, with the sole differences being that I'm using one subnet and not two (a DHCP issue), I'm calling my server lserver1.test.biz, vice diamond.abmas.biz, and lserver1's IP address is 192.168.1.103, vice the one John's using in his example. Aside from these edits, named.conf (and dhcpd.conf) are cut and pastes from John's latest on line. Is /etc/resolv.conf part of this answer? YES! My named.conf and dhcpd.conf are built from John's example, as mentioned above. /Etc/hosts has the IP address/name pairs he calls for. I think that means I'm running a local name server. No. The hosts file bypasses dns eg. Nsswitch is usually set to files dns wins Check files 1st then dns, then wins to find names on your lan Files is your hosts files the rest should be self explanitory As you can see, I have very little understanding of what's going on here; I've rather slavishly followed John's example, and I'm clearly making mistakes I'm not recognizing. You need to learn about DNS elsewhere. Go here, and read this: http://www.novell.com/documentation/suse91/suselinux-adminguide/html/ch14.ht ml Particularly this: http://www.novell.com/documentation/suse91/suselinux-adminguide/html/ch14s06 .html Then apply it to your situation. Thanks Eric Hines The over view is this: The way out of this mess from my point of veiw is to switch off dhcp from the router/firewall. Your samba server needs to know it can be a dns server. It finds this out from the resolv.conf file. Make it have a static ip. Any windows machine that is obtaining an IP address via DHCP needs to have the wins server ipaddress handed to it otherwise it will use broadcasts. You can see how to do this if your samba server becomes the dhcp server on your lan, from john's section on configuring the dhcpd. It sounds like the samba server is correctly configured for wins. (really you should show us your resolv.conf and your smb.conf + your nsswitch.conf) Most real servers have static IP's for fairly obvious reasons. And then other things should start to fall into place for you. Regards Geoff Scott -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] remove wins entries - samba 3
Geoff Scott wrote: Eric Hines wrote: My DNS server sits on lserver1. I'm trying to ping lserver1 from Do: ping lserver1.test.biz Response is? With /etc/resolv.conf edited per John's example (subject to the changes I discussed in a posting just made), there's a long pause and then unknown host. With /etc/resolv.conf in its original form (dhclient-script generated), there's a short pause and then unknown host. lserver1. With nsswitch set only to files or only to wins (/e.g./, hosts: files), this is successful. With nsswitch set only to dns, I cannot get name resolution, although I can successfully ping by IP address. I can ping lserver1 by name or by IP successfully from mustelidae. Where is lserver1 pointing in terms of DNS? How do I tell? At this John also mentions setting in resolv.conf nameserver 127.0.0.1(this is your loopback address) nameserver 192.168.0.2 (this should be the ip of your router/firewall) (you can have a maximum of 3 nameserver listed I made that correction (it wasn't clear from John's example what that IP address was for), but I still got unknown host) when I tried to ping lserver1 and lserver1.test.biz. . Is /etc/resolv.conf part of this answer? YES! My resolv.conf, nsswitch.conf, and smb.conf are attached. The nsswitch is set to dns only, now for test. Normally it's set to files dns wins. My named.conf and dhcpd.conf are built from John's example, as mentioned above. /Etc/hosts has the IP address/name pairs he calls for. I think that means I'm running a local name server. No. The hosts file bypasses dns eg. Nsswitch is usually set to files dns wins Check files 1st then dns, then wins to find names on your lan Files is your hosts files the rest should be self explanitory That much I'd figured out: I meant the aggregate4 of all of those, since that was the goal of John's set up, which included all of those. As you can see, I have very little understanding of what's going on here; I've rather slavishly followed John's example, and I'm clearly making mistakes I'm not recognizing. You need to learn about DNS elsewhere. Go here, and read this: http://www.novell.com/documentation/suse91/suselinux-adminguide/html/ch14.ht ml Particularly this: http://www.novell.com/documentation/suse91/suselinux-adminguide/html/ch14s06 .html Then apply it to your situation. Going there tonight. Thanks Eric Hines The over view is this: The way out of this mess from my point of veiw is to switch off dhcp from the router/firewall. How? I can't switch off the router/firewall. Regards Geoff Scott -- He can compress the most words into the smallest ideas of any man I ever met. - Abraham Lincoln # Samba config file created using SWAT # from 127.0.0.1 (127.0.0.1) # Date: 2005/07/05 15:28:39 # Global parameters [global] workgroup = DOM_TEST interfaces = eth0, lo bind interfaces only = Yes passdb backend = tdbsam pam password change = Yes passwd program = /usr/bin/passwd %u passwd chat = *New*Password* %n\n *Re-enter*new*password* %n\n *Password*changed* username map = /etc/samba/smbusers unix password sync = Yes log level = 1 syslog = 0 log file = /var/log/samba/%m max log size = 50 smb ports = 139 445 name resolve order = wins bcast hosts time server = Yes socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192 printcap name = CUPS show add printer wizard = No add user script = /usr/sbin/useradd -m '%u' delete user script = /usr/sbin/userdel -r '%u' add group script = /usr/sbin/groupadd '%g' delete group script = /usr/sbin/groupdel '%g' add user to group script = /usr/sbin/usermod -G '%g' '%u' add machine script = /usr/sbin/useradd -s /bin/false -d /tmp '%u' shutdown script = /var/lib/samba/scripts/shutdown.sh abort shutdown script = /sbin/shutdown -c logon script = \scripts\login.bat logon path = \\%L\profiles\%U logon drive = X: domain logons = Yes preferred master = Yes wins support = Yes ldap ssl = no utmp = Yes idmap uid = 1-2 idmap gid = 1-2 map acl inherit = Yes veto files = /*.eml/*.nws/*.{*}/ veto oplock files = /*.doc/*.xls/*.mdb/ ## Shares omitted to same space.; generated by /sbin/dhclient-script ; search hsd1.tx.comcast.net. ; nameserver 63.240.76.198 ; nameserver 204.127.199.8 search lserver1.test.biz nameserver 127.0.0.1 nameserver 192.168.1.1# # /etc/nsswitch.conf # # An example Name Service Switch config file. This file should be # sorted with the most-used services at the beginning. # # The entry '[NOTFOUND=return]' means that the search for an # entry should stop if the search in the previous entry turned # up nothing. Note that
RE: [Samba] remove wins entries - samba 3
Eric Hines wrote: Geoff Scott wrote: Eric Hines wrote: The over view is this: The way out of this mess from my point of veiw is to switch off dhcp from the router/firewall. How? I can't switch off the router/firewall. No of course not. You mean to say that you can't get access to a web interface or commandline on the router to configure it? You might need to look at getting better hardware / strongarming your ISP for info on the router if it is ISP provided. Can you show us your zone files for test.biz 192.168.1.0? What do your logs say for bind starting up? Can you restart bind and watch your logs? Do you have any errors for it? Regards Geoff Scott -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] remove wins entries - samba 3
Geoff Scott wrote: Eric Hines wrote: Geoff Scott wrote: Eric Hines wrote: The over view is this: The way out of this mess from my point of veiw is to switch off dhcp from the router/firewall. ow? I can't switch off the router/firewall. No of course not. You mean to say that you can't get access to a web interface or commandline on the router to configure it? You might need to look at getting better hardware / strongarming your ISP for info on the router if it is ISP provided. It's our own Cisco/Linksys router/firewall. I'll have to figure out how to do this on a per-machine basis. There are others also that are protected by the router/firewall. Can you show us your zone files for test.biz 192.168.1.0? Attached. What do your logs say for bind starting up? Can you restart bind and watch your logs? Do you have any errors for it? If you mean winbind, a tail -f on log.winbindd just showed it starting up again n response to a service winbind restart. log.smbd just showed smbd restarting after a restart. log.nmbd showed nmbd getting the shutdown signal, then starting back up and becoming the domain master browser. Regards Geoff Scott Thanks Eric Hines -- He can compress the most words into the smallest ideas of any man I ever met. - Abraham Lincoln $ORIGIN . $TTL 38400 ; 10 hours 40 minutes 1.168.192.in-addr.arpa IN SOA lserver1.test.biz. root.test.biz. ( 2003021825 ; serial 10800 ; refresh (3 hours) 3600 ; retry (1 hour) 604800 ; expire (1 week) 38400 ; minimum (10 hours 40 minutes) ) NS lserver1.test.biz. $ORIGIN 1.168.192.in-addr.arpa. 103 PTR lserver1.test.biz. ; 1 PTR lserver1.test.biz. 10 PTR pserver1.test.biz. ; 20PTR qmsa.abmas.biz. ; 30PTR hplj6a.abmas.biz. $ORIGIN . $TTL 38400 ; 10 hours 40 minutes test.biz IN SOA lserver1.test.biz. root.test.biz. ( 2003021833 ; serial 10800 ; refresh (3 hours) 3600 ; retry (1 hour) 604800 ; expire (1 week) 38400 ; minimum (10 hours 40 minutes) ) NS dns.test.biz. MX 10 mail.test.biz. $ORIGIN test.biz. lserver1A 192.168.1.103 ; sleeth2 A 192.168.2.1 pserver1A 192.168.1.10 ; hplj6a A 192.168.1.30 ; qmsfA 192.168.2.20 ; hplj6f A 192.168.2.30 dns CNAME lserver1 lserver1CNAME lserver1 mailCNAME lserver1 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba