Ah, but Webmin DOES support DNSSEC.
I installed it on a Centos-arm7 that I used in the past for DNS testing,
and there is the option for enabling DNSSEC. So there is hope in this
direction.
Don't see much else in the way of tools. Anyone know of anything
besides Webmin?
thanks
On 2/20/2
Webmin wiki does not cover DNSSEC...
Humpf.
On 2/20/22 20:58, Robert Moskowitz wrote:
I have been running my DNS server on a Centos7-arm board for some
years and it is past time I get up to date.
Particularly get DNSSEC working.
So I have plenty of cubieboards for running Centos8-arm, but I
I have been running my DNS server on a Centos7-arm board for some years
and it is past time I get up to date.
Particularly get DNSSEC working.
So I have plenty of cubieboards for running Centos8-arm, but I want to
no longer hand configure. I want some help here; getting up in years
and all t
On Tue, 2018-12-04 at 00:51 +, John Horne wrote:
>
> For many years we have modified the '/etc/named.conf' file to include local
> settings. The disadvantage with this is of course that when bind is updated,
> it creates an '/etc/named.conf.rpmnew' file. We then have to determine what
> is new,
On 04/12/18 09:41, John Horne wrote:
> On Tue, 2018-12-04 at 08:19 +, J Martin Rushton via CentOS wrote:
>> The '/etc/named.conf.rpmnew' file supplied is a bare minimum to
>> "configure the ... server as a caching only nameserver (as a localhost
>> DNS resolver only)". As soon as you start add
On Tue, 2018-12-04 at 08:19 +, J Martin Rushton via CentOS wrote:
> The '/etc/named.conf.rpmnew' file supplied is a bare minimum to
> "configure the ... server as a caching only nameserver (as a localhost
> DNS resolver only)". As soon as you start adding any structure to it
> things change, n
The '/etc/named.conf.rpmnew' file supplied is a bare minimum to
"configure the ... server as a caching only nameserver (as a localhost
DNS resolver only)". As soon as you start adding any structure to it
things change, not just are added to. See
'/usr/share/doc/bind-*/sample/etc/named.conf' for e
Hello,
For many years we have modified the '/etc/named.conf' file to include local
settings. The disadvantage with this is of course that when bind is updated, it
creates an '/etc/named.conf.rpmnew' file. We then have to determine what is
new, and apply the relevant changes to our modified named.c
On Mon, Apr 1, 2013 at 2:54 PM, Michael H. Warfield wrote:
>>
> AFA how BIND should be shipped... Last time I looked (just a couple of
> days ago) BIND ships in a fairly secure manner (local caching resolver
> listening on localhost only) and the default IP tables blocks DNS
> queries and respons
On Mon, 2013-04-01 at 11:17 -0700, John R Pierce wrote:
> On 4/1/2013 6:11 AM, Michael H. Warfield wrote:
> > it's also very important to implement BCP (Best Common Practice) 38.
> > BCP 38 recommends router egress filtering. That is, you only route out
> > what will route back in. That prevents
On Mon, Apr 1, 2013 at 1:30 PM, Michael H. Warfield wrote:
>
> Actually, it's pretty easy with netfilter / iptables. Other firewalls
> like pf filter on *BSD an proprietary work similar. If you know your
> inside networks you merely add a rule to block incoming packets on your
> external interfa
On 4/1/2013 6:11 AM, Michael H. Warfield wrote:
> it's also very important to implement BCP (Best Common Practice) 38.
> BCP 38 recommends router egress filtering. That is, you only route out
> what will route back in. That prevents you (or any of your customers)
> from being a spoofing source.
On Mon, Apr 1, 2013 at 8:11 AM, Michael H. Warfield wrote:
> It's the the job of your security
> perimeter firewalls to filter local vrs foreign packets and on-session
> vrs unsolicited packets.
You say that as though everyone has such tools. Or that they are such
an integrated part of the TCP/I
On Thu, 2013-03-28 at 11:29 -0700, John R Pierce wrote:
> On 3/28/2013 11:11 AM, Jorge Fábregas wrote:
> > On 03/28/2013 02:05 PM, John R Pierce wrote:
> >> >is it as simple as adding allow-recursion{} with the appropriate private
> >> >subnets and localhost to named.conf ?
> > Yes. That's basica
Am 29.03.2013 15:13, schrieb Leon Fauster:
> i would suggest to using view clauses to divide such configurations ...
I think that's overkill. allow-recursion{} is perfectly sufficient for
this purpose. Views are only needed if you want to return different
results for the same query from different
Am 28.03.2013 um 19:29 schrieb John R Pierce :
> On 3/28/2013 11:11 AM, Jorge Fábregas wrote:
>> On 03/28/2013 02:05 PM, John R Pierce wrote:
>> Yes. That's basically it.
>
> k, thanks, looks like its working!
i would suggest to using view clauses to divide such configurations ...
--
LF
___
On 3/28/2013 11:11 AM, Jorge Fábregas wrote:
> On 03/28/2013 02:05 PM, John R Pierce wrote:
>> >is it as simple as adding allow-recursion{} with the appropriate private
>> >subnets and localhost to named.conf ?
> Yes. That's basically it.
k, thanks, looks like its working!
--
john r pierce
On 03/28/2013 02:05 PM, John R Pierce wrote:
> is it as simple as adding allow-recursion{} with the appropriate private
> subnets and localhost to named.conf ?
Yes. That's basically it.
--
Jorge
___
CentOS mailing list
CentOS@centos.org
http://lists.
I have 2 CentOS servers that are both authoritative DNS for several
domains and local resolvers.As configured, they are publicly visible
resolvers, which I've known for awhile is not a good thing.
whats the appropriate way of configuring the bind on CentOS 5.current to
not allow recursion o
what do they access to? How to access? How's the verification being
handled here?
Maybe a capture on port 53 explains everything.
Banyan He
Blog: http://www.rootong.com
Email: ban...@rootong.com
On 3/19/2013 1:15 AM, Weplica wrote:
> Hi,
>
> Actually, the website is found, but when
Hi,
Actually, the website is found, but when I create new virtual servers
withs virutalmin, noone can be access.
I have already try
ns.maca.li. IN A 91.121.137.55
NS INNSmaca.li.
But it do nothing,
Thanks,
Ernesto
Quoting Banyan He :
> Hi there,
>
> You can pu
It's just saying the records don't match from your parent nameserver.
[root@janus ~]# dig ns maca.li +trace
; <<>> DiG 9.3.6-P1-RedHat-9.3.6-20.P1.el5 <<>> ns maca.li +trace
;; global options: printcmd
. 3600IN NS i.root-servers.net.
. 3600
Hello,
I just get a server with CentOS 6.4, I have install Webmin and
Vitualmin running OK, but I can't run correctly DNS server.
I set hostname: dns.maca.li
Resolution order: Host file, DNS
DNS servers: 127.0.0.1 and 91.121.137.55
Search Domain: maca.li
When I creta virtual server with virtu
I could be the issue is thus (i have worked around it but its not clean enough
for my liking)
i have a service that runs under SSL that is a global service that resolves
locally - That is in dc A the IP is different to dc B however the service sits
behind the same SSL certs that are non domain
On Fri, 2013-02-15 at 17:04 +, Tom Brown wrote:
> > Actually, my kickstarts run with the DNS info provided by my DNCP
> > server. The only thing that I've had to do is copy the
> > created /etc/resolv.conf file into the newly-built tree so that it's
> > available to the system for running "po
> Actually, my kickstarts run with the DNS info provided by my DNCP
> server. The only thing that I've had to do is copy the
> created /etc/resolv.conf file into the newly-built tree so that it's
> available to the system for running "post" scripts.
thanks for the reply - these are statically as
On Fri, 2013-02-15 at 16:43 +, Tom Brown wrote:
> Hi
>
> Does anyone know if its possible to set a search domain within anaconda to
> use during kickstart?
>
> I'd rather not have to set a FQDN for a certain service as its location
> specific that is dependent on SSL and therefore the cert
Hi
Does anyone know if its possible to set a search domain within anaconda to use
during kickstart?
I'd rather not have to set a FQDN for a certain service as its location
specific that is dependent on SSL and therefore the certs.
I cant see anything in the docs listed but i thought i'd ask
c
On 02/09/2013 07:01 PM, Jorge Fábregas wrote:
> Check the following line in /etc/named.conf and make sure you have both
> ip addresses:
I'm sorry. I thought you were running BIND. I'm on that list too...got
to pay more attention next time!
Anyway, check the bind (no pun intended!) address doing
On 02/08/2013 11:09 AM, Ed Morrison wrote:
> For whatever reason I can not get dns caching to work on any of my
> centos boxes. Running Centos 5 and 6. Any thoughts on why these will
> not run? The services start fine but when telling to perform a dig
> using itself as the resolver the queries f
On 02/08/2013 03:09 PM, Ed Morrison wrote:
> The services start fine but when telling to perform a dig using itself
> as the resolver the queries fail
Check the following line in /etc/named.conf and make sure you have both
ip addresses:
listen-on port 53 { 127.0.0.1; 192.168.1.6; };
Also, if y
Am 08.02.2013 um 20:09 schrieb Ed Morrison :
> For whatever reason I can not get dns caching to work on any of my
> centos boxes. Running Centos 5 and 6. Any thoughts on why these will
> not run? The services start fine but when telling to perform a dig
> using itself as the resolver the quer
Hi All:
For whatever reason I can not get dns caching to work on any of my
centos boxes. Running Centos 5 and 6. Any thoughts on why these will
not run? The services start fine but when telling to perform a dig
using itself as the resolver the queries fail (See below).
Any help would be app
Jussi Hirvi wrote:
> On 17.8.2012 15.04, John Doe wrote:
>> Maybe it is this:
>> http://arstechnica.com/business/2012/03/how-anonymous-plans-to-use-dns-as-a-weapon/
>
> Interesting idea. In that case the ip's in my logs would point to the
> targets of the attact. I checked a few of them, and they l
On 17.8.2012 15.04, John Doe wrote:
> Maybe it is this:
> http://arstechnica.com/business/2012/03/how-anonymous-plans-to-use-dns-as-a-weapon/
Interesting idea. In that case the ip's in my logs would point to the
targets of the attact. I checked a few of them, and they look more like
hijacked vic
From: Jussi Hirvi
> On 17.8.2012 8.18, John R Pierce wrote:
>> meh, if its coming from lots of random hosts, then fail2ban style
>> techniques won't work. I assume this is an authoritative name server?
>> does it have recursive queries disabled so it can only return results
>> for the domain
On 17.8.2012 8.18, John R Pierce wrote:
> meh, if its coming from lots of random hosts, then fail2ban style
> techniques won't work. I assume this is an authoritative name server?
> does it have recursive queries disabled so it can only return results
> for the domain(s) its authoritative for ?
Y
Am Thu, 16 Aug 2012 22:18:19 -0700
schrieb John R Pierce :
> On 08/16/12 9:54 PM, Jussi Hirvi wrote:
> >> Aug 17 07:41:38 mx2 named[6873]: client 205.145.64.200#53: query
> >> (cache) 'ripe.net/ANY/IN' denied
> >> >Aug 17 07:41:38 mx2 named[6873]: client 204.10.45.5#53: query
> >> >(cache) 'ripe.n
On 08/16/12 9:54 PM, Jussi Hirvi wrote:
>> Aug 17 07:41:38 mx2 named[6873]: client 205.145.64.200#53: query (cache)
>> 'ripe.net/ANY/IN' denied
>> >Aug 17 07:41:38 mx2 named[6873]: client 204.10.45.5#53: query (cache)
>> >'ripe.net/ANY/IN' denied
>> >Aug 17 07:41:38 mx2 named[6873]: client 78.40.
Looks like one of my name servers (CentOS 5) gets a lot of malicious
queries. The cpu load is constantly about 3 %. I put on stricter limits
on who is allowed recursive queries, but this does not affect the CPU
load. I also updated bind.
I temporarily turned on querylog (command: rndc querylog)
On Wednesday 25 July 2012 17:47, the following was written:
> I used dig from the email svr command line with the primary DNS svr up
> and (naturally) it pulled from there as normal. Then I downed the
> primary DNS svr, saw the nagios check fail and tried again. The same
> dig lookup was act
On 26/07/2012 02:40, David McGuffey wrote:
> On Jul 25, 2012, at 21:27, "Joseph L. Casale"
> wrote:
>
>>> DNS lookups default to using 53/udp, and only use 53/tcp for zone
>>> transfers. could it be 53/udp is being lost/blocked between this host
>>> and your ns1 ?
>>
>> Unfortunately that is a
On Jul 25, 2012, at 21:27, "Joseph L. Casale" wrote:
>> DNS lookups default to using 53/udp, and only use 53/tcp for zone
>> transfers. could it be 53/udp is being lost/blocked between this host
>> and your ns1 ?
>
> Unfortunately that is a common misconception.
>
> Tcp is used far more often
>DNS lookups default to using 53/udp, and only use 53/tcp for zone
>transfers. could it be 53/udp is being lost/blocked between this host
>and your ns1 ?
Unfortunately that is a common misconception.
Tcp is used far more often than "only" as stated such as for size of request
exceeding udp respo
On 7/25/2012 3:58 PM, Tom Brown wrote:
>> dig uses resolv.conf and no timeouts are configured there. I don't know
>> there the OS would have a default configured or what it is. Another
>> reply indicated there would be a 5 second delay. That seems a bit high
>> to me.
>>
>> I used dig from the e
On 7/25/2012 3:55 PM, John R Pierce wrote:
> On 07/25/12 1:57 PM, Steve Lindemann wrote:
>> Anyone have any ideas for why nagios would have trouble testing smtp on
>> the email server when the primary dns goes offline? I'm not even sure
>> where to look or who else would make sense to ask the ques
> dig uses resolv.conf and no timeouts are configured there. I don't know
> there the OS would have a default configured or what it is. Another
> reply indicated there would be a 5 second delay. That seems a bit high
> to me.
>
> I used dig from the email svr command line with the primary DNS sv
On 07/25/12 1:57 PM, Steve Lindemann wrote:
> Anyone have any ideas for why nagios would have trouble testing smtp on
> the email server when the primary dns goes offline? I'm not even sure
> where to look or who else would make sense to ask the question of on
> this one. I'd appreciate any insig
On 7/25/2012 3:21 PM, Tom Brown wrote:
> Does dig use libresolv or read directly from resolv.conf? Also do you have a
> timeout configured in resolv.conf or are you relying on the os default?
dig uses resolv.conf and no timeouts are configured there. I don't know
there the OS would have a defau
On Wed, Jul 25, 2012 at 4:25 PM, Dennis Jacobfeuerborn
wrote:
> On 07/25/2012 10:57 PM, Steve Lindemann wrote:
>> I'm a bit baffled by this and I'm looking for ideas...
>>
>> background:
>> two DNS servers (ns1 & ns2)(64bit CentOS 5.8)
>> one email server (64bit CentOS 5.8 & postfix 2.3.3)
>> one
On 07/25/2012 10:57 PM, Steve Lindemann wrote:
> I'm a bit baffled by this and I'm looking for ideas...
>
> background:
> two DNS servers (ns1 & ns2)(64bit CentOS 5.8)
> one email server (64bit CentOS 5.8 & postfix 2.3.3)
> one nagios server (64bit CentOS 5.8 & nagios 3.3.1)
>
> situation:
> - al
Does dig use libresolv or read directly from resolv.conf? Also do you have a
timeout configured in resolv.conf or are you relying on the os default?
On 25 Jul 2012, at 21:57, Steve Lindemann wrote:
> I'm a bit baffled by this and I'm looking for ideas...
>
> background:
> two DNS servers (ns1
I'm a bit baffled by this and I'm looking for ideas...
background:
two DNS servers (ns1 & ns2)(64bit CentOS 5.8)
one email server (64bit CentOS 5.8 & postfix 2.3.3)
one nagios server (64bit CentOS 5.8 & nagios 3.3.1)
situation:
- all servers configured to use both DNS servers for lookups
- ns1 se
On 4/5/2012 12:52 AM, Nataraj wrote:
> On 04/04/2012 08:48 PM, Bob Hoffman wrote:
>> No idea where else to ask this and get a real qualified answer but here.
>> Not exactly pure centos questionbut...
>>
>> I am adding blacklists to my postfix smtpd settings.
>> I have the inkling that after the
On 04/04/2012 08:48 PM, Bob Hoffman wrote:
> No idea where else to ask this and get a real qualified answer but here.
> Not exactly pure centos questionbut...
>
> I am adding blacklists to my postfix smtpd settings.
> I have the inkling that after the first lookup for a domain or ip that
> my
No idea where else to ask this and get a real qualified answer but here.
Not exactly pure centos questionbut...
I am adding blacklists to my postfix smtpd settings.
I have the inkling that after the first lookup for a domain or ip that
my dns caches the result and I no longer bother the RBL o
Hi Götz,
> My question: dose maybe someone forgot the 192.168.200.x reverse zone
> files and config
probably.
> and can I just create a file like that for the 172.17
> hosts and adding the config for the reverse zone to my named.conf?
Yes, *if* you either have the only DNS in your network (no
Hi,
I do have a domain and a couple of different ip networks.
E.g. domainname.de and 172.17.0.0/16 and 192.168.200.0/24
In our old dns files I only have a reverse master zone for the
172.17.-lans, but also 192.168.200.x addresses in the forward zone config.
My question: dose maybe someone forgo
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
ann kok said the following on 22/03/11 14:13:
> How can I know the refresh rate of the dns server?
$ dig www.google.com
...
;; ANSWER SECTION:
www.google.com. 515949 IN CNAME www.l.google.com.
www.l.google.com. 300 IN
On 03/22/11 6:13 AM, ann kok wrote:
> Hi all
>
> How can I know the refresh rate of the dns server?
http://oreilly.com/catalog/9780596001582
http://www.isc.org/software/bind/documentation
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.or
As was previously mentioned, you need to be more clear about what
you're asking. There are multiple related concepts. Look up a
description of the SOA record, in particular the refresh, retry,
expire, and minimum TTL fields. The first three affect how DNS
secondary servers behave. The last ca
What do you mean by refresh rate of the dns server? Like TTL length of records?
Or..?
Aly
--Original Message--
From: ann kok
Sender: centos-boun...@centos.org
To: centos@centos.org
ReplyTo: CentOS mailing list
Subject: [CentOS] dns question
Sent: Mar 22, 2011 9:13 AM
Hi all
How can I
Hi all
How can I know the refresh rate of the dns server?
Thank you
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos
On Thu, Nov 18, 2010 at 7:18 AM, Phil Savoie wrote:
> On 11/18/2010 07:09 AM, Lanny Marcus wrote:
>> Box is fully updated CentOS 5.5 (32 bit). DHCP is from the ADSL modem
>> 192.168.1.1. After I update the DNS settings and restart the network,
>> the DNS changes do not hold. I have tried using thi
On Thursday 18 November 2010 12:25, John Hodrien wrote:
> > DHCP will always over write the resolv.conf file when started.
>
> Importantly, no. PEERDNS=no is designed for exactly this purpose.
Thnx for the information and setting me straight.
--
Regards
Robert
Linux
The adventure of a lif
On Thu, 18 Nov 2010, Robert Spangler wrote:
> DHCP will always over write the resolv.conf file when started.
Importantly, no. PEERDNS=no is designed for exactly this purpose.
jh
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman
On Thursday 18 November 2010 07:09, Lanny Marcus wrote:
> Box is fully updated CentOS 5.5 (32 bit). DHCP is from the ADSL modem
> 192.168.1.1. After I update the DNS settings and restart the network,
> the DNS changes do not hold. I have tried using this GUI, as a regular
> user, after giving
On 11/18/2010 07:09 AM, Lanny Marcus wrote:
> Box is fully updated CentOS 5.5 (32 bit). DHCP is from the ADSL modem
> 192.168.1.1. After I update the DNS settings and restart the network,
> the DNS changes do not hold. I have tried using this GUI, as a regular
> user, after giving the root password
Box is fully updated CentOS 5.5 (32 bit). DHCP is from the ADSL modem
192.168.1.1. After I update the DNS settings and restart the network,
the DNS changes do not hold. I have tried using this GUI, as a regular
user, after giving the root password, and, also, logged in as the root
user.
When I beg
On Thu, 2010-07-08 at 17:07 -0700, John R Pierce wrote:
> On 07/08/10 1:31 PM, Les Mikesell wrote:
> > I'm getting at your assertion that a Wins server on every subnet is
> > "right" being impractical in most networks. And like the OPs problem
> > it has to do with a windows client being able to
On 07/08/10 1:31 PM, Les Mikesell wrote:
> I'm getting at your assertion that a Wins server on every subnet is
> "right" being impractical in most networks. And like the OPs problem
> it has to do with a windows client being able to resolve a windows name
> on a different subnet.
>
I've neve
On Thu, 2010-07-08 at 18:10 -0500, Doug Coats wrote:
>
> After a little bit of research I feel a little vindicated. It seems
> that Samba3x seporated out nmb. On Samba 3.0 the nmb service does not
> show up in the chkconfig. It simply starts and stops with smb.
>
> On Samba3x it seporates out
After a little bit of research I feel a little vindicated. It seems that
Samba3x seporated out nmb. On Samba 3.0 the nmb service does not show up in
the chkconfig. It simply starts and stops with smb.
On Samba3x it seporates out nmb and it does not start by itself. So based
on my experience I
On 7/8/2010 4:00 PM, JohnS wrote:
>
>> Windows name resolution has next to nothing to do with ip routing. If
>> your routing works you can make windows name resolution work over it,
>> but it isn't automatic.
>
> If it does not work then it want happen as in getting routed to the
> wins server.
On Thu, 2010-07-08 at 15:31 -0500, Les Mikesell wrote:
> > And your getting at what? How does this relate to the OPs problem?
>
> I'm getting at your assertion that a Wins server on every subnet is
> "right" being impractical in most networks. And like the OPs problem
> it has to do with a
On 7/8/2010 3:11 PM, JohnS wrote:
>
> On Thu, 2010-07-08 at 14:55 -0500, Les Mikesell wrote:
>
>>> Correct and Not Correct... How about that? There really is no right or
>>> wrong in either of you twos answer. The right way is Wins on every SN
>>> to pass to the MB. That's my opinion.
>>
>> So w
On Thu, 2010-07-08 at 14:55 -0500, Les Mikesell wrote:
> > Correct and Not Correct... How about that? There really is no right or
> > wrong in either of you twos answer. The right way is Wins on every SN
> > to pass to the MB. That's my opinion.
>
> So what do you do on a VPN connection that
>
> Netbios can use multiple network transports, some of which only have
> broadcasts to support name resolution. Each subnet will elect a master
> browser to collect the names and respond to queries. As an extension
> for the IP protocol which is routeable, the WINS service accepts the
> lists
On 7/8/2010 2:43 PM, JohnS wrote:
>
>>> WINS is a broadcast based protocol and thus it only works on the local
>>> network and each subnet/network MUST necessarily have master browser
>>> elections. The WINS server on each subnet would serve as a clearing
>>> house for name resolution for each subn
On Thu, 2010-07-08 at 14:29 -0500, Les Mikesell wrote:
> On 7/8/2010 2:12 PM, Craig White wrote:
> >
> >> I thought the point of WINS was to have a single address that would
> >> collate the names/addresses from all your networks.
> >>
> >>> The important thing is to get the WINS working on EACH ne
>
> How 'bout with the server that's supposed to be the master, above the two
> other PDCs?
>
>mark
>
It is set up to NTP to the same external servers so they should all be in
sync.
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org
On 7/8/2010 2:36 PM, Doug Coats wrote:
> I just did a checkconfig on the PDC in question 192.168.6.1. And I
> noticed something that might be nothing but it puzzles me. The nmb
> service is set to "off" at all run levels. If I check the nmb status it
> says that it is stopped. Doesn't Samba nee
Doug Coats wrote:
> mark wrote:
>> Um, does a timing issue come into play here? If the local clock is not
>> within a few seconds, we can't connect to AD (we are going through
>> kerborous). Is there time data in the cache?
>
> Both the XP box and the Windows 7 use the PDC server as their time serv
On Thu, 2010-07-08 at 14:36 -0500, Doug Coats wrote:
> I just did a checkconfig on the PDC in question 192.168.6.1. And I
> noticed something that might be nothing but it puzzles me. The nmb
> service is set to "off" at all run levels. If I check the nmb status
> it says that it is stopped. Do
On Thu, 2010-07-08 at 14:36 -0500, Doug Coats wrote:
> I just did a checkconfig on the PDC in question 192.168.6.1. And I
> noticed something that might be nothing but it puzzles me. The nmb
> service is set to "off" at all run levels. If I check the nmb status
> it says that it is stopped. Doe
On Thu, 2010-07-08 at 14:29 -0500, Les Mikesell wrote:
> > WINS is a broadcast based protocol and thus it only works on the local
> > network and each subnet/network MUST necessarily have master browser
> > elections. The WINS server on each subnet would serve as a clearing
> > house for name res
On Thu, 2010-07-08 at 14:12 -0500, Doug Coats wrote:
>
> As I said in another post I changed the machine name to an entirely
> different format and I didn't copy any domain information from the
> prior machine(meaning I didn't try to migrate the information placed
> in the smbpasswd). Since all
I just did a checkconfig on the PDC in question 192.168.6.1. And I noticed
something that might be nothing but it puzzles me. The nmb service is set
to "off" at all run levels. If I check the nmb status it says that it is
stopped. Doesn't Samba need that for net-bios support? I am probably
sho
On 7/8/2010 2:12 PM, Craig White wrote:
>
>> I thought the point of WINS was to have a single address that would
>> collate the names/addresses from all your networks.
>>
>>> The important thing is to get the WINS working on EACH network. It's
>>> also easiest to have your PDC be the WINS server -
On Thu, 2010-07-08 at 13:52 -0500, Doug Coats wrote:
> With the WINS data cleared. for the past 20 min. (I did it before I
> wrote about it) Neither PDC has reported to WINS. So no wonder my
> PC's can't find their domain.
>
> So how do I make sure that 192.168.6.1 is added to wins.dat. I coul
On 7/8/2010 1:52 PM, Doug Coats wrote:
> With the WINS data cleared. for the past 20 min. (I did it before I
> wrote about it) Neither PDC has reported to WINS. So no wonder my PC's
> can't find their domain.
> So how do I make sure that 192.168.6.1 is added to wins.dat. I could do
> it manually
On Thu, 2010-07-08 at 13:43 -0500, Les Mikesell wrote:
> On 7/8/2010 1:15 PM, Craig White wrote:
> >
> > a 'network' is 192.168.x assuming that you are using class C subnet
> > masks (255.255.255.0) and so you should have a WINS server on EACH
> > network (192.168.4, 192.168.5, 192.168.6, etc.)
>
> ---
> Ok since you say the interdomain networking is functioning (triangle
> routing) have a read at this:
>
> http://www.samba.org/samba/docs/man/Samba-HOWTO-Collection/domain-member.html#id2573732
>
>
> John
>
> all else that fails put that machine on another known working Subnet and
> have a g
>
>
> Um, does a timing issue come into play here? If the local clock is not
> within a few seconds, we can't connect to AD (we are going through
> kerborous). Is there time data in the cache?
>
>mark
Both the XP box and the Windows 7 use the PDC server as their time server so
they are se
On Thu, 2010-07-08 at 13:41 -0500, Doug Coats wrote:
> I agree that preferred master should have been set to yes. I made
> that change with but still no joy.
>
> I don't mean to be contrary but our cross subnet browsing has been
> working since 2003 when we set up this network. It has been v
With the WINS data cleared. for the past 20 min. (I did it before I wrote
about it) Neither PDC has reported to WINS. So no wonder my PC's can't find
their domain.
So how do I make sure that 192.168.6.1 is added to wins.dat. I could do it
manually but I would rather it communicate the way that
Doug Coats wrote:
>>
>>
>> I do think that I have hit upon an issue. The WINS data for samba is
>> kept in /var/cache/samba.dat but it is updated dynamically with nmdb.
It has
>> dated data. When I moved the server I changed the server name slightly
>> and so the WINS data points to the old name
>
>
> I do think that I have hit upon an issue. The WINS data for samba is kept
> in /var/cache/samba.dat but it is updated dynamically with nmdb. It has
> dated data. When I moved the server I changed the server name slightly and
> so the WINS data points to the old name at the current IP. In
On 7/8/2010 1:15 PM, Craig White wrote:
>
> a 'network' is 192.168.x assuming that you are using class C subnet
> masks (255.255.255.0) and so you should have a WINS server on EACH
> network (192.168.4, 192.168.5, 192.168.6, etc.)
I thought the point of WINS was to have a single address that would
a 'network' is 192.168.x assuming that you are using class C subnet
> masks (255.255.255.0) and so you should have a WINS server on EACH
> network (192.168.4, 192.168.5, 192.168.6, etc.)
>
> Cross network browsing is somewhat of a hit or miss and not reliable...
> for a number of reasons such as t
1 - 100 of 246 matches
Mail list logo
