2016-06-27

raspberry pi(jessie-lite) pt.4 

apt-get install acl attr autoconf bison build-essential \
  debhelper dnsutils docbook-xml docbook-xsl flex gdb krb5-user \
  libacl1-dev libaio-dev libattr1-dev libblkid-dev libbsd-dev \
  libcap-dev libcups2-dev libgnutls28-dev libjson-perl \
  libldap2-dev libncurses5-dev libpam0g-dev libparse-yapp-perl \
  libpopt-dev libreadline-dev perl perl-modules pkg-config \
  python-all-dev python-dev python-dnspython python-crypto \
  xsltproc zlib1g-dev libjansson-dev libgpgme11-dev libarchive-dev




 sambaの内蔵DNSを使用する際にavahi-daemonが稼働しているとDNS周りが動作しない。
 色々検索したところ、avahi-daemonを削除してあげれば良いと判明。

root@raspberrypi1:/etc/init.d# samba_dnsupdate --verbose --all-names
IPs: ['192.168.0.20']
force update: A raspberrypi1.yamatomura.local 192.168.0.20
force update: A yamatomura.local 192.168.0.20
force update: SRV _ldap._tcp.yamatomura.local raspberrypi1.yamatomura.local 389
---snip---
27 DNS updates and 0 DNS deletes needed
Traceback (most recent call last):
  File "/opt/samba/sbin/samba_dnsupdate", line 631, in
    get_credentials(lp)
  File "/opt/samba/sbin/samba_dnsupdate", line 123, in get_credentials
    raise e
RuntimeError: kinit for RASPBERRYPI1$@YAMATOMURA.LOCAL failed (Cannot contact any KDC for requested realm)
https://lists.samba.org/archive/samba/2013-September/175547.html


---
Hi there,

a few days ago I tried to install a print spooler with samba4 and in the
installation process the "avahi-daemon" was installed.

This daemon prevented the samba4 internal dns from working fully....

The solution: "apt-get --purge remove avahi-daemon"

Now everything is working like beast ;-)

Best regards
Tom
---

 なお、正常に動作しても"TSIG error with server: tsig verify failure Failed nsupdate: 2"が出力され続けるが、これは問題無い様子



root@raspberrypi2:/opt/samba/var# samba_dnsupdate --verbose
IPs: ['192.168.0.21']
Looking for DNS entry A raspberrypi2.highspec.org 192.168.0.21 as raspberrypi2.highspec.org.
Looking for DNS entry NS highspec.org raspberrypi2.highspec.org as highspec.org.
Looking for DNS entry NS _msdcs.highspec.org raspberrypi2.highspec.org as _msdcs.highspec.org.
Looking for DNS entry A highspec.org 192.168.0.21 as highspec.org.
Looking for DNS entry SRV _ldap._tcp.highspec.org raspberrypi2.highspec.org 389 as _ldap._tcp.highspec.org.
Checking 0 100 389 raspberrypi2.highspec.org. against SRV _ldap._tcp.highspec.org raspberrypi2.highspec.org 389
Looking for DNS entry SRV _ldap._tcp.dc._msdcs.highspec.org raspberrypi2.highspec.org 389 as _ldap._tcp.dc._msdcs.highspec.org.
Checking 0 100 389 raspberrypi2.highspec.org. against SRV _ldap._tcp.dc._msdcs.highspec.org raspberrypi2.highspec.org 389
Looking for DNS entry SRV _ldap._tcp.62640a65-1803-482b-b2c2-4827919a2c2d.domains._msdcs.highspec.org raspberrypi2.highspec.org 389 as _ldap._tcp.62640a65-1803-482b-b2c2-4827919a2c2d.domains._msdcs.highspec.org.
Checking 0 100 389 raspberrypi2.highspec.org. against SRV _ldap._tcp.62640a65-1803-482b-b2c2-4827919a2c2d.domains._msdcs.highspec.org raspberrypi2.highspec.org 389
Looking for DNS entry SRV _kerberos._tcp.highspec.org raspberrypi2.highspec.org 88 as _kerberos._tcp.highspec.org.
Checking 0 100 88 raspberrypi2.highspec.org. against SRV _kerberos._tcp.highspec.org raspberrypi2.highspec.org 88
Looking for DNS entry SRV _kerberos._udp.highspec.org raspberrypi2.highspec.org 88 as _kerberos._udp.highspec.org.
Checking 0 100 88 raspberrypi2.highspec.org. against SRV _kerberos._udp.highspec.org raspberrypi2.highspec.org 88
Looking for DNS entry SRV _kerberos._tcp.dc._msdcs.highspec.org raspberrypi2.highspec.org 88 as _kerberos._tcp.dc._msdcs.highspec.org.
Checking 0 100 88 raspberrypi2.highspec.org. against SRV _kerberos._tcp.dc._msdcs.highspec.org raspberrypi2.highspec.org 88
Looking for DNS entry SRV _kpasswd._tcp.highspec.org raspberrypi2.highspec.org 464 as _kpasswd._tcp.highspec.org.
Checking 0 100 464 raspberrypi2.highspec.org. against SRV _kpasswd._tcp.highspec.org raspberrypi2.highspec.org 464
Looking for DNS entry SRV _kpasswd._udp.highspec.org raspberrypi2.highspec.org 464 as _kpasswd._udp.highspec.org.
Checking 0 100 464 raspberrypi2.highspec.org. against SRV _kpasswd._udp.highspec.org raspberrypi2.highspec.org 464
Looking for DNS entry CNAME 987e75b2-95b8-4ee6-a5ca-52f5b30af856._msdcs.highspec.org raspberrypi2.highspec.org as 987e75b2-95b8-4ee6-a5ca-52f5b30af856._msdcs.highspec.org.
Looking for DNS entry SRV _ldap._tcp.Default-First-Site-Name._sites.highspec.org raspberrypi2.highspec.org 389 as _ldap._tcp.Default-First-Site-Name._sites.highspec.org.
Checking 0 100 389 raspberrypi2.highspec.org. against SRV _ldap._tcp.Default-First-Site-Name._sites.highspec.org raspberrypi2.highspec.org 389
Looking for DNS entry SRV _ldap._tcp.Default-First-Site-Name._sites.dc._msdcs.highspec.org raspberrypi2.highspec.org 389 as _ldap._tcp.Default-First-Site-Name._sites.dc._msdcs.highspec.org.
Checking 0 100 389 raspberrypi2.highspec.org. against SRV _ldap._tcp.Default-First-Site-Name._sites.dc._msdcs.highspec.org raspberrypi2.highspec.org 389
Looking for DNS entry SRV _kerberos._tcp.Default-First-Site-Name._sites.highspec.org raspberrypi2.highspec.org 88 as _kerberos._tcp.Default-First-Site-Name._sites.highspec.org.
Checking 0 100 88 raspberrypi2.highspec.org. against SRV _kerberos._tcp.Default-First-Site-Name._sites.highspec.org raspberrypi2.highspec.org 88
Looking for DNS entry SRV _kerberos._tcp.Default-First-Site-Name._sites.dc._msdcs.highspec.org raspberrypi2.highspec.org 88 as _kerberos._tcp.Default-First-Site-Name._sites.dc._msdcs.highspec.org.
Checking 0 100 88 raspberrypi2.highspec.org. against SRV _kerberos._tcp.Default-First-Site-Name._sites.dc._msdcs.highspec.org raspberrypi2.highspec.org 88
Looking for DNS entry SRV _ldap._tcp.pdc._msdcs.highspec.org raspberrypi2.highspec.org 389 as _ldap._tcp.pdc._msdcs.highspec.org.
Checking 0 100 389 raspberrypi2.highspec.org. against SRV _ldap._tcp.pdc._msdcs.highspec.org raspberrypi2.highspec.org 389
Looking for DNS entry A gc._msdcs.highspec.org 192.168.0.21 as gc._msdcs.highspec.org.
Looking for DNS entry SRV _gc._tcp.highspec.org raspberrypi2.highspec.org 3268 as _gc._tcp.highspec.org.
Checking 0 100 3268 raspberrypi2.highspec.org. against SRV _gc._tcp.highspec.org raspberrypi2.highspec.org 3268
Looking for DNS entry SRV _ldap._tcp.gc._msdcs.highspec.org raspberrypi2.highspec.org 3268 as _ldap._tcp.gc._msdcs.highspec.org.
Checking 0 100 3268 raspberrypi2.highspec.org. against SRV _ldap._tcp.gc._msdcs.highspec.org raspberrypi2.highspec.org 3268
Looking for DNS entry SRV _gc._tcp.Default-First-Site-Name._sites.highspec.org raspberrypi2.highspec.org 3268 as _gc._tcp.Default-First-Site-Name._sites.highspec.org.
Checking 0 100 3268 raspberrypi2.highspec.org. against SRV _gc._tcp.Default-First-Site-Name._sites.highspec.org raspberrypi2.highspec.org 3268
Looking for DNS entry SRV _ldap._tcp.Default-First-Site-Name._sites.gc._msdcs.highspec.org raspberrypi2.highspec.org 3268 as _ldap._tcp.Default-First-Site-Name._sites.gc._msdcs.highspec.org.
Checking 0 100 3268 raspberrypi2.highspec.org. against SRV _ldap._tcp.Default-First-Site-Name._sites.gc._msdcs.highspec.org raspberrypi2.highspec.org 3268
Looking for DNS entry A DomainDnsZones.highspec.org 192.168.0.21 as DomainDnsZones.highspec.org.
Looking for DNS entry SRV _ldap._tcp.DomainDnsZones.highspec.org raspberrypi2.highspec.org 389 as _ldap._tcp.DomainDnsZones.highspec.org.
Checking 0 100 389 raspberrypi2.highspec.org. against SRV _ldap._tcp.DomainDnsZones.highspec.org raspberrypi2.highspec.org 389
Looking for DNS entry SRV _ldap._tcp.Default-First-Site-Name._sites.DomainDnsZones.highspec.org raspberrypi2.highspec.org 389 as _ldap._tcp.Default-First-Site-Name._sites.DomainDnsZones.highspec.org.
Checking 0 100 389 raspberrypi2.highspec.org. against SRV _ldap._tcp.Default-First-Site-Name._sites.DomainDnsZones.highspec.org raspberrypi2.highspec.org 389
Looking for DNS entry A ForestDnsZones.highspec.org 192.168.0.21 as ForestDnsZones.highspec.org.
Looking for DNS entry SRV _ldap._tcp.ForestDnsZones.highspec.org raspberrypi2.highspec.org 389 as _ldap._tcp.ForestDnsZones.highspec.org.
Checking 0 100 389 raspberrypi2.highspec.org. against SRV _ldap._tcp.ForestDnsZones.highspec.org raspberrypi2.highspec.org 389
Looking for DNS entry SRV _ldap._tcp.Default-First-Site-Name._sites.ForestDnsZones.highspec.org raspberrypi2.highspec.org 389 as _ldap._tcp.Default-First-Site-Name._sites.ForestDnsZones.highspec.org.
Checking 0 100 389 raspberrypi2.highspec.org. against SRV _ldap._tcp.Default-First-Site-Name._sites.ForestDnsZones.highspec.org raspberrypi2.highspec.org 389
No DNS updates needed
root@raspberrypi2:/opt/samba/var# samba_dnsupdate --verbose --all-name
IPs: ['192.168.0.21']
force update: A raspberrypi2.highspec.org 192.168.0.21
force update: NS highspec.org raspberrypi2.highspec.org
force update: NS _msdcs.highspec.org raspberrypi2.highspec.org
force update: A highspec.org 192.168.0.21
force update: SRV _ldap._tcp.highspec.org raspberrypi2.highspec.org 389
force update: SRV _ldap._tcp.dc._msdcs.highspec.org raspberrypi2.highspec.org 389
force update: SRV _ldap._tcp.62640a65-1803-482b-b2c2-4827919a2c2d.domains._msdcs.highspec.org raspberrypi2.highspec.org 389
force update: SRV _kerberos._tcp.highspec.org raspberrypi2.highspec.org 88
force update: SRV _kerberos._udp.highspec.org raspberrypi2.highspec.org 88
force update: SRV _kerberos._tcp.dc._msdcs.highspec.org raspberrypi2.highspec.org 88
force update: SRV _kpasswd._tcp.highspec.org raspberrypi2.highspec.org 464
force update: SRV _kpasswd._udp.highspec.org raspberrypi2.highspec.org 464
force update: CNAME 987e75b2-95b8-4ee6-a5ca-52f5b30af856._msdcs.highspec.org raspberrypi2.highspec.org
force update: SRV _ldap._tcp.Default-First-Site-Name._sites.highspec.org raspberrypi2.highspec.org 389
force update: SRV _ldap._tcp.Default-First-Site-Name._sites.dc._msdcs.highspec.org raspberrypi2.highspec.org 389
force update: SRV _kerberos._tcp.Default-First-Site-Name._sites.highspec.org raspberrypi2.highspec.org 88
force update: SRV _kerberos._tcp.Default-First-Site-Name._sites.dc._msdcs.highspec.org raspberrypi2.highspec.org 88
force update: SRV _ldap._tcp.pdc._msdcs.highspec.org raspberrypi2.highspec.org 389
force update: A gc._msdcs.highspec.org 192.168.0.21
force update: SRV _gc._tcp.highspec.org raspberrypi2.highspec.org 3268
force update: SRV _ldap._tcp.gc._msdcs.highspec.org raspberrypi2.highspec.org 3268
force update: SRV _gc._tcp.Default-First-Site-Name._sites.highspec.org raspberrypi2.highspec.org 3268
force update: SRV _ldap._tcp.Default-First-Site-Name._sites.gc._msdcs.highspec.org raspberrypi2.highspec.org 3268
force update: A DomainDnsZones.highspec.org 192.168.0.21
force update: SRV _ldap._tcp.DomainDnsZones.highspec.org raspberrypi2.highspec.org 389
force update: SRV _ldap._tcp.Default-First-Site-Name._sites.DomainDnsZones.highspec.org raspberrypi2.highspec.org 389
force update: A ForestDnsZones.highspec.org 192.168.0.21
force update: SRV _ldap._tcp.ForestDnsZones.highspec.org raspberrypi2.highspec.org 389
force update: SRV _ldap._tcp.Default-First-Site-Name._sites.ForestDnsZones.highspec.org raspberrypi2.highspec.org 389
29 DNS updates and 0 DNS deletes needed
Successfully obtained Kerberos ticket to DNS/raspberrypi1.highspec.org as RASPBERRYPI2$
update(nsupdate): A raspberrypi2.highspec.org 192.168.0.21
Calling nsupdate for A raspberrypi2.highspec.org 192.168.0.21 (add)
Successfully obtained Kerberos ticket to DNS/raspberrypi1.highspec.org as RASPBERRYPI2$
Outgoing update query:
;; ->>HEADER<<- id:="" nbsp="" noerror="" opcode:="" p="" status:="" update="">;; flags:; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
;; UPDATE SECTION:
raspberrypi2.highspec.org. 900 IN A 192.168.0.21

; TSIG error with server: tsig verify failure
Failed nsupdate: 2
update(nsupdate): NS highspec.org raspberrypi2.highspec.org
Calling nsupdate for NS highspec.org raspberrypi2.highspec.org (add)
Successfully obtained Kerberos ticket to DNS/raspberrypi1.highspec.org as RASPBERRYPI2$
Outgoing update query:
;; ->>HEADER<<- id:="" nbsp="" noerror="" opcode:="" p="" status:="" update="">;; flags:; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
;; UPDATE SECTION:
highspec.org. 900 IN NS raspberrypi2.highspec.org.

; TSIG error with server: tsig verify failure
Failed nsupdate: 2
update(nsupdate): NS _msdcs.highspec.org raspberrypi2.highspec.org
Calling nsupdate for NS _msdcs.highspec.org raspberrypi2.highspec.org (add)
Successfully obtained Kerberos ticket to DNS/raspberrypi1.highspec.org as RASPBERRYPI2$
Outgoing update query:
;; ->>HEADER<<- id:="" nbsp="" noerror="" opcode:="" p="" status:="" update="">;; flags:; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
;; UPDATE SECTION:
_msdcs.highspec.org. 900 IN NS raspberrypi2.highspec.org.

0 コメント:

コメントを投稿

登録: コメントの投稿 (Atom)

自己紹介

自分の写真
東京都, Japan
憂鬱な凍死家です。こちらではmixiとは異なり固めの話題中心です。

Total Page View

Categories
Powered by Blogger.

Popular Posts

  • 脱退した持株会の株式移管
     野村ネット&コール(野村證券のオンライン専用支店)で株式移管手数料が無料から大幅値上げ。    転職のため脱退した持株会の株式移管を検討してwebを確認すると「手数料10800円」という悲しい数字が。以前一部株式引き出しした際は無料だった気が、と思って検索すると以下の通...
  • account aggregation 楽天家計簿編
      資産管理のために各種銀行/証券口座の情報を集約してくれるaccount aggregation であるが、2024年にiOS向けの楽天家計簿がサービス開始した。    観察すると中身はミロク情報サービスのものを利用している様だ。早速試用してみたのだが、普及させる気があるのか?...
  • HSBC AU security device
     HSBC AUのプレミア口座を保持しているが、最近セキュリティデバイスが新型に切り替わった。新型のデバイスが送付される筈なのだが、全く届かない。  で、気付いたら新型デバイスが無いとinternet bankingにlogin出来ない事が判明。  先ずはsecurity ...
  • 光インターネット接続サービス開通
      今更だが、自宅に光インターネットサービスが開通した。ADSLを酷使していたのだが2021年9月末で遂にサービス終了のため、維持費が高くなるが仕方がない。  今回、プロバイダ経由で屋内に光ファイバ敷設したが、敷設不可という珍しい体験をしたのでblog化。  自宅は築40年の賃貸...
  • FreenasからNAS4Freeへ
     現在Freenas 0.7.5を運用しているのだが、数ヶ月up dateが無かった。調べたところ0.7.5系はNAS4FreeへForkしている。  HP Microserverの内蔵USBメモリ起動構成としているのだが、これはNAS4Freeへmigration出来るのだ...
  • イナゴと嫁様
     最近は在宅勤務なので証券取引場が開いている時間帯に自宅に居ます。  9月のある日、居間から奇声が。「イナゴ来てくれー」  「イナゴが何故居間に?」  どうも株主優待評論家の桐谷さんお勧め銘柄である ヤーマン で良い材料があり、株価が上昇しており、株主である嫁様が売り抜けようとし...
  • iris keyboard qmk firmware
     久々にIris Keyboardのfirmwareを探したところ、 QMKのサイト に見当たらず。  色々探したところ、 forkしている 様だ。  この辺、良く判っていないので事情をご存知の方教えてください。。
  • HP Microserverでjavaのupdate後remote KVMが接続できなくなる
     HP Microserver firmware 1.4でjavaをupdate後、remote KVMからRACへ接続できなくなった。  原因はjavaのupdateで古い暗号suiteを明示的に禁止しているための様である。  jre1.8.0_171/lib/secu...
  • raspberry pi (raspbian 2015-5-5)でDHCP clientが止まらない対応
     RaspberryPi2を設定中、/etc/network/interfacesでdhcp不使用設定としても、何故かDHCP clientが起動時にip addressを拾って来た。  実害は殆ど無いが気持ち悪いので、dhcpcdを停止した。  停止方法は 以下 を参考...
  • dism /online /cleanup-image /restorehealth で「ソースファイルが見つかりませんでした」と出て修復できないときの対処法
     タイトルが長いですがdism /online /cleanup-image /restorehealth で「ソースファイルが見つかりませんでした」と出て修復できないときの対処法について。  Windows Server 2016でスタートメニューが表示されなくなってしまっ...

Blog Archive

Copyright © Highspec Diary | Powered by Blogger
Design by ThemePix.com | Blogger Theme by Lasantha - Premium Blogger Templates