Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.


Messages - killmasta93

Pages: [1] 2 3 ... 6
1
thank you just sent the email

2
i tried to contact them but no response, i was reading that the support is only commercial and not community

3
i keep seeing logs saying dhcp-dns failed 02
PM if someone want to fix this and will get payed

4
thanks for the reply,
the issue is that it does not update the the IP when it changes to the DNS
im attaching picture

seems as if the dynamic DDNS script of the DHCP is not updating to the reverse zone

ex: window10-pc has an ip 192.168.0.22
then it changes the ip to 192.168.0.60
when i ping it keeps showing 192.168.0.22

also when i do a reverse lookup by ip it does not do the reverse



https://imgur.com/a/kRSS8Pm




5
Hi
Anyone else has gotten this?
going insanse trying to fix this issue

Code: [Select]
r 19 18:35:46 zentyal named[14741]: samba_dlz: cancelling transaction on zone test.local
Apr 19 18:35:49 zentyal dhcpd[3779]: DHCPREQUEST for 192.168.0.21 from 54:ee:75:98:1f:c1 via eth0: unknown lease 192.168.0.21.
Apr 19 18:35:49 zentyal named[14741]: samba_dlz: starting transaction on zone test.local
Apr 19 18:35:49 zentyal named[14741]: client @0x7f0c3c11da90 192.168.0.22#53411: update 'test.local/IN' denied
Apr 19 18:35:49 zentyal named[14741]: samba_dlz: cancelling transaction on zone test.local
Apr 19 18:35:49 zentyal named[14741]: samba_dlz: starting transaction on zone test.local
Apr 19 18:35:49 zentyal named[14741]: samba_dlz: disallowing update of signer=WINDOWS10-PC\$\@TEST.LOCAL name=windows10-pc.test.local type=AAAA error=insufficient access rights
Apr 19 18:35:49 zentyal named[14741]: client @0x7f0c3c11da90 192.168.0.22#61540/key WINDOWS10-PC\$\@TEST.LOCAL: updating zone 'test.local/NONE': update failed: rejected by secure update (REFUSED)
Apr 19 18:35:49 zentyal named[14741]: samba_dlz: cancelling transaction on zone test.local
Apr 19 18:36:40 zentyal named[14741]: resolver priming query complete
Apr 19 18:36:49 zentyal dhcpd[3779]: DHCPREQUEST for 192.168.0.21 from 54:ee:75:98:1f:c1 via eth0: unknown lease 192.168.0.21.
Apr 19 18:37:50 zentyal dhcpd[3779]: DHCPREQUEST for 192.168.0.21 from 54:ee:75:98:1f:c1 via eth0: unknown lease 192.168.0.21.
Apr 19 18:38:46 zentyal samba[1864]: [2022/04/19 18:38:46.438481,  0] ../lib/util/util_runcmd.c:327(samba_runcmd_io_handler)
Apr 19 18:38:46 zentyal samba[1864]:   /usr/sbin/samba_kcc: ldb_wrap open of secrets.ldb
Apr 19 18:38:50 zentyal dhcpd[3779]: DHCPREQUEST for 192.168.0.21 from 54:ee:75:98:1f:c1 via eth0: unknown lease 192.168.0.21.
Apr 19 18:39:50 zentyal dhcpd[3779]: DHCPREQUEST for 192.168.0.21 from 54:ee:75:98:1f:c1 via eth0: unknown lease 192.168.0.21.
Apr 19 18:40:49 zentyal named[14741]: samba_dlz: starting transaction on zone test.local
Apr 19 18:40:49 zentyal named[14741]: client @0x7f0c3c100b70 192.168.0.22#65076: update 'test.local/IN' denied
Apr 19 18:40:49 zentyal named[14741]: samba_dlz: cancelling transaction on zone test.local
Apr 19 18:40:49 zentyal named[14741]: samba_dlz: starting transaction on zone test.local
Apr 19 18:40:49 zentyal named[14741]: samba_dlz: disallowing update of signer=WINDOWS10-PC\$\@TEST.LOCAL name=windows10-pc.test.local type=AAAA error=insufficient access rights
Apr 19 18:40:49 zentyal named[14741]: client @0x7f0c3c100b70 192.168.0.22#53010/key WINDOWS10-PC\$\@TEST.LOCAL: updating zone 'test.local/NONE': update failed: rejected by secure update (REFUSED)

6
Directory and Authentication / Re: Dynamic DNS not working? DHCP
« on: April 19, 2022, 11:45:18 pm »
bump anyone

7
Directory and Authentication / Re: Dynamic DNS not working? DHCP
« on: March 14, 2022, 02:23:32 pm »
Thank you so much for the reply,
I think i realized something, as zentyal i put the mask 255.255.252.0

it only created zone 192.168.3

Code: [Select]
root@apolo:~# ls -l -h /var/lib/bind/
total 8.0K
-rw-r--r-- 1 root root  53 Dec  5 11:12 bind9-default.md5sum
-rw-r--r-- 1 bind bind 344 Mar  8 23:28 db.3.168.192

i think i need to create zones 192.168.1. and 192.168.0

in this case i would need to create manually?

Thank you

8
Directory and Authentication / Re: Dynamic DNS not working? DHCP
« on: March 13, 2022, 04:09:05 pm »
Thanks for the reply, i added the set -x and here is the log

Code: [Select]
Mar 13 10:05:45 apolo named[1632]: samba_dlz: starting transaction on zone domain.local
Mar 13 10:05:45 apolo named[1632]: samba_dlz: allowing update of signer=dhcpduser\@domain.LOCAL name=computer0142.domain.local tcpaddr=127.0.0.1 type=A key=3285713694.sig-apolo.domain.local/160/0
Mar 13 10:05:45 apolo named[1632]: samba_dlz: allowing update of signer=dhcpduser\@domain.LOCAL name=computer0142.domain.local tcpaddr=127.0.0.1 type=A key=3285713694.sig-apolo.domain.local/160/0
Mar 13 10:05:45 apolo named[1632]: client @0x7f3a8d05e450 127.0.0.1#43971/key dhcpduser\@domain.LOCAL: updating zone 'domain.local/NONE': deleting rrset at 'computer0142.domain.local' A
Mar 13 10:05:45 apolo named[1632]: samba_dlz: subtracted rdataset computer0142.domain.local 'computer0142.domain.local.#0113600#011IN#011A#011192.168.0.129'
Mar 13 10:05:45 apolo named[1632]: client @0x7f3a8d05e450 127.0.0.1#43971/key dhcpduser\@domain.LOCAL: updating zone 'domain.local/NONE': adding an RR at 'computer0142.domain.local' A 192.168.0.129
Mar 13 10:05:45 apolo named[1632]: samba_dlz: added rdataset computer0142.domain.local 'computer0142.domain.local.#0113600#011IN#011A#011192.168.0.129'
Mar 13 10:05:45 apolo named[1632]: samba_dlz: committed transaction on zone domain.local
Mar 13 10:05:45 apolo sh[1206]: Reply from update query:
Mar 13 10:05:45 apolo sh[1206]: ;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id:  22250
Mar 13 10:05:45 apolo sh[1206]: ;; flags: qr; ZONE: 1, PREREQ: 0, UPDATE: 0, ADDITIONAL: 1
Mar 13 10:05:45 apolo sh[1206]: ;; ZONE SECTION:
Mar 13 10:05:45 apolo sh[1206]: ;domain.local.#011#011#011IN#011SOA
Mar 13 10:05:45 apolo sh[1206]: ;; TSIG PSEUDOSECTION:
Mar 13 10:05:45 apolo sh[1206]: 3285713694.sig-apolo.domain.local. 0 ANY TSIG#011gss-tsig. 1647183945 300 28 BAQF//////8AAAAAPkZ2GS95H5uFZHD94B91pQ== 22250 NOERROR 0
Mar 13 10:05:45 apolo sh[1206]: + result1=0
Mar 13 10:05:45 apolo sh[1206]: + nsupdate -g -d
Mar 13 10:05:45 apolo sh[1206]: Sending update to 127.0.0.1#53
Mar 13 10:05:45 apolo named[1632]: client @0x7f3a8c0e0260 127.0.0.1#33057/key domain.local: updating zone '168.192.in-addr.arpa/IN': update failed: not authoritative for update zone (NOTAUTH)
Mar 13 10:05:45 apolo sh[1206]: Outgoing update query:
Mar 13 10:05:45 apolo sh[1206]: ;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id:  38967
Mar 13 10:05:45 apolo sh[1206]: ;; flags:; ZONE: 1, PREREQ: 0, UPDATE: 2, ADDITIONAL: 1
Mar 13 10:05:45 apolo sh[1206]: ;; ZONE SECTION:
Mar 13 10:05:45 apolo sh[1206]: ;0.168.192.in-addr.arpa.#011#011IN#011SOA
Mar 13 10:05:45 apolo sh[1206]: ;; UPDATE SECTION:
Mar 13 10:05:45 apolo sh[1206]: 129.0.168.192.in-addr.arpa. 0#011ANY#011PTR
Mar 13 10:05:45 apolo sh[1206]: 129.0.168.192.in-addr.arpa. 3600 IN#011PTR#011computer0142.domain.local.
Mar 13 10:05:45 apolo sh[1206]: ;; TSIG PSEUDOSECTION:
Mar 13 10:05:45 apolo sh[1206]: domain.local.#011#0110#011ANY#011TSIG#011hmac-md5.sig-alg.reg.int. 1647183945 300 16 Ydfh3gHQ+6JpafevDI/ugw== 38967 NOERROR 0
Mar 13 10:05:45 apolo sh[1206]: Reply from update query:
Mar 13 10:05:45 apolo sh[1206]: ;; ->>HEADER<<- opcode: UPDATE, status: NOTAUTH, id:  38967
Mar 13 10:05:45 apolo sh[1206]: ;; flags: qr; ZONE: 1, PREREQ: 0, UPDATE: 0, ADDITIONAL: 1
Mar 13 10:05:45 apolo sh[1206]: ;; ZONE SECTION:
Mar 13 10:05:45 apolo sh[1206]: ;0.168.192.in-addr.arpa.#011#011IN#011SOA
Mar 13 10:05:45 apolo sh[1206]: ;; TSIG PSEUDOSECTION:
Mar 13 10:05:45 apolo sh[1206]: domain.local.#011#0110#011ANY#011TSIG#011hmac-md5.sig-alg.reg.int. 1647183945 300 16 bHQ2fl/tXHqapHt7WnY9Pg== 38967 NOERROR 0
Mar 13 10:05:45 apolo sh[1206]: + result2=2
Mar 13 10:05:45 apolo sh[1206]: + result=02
Mar 13 10:05:45 apolo sh[1206]: + '[' 02 '!=' 00 ']'
Mar 13 10:05:45 apolo sh[1206]: + logger 'DHCP-DNS Update failed: 02'
Mar 13 10:05:45 apolo dhcpd: DHCP-DNS Update failed: 02
Mar 13 10:05:45 apolo dhcpd[1206]: execute: /usr/share/zentyal-dhcp/dhcp-dyndns.sh exit status 512
Mar 13 10:05:45 apolo sh[1206]: + exit 02
Mar 13 10:05:45 apolo dhcpd[1206]: DHCPREQUEST for 192.168.0.129 from c8:d3:ff:a4:b8:e5 (computer0142) via eth0
Mar 13 10:05:45 apolo dhcpd[1206]: DHCPACK on 192.168.0.129 to c8:d3:ff:a4:b8:e5 (computer0142) via eth0
Mar 13 10:05:45 apolo named[1632]: samba_dlz: starting transaction on zone domain.local
Mar 13 10:05:45 apolo named[1632]: client @0x7f3a8c010410 192.168.0.129#64319: update 'domain.local/IN' denied
Mar 13 10:05:45 apolo named[1632]: samba_dlz: cancelling transaction on zone domain.local
Mar 13 10:05:45 apolo named[1632]: samba_dlz: starting transaction on zone domain.local
Mar 13 10:05:45 apolo named[1632]: samba_dlz: disallowing update of signer=computer0142\$\@domain.LOCAL name=computer0142.domain.local type=AAAA error=insufficient access rights
Mar 13 10:05:45 apolo named[1632]: client @0x7f3a8c010410 192.168.0.129#54824/key computer0142\$\@domain.LOCAL: updating zone 'domain.local/NONE': update failed: rejected by secure update (REFUSED)
Mar 13 10:05:45 apolo named[1632]: samba_dlz: cancelling transaction on zone domain.local
Mar 13 10:05:55 apolo samba[2055]: [2022/03/13 10:05:55.343431,  0] ../lib/util/util_runcmd.c:327(samba_runcmd_io_handler)
Mar 13 10:05:55 apolo samba[2055]:   /usr/sbin/samba_kcc: ldb_wrap open of secrets.ldb

i then ran this to see if it has to do with app armor but nothing either

Code: [Select]
root@apolo:~# sudo egrep -i apparmor /var/log/syslog
root@apolo:~#

Thank you


9
Directory and Authentication / Re: Dynamic DNS not working? DHCP
« on: March 11, 2022, 12:54:55 am »
BUMP?

10
Directory and Authentication / Dynamic DNS not working? DHCP
« on: March 09, 2022, 05:35:21 am »
Hi i was wondering if someone else has had this issue before,
Currently zentyal clean install 6.2
I can reverse lookup the name of the computer which gives me the ip
but if i try to put the IP in the nslookup it says cannot find

i keep seeing this on the log

Code: [Select]
execute: /usr/share/zentyal-dhcp/dhcp-dyndns.sh exit status 512
Code: [Select]
root@apolo:~# nslookup
> computer0559
Server: 127.0.0.1
Address: 127.0.0.1#53

Name: computer0559.domain.local
Address: 192.168.0.100
> 192.168.0.100
** server can't find 100.0.168.192.in-addr.arpa: NXDOMAIN



and also this

Code: [Select]
Mar  8 23:28:57 apolo named[1632]: samba_dlz: disallowing update of signer=computer0020\$\@domain.LOCAL name=computer0020.domain.local type=AAAA error=insufficient access rights
Mar  8 23:28:57 apolo named[1632]: client @0x7f3a8c0277e0 192.168.0.52#65394/key computer0020\$\@domain.LOCAL: updating zone 'domain.local/NONE': update failed: rejected by secure update (REFUSED)


I thought it was the appamor i even tried to disable it
Code: [Select]
ln -s /etc/apparmor.d/usr.sbin.dhcpd /etc/apparmor.d/disable/
apparmor_parser -R /etc/apparmor.d/usr.sbin.dhcpd

and rebooted the server same issue

any ideas?

11
Installation and Upgrades / Re: odd issue with bind?
« on: January 11, 2022, 11:34:42 pm »
Thanks for the reply, it seems that changing the DNS forwarders to my pfsense seemed to fix the issue

12
Installation and Upgrades / Re: odd issue with bind?
« on: December 27, 2021, 07:01:46 pm »
Thanks for the reply,
This is my config i currently i have
its currently trusted

Code: [Select]
options {
        sortlist {
                192.168.1.0/24;
        };
    directory "/var/cache/bind";

    // If there is a firewall between you and nameservers you want
    // to talk to, you might need to uncomment the query-source
    // directive below.  Previous versions of BIND always asked
    // questions using port 53, but BIND 8.1 and later use an unprivileged
    // port by default.

    //query-source address * port 53;
    //transfer-source * port 53;
    //notify-source * port 53;

        // If your ISP provided one or more IP addresses for stable
        // nameservers, you probably want to use them as forwarders.
        forward first;
        forwarders {
                8.8.8.8;
        };

        tkey-gssapi-keytab "/var/lib/samba/private/dns.keytab";

    auth-nxdomain no;    # conform to RFC1035

    allow-query { any; };
    allow-recursion { trusted; };
    allow-query-cache { trusted; };
    allow-transfer { internal-local-nets; };
};

logging { category lame-servers { null; }; };

13
Installation and Upgrades / odd issue with bind? (solved)
« on: December 21, 2021, 05:25:50 am »
Hi i was wondering if someone else has had this issue before,
Recently the server was working fine but im getting to see this error
Code: [Select]
root@apolo:~# service bind9 status
● bind9.service - BIND Domain Name Server
   Loaded: loaded (/lib/systemd/system/bind9.service; enabled; vendor preset: enabled)
   Active: active (running) since Mon 2021-12-20 23:13:55 -05; 8min ago
     Docs: man:named(8)
 Main PID: 2774 (named)
    Tasks: 4 (limit: 2279)
   CGroup: /system.slice/bind9.service
           └─2774 /usr/sbin/named -f -u bind -4

Dec 20 23:22:17 apolo named[2774]: client @0x7f29ad10e650 192.168.60.2#33027 (www.google.com): query (cache) 'www.google.com/AAAA/IN' denied
Dec 20 23:22:17 apolo named[2774]: client @0x7f29ad10e650 192.168.60.2#46042 (www.google.com): query (cache) 'www.google.com/A/IN' denied
Dec 20 23:22:17 apolo named[2774]: client @0x7f29ad10e650 192.168.60.2#33027 (www.google.com): query (cache) 'www.google.com/AAAA/IN' denied
Dec 20 23:22:17 apolo named[2774]: client @0x7f29ad10e650 192.168.60.2#46042 (www.google.com): query (cache) 'www.google.com/A/IN' denied
Dec 20 23:22:17 apolo named[2774]: client @0x7f29ad10e650 192.168.60.2#33027 (www.google.com): query (cache) 'www.google.com/AAAA/IN' denied
Dec 20 23:22:17 apolo named[2774]: client @0x7f29ad10e650 192.168.60.2#46042 (www.google.com): query (cache) 'www.google.com/A/IN' denied
Dec 20 23:22:17 apolo named[2774]: client @0x7f29ad10e650 192.168.60.2#46042 (www.google.com): query (cache) 'www.google.com/A/IN' denied
Dec 20 23:22:17 apolo named[2774]: client @0x7f29ad10e650 192.168.60.2#33027 (www.google.com): query (cache) 'www.google.com/AAAA/IN' denied
Dec 20 23:22:17 apolo named[2774]: client @0x7f29ad10e650 192.168.60.2#46042 (www.google.com): query (cache) 'www.google.com/A/IN' denied
Dec 20 23:22:17 apolo named[2774]: client @0x7f29ad10e650 192.168.60.2#33027 (www.google.com): query (cache) 'www.google.com/AAAA/IN' denied

its when i try to connect to VPN which i use openvpn pfsense, whcih it does not let me navigate, but whats odd it was working fine before

14
Directory and Authentication / Re: Netlogon? Scripts
« on: December 09, 2021, 03:43:04 pm »
Thanks for the reply,
so i fixed the permission issue
currently logged in as admin in the windows machine but not getting the net logon im attaching pictures

https://imgur.com/rGULNnK.png

15
Directory and Authentication / Re: Netlogon? Scripts
« on: December 09, 2021, 05:05:43 am »
so it seems an issue with the netlogon it says that i do now have permission which is odd any ideas?

Pages: [1] 2 3 ... 6