Show Posts
This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
Pages: [1]
1
Installation and Upgrades / Upgrade suggestions
« on: December 06, 2014, 01:17:26 am »
I have a somewhat hosed 3.5 server that I want to migrate to 4.0.
I started with 3.4 on ubuntu 12.04, but at some point it offered to update to 3.5 and ubuntu 14.04. I did so, and it threw errors at the end but after rebooting seemed mostly OK. The events module is broken (won't start) and I sometimes get additional errors when applying changes, but the important bits still work (DNS, DHCP, Samba, Firewall).
Now I want to get it upgraded to 4 (and fix the other issues) but testing the 3.5 -> 4 migration did not work. I'd like to just do a fresh reinstall, I don't mind reconfiguring most of the modules, but I'm worried about preserving my Samba entries. Especially since I have linux servers using this server for auth and they are generating linux uids and gids from bits of the AD entries that I don't have direct access to from the Web UI. Is there an easy way to copy over the AD entries from my 3.5 server to my new 4 server? I can make the 4 server an additional domain controller, which works, but what happens then when the 3.5 server is retired?
Thanks,
-Craig
I started with 3.4 on ubuntu 12.04, but at some point it offered to update to 3.5 and ubuntu 14.04. I did so, and it threw errors at the end but after rebooting seemed mostly OK. The events module is broken (won't start) and I sometimes get additional errors when applying changes, but the important bits still work (DNS, DHCP, Samba, Firewall).
Now I want to get it upgraded to 4 (and fix the other issues) but testing the 3.5 -> 4 migration did not work. I'd like to just do a fresh reinstall, I don't mind reconfiguring most of the modules, but I'm worried about preserving my Samba entries. Especially since I have linux servers using this server for auth and they are generating linux uids and gids from bits of the AD entries that I don't have direct access to from the Web UI. Is there an easy way to copy over the AD entries from my 3.5 server to my new 4 server? I can make the 4 server an additional domain controller, which works, but what happens then when the 3.5 server is retired?
Thanks,
-Craig
2
Installation and Upgrades / HA Experiences
« on: May 23, 2014, 08:15:33 pm »
I'd like to ask what other people's experiences have been with HA, and how they've done their setup.
Personally, I tried to use it but just had too many problems and it made my overall infrastructure less reliable. I had two zentyal instances doing HA with AD, DNS, DHCP, NTP, and routing. My biggest problems were related to DHCP and DNS. It seemed I sometimes got split-brain where both DHCP servers were running, or it would switch DHCP from one server to the other for no apparent reason. This might have been OK, but Zentyal seemed to have problem keeping DNS in sync between the two machines with DHCP and DynDNS. DHCP leases from one server would correctly sync forward and reverse-zone entries between both servers, but not the other way around.
Though overall, HA is very promising, I eventually shutoff the second server as my two servers bickered too much and caused a lot of network problems. Maybe adding a third server for better consensus might have helped? Curious what others have done.
Personally, I tried to use it but just had too many problems and it made my overall infrastructure less reliable. I had two zentyal instances doing HA with AD, DNS, DHCP, NTP, and routing. My biggest problems were related to DHCP and DNS. It seemed I sometimes got split-brain where both DHCP servers were running, or it would switch DHCP from one server to the other for no apparent reason. This might have been OK, but Zentyal seemed to have problem keeping DNS in sync between the two machines with DHCP and DynDNS. DHCP leases from one server would correctly sync forward and reverse-zone entries between both servers, but not the other way around.
Though overall, HA is very promising, I eventually shutoff the second server as my two servers bickered too much and caused a lot of network problems. Maybe adding a third server for better consensus might have helped? Curious what others have done.
3
Installation and Upgrades / static dhcp hosts and reverse mappings
« on: April 22, 2014, 11:48:36 pm »
I have some servers in a network object added as static dhcp hosts (under 192.168.0.0).
The zentyal dhcp configuration does not have a reverse mapping entry for them though (no 0.168.192.in-addr.arpa).
I've run into enough related reverse zone problems that I'm wondering if it would just be better to just have them be specified manually in the interface.
Right now as far as I can tell, zentyal only adds reverse zone entries for dhcp ranges but maybe it should add ones for the interface networks (I'm using 192.168.0.0/16)
The zentyal dhcp configuration does not have a reverse mapping entry for them though (no 0.168.192.in-addr.arpa).
I've run into enough related reverse zone problems that I'm wondering if it would just be better to just have them be specified manually in the interface.
Right now as far as I can tell, zentyal only adds reverse zone entries for dhcp ranges but maybe it should add ones for the interface networks (I'm using 192.168.0.0/16)
4
Installation and Upgrades / forgetting dhcp clients
« on: April 05, 2014, 02:02:23 am »
does anyone else find that zentyal forgets DHCP DNS entries?
5
Installation and Upgrades / reverse dns ddns entries not being replicated in HA
« on: April 05, 2014, 12:37:15 am »
I'm not sure how DNS replication is being done in zentyal (wether through zone transfers or some other method), but I've noticed that DHCP DNS updates for forward mappings get synced between HA members but reverse mappings do not.
so new DHCP host 'node-1' registers
nslookup node-1 dns1 -> 192.168.10.100
nslookup node-1 dns2 -> 192.168.10.100
nslookup 192.168.10.100 dns1 -> node-1
nslookup 192.168.10.100 dns2 -> not found
so new DHCP host 'node-1' registers
nslookup node-1 dns1 -> 192.168.10.100
nslookup node-1 dns2 -> 192.168.10.100
nslookup 192.168.10.100 dns1 -> node-1
nslookup 192.168.10.100 dns2 -> not found
6
Installation and Upgrades / Reverse DNS ddns dhcp updates not working
« on: April 03, 2014, 10:38:05 am »
I have my network configured as 192.168.0.0/16 with two dhcp ranges 192.168.10.10-200 and 192.168.11.10-200
DHCP leases are updating host names in DNS but not the reverse addresses. The dhcp config looks right with two entries for 10/11.168.192.in-addr.arpa but the DNS config looks off as there is only a single reverse zone for 0.168.192.in-addr.arpa set
DHCP leases are updating host names in DNS but not the reverse addresses. The dhcp config looks right with two entries for 10/11.168.192.in-addr.arpa but the DNS config looks off as there is only a single reverse zone for 0.168.192.in-addr.arpa set
7
Installation and Upgrades / floating ips on external interfaces
« on: March 30, 2014, 12:38:09 am »I'm guessing if I want to use 2+ zentyal servers as HA gateways, I should assign a floating IP on the internal AND external networks.
But does each machine also need to have an external IP set for the network interface itself? I could see that wasting a lot of precious external IPs.
Is there a way in the Network GUI to have it be active with a defined mask and range, but not actually claim an IP?
8
Installation and Upgrades / HA questions
« on: March 21, 2014, 11:25:39 pm »
So I've set up two zentyal servers with HA as gateways + DHCP + DNS + AD. So far it's pretty awesome, things seem to work pretty well- I've alternated taking down the servers and for the most part things keep chugging along and get back in sync when the machine comes back up, but I'm not 100% sure about how everything works and would like to understand some things better.
For example, I'm guessing a floating IP is an IP that the cluster machines juggle between themselves depending on who is in charge. Is that right? Is there any point in having more than one?
I assigned a floating IP on the internal network as the gateway target (and ntp, ad, etc), but was wondering if I should also assign one on the external network for incoming traffic as well? and if I do assign a floating external IP can I I leave the external interfaces unassigned (so as too not use 3 static IPs)?
Does DHCP HA work by shutting down all but one of the DHCP servers? I would imagine keeping them all up would be too complicated.
Thanks!
For example, I'm guessing a floating IP is an IP that the cluster machines juggle between themselves depending on who is in charge. Is that right? Is there any point in having more than one?
I assigned a floating IP on the internal network as the gateway target (and ntp, ad, etc), but was wondering if I should also assign one on the external network for incoming traffic as well? and if I do assign a floating external IP can I I leave the external interfaces unassigned (so as too not use 3 static IPs)?
Does DHCP HA work by shutting down all but one of the DHCP servers? I would imagine keeping them all up would be too complicated.
Thanks!
9
Installation and Upgrades / DNS + DHCP problems
« on: March 12, 2014, 01:01:16 am »
Reposting here since I'm using 3.4
---------------------------------------
I wanted to try Zentyal 3.4 to test the high availability features, which would be _awesome_ and I got everything almost working except DHCP DNS updates seem to be broken. I took a look through the bind config files and found some weird things which I'm not sure are issues or not.
It looks like the dhcp server is configured to use a key, but the bind configuration instead relies on local access? I don't see an entry for using the key in the bind config files.
Is zentyal samba configured to use bind as a DNS backend? because I no longer see the zone entry for my domain in the bind config files when the domain module is installed.
I'm using a 192.168.0.0/16 subnet, yet bind is configured with a reverse zone of 0.168.192.in-addr.arpa, which doesn't seem right?
---------------------------------------
I wanted to try Zentyal 3.4 to test the high availability features, which would be _awesome_ and I got everything almost working except DHCP DNS updates seem to be broken. I took a look through the bind config files and found some weird things which I'm not sure are issues or not.
It looks like the dhcp server is configured to use a key, but the bind configuration instead relies on local access? I don't see an entry for using the key in the bind config files.
Is zentyal samba configured to use bind as a DNS backend? because I no longer see the zone entry for my domain in the bind config files when the domain module is installed.
I'm using a 192.168.0.0/16 subnet, yet bind is configured with a reverse zone of 0.168.192.in-addr.arpa, which doesn't seem right?
10
Installation and Upgrades / dns problems with zentyal 3.4 with dhcp + samba4.
« on: March 12, 2014, 12:12:41 am »
I wanted to try Zentyal 3.4 to test the high availability features, which would be _awesome_ and I got everything almost working except DHCP DNS updates seem to be broken. I took a look through the bind config files and found some weird things which I'm not sure are issues or not.
It looks like the dhcp server is configured to use a key, but the bind configuration instead relies on local access? I don't see an entry for using the key in the bind config files.
Is zentyal samba configured to use bind as a DNS backend? because I no longer see the zone entry for my domain in the bind config files when the domain module is installed.
I'm using a 192.168.0.0/16 subnet, yet bind is configured with a reverse zone of 0.168.192.in-addr.arpa, which doesn't seem right?
It looks like the dhcp server is configured to use a key, but the bind configuration instead relies on local access? I don't see an entry for using the key in the bind config files.
Is zentyal samba configured to use bind as a DNS backend? because I no longer see the zone entry for my domain in the bind config files when the domain module is installed.
I'm using a 192.168.0.0/16 subnet, yet bind is configured with a reverse zone of 0.168.192.in-addr.arpa, which doesn't seem right?
11
Installation and Upgrades / zentyal and samba 4 integration
« on: February 02, 2014, 08:58:12 pm »
I'm newly arrived to zentyal but have had some experience setting up a lot of the underlying packages (bind, dhcpd, openldap). A quick look through the docs didn't really make clear to me details on how zentyal handles the integration of some of these.
Like does enabling the samba4 module configure it to integrate with the bind instance that is already running?
If samba4 is used as a controller how is its directory integrated with the openldap directory already running for user auth?
Does the samba4 KDC get utilized then as well?
Can the DHCP server dyndns update hostnames used by bind? or are they integrated using the same ldap backend?
Like does enabling the samba4 module configure it to integrate with the bind instance that is already running?
If samba4 is used as a controller how is its directory integrated with the openldap directory already running for user auth?
Does the samba4 KDC get utilized then as well?
Can the DHCP server dyndns update hostnames used by bind? or are they integrated using the same ldap backend?
Pages: [1]