使用samba工具从内部samba PDC DNS中删除DNS记录

Question

我想从samba (samba4.10)中删除一个接口(eno0s3，10.10.37.166)。

我在我的smb.conf中添加了：

    bind interfaces only = yes
    interfaces = lo enp0s8

enp0s8为10.21.0.2。这就是我现在拥有的：

[root@site-ad ~]# samba-tool dns query localhost site.example.pl @ ALL -U administrator
Password for [example\administrator]:
  Name=, Records=4, Children=0
    SOA: serial=64, refresh=900, retry=600, expire=86400, minttl=3600, ns=site-ad.site.example.pl., email=hostmaster.site.example.pl. (flags=600000f0, serial=64, ttl=3600)
    NS: site-ad.site.example.pl. (flags=600000f0, serial=110, ttl=900)
    A: 10.10.37.166 (flags=600000f0, serial=110, ttl=900)
    A: 10.21.0.2 (flags=600000f0, serial=110, ttl=900)
  Name=_msdcs, Records=0, Children=0
  Name=_sites, Records=0, Children=1
  Name=_tcp, Records=0, Children=4
  Name=_udp, Records=0, Children=2
  Name=DomainDnsZones, Records=0, Children=2
  Name=ForestDnsZones, Records=0, Children=2
  Name=site-ad, Records=2, Children=0
    A: 10.10.37.166 (flags=f0, serial=110, ttl=900)
    A: 10.21.0.2 (flags=f0, serial=110, ttl=900)

试过：

samba_dnsupdate --verbose --all-names --current-ip=10.21.0.2

其结果是，dns_update_cache中只添加了10.21.0.2：

Rebuilding cache at /var/lib/samba/private/dns_update_cache
Adding A site-ad.site.example.pl 10.21.0.2 to dns_update_cache
Adding NS site.example.pl site-ad.site.example.pl to dns_update_cache
Adding NS _msdcs.site.example.pl site-ad.site.example.pl to dns_update_cache
Adding A site.example.pl 10.21.0.2 to dns_update_cache
[lot of SRV records below....]

...but桑巴-工具dns查询仍然返回10.10.37.166如上所述的记录。

尝试在区域设置为".“的情况下使用dns删除。错误：

[root@site-ad ~]# samba-tool dns delete localhost . site-ad.example.pl A 10.10.37.166 -U administrator
Password for [example\administrator]:
ERROR(runtime): uncaught exception - (1383, 'WERR_INTERNAL_DB_ERROR')
  File "/usr/lib/python3.7/site-packages/samba/netcmd/__init__.py", line 185, in _run
    return self.run(*args, **kwargs)
  File "/usr/lib/python3.7/site-packages/samba/netcmd/dns.py", line 1070, in run
    raise e
  File "/usr/lib/python3.7/site-packages/samba/netcmd/dns.py", line 1066, in run
    del_rec_buf)

还有其他方法可以使用samba实用程序删除此记录吗？

Answer 1

只是想明白了。区域应设置为王国：

samba-tool dns delete localhost site.example.pl site-ad.site.example.pl A 10.10.37.166 -U administrator
samba-tool dns delete localhost site.example.pl site.example.pl A 10.10.37.166 -U administrator

Answer 2

这也可能是由于呼叫用户缺乏组成员而造成的，可以很容易地通过以下方法解决：

samba-tool group addmembers 'Domain Admins' <username from -U>