Есть ВПС с установленной на неё SAMBA в роли AD и поднятым VPN. Суть в том что в домен xp/7 залетает, но папки netlogon, sysvol не открывают, либо вечный логин, либо путь не найден.Дристянка вообще в домен не заходит, сразу путь не найден.Щито делать? Конфиги кидаю ниже.
/etc/samba/smb.conf# Global parameters[global] workgroup = DC realm = DC.KONONOV.PW netbios name = PDC server role = active directory domain controller dns forwarder = 8.8.8.8 idmap_ldb:use rfc2307 = yes idmap uid = 10000 - 40000 idmap gid = 10000 - 40000 winbind enum groups = yes winbind enum users = yes winbind use default domain = yes template shell = /bin/bash winbind refresh tickets = yes[netlogon] path = /var/lib/samba/sysvol/dc.kononov.pw/scripts read only = No security = domain [sysvol] path = /var/lib/samba/sysvol read only = No security = domain
/etc/hosts127.0.0.1 localhost.localdomain localhost10.0.0.1 PDC.dc.kononov.pw PDC
/etc/hostnamePDC
/etc/resolv.confdomain dc.kononov.pwnameserver 10.0.0.1
/etc/pptd.confoption /etc/ppp/pptpd-optionslogwtmplocalip 10.0.0.1remoteip 10.0.0.100-200
/etc/ppp/pptpd-optionsname pptpddomain dc.kononov.pwrefuse-paprefuse-chaprefuse-mschap# Require the peer to authenticate itself using MS-CHAPv2 [Microsoft# Challenge Handshake Authentication Protocol, Version 2] authentication.require-mschap-v2# Require MPPE 128-bit encryption# (note that MPPE requires the use of MSCHAP-V2 during authentication)require-mppe-128# }}}ms-dns 10.0.0.1ms-wins 10.0.0.1proxyarpnodefaultroutelocknobsdcompnovjnovjccompnologfd
ifconfigeth0: flags=4163<UP,BROADCAST,RUNNING,MULTICAST> mtu 1500 inet 91.201.42.108 netmask 255.255.255.0 broadcast 91.201.42.255 inet6 fe80::825:d2ff:fe8c:a856 prefixlen 64 scopeid 0x20<link> ether 0a:25:d2:8c:a8:56 txqueuelen 1000 (Ethernet) RX packets 567087 bytes 471285629 (449.4 MiB) RX errors 0 dropped 0 overruns 0 frame 0 TX packets 495329 bytes 473810584 (451.8 MiB) TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0eth0:1: flags=4163<UP,BROADCAST,RUNNING,MULTICAST> mtu 1500 inet 10.0.0.1 netmask 255.0.0.0 broadcast 10.255.255.255 ether 0a:25:d2:8c:a8:56 txqueuelen 1000 (Ethernet)lo: flags=73<UP,LOOPBACK,RUNNING> mtu 65536 inet 127.0.0.1 netmask 255.0.0.0 inet6 ::1 prefixlen 128 scopeid 0x10<host> loop txqueuelen 0 (Local Loopback) RX packets 586 bytes 76592 (74.7 KiB) RX errors 0 dropped 0 overruns 0 frame 0 TX packets 586 bytes 76592 (74.7 KiB) TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0ppp0: flags=4305<UP,POINTOPOINT,RUNNING,NOARP,MULTICAST> mtu 1496 inet 10.0.0.1 netmask 255.255.255.255 destination 10.0.0.100 ppp txqueuelen 3 (Point-to-Point Protocol) RX packets 169234 bytes 12947470 (12.3 MiB) RX errors 0 dropped 0 overruns 0 frame 0 TX packets 323693 bytes 439740654 (419.3 MiB) TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0
host -t SRV _ldap._tcp.dc.kononov.pw._ldap._tcp.dc.kononov.pw has SRV record 0 100 389 PDC.dc.kononov.pw.
host -t SRV _kerberos._udp.dc.kononov.pw._kerberos._udp.dc.kononov.pw has SRV record 0 100 88 PDC.dc.kononov.pw.
host -t A pdc.dc.kononov.pwpdc.dc.kononov.pw has address 91.201.42.108pdc.dc.kononov.pw has address 10.0.0.1
smbclient -L localhost -U%WARNING: The "idmap uid" option is deprecatedWARNING: The "idmap gid" option is deprecatedDomain=[DC] OS=[Windows 6.1] Server=[Samba 4.3.6-Debian] Sharename Type Comment --------- ---- ------- netlogon Disk sysvol Disk IPC$ IPC IPC Service (Samba 4.3.6-Debian)Domain=[DC] OS=[Windows 6.1] Server=[Samba 4.3.6-Debian] Server Comment --------- ------- KONONOV Samba 4.3.6-Debian Workgroup Master --------- ------- DC KONONOV
smbclient //localhost/netlogon -UAdministrator -c 'ls'WARNING: The "idmap uid" option is deprecatedWARNING: The "idmap gid" option is deprecatedEnter Administrator's password:Domain=[DC] OS=[Windows 6.1] Server=[Samba 4.3.6-Debian] . D 0 Thu Mar 10 20:24:22 2016 .. D 0 Thu Mar 10 20:24:34 2016 4548704 blocks of size 1024. 983920 blocks available
klistTicket cache: FILE:/tmp/krb5cc_0Default principal: administrator@DC.KONONOV.PWValid starting Expires Service principal17.03.2016 19:42:45 18.03.2016 05:42:45 krbtgt/DC.KONONOV.PW@DC.KONONOV.PW renew until 18.03.2016 19:42:40
kinit administrator@DC.KONONOV.PWPassword for administrator@DC.KONONOV.PW:Warning: Your password will expire in 41 days on Чт 28 апр 2016 18:03:11
/etc/sysctl.confnet.ipv4.ip_forward = 1
iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE && iptables-saveiptables --table nat --append POSTROUTING --out-interface ppp0 -j MASQUERADEiptables -I INPUT -s 10.0.0.0/8 -i ppp0 -j ACCEPTiptables --append FORWARD --in-interface eth0 -j ACCEPT
Разобрался, нужно в /etc/hosts добавить10.0.0.1 dc.kononov.pw dcПохоже двачеры могут только дристянку обсуждать, на лоре тоже пидоры сидят
>>1646685 (OP)>putaet DC s ADalso>SAMBA в роли ADv golos prosto, pishi moar
>>1648345sage
>>1648345Huli ti takoy ymnyi ne pomog problemmy rehit?mimo op
