Discussion:
[Samba] Sites And Services Setup
James
2014-10-31 17:04:27 UTC
Permalink
Hello,

I have 3 sites with 2 DC's each. (1)-------(2)-------(3) connected
by wan links. I have created using ADSS tool. Subnets, Inter-Site
Transports via. IP and 2 other sites. Left the initial site as
Default-First-Site-Name. It appears the KCC continues to automatically
configure replication links to all DC's in all sites. I would like to
limit replication from Site 1 to strictly Site 2. The same with Site 3
being restricted to replicate form site 2. What am I missing? Do I need
to configure Bridgehead servers? Thanks.
--
-James
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/options/samba
Zerwes, Klaus
2014-11-05 11:25:16 UTC
Permalink
I have similar problems [@see my post: sites and services and automatic creation of replication connections in NTDS Settings] and doubted if the Default-First-Site-Name missing in my setup to cause the problems.
But according to your post it behaves the same.
It looks like the sambe_kcc is doing something wrong regarding the intersite replication or I have a nod in my head.

If I find some time I will have a look at samba_kcc.

Regards
Klaus

--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/options/samba
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/options/samba
James
2014-11-05 13:16:28 UTC
Permalink
Klaus,

The only thing I haven't tried is to disable site link transitivity.

http://technet.microsoft.com/en-us/library/dd736189%28v=ws.10%29.aspx
Post by Zerwes, Klaus
But according to your post it behaves the same.
It looks like the sambe_kcc is doing something wrong regarding the intersite replication or I have a nod in my head.
If I find some time I will have a look at samba_kcc.
Regards
Klaus
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/options/samba
--
-James
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/options/samba
Zerwes, Klaus
2014-11-05 13:53:38 UTC
Permalink
Post by James
Klaus,
The only thing I haven't tried is to disable site link transitivity.
http://technet.microsoft.com/en-us/library/dd736189%28v=ws.10%29.aspx
I have disabled it from start on (i.e. before joining the first siteDC), as from my understanding it should be disabled to achieve the desired result of replicating only from and to the headquarter DC.
As I noticed the problems, I have re-enabled it and run samba_kcc again, unfortunately without any differences in the result.

Hope that someone more familiar with the matter can help or at least explain what is going wrong (even if the thing that goes wrong is my mind).

Greetings
Klaus
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/options/samba
Thomas Maerz
2016-06-25 03:15:39 UTC
Permalink
Another old thread I’m resurrecting; apologies, but I have also been experiencing this issue. I have 10 international remote sites over very lossy WAN links. Getting traffic to them from HQ is a challenge; them trying to talk directly each other over umpteen paths is even worse. They are able to accomplish this (somewhat) because we have a mesh VPN setup with direct site-to-site connectivity, but I constantly have replication failures on almost all my S4 DC’s because of this.

As far as I can tell, S4 is ignoring disabling the “Bridge all Site Links” button. I also read Klaus’ description of the issue and it is exactly what I am seeing. S4 is an ideal use case for remote offices because you can run it on small hardware or VMWare (or both) for free vs a Server + MS license ($2k). RODC support would be nice as well because no one is editing the directory from out there!

Has there been any development on this subject? Should I file a bug?

Thomas Maerz
Post by Zerwes, Klaus
Post by James
Klaus,
The only thing I haven't tried is to disable site link transitivity.
http://technet.microsoft.com/en-us/library/dd736189%28v=ws.10%29.aspx
I have disabled it from start on (i.e. before joining the first siteDC), as from my understanding it should be disabled to achieve the desired result of replicating only from and to the headquarter DC.
As I noticed the problems, I have re-enabled it and run samba_kcc again, unfortunately without any differences in the result.
Hope that someone more familiar with the matter can help or at least explain what is going wrong (even if the thing that goes wrong is my mind).
Greetings
Klaus
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/options/samba
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/options/samba
l***@gmail.com
2016-06-27 13:36:29 UTC
Permalink
Post by Thomas Maerz
Another old thread I’m resurrecting; apologies, but I have also been experiencing this issue. I have 10 international remote sites over very lossy WAN links. Getting traffic to them from HQ is a challenge; them trying to talk directly each other over umpteen paths is even worse. They are able to accomplish this (somewhat) because we have a mesh VPN setup with direct site-to-site connectivity, but I constantly have replication failures on almost all my S4 DC’s because of this.
As far as I can tell, S4 is ignoring disabling the “Bridge all Site Links” button. I also read Klaus’ description of the issue and it is exactly what I am seeing. S4 is an ideal use case for remote offices because you can run it on small hardware or VMWare (or both) for free vs a Server + MS license ($2k). RODC support would be nice as well because no one is editing the directory from out there!
Has there been any development on this subject? Should I file a bug?
Thomas Maerz
Post by Zerwes, Klaus
Post by James
Klaus,
The only thing I haven't tried is to disable site link transitivity.
http://technet.microsoft.com/en-us/library/dd736189%28v=ws.10%29.aspx
I have disabled it from start on (i.e. before joining the first siteDC), as from my understanding it should be disabled to achieve the desired result of replicating only from and to the headquarter DC.
As I noticed the problems, I have re-enabled it and run samba_kcc again, unfortunately without any differences in the result.
Hope that someone more familiar with the matter can help or at least explain what is going wrong (even if the thing that goes wrong is my mind).
Greetings
Klaus
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/options/samba
Look into using 'kccsrv:samba_kcc=true' in your smb.conf.

https://www.samba.org/samba/history/samba-4.3.0.html
--
-James
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/options/samba
Loading...