I ran into this as well. So this means that if I use Samba file sharing I cannot add DNS records unless I add another node just for DNS ? Or is there some way to add extra records with Samba ?
Hi @rpfeifer
Ever heard of Microsoftâs RSAT Tools?
Install these (eg DNS, AD User&Group) on an appropriate AD integrated workstation, log in as Domain Admin and do what you must.
This works for NS7 & NS8.
There are also other tools, but these are from Microsoft, and they work.
My 2 cents
Andy
2 Likes
To be honest, no, never heard of RSAT tools. But then, I very rarely use Windows (only as a last resort, prefer to avoid if possible). Does this work with DNS, or just AD ?
It works with both DNS and with AD, depending what modules for RSAT you load / use. There several, a lot have no use in NS/ / NS8
And you should not. NS8 and default (CORE) modules/app should be able to work by itself. As always please file a bug if you find core functionality is not working properly. Advisories on on using tools to make core functionality âworkâ, is like an obscure call center tell you to open up your PC for there is a severe issue.
@LayLow / LazyLow
Samba is a key component of NethServer even in NS8.
And using RSAT tools is one of the ways even @davidep , one of or key developers suggests using.
But as a Samba ignorant, I do suppose your none existant know how is more relavant than that of key developersâŠ
Samba still has a LOT of caveats in NS8, seems lot of other stuff was prioritizedâŠ
Yet it still works very well, administration is more than lacking, and stuff like WSDDâŠ
My 2 cents
Andy
1 Like
Agree on samba being a (administration feature lacking) key component of NS8 and rsat being a relevant AD companion tool, but find some of the other comments unnecessary.
Please, refrain from unrespectful/personal âattacksâ, flame wars / knowledge battles.
5 Likes
Management of Internal AD/DC samba DNS was never part of NethServer (neither on ns6 nor ns7). DNS was handled by other modules or externally.
On NS8, internal samba DNS server is aware of nodeâs resolv.conf, at least (IIRC).
Firewall / Gateway functions being split of off NS8 could make having management of samba DNS a nice-to-have feature on networks lacking a proper DNS server. But in my opinion -for the time being- devs shall prioritize or address better management of users/group permissions, recycle bin, wsdd⊠as Andy an other users pointed in other past threads.
Nothing wrong in desiring NS8 to be self-sufficient and not dependant on extra tools, but it was Windows Server who established a path where RSAT cannot be disregarded or ignored when in need of this and many other settings.
5 Likes
Thanks for your replies. My issue is not really with Samba, but with the inability to configure DNS while using it. As a Samba ignorant, itâs not clear to me what DNS really has to do with Samba. Iâm currently evaluating a migration from SME, which is in the same sinking boat as NS7 (caused by the expiry and demise of CentOS). It has no problem providing full DNS configuration along side Samba without need to choose one or the other. I would argue that requiring some obscure third party (Windows only) tool to configure it is not really a viable option (unless you are developer). I realize that NS8 is still relatively new and under development, but at least some documentation calling out what is necessary would useful for the brave.
Hi @rpfeifer
DNS is an integral part of Samba-AD, as per Microsoft.
Two DNS servers canât run on the same host, as there would be a port 53 UDP conflict.
You chose sambaâŠ
Iâm not happy with this either, but system NS8 was given priority due to IBM/RedHat/Centos issues. There are still a lot of caveats. One is the lack of a GUI to administrate the DNS contained in Samba-ADâŠ
My 2 cents
Andy
2 Likes
NS8 (and NS7) DNS doesnât need a GUI.
It is a VERY VERY lacking DNS, so nobody should bother with it if they need some real DNS. I never use it.
I hoped NS8 (or NethSecurity) would have a nice complete DNS (and I proposed Technitium), but, tough luck.
1 Like
Thanks for replies. Is it possible to change the Damba DNS port to move it out of the way so I could install, say, DNSMasq on the host to provide DHCP/DNS services ?
Your NS8 IS the host? It is physical?
Because if it ainât, I donât see why you need to change any port on NS8.
My NS8 is running on phyisical hardware. Iâd like to run DNS from there as well (hosted either from NS8 or directly on OS), so I can add records for some other PC and things on the network (and preferably assigning fixed addresses for them via DHCP, but one thing at a time) so I donât have to refer to them by address. I really donât want to have to set up an extra node to provide this.
Yeah we are at the point where physical means more restrictions not less. 
Maybe a container with a different address binding (not a bridge) can solve the whole thing.
As I said, I like Technitium.
I use RSAT and it works very well. But my Samba DNS is still slow(