11990 – Incorrect replication of Flags of the reverse zone

Bug 11990 - Incorrect replication of Flags of the reverse zone

Summary: Incorrect replication of Flags of the reverse zone

Status:	NEW

Alias:	None

Product:	Samba 4.1 and newer
Classification:	Unclassified
Component:	AD: LDB/DSDB/SAMDB (show other bugs)
Version:	4.4.4
Hardware:	All All

Importance:	P5 normal (vote)
Target Milestone:	---
Assignee:	Andrew Bartlett
QA Contact:	Samba QA Contact

URL:
Keywords:

Depends on:
Blocks:

Reported:	2016-06-23 10:14 UTC by Arcadiy Ivanov
Modified:	2020-03-02 15:20 UTC (History)
CC List:	1 user (show)

See Also:	https://gitlab.com/samba-team/samba/-/merge_requests/1037

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Arcadiy Ivanov 2016-06-23 10:14:14 UTC

Samba does not replicate DNS_RPC_ZONE_REVERSE flag.

[root@dc1 log]# samba-tool dns zonelist dc1
  3 zone(s) found

  pszZoneName                 : 157.168.192.in-addr.arpa
  Flags                       : **DNS_RPC_ZONE_DSINTEGRATED DNS_RPC_ZONE_UPDATE_SECURE**
  ZoneType                    : DNS_ZONE_TYPE_PRIMARY
  Version                     : 50
  dwDpFlags                   : DNS_DP_AUTOCREATED DNS_DP_FOREST_DEFAULT DNS_DP_ENLISTED 
  pszDpFqdn                   : ForestDnsZones.foo.bar.com

  pszZoneName                 : _msdcs.foo.bar.com
  Flags                       : DNS_RPC_ZONE_DSINTEGRATED DNS_RPC_ZONE_UPDATE_SECURE 
  ZoneType                    : DNS_ZONE_TYPE_PRIMARY
  Version                     : 50
  dwDpFlags                   : DNS_DP_AUTOCREATED DNS_DP_FOREST_DEFAULT DNS_DP_ENLISTED 
  pszDpFqdn                   : ForestDnsZones.foo.bar.com

  pszZoneName                 : foo.bar.com
  Flags                       : DNS_RPC_ZONE_DSINTEGRATED DNS_RPC_ZONE_UPDATE_SECURE 
  ZoneType                    : DNS_ZONE_TYPE_PRIMARY
  Version                     : 50
  dwDpFlags                   : DNS_DP_AUTOCREATED DNS_DP_FOREST_DEFAULT DNS_DP_ENLISTED 
  pszDpFqdn                   : ForestDnsZones.foo.bar.com
[root@dc1 log]# samba-tool dns zonelist pdc1
  3 zone(s) found

  pszZoneName                 : _msdcs.foo.bar.com
  Flags                       : DNS_RPC_ZONE_DSINTEGRATED DNS_RPC_ZONE_UPDATE_SECURE 
  ZoneType                    : DNS_ZONE_TYPE_PRIMARY
  Version                     : 50
  dwDpFlags                   : DNS_DP_AUTOCREATED DNS_DP_FOREST_DEFAULT DNS_DP_ENLISTED 
  pszDpFqdn                   : ForestDnsZones.foo.bar.com

  pszZoneName                 : 157.168.192.in-addr.arpa
  Flags                       : **DNS_RPC_ZONE_REVERSE DNS_RPC_ZONE_DSINTEGRATED DNS_RPC_ZONE_UPDATE_SECURE **
  ZoneType                    : DNS_ZONE_TYPE_PRIMARY
  Version                     : 50
  dwDpFlags                   : DNS_DP_AUTOCREATED DNS_DP_FOREST_DEFAULT DNS_DP_ENLISTED 
  pszDpFqdn                   : ForestDnsZones.foo.bar.com

  pszZoneName                 : foo.bar.com
  Flags                       : DNS_RPC_ZONE_DSINTEGRATED DNS_RPC_ZONE_UPDATE_SECURE 
  ZoneType                    : DNS_ZONE_TYPE_PRIMARY
  Version                     : 50
  dwDpFlags                   : DNS_DP_AUTOCREATED DNS_DP_FOREST_DEFAULT DNS_DP_ENLISTED 
  pszDpFqdn                   : ForestDnsZones.foo.bar.com

Comment 1 Arcadiy Ivanov 2016-06-23 10:15:01 UTC

PDC1 - Windows 2003 Server, level 2
DC1 - Samba 4.4.4

Comment 2 Björn Jacke 2020-01-09 12:48:07 UTC

this is actually nothing that needs to be replicated but it's the dns server, which dynamically should sets the flag for reverse zones. I made a merge request with a fix here:

https://gitlab.com/samba-team/samba/merge_requests/1037