Then I downloaded Samba-4.19.4 from the official Samba site and made Samba Active Directory DC.
The whole process of Samba configuration and installation passed smoothly without errors.
Samba AD DC works just fine.
I created additional firewall zone (privateDNS) and made it active and default and opened ports needed for Samba AD DC services
Code: Select all
privateDNS
target: default
icmp-block-inversion: no
interfaces:
sources:
services: dns ldap mdns samba samba-client ssh
ports: 123/udp 3268-3269/tcp 636/tcp 464/tcp 464/udp 389/tcp 389/udp 445/tcp 137-138/udp 139/tcp 135/tcp 88/tcp 88/udp 53/tcp 53/udp 636/udp
protocols:
masquerade: no
forward-ports:
source-ports:
icmp-blocks:
rich rules:
What bothers me is the fact that I can use RSAT AD Users&Computers all the time from the very begginig, but RSAT DNS Manager works only when firewall is stopped. Those tools I run from Windows10
netstat found all above ports listening on 0.0.0.0
So I configured smb.conf with "interfaces=..."
Code: Select all
[global]
dns forwarder = XXX.XXX.XXX.XXX
netbios name = C7-DC1
realm = MY.domain
server role = active directory domain controller
workgroup = MY
idmap_ldb:use rfc2307 = Yes
interfaces = 192.168.0.6/24
bind interfaces only = Yes
[sysvol]
path = /usr/local/samba/var/locks/sysvol
read only = No
[netlogon]
path = /usr/local/samba/var/locks/sysvol/my.domain/scripts
read only = No
In my opinion, it is clearly a firewall issue, since my client applications work as a charm when firewall is down, but as soon as I start it, DNS manager stops responding.
I would appreciate it if someone could give me a hint how to solve this problem.
thanx