Add parameter dns_zone_scavenging to control dns zone scavenging.
Scavenging is disabled by default, as due to
https://bugzilla.samba.org/show_bug.cgi?id=12451 the ageing properties of
existing DNS entries are incorrect.
Signed-off-by: Gary Lockyer <gary@catalyst.net.nz>
--- /dev/null
+<samba:parameter name="dns zone scavenging"
+ context="G"
+ type="boolean"
+ xmlns:samba="http://www.samba.org/samba/DTD/samba-doc">
+<description>
+ <para>
+ When enabled (the default is disabled) unused dynamic dns records are
+ periodically removed.
+ </para>
+ <warning><para>
+ This option should not be enabled for installations created with
+ versions of samba before 4.9. Doing this will result in the loss of
+ static DNS entries. This is due to a bug in previous versions
+ of samba (BUG 12451) which marked dynamic DNS records as static and
+ static records as dynamic.
+ </para></warning>
+ <note><para>
+ If one record for a DNS name is static (non-aging) then no other record
+ for that DNS name will be scavenged.
+ </para></note>
+</description>
+<value type="default">no</value>
+</samba:parameter>
lpcfg_do_global_parameter(lp_ctx, "nsupdate command", "/usr/bin/nsupdate -g");
lpcfg_do_global_parameter(lp_ctx, "allow dns updates", "secure only");
+ lpcfg_do_global_parameter(lp_ctx, "dns zone scavenging", "False");
lpcfg_do_global_parameter(lp_ctx, "dns forwarder", "");
lpcfg_do_global_parameter(lp_ctx, "algorithmic rid base", "1000");
Globals._preferred_master = Auto;
Globals.allow_dns_updates = DNS_UPDATE_SIGNED;
+ Globals.dns_zone_scavenging = false;
lpcfg_string_set(Globals.ctx, &Globals.ntp_signd_socket_directory,
get_dyn_NTP_SIGND_SOCKET_DIR());