Hi There
I am trying to Integrate TrueNAS with Graylog to generate and store more detailed Samba access logs. I noticed that TrueNAS 12 CORE no longer has the VFS Dropdown menu selector that existed in FreeNAS 11.3.5.
My config looks like the following:
Using this config Samba starts seemingly normally but the share GRID becomes inaccessible. Other shares remain functional.
If I remove the "full_audit" vfs object and make no other changes access to the GRID share is restored.
I am restarting the samba service after every change.
I am also aware that this config is woefully insecure. I am using this NAS to support old machinery in an industrial setting. It's not done that way out of lazyness.
Did something change with how vfs objects are applied with TrueNAS CORE, or were there other changes to the full_audit options I have not accounted for?
Thanks for any help.
I am trying to Integrate TrueNAS with Graylog to generate and store more detailed Samba access logs. I noticed that TrueNAS 12 CORE no longer has the VFS Dropdown menu selector that existed in FreeNAS 11.3.5.
My config looks like the following:
Code:
# Global parameters
[global]
aio max threads = 2
allow dcerpc auth level connect = Yes
bind interfaces only = Yes
client ipc signing = if_required
client lanman auth = Yes
client ldap sasl wrapping = seal
client NTLMv2 auth = No
disable spoolss = Yes
dns proxy = No
domain master = No
enable web service discovery = Yes
guest account = floor
kerberos method = secrets and keytab
kernel change notify = No
lanman auth = Yes
load printers = No
local master = No
logging = file
max log size = 5120
nsupdate command = /usr/local/bin/samba-nsupdate -g
ntlm auth = ntlmv1-permitted
preferred master = No
realm = MyDomain.COM
registry shares = Yes
restrict anonymous = 2
security = ADS
server min protocol = CORE
server role = member server
server string = FreeNAS Server
template shell = /bin/sh
winbind cache time = 7200
winbind enum groups = Yes
winbind enum users = Yes
winbind max domain connections = 10
winbind use default domain = Yes
workgroup = MyDomain
full_audit:priority = NOTICE
full_audit:facility = LOCAL5
full_audit:success = mkdir rename unlink rmdir pwrite
full_audit:failure = connect
full_audit:prefix = %u|%I|%m|%S
idmap config *: range = 90000001-100000000
idmap config gardien: range = 20000-90000000
idmap config gardien: backend = rid
idmap config * : backend = tdb
directory name cache size = 0
dos filemode = Yes
[GRID]
ea support = No
kernel share modes = No
path = /mnt/StoreVol1/FloorShares/grid
posix locking = No
read only = No
vfs objects = streams_xattr shadow_copy_zfs aio_fbsd full_audit
nfs4:chown = true
Using this config Samba starts seemingly normally but the share GRID becomes inaccessible. Other shares remain functional.
If I remove the "full_audit" vfs object and make no other changes access to the GRID share is restored.
I am restarting the samba service after every change.
I am also aware that this config is woefully insecure. I am using this NAS to support old machinery in an industrial setting. It's not done that way out of lazyness.
Did something change with how vfs objects are applied with TrueNAS CORE, or were there other changes to the full_audit options I have not accounted for?
Thanks for any help.
