Samba-ad-dc-with-docker/docker-compose.yml.primary

version: "3.9"
services:

  samba:
    build: ./
    image: custom/samba:1.0.0
    container_name: samba
    restart: unless-stopped
    environment:
      TZ: Asia/Tokyo
      SMB_REALM: HOGESERVER.HOGEDDNS.JP
      SMB_DOMAIN: HOGEDOMAIN
      SMB_ADMINPASS: p@ssword123
      SMB_HOSTIP: ${PRIMARYIP}
      SMB_RPC_PORTS: 49152-49200
      SMB_PURPOSE: "primary"
      SMB_USEBIND9: "false"
     #RSY_SECONDARY: ${SECONDARYIP}
     #RSY_PASS: p@ssword234
    volumes:
      - samba_etc:/etc/samba
      - samba_lib:/var/lib/samba
      - bind_etc:/etc/bind
      - bind_lib:/var/lib/bind
      - lam:/var/lib/ldap-account-manager
    networks:
      samba:
        ipv4_address: 172.26.0.101
    ports:
      - ${PRIMARYIP}:53:53       #DNS
      - ${PRIMARYIP}:53:53/udp   #DNS
      - ${PRIMARYIP}:135:135     #End Point Mapper(WINS)
      - ${PRIMARYIP}:137:137/udp #NetBIOS Name Service
      - ${PRIMARYIP}:138:138/udp #NetBIOS Datagram
      - ${PRIMARYIP}:139:139     #NetBIOS Session
      - ${PRIMARYIP}:445:445     #SMB over TCP
      - ${PRIMARYIP}:389:389     #LDAP
      - ${PRIMARYIP}:389:389/udp #LDAP
      - ${PRIMARYIP}:636:636     #LDAPS
      - ${PRIMARYIP}:88:88       #Kerberos
      - ${PRIMARYIP}:88:88/udp   #Kerberos
      - ${PRIMARYIP}:464:464     #Kerberos kpasswd
      - ${PRIMARYIP}:464:464/udp #Kerberos kpasswd
      - ${PRIMARYIP}:3268:3268   #Global Catalog
      - ${PRIMARYIP}:3269:3269   #Global Catalog SSL
                                 #RPC The same value as SMB_RPC_PORTS.
      - ${PRIMARYIP}:49152-49200:49152-49200
      - 873:873 #rsync
      - 8081:80 #phpLDAPadmin & LDAP Account Manager
    hostname: addc
    dns:
      - 192.168.110.1
    dns_search:
      - hogeserver.hogeddns.jp
    privileged: true
    devices:
      - /dev/net/tun
    cap_add:
      - NET_ADMIN

networks:
  samba:
    ipam:
      config:
        - subnet: 172.26.0.0/16
          gateway: 172.26.0.1

volumes:
  samba_etc:
  samba_lib:
  bind_etc:
  bind_lib:
  lam: