Re: problems with ntpd configuration

From: John Hay (jhay_at_icomtek.csir.co.za)
Date: 02/23/04

  • Next message: Ruslan N. Gogunsci: "fm801 based sound card and FreeBSD5.2" 
    Date: Mon, 23 Feb 2004 09:52:39 +0200
To: babjak@neuron-ai.fei.tuke.sk

    You might get better results to you ntp questions on the ntp news group:
    comp.protocols.time.ntp

    > I have a problem to configure properly a ntpd server for local network. I
    > followed a handbook example, but maybe I didn't understand something well. My
    > aim is to configure a ntpd server, allow to synchronize computers from local
    > network according to this server and hide mentioned ntpd server for all
    > computers out of local network.

    Start by removing all the restrict lines, then if it works, you know that
    you have the basic setup right.

    > Its IP is 147.175.67.128, network is class B: 147.175.0.0 with netmask
    > 255.255.0.0. My ntp.conf:
    >
    > server public.stratum2.server1
    > server public.stratum2.server2
    > server public.stratum2.server3
    > driftfile /var/db/ntp.drift
    > # default to ignore
    > restrict default ignore
    > # allow my net to configure, byt not act my setting (according to handbook):
    > restrict 147.175.0.0 mask 255.255.0.0 notrust nomodify notrap

    You should also add restrict lines, with less restriction than the default,
    for the servers you use. Just adding a server line does not un-restrict it
    automatically.

    > Server synchronize itself well, but when I try query from 147.175.64.41, i
    > obtain:

    Are you really sure about this? Does a "ntpq -c rv" show the stratum as
    below 15?

    > > ntpdate -vq 147.175.67.128
    > 23 Feb 07:54:52 ntpdate[6145]: ntpdate 4.1.0-a Fri Feb 6 09:54:31 CET 2004 (1)
    > server 147.175.67.128, stratum 16, offset 0.301619, delay 0.02689
    > 23 Feb 07:54:52 ntpdate[6145]: no server suitable for synchronization found

    This looks like your server is not synchronized. Stratum 16 means not
    synced.

    John 

    -- 
John Hay -- John.Hay@icomtek.csir.co.za / jhay@FreeBSD.org
_______________________________________________
freebsd-stable@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-stable
To unsubscribe, send any mail to "freebsd-stable-unsubscribe@freebsd.org"
  • Next message: Ruslan N. Gogunsci: "fm801 based sound card and FreeBSD5.2"

    Relevant Pages

    • Re: High NTP drift values, time resets and hwclock command
      ... I'd be a bit concerned about a 25ms offset to a time server in the same ... restrict 10.168.105.0 mask 255.255.248.0 nomodify notrap ... You may wish to review the explanation of 'nomodify' at ...
      (comp.protocols.time.ntp)
    • RE: Binding Windows Services to Specific Addresses Only
      ... Document the server. ... If this is a corporate environment, ... Install the minimums. ... The network configuration for the server should restrict what the server has ...
      (Focus-Microsoft)
    • Re: Cannot synchronize to server with local clock
      ... >> My server was off-line for so long each day that it's stratum would drop ... server, and for the local machines to use the server. ... restrict 209.132.176.4 mask 255.255.255.255 nomodify notrap noquery ...
      (comp.protocols.time.ntp)
    • RE: Restrict WAN access
      ... I need to restrict access to the Terminal ... Server from outside the network for some users. ... LAN & WAN access to others. ...
      (microsoft.public.windows.terminal_services)
    • Re: Xen virtual machines and ntp
      ... I have set up a local ntp server with this ntp.conf: ... restrict 192.168.1.0 mask 255.255.255.0 nomodify notrap ...
      (RedHat)