NTP Server Problems

quantum0726 · n00b Joined: 25 Mar 2005 Posts: 26 Location: Milwaukee, WI

I'm having some problems running an NTP server on my LAN. I have a Gentoo router set up at 192.168.0.1. On I have the following configuration:

/etc/ntp.conf:
----------------
restrict 127.0.0.1 nomodify
restrict 192.168.0.0 mask 255.255.255.0 nomodify nopeer notrap
server time.nist.gov prefer
server 0.pool.ntp.org
server 1.pool.ntp.org
server 2.pool.ntp.org
server 127.127.1.0
fudge 127.127.1.0 stratum 10
driftfile /var/lib/ntp/ntp.drift
logfile /var/log/ntp.log

/etc/conf.d/ntp-client:
-------------------------
NTPCLIENT_CMD="ntpdate"
NTPCLIENT_OPTS="-b time.nist.gov"
NTPCLIENT_TIMEOUT=30

I have ntp-client and ntpd in my default runlevel. When I boot my router, ntpclient grabs a time from time.nist.gov successfully (it tells me this as a status message and my server's time has stayed very accurate since I've had this running).

However, I have been trying to get another Gentoo desktop on my LAN to sync with my router with NTP, but I cannot. Running `ntpdate 192.168.0.1` returns:
--------
Looking for host 192.168.0.1 and service ntp
host found : 192.168.0.1
27 May 18:52:58 ntpdate[10146]: no server suitable for synchronization found
--------

Running an nmap on my router (from localhost or from my Gentoo desktop) I do not see port 123 open. I tried with iptables off but I get the same thing. Any ideas on what I've been doing wrong?

Thanks much!
_________________
--Jayson

When Microsoft asks you, "Where do you want to go today?", tell them "*nix!"

overkll · Posted: Sat May 28, 2005 4:16 am Post subject:

I've had the same problem. I think 'can't find a suitable server" translates to "your a stratum 3 server and I want a stratum 1 or 2 server. Of course I could be wrong.

I just set the other one up to check the same servers. So both boxes are checking the same stratum 2 servers. Works for me!

You can check to see if ntpd is listening by:

erikm · l33t Joined: 08 Feb 2005 Posts: 634

Hi guys,

I'm more or less in the same boat. I´m away from my machines at the moment, but I will check your configs as soon as I can. I wonder though, is it possible to trick the LAN ntp client into thinking the LAN ntp server is a stratum 3, using fudge? My LAN needs to be able to survive WAN access going down...

larand54 · l33t Joined: 20 Feb 2004 Posts: 695 Location: Sweden

This works for me:

I never installed any client, just uses the server.

I have a computer as a firewall and has setup ntp on that machine.
/etc/ntp.conf:

overkll · Posted: Sun May 29, 2005 9:20 pm Post subject:

Thanks larand54! Works for me too!

erikm · l33t Joined: 08 Feb 2005 Posts: 634

I have a really weird problem here, just wondering if anyone heard of anything like it: ntpq kills ntpd. I can get the ntpd up and running, it syncs and works nicely, but if I try to do ntpq -p, the daemon dies and I get the "ntpq: read: Connection refused" error.
This is reproducible with configs that work on two other machines, the configs posted here and the configs I previously used... :cry:

overkll · Posted: Mon May 30, 2005 10:17 pm Post subject:

ErikM

I had that problem too. I don't remember the exact error message, but it was something similar. My ntp.conf was misconfigured. I think I just made ntp.conf as basic as possible, checking with ntpq -p, and working my way back up with more options. I also picked my servers manually instead of pool.ntp.org. I used a combination of mirrorselect and searching the web for public startum 2 servers in my area that didn't require notification before use. After all that, I believe I just had a typo. DOH!

Sorry I can't be more specific.

quantum0726 · n00b Joined: 25 Mar 2005 Posts: 26 Location: Milwaukee, WI

erikm · l33t Joined: 08 Feb 2005 Posts: 634

overkll · Posted: Tue May 31, 2005 4:19 pm Post subject:

zen_guerrilla · Guru Joined: 18 Apr 2002 Posts: 343 Location: Greece

Propably OT: I highly recommend using openntpd, it's more secure than ntp & quite more simple to config & use.
A nice client is clockspeed.
Just s/IP/{your server's ip address} and (for the server) :

larand54 · l33t Joined: 20 Feb 2004 Posts: 695 Location: Sweden

If you use dhcpcd, you need to add the following line into file /etc/conf.d/net

butters · Posted: Wed Jun 08, 2005 4:06 pm Post subject: what?

I have the same problem as the original poster when I start ntp-client:

* Setting clock via the NTP client 'ntpdate' ...
8 Jun 10:53:55 ntpdate[7740]: no server suitable for synchronization found
* Failed to set clock

My /etc/conf.d/ntp-client:

NTPCLIENT_CMD="ntpdate"
NTPCLIENT_OPTS="-b -u ntppub.tamu.edu"
NTPCLIENT_TIMEOUT=30

My /etc/ntp.conf (not modified):

server pool.ntp.org
driftfile /var/lib/ntp/ntp.drift
restrict default nomodify nopeer
restrict 127.0.0.1

I don't start ntpd, just ntp-client. This has worked for me in the past, but not now...

Do I need to run the server for some reason?
_________________
If tugboats were bigger, they'd be the ones getting tugged.

overkll · Posted: Wed Jun 08, 2005 4:34 pm Post subject:

Have you tried running "ntpdate" from the command line? That may help you track down the issue. You shouldn't have to worry about ntp.conf if you are just running ntp-client.

FYI "ntpdate" just grabs the time from the specified server and updates your clock. "ntpd" will poll the specified servers and adjust your time more precisely. So, "ntpd" can act as a client, a server or both.

It's probably not the problem but "ntppub.tamu.edu" is Texas A&M University. You should try to pick a ntp server geographically closer to your location. You're in Pittsburgh, right?

butters · Posted: Mon Jun 13, 2005 2:09 pm Post subject:

Actually, I'm here in Austin! I should update my profile.

# ntpdate -b -u ntppub.tamu.edu (or pool.ntp.org)

doesn't give any more enlightening error messages:

13 Jun 09:05:49 ntpdate[24278]: no server suitable for synchronization found

I'm beginning to think maybe the corporate firewall is blocking outgoing NTP requests?
_________________
If tugboats were bigger, they'd be the ones getting tugged.