| View previous topic :: View next topic |
| Author |
Message |
MrUlterior
Guru
Joined: 22 Mar 2005
Posts: 511
Location: Switzerland
|
 Posted: Tue Dec 06, 2005 7:17 pm Post subject: NTPD broken, no firewall, packets being transmitted [SOLVED] |
 |
|
Would really appreciate some help on this one, I have ntpd on the server:
| Code: | chiark# qpkg -I -v ntp
net-misc/ntp-4.2.0.20040617-r3 * |
And on the client:
| Code: | narcotropic# qpkg -I -v ntp
net-misc/ntp-4.2.0.20040617-r3 * |
My server's /etc/ntpd.conf is:
| Code: | restrict 127.0.0.1 nomodify
restrict 10.1.0.1 mask 255.255.255.0 nomodify nopeer notrap
server swisstime.ethz.ch
server 127.127.1.1
fudge 127.127.1.1 stratum 10
driftfile /var/lib/ntp/ntp.drift
logfile /var/log/ntp.log
|
And its /etc/conf.d/ntpd contains:
| Code: | | NTPD_OPTS="-u ntp:ntp" |
The client has get the following error when I try start ntp-client:
| Code: | narcotropic# ntpdate 10.1.0.1
6 Dec 21:15:53 ntpdate[18802]: no server suitable for synchronization found |
First I thought it was likely to do with my iptables chains, however nothing is logged as dropped and you can see from the following that the two are communicating (but there's no error on the server)
| Code: |
No. Time Source Destination Protocol Info
1 0.000000 10.1.0.11 10.1.0.1 NTP NTP
Frame 1 (90 bytes on wire, 90 bytes captured)
Ethernet II, Src: AsustekC_59:d3:84 (00:11:d8:59:d3:84), Dst: 3com_24:78:9e (00:0a:5e:24:78:9e)
Internet Protocol, Src: 10.1.0.11 (10.1.0.11), Dst: 10.1.0.1 (10.1.0.1)
User Datagram Protocol, Src Port: ntp (123), Dst Port: ntp (123)
Network Time Protocol
No. Time Source Destination Protocol Info
2 0.000045 10.1.0.1 10.1.0.11 NTP NTP
Frame 2 (90 bytes on wire, 90 bytes captured)
Ethernet II, Src: 3com_24:78:9e (00:0a:5e:24:78:9e), Dst: AsustekC_59:d3:84 (00:11:d8:59:d3:84)
Internet Protocol, Src: 10.1.0.1 (10.1.0.1), Dst: 10.1.0.11 (10.1.0.11)
User Datagram Protocol, Src Port: ntp (123), Dst Port: ntp (123)
Network Time Protocol
No. Time Source Destination Protocol Info
3 0.000105 10.1.0.11 10.1.0.1 NTP NTP
Frame 3 (90 bytes on wire, 90 bytes captured)
Ethernet II, Src: AsustekC_59:d3:84 (00:11:d8:59:d3:84), Dst: 3com_24:78:9e (00:0a:5e:24:78:9e)
Internet Protocol, Src: 10.1.0.11 (10.1.0.11), Dst: 10.1.0.1 (10.1.0.1)
User Datagram Protocol, Src Port: ntp (123), Dst Port: ntp (123)
Network Time Protocol
No. Time Source Destination Protocol Info
4 0.000203 10.1.0.1 10.1.0.11 NTP NTP
Frame 4 (90 bytes on wire, 90 bytes captured)
Ethernet II, Src: 3com_24:78:9e (00:0a:5e:24:78:9e), Dst: AsustekC_59:d3:84 (00:11:d8:59:d3:84)
Internet Protocol, Src: 10.1.0.1 (10.1.0.1), Dst: 10.1.0.11 (10.1.0.11)
User Datagram Protocol, Src Port: ntp (123), Dst Port: ntp (123)
Network Time Protocol
No. Time Source Destination Protocol Info
5 0.000225 10.1.0.11 10.1.0.1 NTP NTP
Frame 5 (90 bytes on wire, 90 bytes captured)
Ethernet II, Src: AsustekC_59:d3:84 (00:11:d8:59:d3:84), Dst: 3com_24:78:9e (00:0a:5e:24:78:9e)
Internet Protocol, Src: 10.1.0.11 (10.1.0.11), Dst: 10.1.0.1 (10.1.0.1)
User Datagram Protocol, Src Port: ntp (123), Dst Port: ntp (123)
Network Time Protocol
No. Time Source Destination Protocol Info
6 0.000310 10.1.0.1 10.1.0.11 NTP NTP
Frame 6 (90 bytes on wire, 90 bytes captured)
Ethernet II, Src: 3com_24:78:9e (00:0a:5e:24:78:9e), Dst: AsustekC_59:d3:84 (00:11:d8:59:d3:84)
Internet Protocol, Src: 10.1.0.1 (10.1.0.1), Dst: 10.1.0.11 (10.1.0.11)
User Datagram Protocol, Src Port: ntp (123), Dst Port: ntp (123)
Network Time Protocol
No. Time Source Destination Protocol Info
7 0.000330 10.1.0.11 10.1.0.1 NTP NTP
Frame 7 (90 bytes on wire, 90 bytes captured)
Ethernet II, Src: AsustekC_59:d3:84 (00:11:d8:59:d3:84), Dst: 3com_24:78:9e (00:0a:5e:24:78:9e)
Internet Protocol, Src: 10.1.0.11 (10.1.0.11), Dst: 10.1.0.1 (10.1.0.1)
User Datagram Protocol, Src Port: ntp (123), Dst Port: ntp (123)
Network Time Protocol
No. Time Source Destination Protocol Info
8 0.000413 10.1.0.1 10.1.0.11 NTP NTP
Frame 8 (90 bytes on wire, 90 bytes captured)
Ethernet II, Src: 3com_24:78:9e (00:0a:5e:24:78:9e), Dst: AsustekC_59:d3:84 (00:11:d8:59:d3:84)
Internet Protocol, Src: 10.1.0.1 (10.1.0.1), Dst: 10.1.0.11 (10.1.0.11)
User Datagram Protocol, Src Port: ntp (123), Dst Port: ntp (123)
Network Time Protocol
|
Any ideas?
_________________
Misanthropy 2.0 - enough hate to go around
Last edited by MrUlterior on Thu Dec 08, 2005 7:58 pm; edited 1 time in total |
|
| Back to top |
|
 |
MrUlterior
Guru
Joined: 22 Mar 2005
Posts: 511
Location: Switzerland
|
| Posted: Tue Dec 06, 2005 7:21 pm Post subject: |
|
|
The only entries in the server's syslog are:
| Code: | Dec 6 20:19:34 chiark ntpd[23882]: ntpd 4.2.0a@1.1190-r Tue Dec 6 20:00:30 CET 2005 (1)
Dec 6 20:19:34 chiark ntpd[23882]: precision = 2.000 usec
Dec 6 20:19:34 chiark ntpd[23882]: Listening on interface wildcard, 0.0.0.0#123
Dec 6 20:19:34 chiark ntpd[23882]: Listening on interface lo, 127.0.0.1#123
Dec 6 20:19:34 chiark ntpd[23882]: Listening on interface eth0, XX.XX.XX.XX#123
Dec 6 20:19:34 chiark ntpd[23882]: Listening on interface br0, 10.1.0.1#123
Dec 6 20:19:34 chiark ntpd[23882]: Listening on interface wlan0, 192.168.1.1#123
Dec 6 20:19:34 chiark ntpd[23882]: kernel time sync status 0040 |
Which looks fine to me, I don't have logs going back to when it worked -- I only noticed that the workstations clocks were badly skewed reccently.
_________________
Misanthropy 2.0 - enough hate to go around
|
|
| Back to top |
|
|
MrUlterior
Guru
Joined: 22 Mar 2005
Posts: 511
Location: Switzerland
|
| Posted: Thu Dec 08, 2005 7:48 pm Post subject: |
|
|
And today, with no changes to the configuration or anything, everything is able to sync time once again. How bizarre.
_________________
Misanthropy 2.0 - enough hate to go around
|
|
| Back to top |
|
|
|
|
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
|
|
Networking & Security
