ntpd Invalid-NAK error

Miroslav Lachman 000.fbsd at quip.cz
Tue Jun 13 13:30:08 CEST 2017

Previous message (by thread): ntpd Invalid-NAK error
Next message (by thread): ntpd Invalid-NAK error
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Dan Lukes wrote on 2017/06/13 13:12:
> On 13.6.2017 12:53, Vilem Kebrt wrote:
>> Osobne "klienty" setuju pres crontab job kazdou hodinu (ntpdate).
>
> To ale musi byt zarizeni, kde si takovehle veci konfigurovat lze.

Presne tak, na tom APC PDU, ani na switchi (management port), ktery je 
take v te siti si zadny cron nenastavim.
Kdyz ted na to koukam, tak ta IP patri mgmt portu switche, takze problem 
dela switch, nejaky starsi 3Com.

> Pro zacatek bych tahle podezrela zarizeni nemel v ntp.conf uvedena ani
> jako peer ani jako server. A samozrejme nechat (z defaultniho ntp.conf)
> standardni zakaz aby se okolni stroje mohli jako 'peer' vnucovat i bez
> schvaleni - tedy (z defaultniho ntp.conf):
>
>> restrict default limited kod nomodify notrap nopeer noquery
>> restrict -6 default limited kod nomodify notrap nopeer noquery

Tohle je kompletni konfigurace toho ntpd:

# egrep -v '^$|^#' /etc/ntp.conf
server 0.freebsd.pool.ntp.org iburst
server 1.freebsd.pool.ntp.org iburst
server 2.freebsd.pool.ntp.org iburst
restrict default limited kod nomodify notrap nopeer noquery
restrict -6 default limited kod nomodify notrap nopeer noquery
restrict 127.0.0.1
restrict -6 ::1
restrict 127.127.1.0
leapfile "/var/db/ntpd.leap-seconds.list"

Z toho jsem usuzoval, ze je vsechno omezeno nejvic jak to jde.

Mirek

Previous message (by thread): ntpd Invalid-NAK error
Next message (by thread): ntpd Invalid-NAK error
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the Users-l mailing list