[ntp:questions] Re: NTP does not sync when using pool.ntp.org

bd bdonlan at users.sf.net
Sat Oct 4 21:28:27 UTC 2003


bd wrote:

> Nicholas Suan wrote:
> 
>> bd <bdonlan at users.sf.net> wrote in
>> news:j81v41-js2.ln1 at bd-home-comp.no-ip.org:
>> 
>>> I am using ntp 4.1.2 on Gentoo Linux. After days of operation, it does
>>> not sync with the pool.ntp.org servers.
>>> 
>> 
>> <snip>
>> 
>>> ntpdate is run before starting the server, on us.pool.ntp.org. What
>>> could be preventing ntpd from syncing?
>> 
>> This line:
>> 
>>> # If you want to deny all machines from accessing
>>> # your NTP server, uncomment:
>>> #
>>> restrict default ignore
>> 
>> Try to change 'ignore' to 'noquery'.
> 
> Thanks, that fixed it.

Hm. After adding a 'peer' line, it broke again, ignoring the us.pool.ntp.org
server lines. I remove the peer line, and it's still broken...

My ntpd.log shows:
 4 Oct 17:25:00 ntpd[16842]: signal_no_reset: signal 17 had flags 4000000
 4 Oct 17:25:02 ntpd[16841]: process_private: failed auth mod_okay 0
 4 Oct 17:25:02 ntpd[16842]: ntpd returns a permission denied error!
 4 Oct 17:25:02 ntpd[16841]: process_private: failed auth mod_okay 0
 4 Oct 17:25:02 ntpd[16842]: ntpd returns a permission denied error!
 4 Oct 17:25:02 ntpd[16841]: process_private: failed auth mod_okay 0
 4 Oct 17:25:02 ntpd[16842]: ntpd returns a permission denied error!
 4 Oct 17:25:02 ntpd[16842]: signal_no_reset: signal 14 had flags 4000000

ntpq -c pe shows:
No association ID's returned

ntp.conf contains:
# NOTES:
#  - you should only have to update the server line below
#  - if you start getting lines like 'restrict' and 'fudge'
#    and you didnt add them, AND you run dhcpcd on your
#    network interfaces, be sure to add '-Y -N' to the
#    dhcpcd_ethX variables in /etc/conf.d/net

# Name of the servers ntpd should sync with
# Please respect the access policy as stated by the responsible person.
#server         clock.sjc.he.net                iburst
#server         ntp-2.cso.uiuc.edu              iburst
#server         ntp.ourconcord.net              iburst
#server         molecule.ecn.purdue.edu         iburst
#server         ntp-2.cso.uiuc.edu              iburst
#server         clock.nyc.he.net                iburst

server us.pool.ntp.org maxpoll 12
server us.pool.ntp.org maxpoll 12
server us.pool.ntp.org maxpoll 12

##
# A list of available servers is available here:
# http://www.eecis.udel.edu/~mills/ntp/servers.html
# Please follow the rules of engagement and use a
# Stratum 2 server (unless you qualify for Stratum 1)
##

# you should not need to modify the following paths
logfile         /var/log/ntpd.log
driftfile       /var/lib/misc/ntp.drift

#server ntplocal.example.com prefer
#server timeserver.example.org

# Warning: Using default NTP settings will leave your NTP
# server accessible to all hosts on the Internet.

#
# If you want to deny all machines from accessing
# your NTP server, uncomment:
#
#restrict default ignore
restrict default noquery nomodify

# To only deny other machines from changing the
# configuration but allow localhost uncomment:
#
#restrict default notrust nomodify
restrict 127.0.0.1 nomodify


# To allow machines within your network to synchronize
# their clocks with your server, but ensure they are
# not allowed to configure the server or used as peers
# to synchronize against, uncomment this line.
#
#restrict 192.168.1.0 mask 255.255.255.0 notrust nomodify notrap
#restrict 127.0.0.1 mask 255.255.255.255 notrust nomodify notrap

# To only deny other machines from changing the
# configuration but allow localhost uncomment:
#
#restrict default notrust nomodify
#restrict 127.0.0.1


The peer computer also broken in a similar way, but it used the first server
line instead. It also continued to be broken after I reverted the changes,
but its log does not show the permission denied errors. How do I fix this?

-- 
BOFH Excuse #109:

The electricity substation in the car park blew up.




More information about the questions mailing list