[ntp:questions] Re: ntpd works, ntpdq times-out ?

Per Hedeland per at hedeland.org
Fri Jan 20 20:52:46 UTC 2006


In article <1137706013.919986.303280 at f14g2000cwb.googlegroups.com>
blacksburgjerome at gmail.com writes:
>I'm running ntpd on our RedHat Linux firewall.  It seems to be working
>OK according to the logs.  Plus I can ntpq it 'remotely' from another
>machine in the LAN.
>
>[machine-b]# ntpq -p machine-a
>     remote           refid      st t when poll reach   delay   offset
>jitter
>==============================================================================
>+otc1.psu.edu    .WWV.            1 u   57   64   77  111.122  -23.150
> 3.132
>-ntp-1.cns.vt.ed timelord.cns.vt  2 u    1   64  177   97.639    6.030
> 0.794
>+clock1.redhat.c .CDMA.           1 u   61   64   77   83.241   -3.625
> 1.347
>*clock2.redhat.c .CDMA.           1 u    -   64  177  102.931   -3.521
> 7.287
>
>However, when I run ntpq on the firewall it times-out!
>
>[machine-a]# ntpq -p
>127.0.0.1: timed out, nothing received
>***Request timed out

Most likely your local firewall rules (iptables) are too strict,
blocking those (loopback/127.0.0.1) packets - while you probably have
punched a specific hole for port 123 on the "real" interfaces/addresses.

--Per Hedeland
per at hedeland.org





More information about the questions mailing list