[ntp:questions] Why DNS servers should not be NTP servers

Jochen Bern Jochen.Bern at LINworks.de
Wed Jun 18 14:20:32 UTC 2014


On -10.01.-28163 20:59, kartik.unix at gmail.com wrote:
> I am encouraging the use of atomic time NTP server devices rather than
> DNS servers to serve time.
> 
> I need to justify, not using DNS servers, to serve time. Please advise.

Well the *obvious* argument would be that you want your DNS servers to
be virtual machines (easier to move onto another iron in case of a
failure) while central NTP servers should be hardware based (better
timekeeping).

Other than that, a "DNS server" can be all sorts of a thing, from a
cacheing resolver serving your own machines, to serving DynDNS (possibly
tied to your DHCP), to a (hopefully hardened) authoritative server for
your own domains, to an experimental hardware-accelerated-crypto beast
for DNSsec. You might want to be more specific.

(Since you want to encourage separate NTP servers, you might also want
to note that GPS+NTP units - assuming that that satisfies your
definition of "atomic time" - can be *very* cheap with some DIY.)

Regards,
								J. Bern
-- 
*NEU* - NEC IT-Infrastruktur-Produkte im <http://www.linworks-shop.de/>:
Server--Storage--Virtualisierung--Management SW--Passion for Performance
Jochen Bern, Systemingenieur --- LINworks GmbH <http://www.LINworks.de/>
Postfach 100121, 64201 Darmstadt | Robert-Koch-Str. 9, 64331 Weiterstadt
PGP (1024D/4096g) FP = D18B 41B1 16C0 11BA 7F8C DCF7 E1D5 FAF4 444E 1C27
Tel. +49 6151 9067-231, Zentr. -0, Fax -299 - Amtsg. Darmstadt HRB 85202
Unternehmenssitz Weiterstadt, Geschäftsführer Metin Dogan, Oliver Michel


More information about the questions mailing list