[ntp:questions] Re: ntpd polling server every second

Ronan Flood ronan at noc.ulcc.ac.uk
Mon Apr 10 12:19:24 UTC 2006


graham <graham at no.spam.thanks> wrote:

> So file should have read
> 
>      server <my ISP's ntp server>
>      restrict <my ISP's ntp server> noquery nomodify
>      driftfile /etc/ntp/drift
>      restrict default noquery notrust nomodify
>      restrict 127.0.0.1
> 
> With the config as shown ntpd queries the ISP server every second; ntpd 
> -q bangs on for ages (querying ~every second); fails to set the time 
> correctly;
> 
> Changing the default to "ignore"... ntpd queries the ISP server roughly 
> every 60 secs; ntpd -q fails to set the time correctly.
> 
> Commenting out the "restrict default" line entirely makes it behave!
> 
> Thoroughly confused, and goodness knows what security restrictions it's 
> applying.

Where you have "<my ISP's ntp server>" in the config, is that a name
or an IP address?  If a name, does that name have more than one address,
i.e. more than one DNS A record?

Your should have "restrict default ignore" unless you intend to offer
time service to clients.

-- 
                      Ronan Flood <R.Flood at noc.ulcc.ac.uk>
                        working for but not speaking for
             Network Services, University of London Computer Centre
     (which means: don't bother ULCC if I've said something you don't like)




More information about the questions mailing list