NTP configuration on Solaris

previoustoolboxuser · 2003-09-23T16:04:00.000Z

Hi all, I have problem in my NTP configuration. We have two solaris 2.8 boxes. And we want to synchronize their time using NTP. We want to make one of them server and the other one the client. I have modified the “”/etc/inet/ntp.server"" and copied as /etc/ntp.conf . I have only changed the line server 127.127.XType.0 prefer to server 127.127.1.0 prefer ( should it be the IP adress of my machine ?) stil when I execute the # /etc/init.d/xntpd -start deamon doesn’t start. What is the correct coniguration for a NTP server only using its own system clock and also for client ? How is the deamon started ? Any help is appreciated. Rgds Yasemin

releshkumar-prvxpv8p · 2009-08-12T04:21:00.000Z

you have to set one preferd server.127.127.1.0 is a local clock

previoustoolboxuser · 2003-09-24T16:17:00.000Z

=20
=20
What about security. I’ve read that the time protocol is a LARGE=20
security hole.
=20

So is port 80, 25, etc. All boils down to how you setup your firewall.
Normally you’d want to allow couple of external sources to udp 123 and =
accept nothing from anyone else. But this is true with any =
protocol/port/service.

Close what you don’t want, open what you need, log what the firewall is =
doing verbosely, and READ and parse the log files regularly. This =
should keep the problem at bay ;-).

Regards,
Patrick Soltani.

previoustoolboxuser · 2003-09-23T16:39:00.000Z

Hi,

To setup an ntp server for your systems, you’d need to at least sync the =
server with some other external source, otherwise the clock on your =
server WILL slip and thus all your machines will have wrong date/time.

Edit the /etc/inet/ntp.conf file and add the following lines:
server tick.gpsclock.com
server tock.gpsclock.com
driftfile /etc/ntp/drift
authenticate no

Please note that I pick the tick and tock, cuz they are closer to my =
systems, you should be able to find some server(s) that’s closer to you.

Also make sure /etc/ntp/ directory exist for the drift file that ntpd =
uses.
You need to allow udp port 123 in from the firewall; you have one right =
;-).

Now before doing anything else issue the following command:
/usr/sbin/ntpdate tick.gpsclock.com

You should get something like:
root@thirdeye:/root #ntpdate tick.gpsclock.com
23 Sep 18:29:08 ntpdate[14060]: adjust time server 206.223.0.15 offset =
0.083969 sec

Now that your clock is synced with an outside source, you can run the =
xntpd
root@thirdeye:/root #/etc/init.d/xntpd start
Replace the path with what you have setup.

That’s the server side. =20
The client is the same, except the 2 entries tick and tock get replaced =
with your newly built ntp server.

Please note that when the server is not reachable, the system will fall =
back to the built in clock which is not always correct. This becomes =
critical for apps like Oracle that do a lot of transaction and time =
stamp is one of the most important criterion for managing the order of =
the transaction.

Good luck!
Patrick Soltani.

steve60510664 · 2003-09-23T16:34:00.000Z

Yasemin,

On the server system you configure the line in ntp.conf

server networktimeservername prefer
example copy the ntp.server to ntp.conf and modify the server line to as
server 192.43.244.18 prefer

On the client systems you just copy the ntp.client to ntp.conf and start
the xntpd

/etc/init.d/xntpd start

Not

/etc/init.d/xntpd -start

Steve Tran

yasemin timar via solaris-l wrote:

Read today’s most popular UNIX market analysis article.
http://UNIX.ITtoolbox.com/r/da.asp?r=8511

Hi all,

I have problem in my NTP configuration.
We have two solaris 2.8 boxes. And we want to synchronize their time using
NTP.
We want to make one of them server and the other one the client.
I have modified the “/etc/inet/ntp.server” and copied as /etc/ntp.conf .
I have only changed the line

server 127.127.XType.0 prefer
to
server 127.127.1.0 prefer
( should it be the IP adress of my machine ?)

stil when I execute the

/etc/init.d/xntpd -start

deamon doesn’t start.

What is the correct coniguration for a NTP server only using its own
system clock and also for client ?
How is the deamon started ?

Any help is appreciated.

Rgds

Yasemin

*Idealstor Backup: Disk-to-Disk (Kill the tape)
Correct 95% of Tape Backup Problems And Increase Speed
http://www.ITtoolbox.com/r/rd.asp?i=1538

*Archives: http://www.OpenITx.com/g/solaris-l.asp
*Manage Subscriptions: http://My.ITtoolbox.com
*Leave Group: mailto:leave-solaris-l@openitx.com
*Need Subscription Help? mailto:Listmaster@ITtoolbox.com
*Terms of Use: http://www.ittoolbox.com/help/termsofuse.htm
*Copyright (c) ITtoolbox and message author. No redistribution.