Re: ntp woes (and more-general questions about startup and logging)

In article <hafnib$rdo$1@xxxxxxxxxxxxxxxxxxxxx>,
Bruce Esquibel <bje@xxxxxxxxx> wrote:
blmblm@xxxxxxxxxxxxx <blmblm@xxxxxxxxxxxxx> wrote:

Well, I tried changing to use Apple's server (time.apple.com) rather
than the local one, and that didn't *seem* to make a difference --
at least, output of ntpq and ntpdc still looks not-right. FWIW!

I didn't look at all the responses yet but are you sure that machine isn't
firewalled?

Like most other protocols, you have to have port 123 open for ntp and also
make sure ntp is listed in /etc/services.

From memory the only times I had a problem with ntp was due to a over
tweaked firewall (both freebsd/solaris) including one mac (forgot which osx
version) which had like a nazi mode in the System Prefs for the firewall.

That's a good, and interesting, theory, but ....

All of the Macs I've been talking about are part of a (sub?)network
protected by a firewall. However, at least some of them are able to
use Apple's time server for NTP, and some of them are able to use
our local time server (which runs Linux, if that matters) for NTP.

I'd start investigating whether the Macs that have had problems
had their own firewalls configured in some way that would make NTP
not work, but as of the time of writing this post, it *appears*
that all of them have been able to synchronize with the local
time server, so it seems like not a firewall issue ....

--
B. L. Massingill
ObDisclaimer: I don't speak for my employers; they return the favor.
.

Relevant Pages

  • Re: NTP time service not syncing
    ... NTP connections are outbound only and my firewall permits outbound connections on any port. ... You only need to open your firewall if you want your time server to be available to everyone on the whole Internet. ... the network time protocol Version-4 The newest version of NTP. ...
    (microsoft.public.windows.server.general)
  • Re: System Clock Apparently Gaining One Second Every 30 Minutes
    ... The ability to make use of a time server is ... *not* the same as having an implementation of the NTP algorithm running ... It's not what Macs have or have not been capable of doing, ...
    (comp.sys.mac.system)
  • RE: Trouble syncing laptop time outside of domain
    ... I confirm that the time server URL is properly set using one of the ... Out of desparation, I turned off all firewalls (Kerio PSF 4, Windows ... Firewall, and the Speedtouch 585 DSL modem's firewall). ...
    (microsoft.public.windowsxp.general)
  • Re: servers address in ntp payload?
    ... >> with all the stateful firewalls now in place if the response to a packet ... >> the address and the requestor will never receive a response. ... > Which is a flaw in such a firewall and a violation of RFC 2979. ... appears to only discuss TCP and it's layered protocols which NTP isn't. ...
    (comp.protocols.time.ntp)
  • IPTable Rule to allow NTP thru ?
    ... I am hoping that someone can explain to me what I need to add or change to my firewall settings to allow ntp to synchronize to an outside time source. ... My objective is to have a server in my office synchronize to an outside time server, then the desktop PC's would synchronize to the server. ... It appears that the IPtables rules on the server is blocking the ntp communication. ...
    (comp.protocols.time.ntp)