How to clear/flush ntp server peer in CentosNTP is running, system clock still not in time - what gives?Anyone else experiencing high rates of Linux server crashes during a leap second day?Single NTP server on isolate networkDoes a Juniper SSG work well as an NTP server?ntp server that syncs with other ntp servers but supplies a modified utcDST Morocco, a way to trick NTP serverNTP synchronized clock alongside the system clockWhere to host NTP server?Ntp causing problemsCentOS 7 - ntp stuck .INIT
Can an open source licence be revoked if it violates employer's IP?
Threading data on TimeSeries
How did Avada Kedavra get its name?
Can artificial satellite positions affect tides?
What is the context for Napoleon's quote "[the Austrians] did not know the value of five minutes"?
Boss making me feel guilty for leaving the company at the end of my internship
Was the Lonely Mountain, where Smaug lived, a volcano?
How do credit card companies know what type of business I'm paying for?
How to search for Android apps without ads?
IIS LAN and WAN separate SSL certificates for the same server
How to remove multiple elements from Set/Map AND knowing which ones were removed?
Are there any rules for identifying what spell an opponent is casting?
...and then she held the gun
How to know whether to write accidentals as sharps or flats?
Why is Skinner so awkward in Hot Fuzz?
How do you translate “talk shit”?
For Saintsbury, which English novelists constituted the "great quartet of the mid-eighteenth century"?
Idiom for 'person who gets violent when drunk"
Background for black and white chart
Cant bend fingertip when finger is straight
Why can't we feel the Earth's revolution?
Does WiFi affect the quality of images downloaded from the internet?
What does the output current rating from an H-Bridge's datasheet really mean?
How did the European Union reach the figure of 3% as a maximum allowed deficit?
How to clear/flush ntp server peer in Centos
NTP is running, system clock still not in time - what gives?Anyone else experiencing high rates of Linux server crashes during a leap second day?Single NTP server on isolate networkDoes a Juniper SSG work well as an NTP server?ntp server that syncs with other ntp servers but supplies a modified utcDST Morocco, a way to trick NTP serverNTP synchronized clock alongside the system clockWhere to host NTP server?Ntp causing problemsCentOS 7 - ntp stuck .INIT
.everyoneloves__top-leaderboard:empty,.everyoneloves__mid-leaderboard:empty,.everyoneloves__bot-mid-leaderboard:empty height:90px;width:728px;box-sizing:border-box;
We were using centos.pool.ntp.org for our clock sync among servers. Now we do ave a local NTP server, but the problem is servers are using the old ntp.
From centos.pool.ntp.org we can see,
*202.71.136.67 211.39.136.4 3 u 29 64 377 43.005 233594. 18.806
+120.88.47.10 193.79.237.14 2 u 9 64 377 49.654 233581. 16.692
2401:db00:100:1 .STEP. 16 - - 512 0 0.000 0.000 0.000
192.168.100.20 192.168.100.20 15 u 36 64 377 0.799 -6.803 3.360
How do I flush the external NTP serves and instruct my machines to contact the local ntp server instead??
centos6 ntp time-synchronization
asked Jun 7 '13 at 6:49
Jimson Kannanthara JamesJimson Kannanthara James
349410
add a comment |
We were using centos.pool.ntp.org for our clock sync among servers. Now we do ave a local NTP server, but the problem is servers are using the old ntp.
From centos.pool.ntp.org we can see,
*202.71.136.67 211.39.136.4 3 u 29 64 377 43.005 233594. 18.806
+120.88.47.10 193.79.237.14 2 u 9 64 377 49.654 233581. 16.692
2401:db00:100:1 .STEP. 16 - - 512 0 0.000 0.000 0.000
192.168.100.20 192.168.100.20 15 u 36 64 377 0.799 -6.803 3.360
How do I flush the external NTP serves and instruct my machines to contact the local ntp server instead??
centos6 ntp time-synchronization
asked Jun 7 '13 at 6:49
Jimson Kannanthara JamesJimson Kannanthara James
349410
add a comment |
We were using centos.pool.ntp.org for our clock sync among servers. Now we do ave a local NTP server, but the problem is servers are using the old ntp.
From centos.pool.ntp.org we can see,
*202.71.136.67 211.39.136.4 3 u 29 64 377 43.005 233594. 18.806
+120.88.47.10 193.79.237.14 2 u 9 64 377 49.654 233581. 16.692
2401:db00:100:1 .STEP. 16 - - 512 0 0.000 0.000 0.000
192.168.100.20 192.168.100.20 15 u 36 64 377 0.799 -6.803 3.360
How do I flush the external NTP serves and instruct my machines to contact the local ntp server instead??
centos6 ntp time-synchronization
asked Jun 7 '13 at 6:49
Jimson Kannanthara JamesJimson Kannanthara James
349410
We were using centos.pool.ntp.org for our clock sync among servers. Now we do ave a local NTP server, but the problem is servers are using the old ntp.
From centos.pool.ntp.org we can see,
*202.71.136.67 211.39.136.4 3 u 29 64 377 43.005 233594. 18.806
+120.88.47.10 193.79.237.14 2 u 9 64 377 49.654 233581. 16.692
2401:db00:100:1 .STEP. 16 - - 512 0 0.000 0.000 0.000
192.168.100.20 192.168.100.20 15 u 36 64 377 0.799 -6.803 3.360
How do I flush the external NTP serves and instruct my machines to contact the local ntp server instead??
centos6 ntp time-synchronization
centos6 ntp time-synchronization
asked Jun 7 '13 at 6:49
Jimson Kannanthara JamesJimson Kannanthara James
349410
asked Jun 7 '13 at 6:49
Jimson Kannanthara JamesJimson Kannanthara James
349410
asked Jun 7 '13 at 6:49
Jimson Kannanthara JamesJimson Kannanthara James
349410
asked Jun 7 '13 at 6:49
Jimson Kannanthara JamesJimson Kannanthara James
349410
asked Jun 7 '13 at 6:49
Jimson Kannanthara JamesJimson Kannanthara James
349410
349410
add a comment |
add a comment |
2 Answers
2
active
oldest
votes
Reconfigure your ntp clients to use the new server in /etc/ntp.conf.
Use the server directive to point to the new NTP server, and, in the server side, make sure the clients are accepted.
An example using authentication:
- Server side:
discard average 3 minimum 1 monitor
restrict default nomodify notrap nopeer noquery limited kod
restrict 127.0.0.1
#this one does not use auth
restrict some.server.com mask 255.255.255.0 nomodify notrap nopeer noquery
#this subnets use auth
restrict 172.22.197.0 mask 255.255.255.0 nomodify notrap nopeer limited kod notrust
restrict 172.22.249.0 mask 255.255.255.0 nomodify notrap nopeer limited kod notrust
restrict 172.22.248.128 mask 255.255.255.192 nomodify notrap nopeer limited kod notrust
server server.up.the.hierarchy.com iburst
#fallback local NTP
server 127.127.1.0
fudge 127.127.1.0 stratum 20
tos orphan 17
crypto pw supersecretpassword
crypto randfile /dev/urandom
keysdir /etc/ntp
driftfile /var/lib/ntp/drift
- CLient side:
server my.new.ntp.server.com autokey
#fallback local NTP
server 127.127.1.0
fudge 127.127.1.0 stratum 10
driftfile /var/lib/ntp/drift
crypto pw supersecretpassword
crypto randfile /dev/urandom
keysdir /etc/ntp
tinker panic 0
Restart the ntp daemon on your clients. You might want to add the -g to force the initial synchronization.
answered Jun 7 '13 at 7:02
dawuddawud
13.6k33356
I apologize for being so blunt but there are some very questionable settings described above. As a rule I am always suspicious of example confs that only list one upstream server and/or do not suggest 3 or more sources of time. The orphan and undisciplined clock settings are rather strange. In the above example clients will fall back to using the undisciplined local clock driver (stratum 10) if the "server" loses it upstream and starts using its local undisciplined clock driver (which is set to stratum 20). Why settos orphan 17this is one higher than the default which is 16.
– dfc
Jan 13 '14 at 4:57
1
More: I am suspicious of autokey and the discard settings since OP didn't mention version of ntp in use. Both of these directives have changed in recent versions and without knowing the version those suggestions may break and/or cause craziness. Space is limited so all I am going to say about autokey is if you need it do more research dont use a cut and paste from SX. As far asdiscard average 3 minimum 1 monitorgoes after 4.2.6 the min 1 will break iburst, it is no longer a power of two. These are the defaults in a 4.2.6 world so why set them unless OP required something special?
– dfc
Jan 13 '14 at 5:05
I am not even sure whatdiscard monitorwill do if monitor is not given an argument. But more importantly from ntp docs monitor is "a performance optimization for servers with aggregate arrivals of 1000 packets per second or more."
– dfc
Jan 13 '14 at 5:09
add a comment |
I apologize for posting so many comments on the other answer. There are a lot of questionable settings described that you did not ask about and even if you did I would be wary of some of that advice.
The easy answer is to edit the ntp.conf file on the clients and change the line that looks like (i don't have a centos example in front of me, I am sorry I cannot be more specific):
server centos.pool.ntp.org ...
or
pool centos.pool.ntp.org...
and set this to
server ntp.example.org iburst
In a perfect world you should have 3 or more time servers listed in ntp.conf, It is important to note that if your local time server crashes your clients will not have any upstream time sources. The other answer tries to solve the problem of losing the local time server with the orphan craziness but I think you should avoid that for now. If you want to do the orphan setup you need to do some more reading.
If you want to have all the local clients use the local server and then fallback to the ntp.org server in case it goes down or starts acting crazy use one of the following. The first is for 4.2.6p5 and earlier. The second is for 4.2.7 and any future versions barring a change.
# for 4.2.6p5 and earlier (server directive acts differently depending on ver)
# This is the easiest way to deal with all versions
#prefer our local if its up and not a falseticker
server ntp.example.org iburst prefer
# fallback to these if things are bad with ntp.e.o
server 0.YOUR-COUNTRY-CODE.pool.ntp.org iburst
server 1.YOUR-COUNTRY-CODE.pool.ntp.org iburst
server 2.YOUR-COUNTRY-CODE.pool.ntp.org iburst
server 3.YOUR-COUNTRY-CODE.pool.ntp.org iburst
Option 2:
# this is the future
#prefer our local if its up and not a falseticker
server ntp.example.org iburst prefer
# fallback to pool.n.o if things are bad with ntp.e.o
pool YOUR-COUNTRY-CODE.pool.ntp.org iburst
Notice I changed centos.pool to your-country-code.pool. If you are in the US use us.pool.ntp.org. This will mean you do not get servers from another continent/country like you can with vendor pool directives.
You may also want to look into supplying the ntp server address as part of your dhcp responses. I am not sure if centos supports this but some distributions/systems will honor a ntp-server option from dhcp.
answered Jan 13 '14 at 5:18
dfcdfc
1,181715
add a comment |
Your Answer
StackExchange.ready(function()
var channelOptions =
tags: "".split(" "),
id: "2"
;
initTagRenderer("".split(" "), "".split(" "), channelOptions);
StackExchange.using("externalEditor", function()
// Have to fire editor after snippets, if snippets enabled
if (StackExchange.settings.snippets.snippetsEnabled)
StackExchange.using("snippets", function()
createEditor();
);
else
createEditor();
);
function createEditor()
StackExchange.prepareEditor(
heartbeatType: 'answer',
autoActivateHeartbeat: false,
convertImagesToLinks: true,
noModals: true,
showLowRepImageUploadWarning: true,
reputationToPostImages: 10,
bindNavPrevention: true,
postfix: "",
imageUploader:
brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
allowUrls: true
,
onDemand: true,
discardSelector: ".discard-answer"
,immediatelyShowMarkdownHelp:true
);
);
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function ()
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fserverfault.com%2fquestions%2f514018%2fhow-to-clear-flush-ntp-server-peer-in-centos%23new-answer', 'question_page');
);
Post as a guest
Required, but never shown
2 Answers
2
active
oldest
votes
2 Answers
2
active
oldest
votes
active
oldest
votes
active
oldest
votes
Reconfigure your ntp clients to use the new server in /etc/ntp.conf.
Use the server directive to point to the new NTP server, and, in the server side, make sure the clients are accepted.
An example using authentication:
- Server side:
discard average 3 minimum 1 monitor
restrict default nomodify notrap nopeer noquery limited kod
restrict 127.0.0.1
#this one does not use auth
restrict some.server.com mask 255.255.255.0 nomodify notrap nopeer noquery
#this subnets use auth
restrict 172.22.197.0 mask 255.255.255.0 nomodify notrap nopeer limited kod notrust
restrict 172.22.249.0 mask 255.255.255.0 nomodify notrap nopeer limited kod notrust
restrict 172.22.248.128 mask 255.255.255.192 nomodify notrap nopeer limited kod notrust
server server.up.the.hierarchy.com iburst
#fallback local NTP
server 127.127.1.0
fudge 127.127.1.0 stratum 20
tos orphan 17
crypto pw supersecretpassword
crypto randfile /dev/urandom
keysdir /etc/ntp
driftfile /var/lib/ntp/drift
- CLient side:
server my.new.ntp.server.com autokey
#fallback local NTP
server 127.127.1.0
fudge 127.127.1.0 stratum 10
driftfile /var/lib/ntp/drift
crypto pw supersecretpassword
crypto randfile /dev/urandom
keysdir /etc/ntp
tinker panic 0
Restart the ntp daemon on your clients. You might want to add the -g to force the initial synchronization.
answered Jun 7 '13 at 7:02
dawuddawud
13.6k33356
I apologize for being so blunt but there are some very questionable settings described above. As a rule I am always suspicious of example confs that only list one upstream server and/or do not suggest 3 or more sources of time. The orphan and undisciplined clock settings are rather strange. In the above example clients will fall back to using the undisciplined local clock driver (stratum 10) if the "server" loses it upstream and starts using its local undisciplined clock driver (which is set to stratum 20). Why settos orphan 17this is one higher than the default which is 16.
– dfc
Jan 13 '14 at 4:57
1
More: I am suspicious of autokey and the discard settings since OP didn't mention version of ntp in use. Both of these directives have changed in recent versions and without knowing the version those suggestions may break and/or cause craziness. Space is limited so all I am going to say about autokey is if you need it do more research dont use a cut and paste from SX. As far asdiscard average 3 minimum 1 monitorgoes after 4.2.6 the min 1 will break iburst, it is no longer a power of two. These are the defaults in a 4.2.6 world so why set them unless OP required something special?
– dfc
Jan 13 '14 at 5:05
I am not even sure whatdiscard monitorwill do if monitor is not given an argument. But more importantly from ntp docs monitor is "a performance optimization for servers with aggregate arrivals of 1000 packets per second or more."
– dfc
Jan 13 '14 at 5:09
add a comment |
Reconfigure your ntp clients to use the new server in /etc/ntp.conf.
Use the server directive to point to the new NTP server, and, in the server side, make sure the clients are accepted.
An example using authentication:
- Server side:
discard average 3 minimum 1 monitor
restrict default nomodify notrap nopeer noquery limited kod
restrict 127.0.0.1
#this one does not use auth
restrict some.server.com mask 255.255.255.0 nomodify notrap nopeer noquery
#this subnets use auth
restrict 172.22.197.0 mask 255.255.255.0 nomodify notrap nopeer limited kod notrust
restrict 172.22.249.0 mask 255.255.255.0 nomodify notrap nopeer limited kod notrust
restrict 172.22.248.128 mask 255.255.255.192 nomodify notrap nopeer limited kod notrust
server server.up.the.hierarchy.com iburst
#fallback local NTP
server 127.127.1.0
fudge 127.127.1.0 stratum 20
tos orphan 17
crypto pw supersecretpassword
crypto randfile /dev/urandom
keysdir /etc/ntp
driftfile /var/lib/ntp/drift
- CLient side:
server my.new.ntp.server.com autokey
#fallback local NTP
server 127.127.1.0
fudge 127.127.1.0 stratum 10
driftfile /var/lib/ntp/drift
crypto pw supersecretpassword
crypto randfile /dev/urandom
keysdir /etc/ntp
tinker panic 0
Restart the ntp daemon on your clients. You might want to add the -g to force the initial synchronization.
answered Jun 7 '13 at 7:02
dawuddawud
13.6k33356
I apologize for being so blunt but there are some very questionable settings described above. As a rule I am always suspicious of example confs that only list one upstream server and/or do not suggest 3 or more sources of time. The orphan and undisciplined clock settings are rather strange. In the above example clients will fall back to using the undisciplined local clock driver (stratum 10) if the "server" loses it upstream and starts using its local undisciplined clock driver (which is set to stratum 20). Why settos orphan 17this is one higher than the default which is 16.
– dfc
Jan 13 '14 at 4:57
1
More: I am suspicious of autokey and the discard settings since OP didn't mention version of ntp in use. Both of these directives have changed in recent versions and without knowing the version those suggestions may break and/or cause craziness. Space is limited so all I am going to say about autokey is if you need it do more research dont use a cut and paste from SX. As far asdiscard average 3 minimum 1 monitorgoes after 4.2.6 the min 1 will break iburst, it is no longer a power of two. These are the defaults in a 4.2.6 world so why set them unless OP required something special?
– dfc
Jan 13 '14 at 5:05
I am not even sure whatdiscard monitorwill do if monitor is not given an argument. But more importantly from ntp docs monitor is "a performance optimization for servers with aggregate arrivals of 1000 packets per second or more."
– dfc
Jan 13 '14 at 5:09
add a comment |
Reconfigure your ntp clients to use the new server in /etc/ntp.conf.
Use the server directive to point to the new NTP server, and, in the server side, make sure the clients are accepted.
An example using authentication:
- Server side:
discard average 3 minimum 1 monitor
restrict default nomodify notrap nopeer noquery limited kod
restrict 127.0.0.1
#this one does not use auth
restrict some.server.com mask 255.255.255.0 nomodify notrap nopeer noquery
#this subnets use auth
restrict 172.22.197.0 mask 255.255.255.0 nomodify notrap nopeer limited kod notrust
restrict 172.22.249.0 mask 255.255.255.0 nomodify notrap nopeer limited kod notrust
restrict 172.22.248.128 mask 255.255.255.192 nomodify notrap nopeer limited kod notrust
server server.up.the.hierarchy.com iburst
#fallback local NTP
server 127.127.1.0
fudge 127.127.1.0 stratum 20
tos orphan 17
crypto pw supersecretpassword
crypto randfile /dev/urandom
keysdir /etc/ntp
driftfile /var/lib/ntp/drift
- CLient side:
server my.new.ntp.server.com autokey
#fallback local NTP
server 127.127.1.0
fudge 127.127.1.0 stratum 10
driftfile /var/lib/ntp/drift
crypto pw supersecretpassword
crypto randfile /dev/urandom
keysdir /etc/ntp
tinker panic 0
Restart the ntp daemon on your clients. You might want to add the -g to force the initial synchronization.
answered Jun 7 '13 at 7:02
dawuddawud
13.6k33356
Reconfigure your ntp clients to use the new server in /etc/ntp.conf.
Use the server directive to point to the new NTP server, and, in the server side, make sure the clients are accepted.
An example using authentication:
- Server side:
discard average 3 minimum 1 monitor
restrict default nomodify notrap nopeer noquery limited kod
restrict 127.0.0.1
#this one does not use auth
restrict some.server.com mask 255.255.255.0 nomodify notrap nopeer noquery
#this subnets use auth
restrict 172.22.197.0 mask 255.255.255.0 nomodify notrap nopeer limited kod notrust
restrict 172.22.249.0 mask 255.255.255.0 nomodify notrap nopeer limited kod notrust
restrict 172.22.248.128 mask 255.255.255.192 nomodify notrap nopeer limited kod notrust
server server.up.the.hierarchy.com iburst
#fallback local NTP
server 127.127.1.0
fudge 127.127.1.0 stratum 20
tos orphan 17
crypto pw supersecretpassword
crypto randfile /dev/urandom
keysdir /etc/ntp
driftfile /var/lib/ntp/drift
- CLient side:
server my.new.ntp.server.com autokey
#fallback local NTP
server 127.127.1.0
fudge 127.127.1.0 stratum 10
driftfile /var/lib/ntp/drift
crypto pw supersecretpassword
crypto randfile /dev/urandom
keysdir /etc/ntp
tinker panic 0
Restart the ntp daemon on your clients. You might want to add the -g to force the initial synchronization.
answered Jun 7 '13 at 7:02
dawuddawud
13.6k33356
answered Jun 7 '13 at 7:02
dawuddawud
13.6k33356
answered Jun 7 '13 at 7:02
dawuddawud
13.6k33356
answered Jun 7 '13 at 7:02
dawuddawud
13.6k33356
13.6k33356
I apologize for being so blunt but there are some very questionable settings described above. As a rule I am always suspicious of example confs that only list one upstream server and/or do not suggest 3 or more sources of time. The orphan and undisciplined clock settings are rather strange. In the above example clients will fall back to using the undisciplined local clock driver (stratum 10) if the "server" loses it upstream and starts using its local undisciplined clock driver (which is set to stratum 20). Why settos orphan 17this is one higher than the default which is 16.
– dfc
Jan 13 '14 at 4:57
1
More: I am suspicious of autokey and the discard settings since OP didn't mention version of ntp in use. Both of these directives have changed in recent versions and without knowing the version those suggestions may break and/or cause craziness. Space is limited so all I am going to say about autokey is if you need it do more research dont use a cut and paste from SX. As far asdiscard average 3 minimum 1 monitorgoes after 4.2.6 the min 1 will break iburst, it is no longer a power of two. These are the defaults in a 4.2.6 world so why set them unless OP required something special?
– dfc
Jan 13 '14 at 5:05
I am not even sure whatdiscard monitorwill do if monitor is not given an argument. But more importantly from ntp docs monitor is "a performance optimization for servers with aggregate arrivals of 1000 packets per second or more."
– dfc
Jan 13 '14 at 5:09
add a comment |
I apologize for being so blunt but there are some very questionable settings described above. As a rule I am always suspicious of example confs that only list one upstream server and/or do not suggest 3 or more sources of time. The orphan and undisciplined clock settings are rather strange. In the above example clients will fall back to using the undisciplined local clock driver (stratum 10) if the "server" loses it upstream and starts using its local undisciplined clock driver (which is set to stratum 20). Why settos orphan 17this is one higher than the default which is 16.
– dfc
Jan 13 '14 at 4:57
1
More: I am suspicious of autokey and the discard settings since OP didn't mention version of ntp in use. Both of these directives have changed in recent versions and without knowing the version those suggestions may break and/or cause craziness. Space is limited so all I am going to say about autokey is if you need it do more research dont use a cut and paste from SX. As far asdiscard average 3 minimum 1 monitorgoes after 4.2.6 the min 1 will break iburst, it is no longer a power of two. These are the defaults in a 4.2.6 world so why set them unless OP required something special?
– dfc
Jan 13 '14 at 5:05
I am not even sure whatdiscard monitorwill do if monitor is not given an argument. But more importantly from ntp docs monitor is "a performance optimization for servers with aggregate arrivals of 1000 packets per second or more."
– dfc
Jan 13 '14 at 5:09
I apologize for being so blunt but there are some very questionable settings described above. As a rule I am always suspicious of example confs that only list one upstream server and/or do not suggest 3 or more sources of time. The orphan and undisciplined clock settings are rather strange. In the above example clients will fall back to using the undisciplined local clock driver (stratum 10) if the "server" loses it upstream and starts using its local undisciplined clock driver (which is set to stratum 20). Why set
tos orphan 17 this is one higher than the default which is 16.– dfc
Jan 13 '14 at 4:57
I apologize for being so blunt but there are some very questionable settings described above. As a rule I am always suspicious of example confs that only list one upstream server and/or do not suggest 3 or more sources of time. The orphan and undisciplined clock settings are rather strange. In the above example clients will fall back to using the undisciplined local clock driver (stratum 10) if the "server" loses it upstream and starts using its local undisciplined clock driver (which is set to stratum 20). Why set
tos orphan 17 this is one higher than the default which is 16.– dfc
Jan 13 '14 at 4:57
1
1
More: I am suspicious of autokey and the discard settings since OP didn't mention version of ntp in use. Both of these directives have changed in recent versions and without knowing the version those suggestions may break and/or cause craziness. Space is limited so all I am going to say about autokey is if you need it do more research dont use a cut and paste from SX. As far as
discard average 3 minimum 1 monitor goes after 4.2.6 the min 1 will break iburst, it is no longer a power of two. These are the defaults in a 4.2.6 world so why set them unless OP required something special?– dfc
Jan 13 '14 at 5:05
More: I am suspicious of autokey and the discard settings since OP didn't mention version of ntp in use. Both of these directives have changed in recent versions and without knowing the version those suggestions may break and/or cause craziness. Space is limited so all I am going to say about autokey is if you need it do more research dont use a cut and paste from SX. As far as
discard average 3 minimum 1 monitor goes after 4.2.6 the min 1 will break iburst, it is no longer a power of two. These are the defaults in a 4.2.6 world so why set them unless OP required something special?– dfc
Jan 13 '14 at 5:05
I am not even sure what
discard monitor will do if monitor is not given an argument. But more importantly from ntp docs monitor is "a performance optimization for servers with aggregate arrivals of 1000 packets per second or more."– dfc
Jan 13 '14 at 5:09
I am not even sure what
discard monitor will do if monitor is not given an argument. But more importantly from ntp docs monitor is "a performance optimization for servers with aggregate arrivals of 1000 packets per second or more."– dfc
Jan 13 '14 at 5:09
add a comment |
I apologize for posting so many comments on the other answer. There are a lot of questionable settings described that you did not ask about and even if you did I would be wary of some of that advice.
The easy answer is to edit the ntp.conf file on the clients and change the line that looks like (i don't have a centos example in front of me, I am sorry I cannot be more specific):
server centos.pool.ntp.org ...
or
pool centos.pool.ntp.org...
and set this to
server ntp.example.org iburst
In a perfect world you should have 3 or more time servers listed in ntp.conf, It is important to note that if your local time server crashes your clients will not have any upstream time sources. The other answer tries to solve the problem of losing the local time server with the orphan craziness but I think you should avoid that for now. If you want to do the orphan setup you need to do some more reading.
If you want to have all the local clients use the local server and then fallback to the ntp.org server in case it goes down or starts acting crazy use one of the following. The first is for 4.2.6p5 and earlier. The second is for 4.2.7 and any future versions barring a change.
# for 4.2.6p5 and earlier (server directive acts differently depending on ver)
# This is the easiest way to deal with all versions
#prefer our local if its up and not a falseticker
server ntp.example.org iburst prefer
# fallback to these if things are bad with ntp.e.o
server 0.YOUR-COUNTRY-CODE.pool.ntp.org iburst
server 1.YOUR-COUNTRY-CODE.pool.ntp.org iburst
server 2.YOUR-COUNTRY-CODE.pool.ntp.org iburst
server 3.YOUR-COUNTRY-CODE.pool.ntp.org iburst
Option 2:
# this is the future
#prefer our local if its up and not a falseticker
server ntp.example.org iburst prefer
# fallback to pool.n.o if things are bad with ntp.e.o
pool YOUR-COUNTRY-CODE.pool.ntp.org iburst
Notice I changed centos.pool to your-country-code.pool. If you are in the US use us.pool.ntp.org. This will mean you do not get servers from another continent/country like you can with vendor pool directives.
You may also want to look into supplying the ntp server address as part of your dhcp responses. I am not sure if centos supports this but some distributions/systems will honor a ntp-server option from dhcp.
answered Jan 13 '14 at 5:18
dfcdfc
1,181715
add a comment |
I apologize for posting so many comments on the other answer. There are a lot of questionable settings described that you did not ask about and even if you did I would be wary of some of that advice.
The easy answer is to edit the ntp.conf file on the clients and change the line that looks like (i don't have a centos example in front of me, I am sorry I cannot be more specific):
server centos.pool.ntp.org ...
or
pool centos.pool.ntp.org...
and set this to
server ntp.example.org iburst
In a perfect world you should have 3 or more time servers listed in ntp.conf, It is important to note that if your local time server crashes your clients will not have any upstream time sources. The other answer tries to solve the problem of losing the local time server with the orphan craziness but I think you should avoid that for now. If you want to do the orphan setup you need to do some more reading.
If you want to have all the local clients use the local server and then fallback to the ntp.org server in case it goes down or starts acting crazy use one of the following. The first is for 4.2.6p5 and earlier. The second is for 4.2.7 and any future versions barring a change.
# for 4.2.6p5 and earlier (server directive acts differently depending on ver)
# This is the easiest way to deal with all versions
#prefer our local if its up and not a falseticker
server ntp.example.org iburst prefer
# fallback to these if things are bad with ntp.e.o
server 0.YOUR-COUNTRY-CODE.pool.ntp.org iburst
server 1.YOUR-COUNTRY-CODE.pool.ntp.org iburst
server 2.YOUR-COUNTRY-CODE.pool.ntp.org iburst
server 3.YOUR-COUNTRY-CODE.pool.ntp.org iburst
Option 2:
# this is the future
#prefer our local if its up and not a falseticker
server ntp.example.org iburst prefer
# fallback to pool.n.o if things are bad with ntp.e.o
pool YOUR-COUNTRY-CODE.pool.ntp.org iburst
Notice I changed centos.pool to your-country-code.pool. If you are in the US use us.pool.ntp.org. This will mean you do not get servers from another continent/country like you can with vendor pool directives.
You may also want to look into supplying the ntp server address as part of your dhcp responses. I am not sure if centos supports this but some distributions/systems will honor a ntp-server option from dhcp.
answered Jan 13 '14 at 5:18
dfcdfc
1,181715
add a comment |
I apologize for posting so many comments on the other answer. There are a lot of questionable settings described that you did not ask about and even if you did I would be wary of some of that advice.
The easy answer is to edit the ntp.conf file on the clients and change the line that looks like (i don't have a centos example in front of me, I am sorry I cannot be more specific):
server centos.pool.ntp.org ...
or
pool centos.pool.ntp.org...
and set this to
server ntp.example.org iburst
In a perfect world you should have 3 or more time servers listed in ntp.conf, It is important to note that if your local time server crashes your clients will not have any upstream time sources. The other answer tries to solve the problem of losing the local time server with the orphan craziness but I think you should avoid that for now. If you want to do the orphan setup you need to do some more reading.
If you want to have all the local clients use the local server and then fallback to the ntp.org server in case it goes down or starts acting crazy use one of the following. The first is for 4.2.6p5 and earlier. The second is for 4.2.7 and any future versions barring a change.
# for 4.2.6p5 and earlier (server directive acts differently depending on ver)
# This is the easiest way to deal with all versions
#prefer our local if its up and not a falseticker
server ntp.example.org iburst prefer
# fallback to these if things are bad with ntp.e.o
server 0.YOUR-COUNTRY-CODE.pool.ntp.org iburst
server 1.YOUR-COUNTRY-CODE.pool.ntp.org iburst
server 2.YOUR-COUNTRY-CODE.pool.ntp.org iburst
server 3.YOUR-COUNTRY-CODE.pool.ntp.org iburst
Option 2:
# this is the future
#prefer our local if its up and not a falseticker
server ntp.example.org iburst prefer
# fallback to pool.n.o if things are bad with ntp.e.o
pool YOUR-COUNTRY-CODE.pool.ntp.org iburst
Notice I changed centos.pool to your-country-code.pool. If you are in the US use us.pool.ntp.org. This will mean you do not get servers from another continent/country like you can with vendor pool directives.
You may also want to look into supplying the ntp server address as part of your dhcp responses. I am not sure if centos supports this but some distributions/systems will honor a ntp-server option from dhcp.
answered Jan 13 '14 at 5:18
dfcdfc
1,181715
I apologize for posting so many comments on the other answer. There are a lot of questionable settings described that you did not ask about and even if you did I would be wary of some of that advice.
The easy answer is to edit the ntp.conf file on the clients and change the line that looks like (i don't have a centos example in front of me, I am sorry I cannot be more specific):
server centos.pool.ntp.org ...
or
pool centos.pool.ntp.org...
and set this to
server ntp.example.org iburst
In a perfect world you should have 3 or more time servers listed in ntp.conf, It is important to note that if your local time server crashes your clients will not have any upstream time sources. The other answer tries to solve the problem of losing the local time server with the orphan craziness but I think you should avoid that for now. If you want to do the orphan setup you need to do some more reading.
If you want to have all the local clients use the local server and then fallback to the ntp.org server in case it goes down or starts acting crazy use one of the following. The first is for 4.2.6p5 and earlier. The second is for 4.2.7 and any future versions barring a change.
# for 4.2.6p5 and earlier (server directive acts differently depending on ver)
# This is the easiest way to deal with all versions
#prefer our local if its up and not a falseticker
server ntp.example.org iburst prefer
# fallback to these if things are bad with ntp.e.o
server 0.YOUR-COUNTRY-CODE.pool.ntp.org iburst
server 1.YOUR-COUNTRY-CODE.pool.ntp.org iburst
server 2.YOUR-COUNTRY-CODE.pool.ntp.org iburst
server 3.YOUR-COUNTRY-CODE.pool.ntp.org iburst
Option 2:
# this is the future
#prefer our local if its up and not a falseticker
server ntp.example.org iburst prefer
# fallback to pool.n.o if things are bad with ntp.e.o
pool YOUR-COUNTRY-CODE.pool.ntp.org iburst
Notice I changed centos.pool to your-country-code.pool. If you are in the US use us.pool.ntp.org. This will mean you do not get servers from another continent/country like you can with vendor pool directives.
You may also want to look into supplying the ntp server address as part of your dhcp responses. I am not sure if centos supports this but some distributions/systems will honor a ntp-server option from dhcp.
answered Jan 13 '14 at 5:18
dfcdfc
1,181715
edited Jan 13 '14 at 5:35
answered Jan 13 '14 at 5:18
dfcdfc
1,181715
answered Jan 13 '14 at 5:18
dfcdfc
1,181715
answered Jan 13 '14 at 5:18
dfcdfc
1,181715
1,181715
add a comment |
add a comment |
Thanks for contributing an answer to Server Fault!
- Please be sure to answer the question. Provide details and share your research!
But avoid …
- Asking for help, clarification, or responding to other answers.
- Making statements based on opinion; back them up with references or personal experience.
To learn more, see our tips on writing great answers.
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function ()
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fserverfault.com%2fquestions%2f514018%2fhow-to-clear-flush-ntp-server-peer-in-centos%23new-answer', 'question_page');
);
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
