Chinaunix首页 | 论坛 | 博客
  • 博客访问: 327875
  • 博文数量: 104
  • 博客积分: 3025
  • 博客等级: 中校
  • 技术积分: 1150
  • 用 户 组: 普通用户
  • 注册时间: 2005-02-02 11:12
文章分类

全部博文(104)

文章存档

2013年(1)

2011年(2)

2010年(30)

2009年(29)

2008年(8)

2007年(15)

2006年(17)

2005年(2)

我的朋友

分类:

2006-08-14 17:33:38

ntp.conf多年以前的配置

# Prohibit general access to this service.
restrict default ignore
# Permit all access over the loopback interface. This could
# be tightened as well, but to do so would effect some of
# the administrative functions.
restrict 127.0.0.1
restrict 172.18.5.30
restrict 172.18.5.0 mask 255.255.255.0 nomodify
# -- CLIENT NETWORK -------
# Permit systems on this network to synchronize with this
# time service. Do not permit those systems to modify the
# configuration of this service. Also, do not use those
# systems as peers for synchronization.
# restrict 192.168.1.0 mask 255.255.255.0 notrust nomodify notrap
restrict 0.0.0.0 nomodify
# -- CLIENT NETWORK -------
# --- OUR TIMESERVERS -----
# or remove the default restrict line
# Permit time synchronization with our time source, but do not
# permit the source to query or modify the service on this system.
# restrict mytrustedtimeserverip mask 255.255.255.255 nomodify notrap noquery
# server mytrustedtimeserverip
 
# --- NTP MULTICASTCLIENT ---
#multicastclient # listen on default 224.0.1.1
# restrict 224.0.1.1 mask 255.255.255.255 notrust nomodify notrap
# restrict 192.168.1.0 mask 255.255.255.0 notrust nomodify notrap
 
# --- GENERAL CONFIGURATION ---
#
# Undisciplined Local Clock. This is a fake driver intended for backup
# and when no outside source of synchronized time is available. The
# default stratum is usually 3, but in this case we elect to use stratum
# 0. Since the server line does not have the prefer keyword, this driver
# is never used for synchronization, unless no other other
# synchronization source is available. In case the local host is
# controlled by some external source, such as an external oscillator or
# another protocol, the prefer keyword would cause the local host to
# disregard all other synchronization sources, unless the kernel
# modifications are in use and declare an unsynchronized condition.
#
server 127.127.1.0 # local clock
fudge 127.127.1.0 stratum 10
# Senecd NTP Server
# First NTP SErver
# Let NTP Server can\login this server.
#_________
server 220.130.158.52 prefer
server 220.130.158.72 prefer
server 220.130.158.51 prefer
server 192.43.244.18 prefer
restrict 220.130.158.52
restrict 220.130.158.72
restrict 220.130.158.51
restrict 192.43.244.18
#
# Drift file. Put this in a directory which the daemon can write to.
# No symbolic links allowed, either, since the daemon updates the file
# by creating a temporary in the same directory and then rename()


ntp.conf现在的配置

restrict default nomodify notrap
restrict 127.0.0.1
server cn.pool.ntp.org
server hk.pool.ntp.org
server 0.asia.pool.ntp.org
server 3.asia.pool.ntp.org
restrict cn.pool.ntp.org
restrict hk.pool.ntp.org
restrict 0.asia.pool.ntp.org
restrict 3.asia.pool.ntp.org
fudge 127.0.0.1 stratum 10
driftfile /var/lib/ntp/drift
broadcastdelay 0.008
logfile /var/log/ntp.log



关于报错no server suitable for synchronization found
  1.在ntp server上重新启动ntp服务后,ntp server自身或者与其server的同步的需要一个时间段,这个过程大约为10分钟,在这个时间之内在客户端运行ntpdate命令时会产生no server suitable for synchronization found的错误。
  2.
可能是防火墙封锁了udp 123端口

ntpq -p

remote refid st t when poll reach delay offset jitter
==============================================================================
+123.146.124.28 122.226.192.4 3 u 29 64 367 173.245 -0.980 3.563
+202.131.74.125 59.148.184.7 3 u 32 64 357 60.699 6.667 3.728
*send.mx.cdnetwo 204.123.2.5 2 u 19 64 377 55.239 0.358 0.547
-202.71.100.89 91.189.94.4 3 u 96 64 376 89.428 17.723 23.799


ntp.conf文件的解释:

关于权限设定部分
  权限的设定主要以 restrict 这个参数来设定,主要的语法为:
  restrict IP地址 mask 子网掩码 参数
  其中 IP 可以是IP地址,也可以是 default,default 就是指所有的IP
参数有以下几个:
  ignore :关闭所有的 NTP 联机服务
  nomodify:客户端不能更改服务端的时间参数,但是客户端可以通过服务端进行网络校时。
   notrust :客户端除非通过认证,否则该客户端来源将被视为不信任子网
  noquery :不提供客户端的时间查询
注意:如果参数没有设定,那就表示该 IP (或子网)没有任何限制!

上级时间服务器的设定
   由于我们配置的NTP 服务器需要网络上面时间比较准确的NTP服务器来更新自己的时间,所以在我们的 NTP 服务器上面要配置一部上级时间服务器来进行校准!

   如上海电信NTP时间同步服务器ntp.api.bz

   用server这个参数设定上级时间服务器,语法为:

  server IP地址或域名 [prefer]

  IP地址或域名就是我们指定的上级时间服务器,如果 Server 参数最后加上 prefer,表示我们的 NTP 服务器主要以该部主机时间进行校准。

解决NTP服务器校准时间时的传送延迟:

  使用driftfile参数设置:

  driftfile 文件名

  在与上级时间服务器联系时所花费的时间,记录在driftfile参数后面的文件内。
  注意: driftfile 后面接的文件需要使用完整的路径文件名,不能是链接文件,并且文件的权限需要设定成 ntpd守护进程可以写入。


如无外网资源怎么办

# Undisciplined Local Clock. This is a fake driver intended for backup
# and when no outside source of synchronized time is available.

  fudge   127.0.0.1 stratum 10


阅读(2245) | 评论(1) | 转发(0) |
0

上一篇:90%

下一篇:.qmail文件

给主人留下些什么吧!~~