From owner-freebsd-questions Tue Feb 6 14:39:38 2001 Delivered-To: freebsd-questions@freebsd.org Received: from sttlpop4.sttl.uswest.net (sttlpop4.sttl.uswest.net [206.81.192.4]) by hub.freebsd.org (Postfix) with SMTP id 4839337B503 for ; Tue, 6 Feb 2001 14:39:18 -0800 (PST) Received: (qmail 66640 invoked by alias); 6 Feb 2001 22:39:16 -0000 Delivered-To: fixup-freebsd-questions@freebsd.org@fixme Received: (qmail 66544 invoked by uid 0); 6 Feb 2001 22:39:14 -0000 Received: from www.a6l.net (HELO a6l.net) (63.229.13.49) by sttlpop4.sttl.uswest.net with SMTP; 6 Feb 2001 22:39:14 -0000 Received: (qmail 10656 invoked by uid 1002); 6 Feb 2001 22:39:14 -0000 To: freebsd-questions@freebsd.org Subject: Re: ntpd across subnets? References: <858znqdy3g.fsf@diablo.in.a6l.net> From: Kevin Mills Date: 06 Feb 2001 14:39:13 -0800 In-Reply-To: "Kevin Mills"'s message of "01 Feb 2001 11:04:03 -0800" Message-ID: <85ae7zxwq6.fsf@diablo.in.a6l.net> Lines: 55 X-Mailer: Gnus v5.5/XEmacs 20.4 - "Emerald" Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG "Kevin Mills" writes: > I need some help with ntpd. Here is my network: > > Firewall -+ Internal network, subnet A > | > | +- Isolated subnet B > + Triple homed server - > +- Isolated subnet C > > > I'd like the firewall (which is dual homed) to synchronize its time with > the outside world. The internal network would then sync with the Firewall > (would all machines on subnet A use the broadcastclient option?). Somewhere > on this internal network lives a triple homed server that has 2 different > isolated test networks attached to it. I'd like these two subnets (B and C) > to get their time information from the triple homed server. > Note: subnets B and C have no access to subnet A. More info: I now have the triple homed server communicating and syncing with the firewall. Also, the triple homed server is broadcasting onto subnet B and C (I can see this with tcpdump). However, each of the clients on subnet B and C never process the packets. Here is a sample "sysstat" from ntpdc on one of the subnet B boxes: system uptime: 14105 time since reset: 14105 bad stratum in packet: 0 old version packets: 28 new version packets: 219 unknown version number: 0 bad packet length: 0 packets processed: 0 bad authentication: 0 limitation rejects: 0 Why zero packets processed? Running ntpdate -d from subnet B or C shows: transmit(10.0.0.1) transmit(10.0.0.1) transmit(10.0.0.1) transmit(10.0.0.1) transmit(10.0.0.1) ... For some reason, the B and C clients aren't communicating correctly with the triple homed server. Yet, his netstat shows udp port 123 open on each interface. People on subnet A have no trouble communicating with the firewall's ntpd. Ideas anyone? To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message