From owner-freebsd-questions@freebsd.org Tue Jul 10 12:53:08 2018 Return-Path: Delivered-To: freebsd-questions@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 9601210492AA for ; Tue, 10 Jul 2018 12:53:08 +0000 (UTC) (envelope-from byrnejb@harte-lyne.ca) Received: from mx32.harte-lyne.ca (mx32.harte-lyne.ca [216.185.71.32]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "mx32.harte-lyne.ca", Issuer "CA_HLL_ISSUER_2016" (not verified)) by mx1.freebsd.org (Postfix) with ESMTPS id 38F7B74FC5 for ; Tue, 10 Jul 2018 12:53:07 +0000 (UTC) (envelope-from byrnejb@harte-lyne.ca) Received: from mx32.harte-lyne.ca (unknown [127.0.32.1]) by mx32.harte-lyne.ca (Postfix) with ESMTP id 083F6D821 for ; Tue, 10 Jul 2018 08:53:01 -0400 (EDT) X-Virus-Scanned: amavisd-new at harte-lyne.ca Received: from mx32.harte-lyne.ca ([127.0.32.1]) by mx32.harte-lyne.ca (mx32.harte-lyne.ca [127.0.32.1]) (amavisd-new, port 10024) with ESMTP id rOKmaeXNzYkE for ; Tue, 10 Jul 2018 08:52:45 -0400 (EDT) Received: from webmail.harte-lyne.ca (inet04.hamilton.harte-lyne.ca [216.185.71.24]) (using TLSv1 with cipher ECDHE-RSA-AES256-SHA (256/256 bits)) (Client did not present a certificate) by mx32.harte-lyne.ca (Postfix) with ESMTPSA id 6001DD808 for ; Tue, 10 Jul 2018 08:52:45 -0400 (EDT) Received: from 216.185.71.44 (SquirrelMail authenticated user byrnejb_hll) by webmail.harte-lyne.ca with HTTP; Tue, 10 Jul 2018 08:52:45 -0400 Message-ID: <5e53aa0720bba3538f6c3e27ae368e6f.squirrel@webmail.harte-lyne.ca> Date: Tue, 10 Jul 2018 08:52:45 -0400 Subject: ntpd binds to all ldefined loopback addresses From: "James B. Byrne" To: freebsd-questions@freebsd.org Reply-To: byrnejb@harte-lyne.ca User-Agent: SquirrelMail/1.4.22-5.el6 MIME-Version: 1.0 Content-Type: text/plain;charset=iso-8859-1 Content-Transfer-Encoding: 8bit X-Priority: 3 (Normal) Importance: Normal X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.27 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 10 Jul 2018 12:53:08 -0000 I have encountered an issue with ntp on FreeBSD-11. This may be either a design feature or a bug; or just a misunderstanding on my part. The host in question has server jails running on it. None of these are running ntpd. However, the host is and is configured to listen on specific addresses: # grep -i listen /etc/ntp.conf ### Set the listening addresses to avoid collisions with jails interface listen 192.168.216.18 interface listen 216.185.71.18 However, when I do a sockstat I see this: # sockstat -l | grep ntp root ntpd 11391 20 udp4 216.185.71.18:123 *:* root ntpd 11391 21 udp4 192.168.216.18:123 *:* root ntpd 11391 22 udp6 ::1:123 *:* root ntpd 11391 23 udp4 127.0.0.1:123 *:* root ntpd 11391 24 udp4 127.0.31.1:123 *:* root ntpd 11391 25 udp4 127.0.32.1:123 *:* root ntpd 11391 26 udp4 127.0.84.1:123 *:* Despite being instructed to only listen on two addresses ntpd has glommed every available loopback address. Is this intentional? if not then how does one configure ntp to only listen on a specific lo address? I have already tried specifying 'listen 127.0.0.1' and this produced no change in ntpd's observed behaviour. -- *** e-Mail is NOT a SECURE channel *** Do NOT transmit sensitive data via e-Mail Do NOT open attachments nor follow links sent by e-Mail James B. Byrne mailto:ByrneJB@Harte-Lyne.ca Harte & Lyne Limited http://www.harte-lyne.ca 9 Brockley Drive vox: +1 905 561 1241 Hamilton, Ontario fax: +1 905 561 0757 Canada L8E 3C3