From owner-freebsd-questions@FreeBSD.ORG Thu Jan 22 01:43:36 2004 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 3D6F816A4CE for ; Thu, 22 Jan 2004 01:43:36 -0800 (PST) Received: from mta05-svc.ntlworld.com (mta05-svc.ntlworld.com [62.253.162.45]) by mx1.FreeBSD.org (Postfix) with ESMTP id A238143D31 for ; Thu, 22 Jan 2004 01:43:33 -0800 (PST) (envelope-from scott@fishballoon.org) Received: from llama.fishballoon.org ([81.104.195.124]) by mta05-svc.ntlworld.comESMTP <20040122094307.ESGV12068.mta05-svc.ntlworld.com@llama.fishballoon.org>; Thu, 22 Jan 2004 09:43:07 +0000 Received: from nat-215.apama.com ([195.153.206.215] helo=UKCAMW105) by llama.fishballoon.org with asmtp (TLSv1:RC4-MD5:128) (Exim 4.24; FreeBSD) id 1AjbN2-0006qE-S0; Thu, 22 Jan 2004 09:43:28 +0000 From: "Scott Mitchell" To: "'Edward Aronyk'" , Date: Thu, 22 Jan 2004 09:42:20 -0000 MIME-Version: 1.0 Content-Type: text/plain; charset="US-ASCII" Content-Transfer-Encoding: 7bit X-Mailer: Microsoft Office Outlook, Build 11.0.5510 In-reply-to: <20040122092131.2CAD461542@boudica.360i.ca> X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1165 Thread-Index: AcPgyS40GHREqRdoRou4M9t4Ukv4KgAAYyWA Message-Id: X-Spam-Level: 0.0 (/) X-Spam-Status: "llama.fishballoon.org", hasmessageblock similar future email. If you have any questions, see the administrator of that system for details.ntp is running because it updates the driftfile, > and ps shows it's active: > > # ps -aux | grep ntp > root 81 0.0 0.2 1328 960 ?? Ss0.2 1364 992 ?? S 9Jan04 0:15.67 > /usr/sbin/ntpd -p /var/run/ntpd.pid > root 47532 0.0 0.0 304 164 p0 R+ 2:14AM 0:00.00 grep > ntp [...] Content analysis details: (0.0 points, 5.0 required) pts rule name description -------------------------------------------------- Subject: RE: NTP doesn't work behind IPF firewall? X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 22 Jan 2004 09:43:36 -0000 owner-freebsd-questions@freebsd.org wrote: > I know ntp is running because it updates the driftfile, > and ps shows it's active: > > # ps -aux | grep ntp > root 81 0.0 0.2 1328 960 ?? Ss 9Jan04 1:06.65 > /usr/sbin/ntpd -p /var/run/ntpd.pid > root 83 0.0 0.2 1364 992 ?? S 9Jan04 0:15.67 > /usr/sbin/ntpd -p /var/run/ntpd.pid > root 47532 0.0 0.0 304 164 p0 R+ 2:14AM 0:00.00 grep > ntp I'm not sure why you have 2 ntpd processes running there - I only ever see one: (505) llama:~ $ ps uaxww | grep ntpd root 77934 0.0 0.2 1312 900 ?? Ss Sun04pm 0:12.45 /usr/sbin/ntpd -p /var/run/ntpd.pid I'd suggest killing both of those ntpd processes and starting it up again. Actually, before you restarting, try manually synchronising with one of your servers, eg: # ntpdate subitaneous.cpsc.ucalgary.ca That will at least tell you that you can talk NTP with this server. I assume all the servers in your ntp.conf are public ones that your host is allowed to use? The firewall rules look OK, although you might want to add 'log' to your default block rule while diagnosing a problem like this, so you'll be told if ipf is blocking any of the packets you're interested in. Scott