From owner-freebsd-stable@FreeBSD.ORG Mon Jul 23 04:00:28 2007 Return-Path: Delivered-To: freebsd-stable@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id AAE6916A419 for ; Mon, 23 Jul 2007 04:00:28 +0000 (UTC) (envelope-from doug@fledge.watson.org) Received: from fledge.watson.org (fledge.watson.org [209.31.154.41]) by mx1.freebsd.org (Postfix) with ESMTP id B665213C45B for ; Mon, 23 Jul 2007 04:00:26 +0000 (UTC) (envelope-from doug@fledge.watson.org) Received: from fledge.watson.org (localhost.watson.org [127.0.0.1]) by fledge.watson.org (8.14.1/8.14.1) with ESMTP id l6N3adG7070626; Sun, 22 Jul 2007 23:36:39 -0400 (EDT) (envelope-from doug@fledge.watson.org) Received: from localhost (doug@localhost) by fledge.watson.org (8.14.1/8.14.1/Submit) with ESMTP id l6N3achB070617; Sun, 22 Jul 2007 23:36:38 -0400 (EDT) (envelope-from doug@fledge.watson.org) Date: Sun, 22 Jul 2007 23:36:38 -0400 (EDT) From: doug To: Kevin Oberman In-Reply-To: <20070722012802.B0CD045070@ptavv.es.net> Message-ID: <20070722230835.W51171@fledge.watson.org> References: <20070722012802.B0CD045070@ptavv.es.net> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII; format=flowed Cc: "\[LoN\]Kamikaze" , FreeBSD Stable , Stefan Lambrev Subject: Re: ntpd just sits there and does nothing X-BeenThere: freebsd-stable@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: doug@safeport.com List-Id: Production branch of FreeBSD source code List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 23 Jul 2007 04:00:28 -0000 On Sat, 21 Jul 2007, Kevin Oberman wrote: >> Hi, >> >> [LoN]Kamikaze wrote: >>> Doug Hardie wrote: >>> >>>> On Jul 19, 2007, at 10:08, [LoN]Kamikaze wrote: >>>> >>>> >>>>> As the subject says, on my 6-stable systems ntpd just sits there and does >>>>> nothing. The logs only mention when the daemon gets started or shut >>>>> down. It >>>>> complains when servers are not reachable, but does nothing when they >>>>> are available. >>>>> >>>>> The drift file always contains 0.00. Mostly likely this means you are not communicating with the ntp servers. You never gave us your ntpd.conf file (that I saw anyway) and what do you get with 'ntpdc -p', or the more complex command suggested earlier? >> ntpd will not change time if the difference is too big - I think it >> should be less then 1000s. >> ntpdate will :) If ntpd is working your clock will not vary from the server by more than a second, much less 1000 secs. If ntpdate does reset the clock, it suggests that your firewalls are not the problem and at least one of the servers will answer your queries. You can see if ntp packets are being passed by using tcpdump. I suppose you have made sure its running by something like 'ps -aux | grep ntp'. > ntpdate is deprecated and is not recommended these days. The proper answer is > to start ntpd with the -g option and to add the 'iburst' option to one or more > of the servers in /etc/ntp.conf. The 'iburst' will speed up th initial sync to > close to that of ntpdate, but have much greater accuracy. > > You can get the '-g' by adding 'ntpd_sync_on_start="YES"' to rc.conf. > -- yea but so does 'ntpdate_enable="YES"', but I still like nslookup too :) The problem "clearly" seems to be you are not communicating with the ntp servers. The possibilities have all been stated: bad ntp.conf, firewall (you said there were two levels), or the servers you chose are not accepting your queries. Without seeing the data requested we are all guessing.