From owner-freebsd-stable@FreeBSD.ORG Thu Feb 28 19:12:57 2008 Return-Path: Delivered-To: freebsd-stable@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 1443B1065671 for ; Thu, 28 Feb 2008 19:12:57 +0000 (UTC) (envelope-from cliftonr@lava.net) Received: from outgoing01.lava.net (cake.lava.net [IPv6:2001:1888:0:1:230:48ff:fe5b:3b50]) by mx1.freebsd.org (Postfix) with ESMTP id B6D388FC23 for ; Thu, 28 Feb 2008 19:12:56 +0000 (UTC) (envelope-from cliftonr@lava.net) Received: from malasada.lava.net (malasada.lava.net [64.65.64.17]) by outgoing01.lava.net (Postfix) with ESMTP id 0BA01D00DE for ; Thu, 28 Feb 2008 09:12:54 -1000 (HST) Received: by malasada.lava.net (Postfix, from userid 102) id BE26A153882; Thu, 28 Feb 2008 09:12:53 -1000 (HST) Date: Thu, 28 Feb 2008 09:12:53 -1000 From: Clifton Royston To: freebsd-stable@freebsd.org Message-ID: <20080228191252.GA25053@lava.net> Mail-Followup-To: freebsd-stable@freebsd.org References: <20080227213340.8723D106567D@hub.freebsd.org> <20080228140220.GA890@gmail.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20080228140220.GA890@gmail.com> User-Agent: Mutt/1.4.2.2i Subject: Re: ntpd fails to synchronize on FreeBSD 6.3-STABLE X-BeenThere: freebsd-stable@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Production branch of FreeBSD source code List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 28 Feb 2008 19:12:57 -0000 On Thu, Feb 28, 2008 at 09:02:20PM +0700, Pongthep Kulkrisada wrote: > > You're not getting responses back from __any__ of those NTP servers. If > > you have a firewall *in front* of your BSD box (meaning a separate box, > > not ipfw/ipfilter/pf on the same BSD box!), then this is likely the > > cause of the problem. > The question is that two weeks ago, with same machine, same gateway, same NAT and same firewall config, when I was on FreeBSD 6.2-RELEASE and behind NAT, I could sync with ALL IPv6 servers (IPv4 is not functioning there) I said that in my first post. > I'm pretty sure that if I went back to 6.2 even behind NAT, I could get sync with IPv6. Long writing since my first post I shall summarize my events here for better understanding, and sorry for redundancy. > 1. FreeBSD 5.4-RELEASE(dial up) - can sync all servers > 2. FreeBSD 6.2-RELEASE(dial up) - can sync all servers > 3. FreeBSD 6.2-RELEASE(NAT) - can sync IPv6 servers What the first 3 items in your list suggest, totally independent of any questions involving 6.3 vs. 6.2, is that you don't have a NAT/LAN configuration which works correctly with NTP on IPv4. Do any other UDP services work with NAT on IPv4, under either 6.2, 6.3, or 5.4? If you want to confirm this is the problem, try running 6.3-STABLE on the same dialup connection that worked for 5.4 and 6.2. My prediction is that NTP will work via your dialup connection. If that is case, your problem is that your NAT implementation is broken or incomplete, or your NAT configuration also incorporates a firewall blocking NTP. (Note also that if you connect through dial-up, naturally you're not going through any firewall present on the LAN, so a firewall could well be the problem.) -- Clifton -- Clifton Royston -- cliftonr@iandicomputing.com / cliftonr@lava.net President - I and I Computing * http://www.iandicomputing.com/ Custom programming, network design, systems and network consulting services