Hi all,
Today I try to set my bering box to sync time with time server "time.nuri.net". I
found that there is one lrp package "xntpd.lrp" that make my firewall sync time with
time server with "ntp protocol" not use rdate. I try to config them by
- open my firewall policy to allow my firewall to sync time with time server
#############################################
#SOURCE DEST POLICY LOG LEVEL LIMIT:BURST
fw all ACCEPT
#############################################
- config my firewall "Master LRP Setting"
#############################################
# Server that will be contacted via 'rdate' for the time service daily.
# Turning this on also updates the CMOS clock
lrp_DATE_SERVER="time.nuri.net"
#############################################
- config in xntpd package to make my firewall sync time with time server by
xntpd
###################################################################
# First define the clocks we are using
server 203.255.112.96 version 3 prefer # <----- ip address of time.nuri.net
# where the drift file is located
driftfile /etc/ntp.drift
# Block everyone out by default
restrict default notrust nomodify nopeer notrust noserve notrap
# Let our time servers be trusted
restrict 192.5.41.40 nomodify notrap
restrict 198.82.162.213 nomodify notrap
restrict 128.118.25.3 nomodify notrap
# Let a machine on our DMZ get updates but not modify
restrict 192.168.2.215 nomodify notrap
# Let anything coming from the internal network do
# anything. Let's you run xntpdc from your internal
# network.
restrict 192.168.2.254
# Same for the localhost.
restrict 127.0.0.1
# Auth stuff, even if your trusted you need the key
keys /etc/ntp.keys
trustedkey 99
requestkey 99
controlkey 99
#######################################################
Note that i only change time server address in ntp.conf. My network diagram be
like this
192.168.100.1 --> 192.168.100.6 192.168.101.1 ----> 192.168.101.6
192.168.102.1 ----> 192.168.102.6 --> time.nuri.net
Firewall 1 Router1 Router2
Firewall2
I config my firewall1 to synctime with my firewall2 and my firewall2 sync time
with time.nuri.net (above configuration is details of my firewall2) but my both
firewall time are not equal... why???? Was I miss in some configuration??? Please Help
me...��+,~w�zf��+,��좷�o$�y�y��zW(��h�礅�zxm�����������&���y����j)b�
b��^i��z�b��,���y�+���m����+-��.�ǟ������+-��b�ا~��y����DP���i��^i�k�7���������������ځ��v�"w_=��f�������������������������������������
