BLOGROLLS

Fixes the ntpdate[31447]: no server suitable for synchronization found error tos maxdist 2.5

By: Simon Quantrill On: Thu 17 April 2014
In: Unknown
Tags:

Interesting problem causing all the local machines syncing with ntp to fail. This was after an upgrade to wheezy but think it may have been there before.

Anyhow fix config is:

/etc/ntp.conf, configuration for ntpd; see ntp.conf(5) for help

driftfile /var/lib/ntp/ntp.drift

Fixes the ntpdate[31447]: no server suitable for synchronization found error

tos maxdist 2.5

Enable this if you want statistics to be logged.

statsdir /var/log/ntpstats/

statistics loopstats peerstats clockstats filegen loopstats file loopstats type day enable filegen peerstats file peerstats type day enable filegen clockstats file clockstats type day enable

Access control configuration; see /usr/share/doc/ntp-doc/html/accopt.html for

details. The web page

might also be helpful.

Note that "restrict" applies to both servers and clients, so a configuration

that might be intended to block requests from certain clients could also end

up blocking replies from your own upstream servers.

restrict -4 default kod notrap nomodify nopeer noquery

restrict -6 default kod notrap nomodify nopeer noquery

Block unauthrorized access

restrict default ignore restrict -6 default ignore

Local users may interrogate the ntp server more closely.

restrict 127.0.0.1 restrict -6 ::1

server ntp.bbeyond.nl iburst restrict ntp.bbeyond.nl mask 255.255.255.255 nomodify notrap nopeer noquery

server 0.europe.pool.ntp.org iburst restrict 0.europe.pool.ntp.org mask 255.255.255.255 nomodify no trap nopeer noquery

server 1.europe.pool.ntp.org iburst restrict 1.europe.pool.ntp.org mask 255.255.255.255 nomodify notrap nopeer noquery

server 2.europe.pool.ntp.org iburst restrict 2.europe.pool.ntp.org mask 255.255.255.255 nomodify notrap nopeer noquery

server 3.europe.pool.ntp.org iburst restrict 3.europe.pool.ntp.org mask 255.255.255.255 nomodify notrap nopeer noquery

restrict 192.168.150.0 mask 255.255.255.0 nomodify notrap nopeer restrict 192.168.130.0 mask 255.255.255.0 nomodify notrap nopeer restrict 192.168.160.0 mask 255.255.255.0 nomodify notrap nopeer

If you want to provide time to your local subnet, change the next line.

(Again, the address is an example only.)

broadcast 192.168.0.0

If you want to listen to time broadcasts on your local subnet, de-comment the

next lines. Please do this only if you trust everybody on the network!

disable auth

broadcastclient
If you found the article helpful, please share or cite the article, and spread the word:

For any feedback or corrections, please write in to: Simon Quantrill