NTP local query always times out

linux centos redhat ntp
34,000

Solution 1

I was expecting ntpq to query local server via 127.0.0.1, but it turns out to be querying local server via ethernet network interface.

Although I have no idea why a local ntp query would have to go through ethernet, but in configuration file I added

restrict <eht0 ip address>

And now NTP works fine.

Solution 2

On RHEL / CentOS 6 and 7, for whatever reason ntpq tries to query the IPv6 loopback at ::1 instead of the IPv4 loopback at 127.0.0.1. With this in mind, I added this line to my /etc/ntp.conf file:

restrict ::1

Saved the file then restarted ntpd 

service ntpd restart

now the command:

ntpq -p

works as expected. (This is the same as running ntpq in command-line mode and then issuing the peers command.)

I prefer this solution since you do not have to enable communications with ntpd via a potentially public Ethernet interface, which may be a security concern.

Share:
34,000

Related videos on Youtube

Howard
Author by

Howard

Updated on September 18, 2022

Comments

  • Howard
    Howard almost 2 years

    I have a CentOS 6.4 server, it does not have any iptable rules, it runs NTP daemon as service using the following configuration:

      driftfile /var/lib/ntp/drift

  server 0.pool.ntp.org
  server 1.pool.ntp.org
  server 2.pool.ntp.org
  server 3.pool.ntp.org

  restrict default ignore
  restrict 127.0.0.1

    When I run ntpq to query peers, the following response is received:

    ntpq> peers
localhost.localdomain: timed out, nothing received

    dig shows that:

    localhost.localdomain.  86400   IN  A   127.0.0.1

    Why doesn't ntp query work?

    • Howard
      Howard over 10 years
      iptable is running, but there isnt any rule.
    • slayedbylucifer
      slayedbylucifer over 10 years
      are you able to ping 0.pool.ntp.org and others in the list ?
    • Admin
      Admin about 10 years
      Do you have an entry for localhost or localhost.localdomain in /etc/hosts? The system will look here first, before checking DNS.
  • Tuinslak
    Tuinslak over 7 years
    Is this actually safe? Ie would that give public access somehow?
  • Thomas
    Thomas about 7 years
    That just shouldn't matter, as the pool directive just resolves more IP addresses behind the 0.pool.ntp.org alias, where as the server directive just resolves one address from DNS and sticks to it.

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

CentOS use SNMP to show interface useage
RedHat yum subversion installation
How do I get the current date according to an NTP server without setting it locally?
PHP 5 will not work in Centos 6 for me
What is the function of the cimserver daemon?
How to find out the log file name that a currently running process is writing to?
CentOS 6.2 - I can't access console using Alt+Ctrl+F2 (F1 to F6)
how to change screen resolution in rhel/centos 6?
Changing default system locale on CentOS 5
disabling screensaver on Linux