I'm running all 10.5.8 servers and trying to get NTP straightened
out. All my boxes point to my OD Master, but all of the clocks are
out of sync by a minute or two here or there. I'd like to get them
in sync for obvious reasons.
My OD Master server is using time.apple.com, and my replicas and
other servers are using my OD Master as their time server, with
client computers using the replicas and other servers as their time
server.
I'm seeing in the system log file "no server suitable for
synchronization found". This is happening on my OD Master, my
servers, and my clients. Clients are a mix of 10.5.6 to 10.5.8.
The firewall service is not blocking ntp. Any thoughts on things to
check out on this to get it working. I don't want my clock skews
getting too far out of hand since that will make Kerberos work less
than ideal.
I have been dealing with cock drift for a long time. I do recall I
had to open the router to in and out for ntp, which of course make
sense.
I just find Apple buult in ntp stuff to not work reliably.
Example server 1: Thu Nov 5 19:45:40 PST 2009
Example server 2 Thu Nov 5 19:45:58 PST 2009
Example server 3 Thu Nov 5 19:46:18 PST 2009
Example server 4 Thu Nov 5 19:46:53 PST 2009
Server 4 is the one I consider accurate, since I wrote a launchd
script to update it on my own schedule, I just have not had time to
move it to the other machines.
The basics of my script are
1) wait for interfaces to come up
network_ip=`ifconfig en0 | grep ' active'`
I should us ipconfig waitall
Instead I have a complicated counter that makes sure it does not
run forever waiting on an interface.
2) Once the interface is up, I run
/usr/sbin/ntpd -c /private/etc/ntp-restrict.conf -p /var/run/ntpd.pid -
f /var/db/ntp.drift -d -q -g
You will see it doing work, to stdout if you sudo run it, I just ran
that, and as fast as I could move over a terminal window, all 4 of my
machines are now in sync, within a second, or so, since that was as
fast as I could move to a terminal window.
I think you have to make sure the system setting to auto set the clock
is off, or that command will not work. I have no idea if this is a
good idea, but it works for me, and keeps my clocks sane. I can
certainly tell which machines are hotter than others, as those drift a
lot more.
--
Scott * If you contact me off list replace talklists@ with scott@ *
