Part-2: NTP Server & Client settings

 Part-2:

Part-2: NTP Server & Client settings.

 

2.1 : Install ntp package using yum

[root@loadb1 ~]# ssh ntp
[root@ntp ~]# yum install -y ntp
Loaded plugins: fastestmirror, presto
Loading mirror speeds from cached hostfile
 * base: ftp.cc.uoc.gr
 * extras: ftp.cc.uoc.gr
 * updates: ftp.cc.uoc.gr
Setting up Install Process
Resolving Dependencies
--> Running transaction check
---> Package ntp.i686 0:4.2.4p8-2.el6.centos will be installed
--> Finished Dependency Resolution

Dependencies Resolved

=======================================================================================================================================================================
 Package                            Arch                                Version                                              Repository                           Size
=======================================================================================================================================================================
Installing:
 ntp                                i686                                4.2.4p8-2.el6.centos                                 base                                436 k

Transaction Summary
=======================================================================================================================================================================
Install       1 Package(s)

Total download size: 436 k
Installed size: 1.1 M
Downloading Packages:
Setting up and reading Presto delta metadata
Processing delta metadata
Package(s) data still to download: 436 k
ntp-4.2.4p8-2.el6.centos.i686.rpm                                                                                                               | 436 kB     00:01
Running rpm_check_debug
Running Transaction Test
Transaction Test Succeeded
Running Transaction
  Installing : ntp-4.2.4p8-2.el6.centos.i686                                                                                                                       1/1
Installed:
  ntp.i686 0:4.2.4p8-2.el6.centos
Complete!

2.2 : Edit /etc/ntp.conf file for server’s configurations.

[root@ntp ~]# vi /etc/ntp.conf

# For more information about this file, see the man pages
# ntp.conf(5), ntp_acc(5), ntp_auth(5), ntp_clock(5), ntp_misc(5), ntp_mon(5).

driftfile /var/lib/ntp/drift

# Permit time synchronization with our time source, but do not
# permit the source to query or modify the service on this system.
#restrict default kod nomodify notrap nopeer noquery
#restrict -6 default kod nomodify notrap nopeer noquery

# Permit all access over the loopback interface.  This could
# be tightened as well, but to do so would effect some of
# the administrative functions.
restrict 127.0.0.1 # BroExperts NTP Server
#restrict -6 ::1

# Hosts on local network are less restricted.
#restrict 192.168.1.0 mask 255.255.255.0 nomodify notrap

# Use public servers from the pool.ntp.org project.
# Please consider joining the pool (http://www.pool.ntp.org/join.html).

#server 0.centos.pool.ntp.org
#server 1.centos.pool.ntp.org
#server 2.centos.pool.ntp.org

#broadcast 192.168.1.255 autokey        # broadcast server
#broadcastclient                        # broadcast client
#broadcast 224.0.1.1 autokey            # multicast server
#multicastclient 224.0.1.1              # multicast client
#manycastserver 239.255.254.254         # manycast server
#manycastclient 239.255.254.254 autokey # manycast client

# Undisciplined Local Clock. This is a fake driver intended for backup
# and when no outside source of synchronized time is available.
server  127.127.1.0     # local clock # BroExperts NTP Server
#fudge  127.127.1.0 stratum 10

# Enable public key cryptography.
#crypto

includefile /etc/ntp/crypto/pw

# Key file containing the keys and key identifiers used when operating
# with symmetric key cryptography.
keys /etc/ntp/keys

# Specify the key identifiers which are trusted.
#trustedkey 4 8 42

# Specify the key identifier to use with the ntpdc utility.
#requestkey 8

# Specify the key identifier to use with the ntpq utility.
#controlkey 8

# Enable writing of statistics records.
#statistics clockstats cryptostats loopstats peerstats

2.3 : start ntpd service and make it available on startup.

[root@ntp ~]# service ntpd start && chkconfig ntpd on
Starting ntpd:                                             [  OK  ]

2.4 : verify your server. ( * ) is sign of your server working fine it will take sometime to appear.

[root@ntp ~]# watch ntpq -p -n
Every 2.0s: ntpq -p -n                                                                   wed Jun 6 15:46:32 2012

   romote         refid        st  t when poll reach    delay offset jitter
===============================================================================
*127.127.1.0      .LOCL.      5  l  -   2  64   377   0.000 0.000

2.5 : Clients Settings.

yum -y install ntp

2.6 : edit /etc/ntp.conf

 

[root@loadb1 ~]# vi /etc/ntp.conf
driftfile /var/lib/ntp/drift

# Permit time synchronization with our time source, but do not
# permit the source to query or modify the service on this system.
restrict default kod nomodify notrap nopeer noquery
restrict -6 default kod nomodify notrap nopeer noquery

# Permit all access over the loopback interface.  This could
# be tightened as well, but to do so would effect some of
# the administrative functions.
#restrict 127.0.0.1
#restrict -6 ::1

# Hosts on local network are less restricted.
#restrict 192.168.1.0 mask 255.255.255.0 nomodify notrap

# Use public servers from the pool.ntp.org project.
# Please consider joining the pool (http://www.pool.ntp.org/join.html).
#server 0.centos.pool.ntp.org
#server 1.centos.pool.ntp.org
#server 2.centos.pool.ntp.org

server 192.168.2.31

#broadcast 192.168.1.255 autokey        # broadcast server
#broadcastclient                        # broadcast client
#broadcast 224.0.1.1 autokey            # multicast server
#multicastclient 224.0.1.1              # multicast client
#manycastserver 239.255.254.254         # manycast server
#manycastclient 239.255.254.254 autokey # manycast client

# Undisciplined Local Clock. This is a fake driver intended for backup
# and when no outside source of synchronized time is available.
#server 127.127.1.0     # local clock
#fudge  127.127.1.0 stratum 10

# Enable public key cryptography.
#crypto

includefile /etc/ntp/crypto/pw

# Key file containing the keys and key identifiers used when operating
# with symmetric key cryptography.
keys /etc/ntp/keys

# Specify the key identifiers which are trusted.
#trustedkey 4 8 42

# Specify the key identifier to use with the ntpdc utility.
#requestkey 8

# Specify the key identifier to use with the ntpq utility.
#controlkey 8

# Enable writing of statistics records.
#statistics clockstats cryptostats loopstats peerstats

2.7 : start ntpd service and make it available on startup.

[root@loadb1 ~]# service ntpd start && chkconfig ntpd on
Starting ntpd:                                             [  OK  ]

2.8 : Copy this file to all other clients using scp

[root@loadb1 ~]# scp /etc/ntp.conf loadb2:/etc/
ntp.conf                                  100% 1950     1.9KB/s   00:00
[root@loadb1 ~]# scp /etc/ntp.conf websrv1:/etc/
ntp.conf                                  100% 1950     1.9KB/s   00:00
[root@loadb1 ~]# scp /etc/ntp.conf websrv2:/etc/
ntp.conf                                  100% 1950     1.9KB/s   00:00
[root@loadb1 ~]# scp /etc/ntp.conf dbase1:/etc/
ntp.conf                                  100% 1950     1.9KB/s   00:00
[root@loadb1 ~]# scp /etc/ntp.conf dbase2:/etc/
ntp.conf                                  100% 1950     1.9KB/s   00:00
[root@loadb1 ~]# scp /etc/ntp.conf dns:/etc/
ntp.conf                                  100% 1950     1.9KB/s   00:00

2.9 : Run this command on all clients

service ntpd start && chkconfig ntpd on

2.10 : sync your time with your ntp server on all clients

[root@loadb1 ~]# ntpdate -u 192.168.2.31
 6 Jun 13:06:26 ntpdate[10904]: adjust time server 192.168.2.31 offset -0.000111 sec

 

Part-3: Bind Server Installation + configurations.