Home
Help
Search
Login
Register
OPNsense Forum
»
English Forums
»
General Discussion
»
Trying to learn NTP
« previous
next »
Print
Pages: [
1
]
Author
Topic: Trying to learn NTP (Read 3235 times)
cwesterfield
Newbie
Posts: 6
Karma: 1
Trying to learn NTP
«
on:
September 26, 2019, 04:12:03 pm »
I'm attempting to learn NTP buy setting up opnsense as a server and then redirecting all NTP requests to the router.
I've learned a bunch about stratums and pools and ntpdate -q, but I'm having an issue with opnsense syncing.
I'm not 100% sure how troubleshoot further. The network Time status shows "Unreach/Pending".
What I've done so far:
Successfully pinged 3.north-america.pool.ntp.org from opnsense cli
Tracerouted 3.north-america.pool.ntp.org to make sure it wasn't going out a vpn
Successfully queried the same ntp server using ntupdate on opnsense cli
Since the CLI can query, should that lean me to believe my config is the problem? I've googled a bunch and there are many threads, with a multitude of fixes. I tried an outbound NAT rule, but that also did not work.
«
Last Edit: September 26, 2019, 04:26:24 pm by cwesterfield
»
Logged
banym
Sr. Member
Posts: 468
Karma: 31
Free Human Being, FreeBSD, Linux and Mac nerd
Re: Trying to learn NTP
«
Reply #1 on:
September 26, 2019, 08:14:00 pm »
Do you have rules set up on your interface to allow Clients to query the OPNsense?
Logged
Twitter: banym
Mastodon: banym@bsd.network
Blog:
https://www.banym.de
cwesterfield
Newbie
Posts: 6
Karma: 1
Re: Trying to learn NTP
«
Reply #2 on:
September 26, 2019, 11:49:02 pm »
I'm not 100% certain but the fact that a server on my LAN does see the settings (mostly stratum number) that I set in OPNsense, I think they communicate okay.
cwesterfield@bastion:~# ntpdate -q 10.0.1.1
server 10.0.1.1, stratum 5, offset 0.240657, delay 0.02579
26 Sep 21:51:40 ntpdate[32043]: no server suitable for synchronization found
Logged
cwesterfield
Newbie
Posts: 6
Karma: 1
Re: Trying to learn NTP
«
Reply #3 on:
September 27, 2019, 02:04:27 pm »
I also realize today That When I use a server to query, the live firewall doesn't show the response. The top part of that log is a debian machine successfully doing a query. I only see the outbound stuff.
Is that expected?
Logged
Print
Pages: [
1
]
« previous
next »
OPNsense Forum
»
English Forums
»
General Discussion
»
Trying to learn NTP