linux_wiki:synchronize_time_using_other_ntp_peers

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
Next revision 		Previous revision
linux_wiki:synchronize_time_using_other_ntp_peers [2016/10/08 17:33]
billdozor [NTP: Time Server] 		linux_wiki:synchronize_time_using_other_ntp_peers [2019/05/25 23:50] (current)
Line 5: Line 5:
 Synchronizing time to a central time server and also keeping in sync with a peer server. Synchronizing time to a central time server and also keeping in sync with a peer server.
  
-This type of setup would be a tier two NTP setup, allowing for redundancy if the central source of time is lost. The two peers could agree on a time and provide it locally to other servers.+This type of setup is a tier two NTP setup, allowing for redundancy if the central source of time is lost. The two peers then agree on a time and provide it locally to other servers.
  
 ---- ----
  
-====== NTP: Time Server ======+====== Lab Setup ====== 
 + 
 +The following virtual machines will be used: 
 +  * ipa.example.com (192.168.1.152) -> Central Time Server 
 +  * server1.example.com (192.168.1.150) -> NTP Server1 syncs with central (also peers with server2) 
 +  * server2.example.com (192.168.1.151) -> NTP Server2 syncs with central (also peers with server1) 
 + 
 +---- 
 + 
 +====== NTP: Central Time Server ====== 
 + 
 +Setting up the "central time server" to allow the other servers to sync to it.
  
   * Server: ipa.example.com (192.168.1.152)   * Server: ipa.example.com (192.168.1.152)
 +    * This server should already have ntpd installed and working if FreeIPA has been setup.
  
 +\\
 Ensure that the firewall allows NTP in Ensure that the firewall allows NTP in
 <code bash> <code bash>
Line 23: Line 36:
 ====== NTP: Client Peering ====== ====== NTP: Client Peering ======
  
-Setup NTP client to peer/sync with the NTP server.+Setup the NTP clients to sync with the central NTP server and also peer with each other to provide a tier two redundancy. This would allow other servers to sync with them. 
 + 
 +  * Servers 
 +    * server1.example.com (192.168.1.150) 
 +    * server2.example.com (192.168.1.151)
  
 \\ \\
 Install required package Install required package
 <code bash> <code bash>
-yum install ntp+yum install chrony
 </code> </code>
  
Line 34: Line 51:
 Enable and start the service Enable and start the service
 <code bash> <code bash>
-systemctl enable ntpd +systemctl enable chronyd 
-systemctl start ntpd+systemctl start chronyd
 </code> </code>
  
 \\ \\
-Edit the NTP config file+Edit the config file
 <code bash> <code bash>
-vim /etc/ntp.conf+vim /etc/chrony.conf
  
-# Comment out all server lines, add peer for the newly created NTP server +# Comment out all server lines, add a new one 
-peer 192.168.1.200+server ipa.example.com iburst 
 + 
 +# On server1: Peer with server2 
 +peer 192.168.1.151 
 + 
 +# On server2: Peer with server1 
 +peer 192.168.1.150 
 +</code> 
 + 
 +\\ 
 +Ensure that the firewall allows NTP in (on both server1 and server2) 
 +<code bash> 
 +firewall-cmd --permanent --add-service=ntp 
 +firewall-cmd --reload
 </code> </code>
  
Line 50: Line 80:
 Restart the service Restart the service
 <code bash> <code bash>
-systemctl restart ntpd+systemctl restart chronyd
 </code> </code>
  
 \\ \\
-Open the firewall for ntp+Ensure NTP time sync is enabled
 <code bash> <code bash>
-firewall-cmd --permanent --add-service=ntp +timedatectl set-ntp true 
-firewall-cmd --reload+</code> 
 + 
 +\\ 
 +Check status 
 +<code bash> 
 +chronyc sources -v
 </code> </code>
 +  * Note: It may take a few minutes for the servers to enter a synced state on the peers.
  
 ---- ----
  
  • linux_wiki/synchronize_time_using_other_ntp_peers.1475962403.txt.gz
  • Last modified: 2019/05/25 23:50
  • (external edit)