CentOS 6.3下NTP服务安装和配置
2014-12-13 14:51
726 查看
测试环境:
NTPserver 192.168.1.252
NTPclient 192.168.1.251
1.NTP server配置:
准备工作:
(1).关闭selinux:
[root@NTPserver ~]# vi /etc/selinux/config
SELINUX=disabled
(2).关闭iptables:
[root@NTPserver ~]# service iptables stop
[root@NTPserver ~]# chkconfig iptables off
2.安装NTP软件包:
[root@NTPserver ~]# yum -y install ntp /*yum安装NTP服务*/
[root@NTPserver ~]# chkconfig --add ntpd /*添加NTP*/
[root@NTPserver ~]# chkconfig ntpd on /*开机自启动NTP*/
3.修改NTP配置文件:
[root@NTPserver ~]# vi /etc/ntp.conf
***************************************************************
# For more information about this file, see the man pages
# ntp.conf(5), ntp_acc(5), ntp_auth(5), ntp_clock(5), ntp_misc(5), ntp_mon(5).
driftfile /var/lib/ntp/drift
restrict default ignore 设置默认策略为拒绝所有访问方式的请求
# Permit time synchronization with our time source, but do not
# permit the source to query or modify the service on this system.
restrict default kod nomodify notrap nopeer noquery
restrict -6 default kod nomodify notrap nopeer noquery
# Permit all access over the loopback interface. This could
# be tightened as well, but to do so would effect some of
# the administrative functions.
restrict 127.0.0.1
restrict -6 ::1
# Hosts on local network are less restricted.
restrict 192.168.1.0 mask 255.255.255.0 nomodify notrap 允许局域网内机器同步时间
# Use public servers from the pool.ntp.org project.
# Please consider joining the pool (http://www.pool.ntp.org/join.html).
server 0.centos.pool.ntp.org
server 1.centos.pool.ntp.org 设置同步服务器
server 2.centos.pool.ntp.org
#broadcast 192.168.1.255 autokey # broadcast server
#broadcastclient # broadcast client
#broadcast 224.0.1.1 autokey # multicast server
#multicastclient 224.0.1.1 # multicast client
#manycastserver 239.255.254.254 # manycast server
#manycastclient 239.255.254.254 autokey # manycast client
restrict 0.centos.pool.ntp.org nomodify notrap noquery
restrict 1.centos.pool.ntp.org nomodify notrap noquery 允许与上层服务器同步时间
restrict 2.centos.pool.ntp.org nomodify notrap noquery
# Undisciplined Local Clock. This is a fake driver intended for backup
# and when no outside source of synchronized time is available.
server 127.127.1.0 # local clock
fudge 127.127.1.0 stratum 10 外界同步源无法联系时,使用本地时间为同步服务
# Enable public key cryptography.
#crypto
includefile /etc/ntp/crypto/pw
# Key file containing the keys and key identifiers used when operating
# with symmetric key cryptography.
keys /etc/ntp/keys
# Specify the key identifiers which are trusted.
#trustedkey 4 8 42
# Specify the key identifier to use with the ntpdc utility.
#requestkey 8
# Specify the key identifier to use with the ntpq utility.
#controlkey 8
# Enable writing of statistics records.
#statistics clockstats cryptostats loops
4.与上层服务器同步时间:
[root@NTPserver ~]# ntpdate 0.centos.pool.ntp.org
8 Nov 11:13:09 ntpdate[4618]: adjust time server 202.112.29.82 offset -0.037618 sec
5.开启NTP服务:
[root@NTPserver ~]# service ntpd start
正在启动 ntpd:[确定]
***************************************************************
NTP client测试时间同步:
[root@NTPclient ~]# yum -y install ntpdate
[root@NTPclient ~]# ntpdate 192.168.1.252
8 Nov 12:09:36 ntpdate[9118]: adjust time server 192.168.1.252 offset -0.035431 sec
[root@NTPclient ~]# hwclock -w
[root@NTPclient ~]# yum -y install vixie-cron
[root@NTPclient ~]# echo '30 * * * * root /usr/sbin/ntpdate 192.168.1.252;/sbin/hwclock -w' >> /etc/crontab
其他:
设置TimeZone:
[root@NTPclient ~]# ln -sf /usr/share/zoneinfo/posix/Asia/Shanghai /etc/localtime
***************************************************************
问题1:
[root@NTPserver ~]# ntpdate 0.centos.pool.ntp.org
8 Nov 11:12:34 ntpdate[4606]: the NTP socket is in use, exiting
原因:该机已经运行NTP服务。
解决:
[root@NTPserver ~]# service ntpd stop
关闭 ntpd:[确定]
[root@NTPserver ~]# ntpdate 0.centos.pool.ntp.org
8 Nov 11:13:09 ntpdate[4618]: adjust time server 202.112.29.82 offset -0.037618 sec
[root@NTPserver ~]# service ntpd start
正在启动 ntpd:[确定]
问题2:
[root@NTPclient ~]# ntpdate 192.168.1.252
8 Nov 11:16:54 ntpdate[6186]: no server suitable for synchronization found
原因:NTP server与client UDP 123端口不可达,可选任意端口通信。
-u Direct ntpdate to use an unprivileged port for outgoing packets. This is most useful when behind a firewall that blocks incoming traffic to privileged ports, and you want to synchronize with hosts beyond the firewall. Note that the -d option
always uses unprivileged ports.
解决:
[root@NTPclient ~]# ntpdate -u 192.168.1.252
NTPserver 192.168.1.252
NTPclient 192.168.1.251
1.NTP server配置:
准备工作:
(1).关闭selinux:
[root@NTPserver ~]# vi /etc/selinux/config
SELINUX=disabled
(2).关闭iptables:
[root@NTPserver ~]# service iptables stop
[root@NTPserver ~]# chkconfig iptables off
2.安装NTP软件包:
[root@NTPserver ~]# yum -y install ntp /*yum安装NTP服务*/
[root@NTPserver ~]# chkconfig --add ntpd /*添加NTP*/
[root@NTPserver ~]# chkconfig ntpd on /*开机自启动NTP*/
3.修改NTP配置文件:
[root@NTPserver ~]# vi /etc/ntp.conf
***************************************************************
# For more information about this file, see the man pages
# ntp.conf(5), ntp_acc(5), ntp_auth(5), ntp_clock(5), ntp_misc(5), ntp_mon(5).
driftfile /var/lib/ntp/drift
restrict default ignore 设置默认策略为拒绝所有访问方式的请求
# Permit time synchronization with our time source, but do not
# permit the source to query or modify the service on this system.
restrict default kod nomodify notrap nopeer noquery
restrict -6 default kod nomodify notrap nopeer noquery
# Permit all access over the loopback interface. This could
# be tightened as well, but to do so would effect some of
# the administrative functions.
restrict 127.0.0.1
restrict -6 ::1
# Hosts on local network are less restricted.
restrict 192.168.1.0 mask 255.255.255.0 nomodify notrap 允许局域网内机器同步时间
# Use public servers from the pool.ntp.org project.
# Please consider joining the pool (http://www.pool.ntp.org/join.html).
server 0.centos.pool.ntp.org
server 1.centos.pool.ntp.org 设置同步服务器
server 2.centos.pool.ntp.org
#broadcast 192.168.1.255 autokey # broadcast server
#broadcastclient # broadcast client
#broadcast 224.0.1.1 autokey # multicast server
#multicastclient 224.0.1.1 # multicast client
#manycastserver 239.255.254.254 # manycast server
#manycastclient 239.255.254.254 autokey # manycast client
restrict 0.centos.pool.ntp.org nomodify notrap noquery
restrict 1.centos.pool.ntp.org nomodify notrap noquery 允许与上层服务器同步时间
restrict 2.centos.pool.ntp.org nomodify notrap noquery
# Undisciplined Local Clock. This is a fake driver intended for backup
# and when no outside source of synchronized time is available.
server 127.127.1.0 # local clock
fudge 127.127.1.0 stratum 10 外界同步源无法联系时,使用本地时间为同步服务
# Enable public key cryptography.
#crypto
includefile /etc/ntp/crypto/pw
# Key file containing the keys and key identifiers used when operating
# with symmetric key cryptography.
keys /etc/ntp/keys
# Specify the key identifiers which are trusted.
#trustedkey 4 8 42
# Specify the key identifier to use with the ntpdc utility.
#requestkey 8
# Specify the key identifier to use with the ntpq utility.
#controlkey 8
# Enable writing of statistics records.
#statistics clockstats cryptostats loops
4.与上层服务器同步时间:
[root@NTPserver ~]# ntpdate 0.centos.pool.ntp.org
8 Nov 11:13:09 ntpdate[4618]: adjust time server 202.112.29.82 offset -0.037618 sec
5.开启NTP服务:
[root@NTPserver ~]# service ntpd start
正在启动 ntpd:[确定]
***************************************************************
NTP client测试时间同步:
[root@NTPclient ~]# yum -y install ntpdate
[root@NTPclient ~]# ntpdate 192.168.1.252
8 Nov 12:09:36 ntpdate[9118]: adjust time server 192.168.1.252 offset -0.035431 sec
[root@NTPclient ~]# hwclock -w
[root@NTPclient ~]# yum -y install vixie-cron
[root@NTPclient ~]# echo '30 * * * * root /usr/sbin/ntpdate 192.168.1.252;/sbin/hwclock -w' >> /etc/crontab
其他:
设置TimeZone:
[root@NTPclient ~]# ln -sf /usr/share/zoneinfo/posix/Asia/Shanghai /etc/localtime
***************************************************************
问题1:
[root@NTPserver ~]# ntpdate 0.centos.pool.ntp.org
8 Nov 11:12:34 ntpdate[4606]: the NTP socket is in use, exiting
原因:该机已经运行NTP服务。
解决:
[root@NTPserver ~]# service ntpd stop
关闭 ntpd:[确定]
[root@NTPserver ~]# ntpdate 0.centos.pool.ntp.org
8 Nov 11:13:09 ntpdate[4618]: adjust time server 202.112.29.82 offset -0.037618 sec
[root@NTPserver ~]# service ntpd start
正在启动 ntpd:[确定]
问题2:
[root@NTPclient ~]# ntpdate 192.168.1.252
8 Nov 11:16:54 ntpdate[6186]: no server suitable for synchronization found
原因:NTP server与client UDP 123端口不可达,可选任意端口通信。
-u Direct ntpdate to use an unprivileged port for outgoing packets. This is most useful when behind a firewall that blocks incoming traffic to privileged ports, and you want to synchronize with hosts beyond the firewall. Note that the -d option
always uses unprivileged ports.
解决:
[root@NTPclient ~]# ntpdate -u 192.168.1.252
内容来自用户分享和网络整理,不保证内容的准确性,如有侵权内容,可联系管理员处理 
相关文章推荐
- CentOS 6.3下NTP服务安装和配置
- 基于【CentOS-7+ Ambari 2.7.0 + HDP 3.0】搭建HAWQ数据仓库——安装配置NTP服务,保证集群时间保持同步
- CentOS 6.3下Samba服务器的安装与配置:samba服务企业中运用
- CentOS下NTP安装配置
- CentOS 6.3下Samba服务器的安装与配置
- centos ntp服务配置文件解析
- 服务器安装centos6.4 x86_64 与 配置XManager的XDMCP服务 与 配置Ntfs读写
- 转载:CENTOS NTP服务配置(转)
- CentOS 5.2,Linux 2.6+ 内核 ,Apache+MySQL+PHP 安装及基本配置过程记录 && 将apache安装为系统服务
- CentOS 6.3下Samba服务器的安装与配置
- Centos6.3下DRBD安装配置笔记
- CentOS 6.3下Samba服务器的安装与配置
- Centos5.4 安装配置DNS服务
- Centos安装配置NTP
- CentOS5.5下安装zabbix客户端并配置成SysV服务启动
- CentOS 6.3下Samba服务器的安装与配置
- 在CentOS6.2下安装DNS服务软件Bind并快速配置简单实例
- 在CentOS 5.3下安装配置tftp服务
- CentOS 6.3下Samba服务器的安装与配置
- 在centos 下安装配置基于gitosis 的git 服务