[root@Nadzor cron.daily]# date; ntpdate st.ntp.carnet.hr;date
Čet Stu 5 08:41:38 CET 2009
Čet Stu 5 08:41:38 CET 2009
more /etc/ntp.conf
# Permit time synchronization with our time source, but do not
# permit the source to query or modify the service on this system.
restrict default nomodify notrap noquery
# Permit all access over the loopback interface. This could
# be tightened as well, but to do so would effect some of
# the administrative functions.
restrict 127.0.0.1
# -- CLIENT NETWORK -------
# Permit systems on this network to synchronize with this
# time service. Do not permit those systems to modify the
# configuration of this service. Also, do not use those
# systems as peers for synchronization.
# restrict 192.168.1.0 mask 255.255.255.0 nomodify notrap
# --- OUR TIMESERVERS -----
# Use public servers from the pool.ntp.org project.
# Please consider joining the pool (
http://www.pool.ntp.org/join.html).
server 0.rhel.pool.ntp.org
server 1.rhel.pool.ntp.org
server 2.rhel.pool.ntp.org
# --- NTP MULTICASTCLIENT ---
#multicastclient # listen on default 224.0.1.1
# restrict 224.0.1.1 mask 255.255.255.255 nomodify notrap
# restrict 192.168.1.0 mask 255.255.255.0 nomodify notrap
# --- GENERAL CONFIGURATION ---
#
# Undisciplined Local Clock. This is a fake driver intended for backup
# and when no outside source of synchronized time is available. The
# default stratum is usually 3, but in this case we elect to use stratum
# 0. Since the server line does not have the prefer keyword, this driver
# is never used for synchronization, unless no other other
# synchronization source is available. In case the local host is
# controlled by some external source, such as an external oscillator or
# another protocol, the prefer keyword would cause the local host to
# disregard all other synchronization sources, unless the kernel
# modifications are in use and declare an unsynchronized condition.
#
server 127.127.1.0 # local clock
fudge 127.127.1.0 stratum 10
#
# Drift file. Put this in a directory which the daemon can write to.
# No symbolic links allowed, either, since the daemon updates the file
# by creating a temporary in the same directory and then rename()'ing
# it to the file.
#
driftfile /var/lib/ntp/drift
broadcastdelay 0.008
#
# Keys file. If you want to diddle your server at run time, make a
# keys file (mode 600 for sure) and define the key number to be
# used for making requests.
#
# PLEASE DO NOT USE THE DEFAULT VALUES HERE. Pick your own, or remote
# systems might be able to reset your clock at will. Note also that
# ntpd is started with a -A flag, disabling authentication, that
# will have to be removed as well.
#
keys /etc/ntp/keys
more /etc/sysconfig/clock
ZONE="Europe/Zagreb"
UTC=false
ARC=false
U /var/log/message za ntp imam
Oct 30 09:26:59 Nadzor ntpd[11779]: ntpd
[email protected] Wed Apr 23 07:36:42 EDT 2008 (1)
Oct 30 09:26:59 Nadzor kernel: audit(1256891219.051:0): avc: denied { sys_resource } for pid=11779 exe=/usr/sbin/ntpd capability=24 scontext=root:system_r:ntpd_t tcontext=root:system_r:ntpd_t tclass=capability
Oct 30 09:26:59 Nadzor ntpd[11779]: Cannot set RLIMIT_MEMLOCK: Operation not permitted
Oct 30 09:26:59 Nadzor ntpd: ntpd pokretanje succeeded
Oct 30 09:27:00 Nadzor ntpd[11779]: precision = 1.000 usec
Oct 30 09:27:00 Nadzor ntpd[11779]: Listening on interface wildcard, 0.0.0.0#123
Oct 30 09:27:00 Nadzor ntpd[11779]: Listening on interface wildcard, ::#123
Oct 30 09:27:00 Nadzor ntpd[11779]: Listening on interface lo, 127.0.0.1#123
Oct 30 09:27:00 Nadzor ntpd[11779]: Listening on interface eth0, 85.94.144.125#123
Oct 30 09:27:00 Nadzor ntpd[11779]: kernel time sync status 0040
Oct 30 09:27:00 Nadzor ntpd[11779]: frequency initialized 0.000 PPM from /var/lib/ntp/drift
Oct 30 09:30:18 Nadzor ntpd[11779]: synchronized to LOCAL(0), stratum 10
Oct 30 09:30:18 Nadzor ntpd[11779]: kernel time sync disabled 0041
Oct 30 09:31:24 Nadzor ntpd[11779]: kernel time sync enabled 0001