Linux - ServerThis forum is for the discussion of Linux Software used in a server related context.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
Distribution: Mint 18.3 Cinnamon, Gallium, Ubuntu Armbian (headless), Arch (learning)
Posts: 138
Rep:
NTPD <null> status?
I am getting a bunch of these in my syslog file. I am trying to fine tune everything on this server and want to know what the <null> flag means. I searched the man page and online all over and I can't find an explanation.
Code:
Jun 7 05:42:31 localhost ntpd[1455]: 172.106.131.15 local addr 192.168.1.110 -> <null>
Jun 7 05:44:37 localhost ntpd[1455]: 74.82.59.150 local addr 192.168.1.110 -> <null>
Jun 7 05:45:53 localhost ntpd[1455]: 50.116.52.97 local addr 192.168.1.110 -> <null>
Jun 7 05:54:51 localhost ntpd[1455]: 74.207.240.206 local addr 192.168.1.110 -> <null>
Jun 7 05:55:18 localhost ntpd[1455]: 209.208.79.69 local addr 192.168.1.110 -> <null>
Jun 7 05:58:08 localhost ntpd[1455]: 192.111.144.114 local addr 192.168.1.110 -> <null>
The messages are written to syslog when ntp is stopped. systemd still uses the init.d init scripts i.e. /etc/init.d/ntp to start/stop the service which uses the LSB init script functions.
I assume ntp is cleaning up whatever is required when shutdown.
Distribution: Mint 18.3 Cinnamon, Gallium, Ubuntu Armbian (headless), Arch (learning)
Posts: 138
Original Poster
Rep:
That's weird because I am tailing syslog and am watching them come in while the system is running. Is it saying that it can't make contact or something? Just learning NTP and trying to keep everything under control and streamline as much as possible.
Distribution: Mint 18.3 Cinnamon, Gallium, Ubuntu Armbian (headless), Arch (learning)
Posts: 138
Original Poster
Rep:
Quote:
Originally Posted by michaelk
Is ntp running? Are you still getting "Connection refused" when running the ntpq command?
ntp communicates via udp over port 123. Typically the firewall is configured to accept established connections. How is your firewall configured?
Sorry I didn't see the second part of the question....
I am going over UFW right now. I set it up kind of "hack-ish-ly" because I don't know any better. I am trying to learn how to do it CORRECTLY. I am willing to bet the problem will be found in UFW.
Code:
WARN: / is world writable!
WARN: / is group writable!
Status: active
To Action From
-- ------ ----
22/tcp ALLOW Anywhere
443/tcp ALLOW Anywhere
993 LIMIT Anywhere
587 LIMIT Anywhere
Anywhere DENY 208.93.153.176
224.0.0.1 DENY Anywhere
22/tcp (v6) ALLOW Anywhere (v6)
443/tcp (v6) ALLOW Anywhere (v6)
993 (v6) LIMIT Anywhere (v6)
587 (v6) LIMIT Anywhere (v6)
I hope there's not issues with me displaying this.
I need to solve the root write privileges. I am just not sure how that works with Nextcloud (as I have my data running to a secondary HDD).
Please don't laugh too much at my firewall setup skills, LOL!
Distribution: Mint 18.3 Cinnamon, Gallium, Ubuntu Armbian (headless), Arch (learning)
Posts: 138
Original Poster
Rep:
Port 123 was closed to I had to open it-
Code:
sudo nmap -sT -sU -p123 localhost
Starting Nmap 7.01 ( https://nmap.org ) at 2018-06-20 21:01 EDT
Nmap scan report for localhost (127.0.0.1)
Host is up (0.00029s latency).
Other addresses for localhost (not scanned): ::1
PORT STATE SERVICE
123/tcp closed ntp
123/udp open ntp
Distribution: Mint 18.3 Cinnamon, Gallium, Ubuntu Armbian (headless), Arch (learning)
Posts: 138
Original Poster
Rep:
Sure!
Code:
# /etc/ntp.conf, configuration for ntpd; see ntp.conf(5) for help
driftfile /var/lib/ntp/ntp.drift
# Enable this if you want statistics to be logged.
#statsdir /var/log/ntpstats/
statistics loopstats peerstats clockstats
filegen loopstats file loopstats type day enable
filegen peerstats file peerstats type day enable
filegen clockstats file clockstats type day enable
# Specify one or more NTP servers.
# Use servers from the NTP Pool Project. Approved by Ubuntu Technical Board
# on 2011-02-08 (LP: #104525). See http://www.pool.ntp.org/join.html for
# more information.
pool 0.ubuntu.pool.ntp.org iburst
pool 1.ubuntu.pool.ntp.org iburst
pool 2.ubuntu.pool.ntp.org iburst
pool 3.ubuntu.pool.ntp.org iburst
# Use Ubuntu's ntp server as a fallback.
pool ntp.ubuntu.com
# Access control configuration; see /usr/share/doc/ntp-doc/html/accopt.html for
# details. The web page <http://support.ntp.org/bin/view/Support/AccessRestrictions>
# might also be helpful.
#
# Note that "restrict" applies to both servers and clients, so a configuration
# that might be intended to block requests from certain clients could also end
# up blocking replies from your own upstream servers.
# By default, exchange time with everybody, but don't allow configuration.
restrict -4 default kod notrap nomodify nopeer noquery limited
restrict -6 default kod notrap nomodify nopeer noquery limited
# Local users may interrogate the ntp server more closely.
restrict 127.0.0.1
restrict ::1
# Needed for adding pool entries
restrict source notrap nomodify noquery
# Clients from this (example!) subnet have unlimited access, but only if
# cryptographically authenticated.
#restrict 192.168.123.0 mask 255.255.255.0 notrust
# If you want to provide time to your local subnet, change the next line.
# (Again, the address is an example only.)
#broadcast 192.168.123.255
# If you want to listen to time broadcasts on your local subnet, de-comment the
# next lines. Please do this only if you trust everybody on the network!
#disable auth
#broadcastclient
#Changes recquired to use pps synchonisation as explained in documentation:
#http://www.ntp.org/ntpfaq/NTP-s-config-adv.htm#AEN3918
#server 127.127.8.1 mode 135 prefer # Meinberg GPS167 with PPS
#fudge 127.127.8.1 time1 0.0042 # relative to PPS for my hardware
#server 127.127.22.1 # ATOM(PPS)
#fudge 127.127.22.1 flag3 1 # enable PPS API
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.