SlackwareThis Forum is for the discussion of Slackware Linux.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
Well, the GRC port scanner only checks tcp connections, so that is not a definitive test, but if you are dropping tcp connections on port 123 there is a good chance you are dropping udp as well. The ntptrace result supports that as possibility. Your ISP may be dropping 123, or your network could be.
You could check /etc/services for udp on port 123. Check your sys logs for information, ntpd does log messages there. Start ntpd from the command line with the -d (debug) option.
Have you tried rebooting your modem, router, and any other network nodes?
The first number is the address of my satellite modem.
Then stopped ntpd and did:
Code:
ntpdate 0.ca.pool.ntp.org
but I tried it just now, and got:
Code:
# /etc/rc.d/rc.ntpd stop
Stopping NTP daemon...
bash-4.2# ntpdate 0.ca.pool.ntp.org
5 May 07:29:42 ntpdate[7876]: no server suitable for synchronization found
The first number is the address of my satellite modem.
In default Slackware /etc/ntp.conf I have this:
# Don't serve time or stats to anyone else by default (more secure)
restrict default noquery nomodify
Like the comment says you are not serving time to internet. Perhaps that
avoids the need of incoming 123 port opened (just guessing).
Quote:
Then stopped ntpd and did:
Code:
ntpdate 0.ca.pool.ntp.org
but I tried it just now, and got:
Code:
# /etc/rc.d/rc.ntpd stop
Stopping NTP daemon...
bash-4.2# ntpdate 0.ca.pool.ntp.org
5 May 07:29:42 ntpdate[7876]: no server suitable for synchronization found
That grc.com looks for the external IP. It's probably reporting about ports on the ISP machine.
It scans the IP you contact it with, which will be his modem's WAN IP.
Quote:
Originally Posted by WilliamS
I always set shorewall to stealth all the incoming ports. AFAIK that's what a firewall is for.
Sure, if you don't want ntpd to work.
Are you using a NAT router, and/or is one built into your modem? If yes, you will need to forward port 123 the machine you are running ntpd on. ntpd has no port configuration and requires unrestricted access to port 123 in both directions.
ntpdate can use unrestricted ports, that is why it works for you.
I believe Chrony and OpenNTPD are configurable to use unrestricted ports (above 1024), you could go that way also.
Google "+NAT +NTP", and you will find other people having the same problem you are.
Are you using a NAT router, and/or is one built into your modem? If yes, you will need to forward port 123 the machine you are running ntpd on.
As a general statement I disagree. Typically since the ntp traffic is outgoing first the router's firewall should "label" it as an established connection. However, like you stated there are others with similar problems. In an earlier post the OP ran ntpdate with the -d option which seemed to worked but uses an unprivileged port but does not update the system clock which is why the difference was still ~8 seconds. Have you tried just running:
Yes, as root, and that's what I did. This was first attempt to access after installation of slackware.
So I did chmod 755, but not sure if that is the right permission.
If it does not work the problem could be caused by your ISP.
Code:
# /etc/rc.d/rc.ntpd stop
Stopping NTP daemon...
bash-4.2# ntpdate ca.pool.ntp.org
5 May 12:06:09 ntpdate[1736]: no server suitable for synchronization found
Location: Northeastern Michigan, where Carhartt is a Designer Label
Distribution: Slackware 32- & 64-bit Stable
Posts: 3,541
Rep:
You need to do NTP stuff as root (or su -). In console, you can log in as root (and be really careful); if X is running and you use a terminal, make sure you're using a log in terminal (so you don't have just a $ prompt). You can "source" a non log in terminal:
Code:
# . /etc/profile
Here's everything:
Code:
ls -al /etc/ntp.conf /etc/rc.d/rc.ntpd /etc/ntp
-rw-r--r-- 1 root root 2613 May 1 11:25 /etc/ntp.conf
-rwxr-xr-x 1 root root 1481 Feb 13 17:45 /etc/rc.d/rc.ntpd*
/etc/ntp:
total 24
drwxr-xr-x 2 root root 4096 May 5 11:40 ./
drwxr-xr-x 102 root root 12288 May 3 11:27 ../
-rw-r--r-- 1 root root 8 May 5 11:40 drift
-rw------- 1 root root 22 Feb 13 17:45 ntp.keys
-rw-r--r-- 1 root root 0 Feb 13 17:45 step-tickers
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.
