NTP: Configure a NTP server

Last updated on (8,117 views) - CertDepot 4 Comments ↓
Share this link
Google+0
LinkedIn0

Install the NTP package:

# yum install -y ntpd

Then, several configuration options are possible:

1) Your new time server isn’t connected to any outside source of synchronized time.
Edit the /etc/ntp.conf file and comment out the following lines:

#server 0.centos.pool.ntp.org
#server 1.centos.pool.ntp.org
#server 2.centos.pool.ntp.org

In the same file, enable the two following lines:

#server 127.127.1.0
#fudge 127.127.1.0 stratum 10

2) Your new time server will be connected to another time server of your choice.
Edit the /etc/ntp.conf file and comment out the following lines:

#server 0.centos.pool.ntp.org
#server 1.centos.pool.ntp.org
#server 2.centos.pool.ntp.org

In the same file, add the following line with the name (or IP address) of your time server:

server timeserver

3) Your new time server will rely on default time servers.
In this case, you have nothing to do.

Add a rule to the firewall to allow NTP clients to connect

# iptables -I INPUT -m state --state NEW -m udp -p udp --dport 123 -j ACCEPT

Save the firewall configuration:

# service iptables save

Activate the NTP service at boot:

# chkconfig ntpd on

Start the NTP service:

# service ntpd start

Check that the NTP service is working properly:

# ntpq -p
(No Ratings Yet)
Loading...
4 comments on “NTP: Configure a NTP server
  1. limweipin says:
    March 31, 2015 at 4:48 pm

    Hi, do I need to understand the iptables rules? Is iptables considered part of rhcsa?

    • CertDepot says:
      March 31, 2015 at 5:07 pm

      Normally you shouldn’t need to consider iptables for the RHCSA exam any more.
      However, it is still a good idea to know a little bit about it.

  2. smrbukhari says:
    August 11, 2016 at 9:15 am

    Hello CertDepot,

    I have a couple of questions regarding this:

    1) Can the TimeServer itself run chronyd (which is default RHEL7 service) and client have the ntpd running (do we need to disable chronyd on client to accomplish this)?

    2) Now for the client configuration can we use “server timeserver prefer” directive in /etc/ntp.conf instead of commenting the default time server pools.

    Also your tutorial shows the use of iptables which is replaced by firewalld, could you please help us clarify if we can just use firewall-cmd instead to add the ntp service….

    Thanks in advance!

    • CertDepot says:
      August 11, 2016 at 9:56 am

      1) You should bother with the TimeServer configuration. It doesn’t matter. Same for the client configuration: ntpd or chronyd is fine. But you can’t have both running at the same time.
      2) I would stick with the standard way to proceed (define a new pool of time servers).
      You can perfectly use the firewall-cmd command. This tutorial is slightly old (written for RHEL 6 and hasn’t been updated for RHEL 7 that favors Firewalld over Iptables).

Leave a Reply

Upcoming Events (Local Time)

There are no events.

Follow me on Twitter

Archives

xhampster
vceplus-200-125    | boson-200-125    | training-cissp    | actualtests-cissp    | techexams-cissp    | gratisexams-300-075    | pearsonitcertification-210-260    | examsboost-210-260    | examsforall-210-260    | dumps4free-210-260    | reddit-210-260    | cisexams-352-001    | itexamfox-352-001    | passguaranteed-352-001    | passeasily-352-001    | freeccnastudyguide-200-120    | gocertify-200-120    | passcerty-200-120    | certifyguide-70-980    | dumpscollection-70-980    | examcollection-70-534    | cbtnuggets-210-065    | examfiles-400-051    | passitdump-400-051    | pearsonitcertification-70-462    | anderseide-70-347    | thomas-70-533    | research-1V0-605    | topix-102-400    | certdepot-EX200    | pearsonit-640-916    | itproguru-70-533    | reddit-100-105    | channel9-70-346    | anderseide-70-346    | theiia-IIA-CIA-PART3    | certificationHP-hp0-s41    | pearsonitcertification-640-916    | anderMicrosoft-70-534    | cathMicrosoft-70-462    | examcollection-cca-500    | techexams-gcih    | mslearn-70-346    | measureup-70-486    | pass4sure-hp0-s41    | iiba-640-916    | itsecurity-sscp    | cbtnuggets-300-320    | blogged-70-486    | pass4sure-IIA-CIA-PART1    | cbtnuggets-100-101    | developerhandbook-70-486    | lpicisco-101    | mylearn-1V0-605    | tomsitpro-cism    | gnosis-101    | channel9Mic-70-534    | ipass-IIA-CIA-PART1    | forcerts-70-417    | tests-sy0-401    | ipasstheciaexam-IIA-CIA-PART3    | mostcisco-300-135    | buildazure-70-533    | cloudera-cca-500    | pdf4cert-2v0-621    | f5cisco-101    | gocertify-1z0-062    | quora-640-916    | micrcosoft-70-480    | brain2pass-70-417    | examcompass-sy0-401    | global-EX200    | iassc-ICGB    | vceplus-300-115    | quizlet-810-403    | cbtnuggets-70-697    | educationOracle-1Z0-434    | channel9-70-534    | officialcerts-400-051    | examsboost-IIA-CIA-PART1    | networktut-300-135    | teststarter-300-206    | pluralsight-70-486    | coding-70-486    | freeccna-100-101    | digitaltut-300-101    | iiba-CBAP    | virtuallymikebrown-640-916    | isaca-cism    | whizlabs-pmp    | techexams-70-980    | ciscopress-300-115    | techtarget-cism    | pearsonitcertification-300-070    | testking-2v0-621    | isacaNew-cism    | simplilearn-pmi-rmp    | simplilearn-pmp    | educationOracle-1z0-809    | education-1z0-809    | teachertube-1Z0-434    | villanovau-CBAP    | quora-300-206    | certifyguide-300-208    | cbtnuggets-100-105    | flydumps-70-417    | gratisexams-1V0-605    | ituonline-1z0-062    | techexams-cas-002    | simplilearn-70-534    | pluralsight-70-697    | theiia-IIA-CIA-PART1    | itexamtips-400-051    | pearsonitcertification-EX200    | pluralsight-70-480    | learn-hp0-s42    | giac-gpen    | mindhub-102-400    | coursesmsu-CBAP    | examsforall-2v0-621    | developerhandbook-70-487    | root-EX200    | coderanch-1z0-809    | getfreedumps-1z0-062    | comptia-cas-002    | quora-1z0-809    | boson-300-135    | killtest-2v0-621    | learncia-IIA-CIA-PART3    | computer-gcih    | universitycloudera-cca-500    | itexamrun-70-410    | certificationHPv2-hp0-s41    | certskills-100-105    | skipitnow-70-417    | gocertify-sy0-401    | prep4sure-70-417    | simplilearn-cisa    |
http://www.pmsas.pr.gov.br/wp-content/    | http://www.pmsas.pr.gov.br/wp-content/    |