Page MenuHomeDevCentral
Create Task
Maniphest T1223

Configure NTP in rOPS
Closed, ResolvedPublic
Actions

Revisions and Commits

rOPS Nasqueron Operations
D3990rOPSe0944c8ff4a3 Standardize NTP configuration

Related Objects

Event Timeline

dereckson claimed this task.Jul 4 2017, 15:30
dereckson added a subscriber: dereckson.
dereckson triaged this task as Normal priority.Jul 5 2017, 21:03
dereckson added projects: Salt, Servers.
dereckson added parent tasks: T1218: Provision primary DNS server, T1219: Provision secondary DNS server.
dereckson moved this task from Backlog to Services to add on the Salt board.Nov 9 2017, 02:02
dereckson removed dereckson as the assignee of this task.Mar 8 2018, 21:07
dereckson added a comment.Oct 10 2025, 22:40

Could have been interesting to add more context on this.

At one moment, we made an effort to pick NTP servers from geographic pool

Currently, we've on WindRiver for example:

/etc/ntp.conf on WindRiver
$ cat /etc/ntp.conf | grep -v '#' | uniq
tos minclock 3 maxclock 6

pool 0.freebsd.pool.ntp.org iburst
pool 2.freebsd.pool.ntp.org iburst

restrict default limited kod nomodify notrap noquery nopeer
restrict source  limited kod nomodify notrap noquery

restrict 127.0.0.1
restrict ::1

leapfile "/var/db/ntpd.leap-seconds.list"

On Linux servers, chrony is used:

/etc/chrony.conf on docker-002
$ cat /etc/chrony.conf | grep -v '#' | uniq
pool 2.rocky.pool.ntp.org iburst

sourcedir /run/chrony-dhcp

driftfile /var/lib/chrony/drift

makestep 1.0 3

rtcsync

keyfile /etc/chrony.keys

ntsdumpdir /var/lib/chrony

leapsectz right/UTC

logdir /var/log/chrony

With the DNS as parent, we could also have considered to host our NTP to allow servers on the same hypervisor to sync more easily.

dereckson removed parent tasks: T1219: Provision secondary DNS server, T1218: Provision primary DNS server.Oct 10 2025, 22:40
dereckson moved this task from Backlog to Next on the Servers board.Oct 10 2025, 22:44
ptdradmin mentioned this in D3990: Standardize NTP configuration.Tue, Mar 3, 14:27
dereckson added a revision: D3990: Standardize NTP configuration.Tue, Mar 3, 17:58
dereckson moved this task from Next to Pending review on the Servers board.Thu, Mar 19, 23:07
dereckson added a commit: rOPSe0944c8ff4a3: Standardize NTP configuration.Fri, Mar 20, 19:09
dereckson closed this task as Resolved.Fri, Mar 20, 19:09
dereckson claimed this task.
dereckson added subscribers: Duranzed, ptdradmin.

Deployed to all servers during meet-up on Jitsi with @ptdradmin and @Duranzed

18:44:02 < Dereckson> .+log [WindRiver] Update NTP pool to use France servers (D3990)
18:56:39 < Dereckson> .+log [Dwellers] Update NTP pool to use France servers (D3990)
18:57:49 < Dereckson> .+log [*] Update NTP pool to use France servers (D3990)

Nasqueron DevCentral · If it had been much bigger the moon would have had a core of ice. · Powered by Phabricator