Page MenuHomeDevCentral
Create Task
Maniphest T1223

Configure NTP in rOPS
Open, NormalPublic
Actions

Event Timeline

dereckson claimed this task.Jul 4 2017, 15:30
dereckson added a subscriber: dereckson.
dereckson triaged this task as Normal priority.Jul 5 2017, 21:03
dereckson added projects: Salt, Servers.
dereckson added parent tasks: T1218: Provision primary DNS server, T1219: Provision secondary DNS server.
dereckson moved this task from Backlog to Services to add on the Salt board.Nov 9 2017, 02:02
dereckson removed dereckson as the assignee of this task.Mar 8 2018, 21:07
dereckson added a comment.Fri, Oct 10, 22:40

Could have been interesting to add more context on this.

At one moment, we made an effort to pick NTP servers from geographic pool

Currently, we've on WindRiver for example:

/etc/ntp.conf on WindRiver
$ cat /etc/ntp.conf | grep -v '#' | uniq
tos minclock 3 maxclock 6

pool 0.freebsd.pool.ntp.org iburst
pool 2.freebsd.pool.ntp.org iburst

restrict default limited kod nomodify notrap noquery nopeer
restrict source  limited kod nomodify notrap noquery

restrict 127.0.0.1
restrict ::1

leapfile "/var/db/ntpd.leap-seconds.list"

On Linux servers, chrony is used:

/etc/chrony.conf on docker-002
$ cat /etc/chrony.conf | grep -v '#' | uniq
pool 2.rocky.pool.ntp.org iburst

sourcedir /run/chrony-dhcp

driftfile /var/lib/chrony/drift

makestep 1.0 3

rtcsync

keyfile /etc/chrony.keys

ntsdumpdir /var/lib/chrony

leapsectz right/UTC

logdir /var/log/chrony

With the DNS as parent, we could also have considered to host our NTP to allow servers on the same hypervisor to sync more easily.

dereckson removed parent tasks: T1219: Provision secondary DNS server, T1218: Provision primary DNS server.Fri, Oct 10, 22:40
dereckson moved this task from Backlog to Next on the Servers board.Fri, Oct 10, 22:44
Nasqueron DevCentral · If it had been much bigger the moon would have had a core of ice. · Powered by Phabricator