NTP clock sync
-
Well - You have pfsense being an NTP server already. Then you have additional NTP Servers. I think all these NTP Servers are on public IP right?
I wonder. What would happen if you stopped forwarding your NTP port? Just removed that rule you added.
-
Well - You have pfsense being an NTP server already.
Correct but presently being very unreliable (that may however be my fault).
Then you have additional NTP Servers.
Only one, my Ubuntu server (192.168.10.10) on my internal LAN network. The other ntp servers I have configured in pfSense are public ntp servers on the internet.
I wonder. What would happen if you stopped forwarding your NTP port? Just removed that rule you added.
No difference, ntp service in pfSense is still unreliable.
-
Hmmm… Sorry if you already said, but is this freshly upgraded to 2.1?
If so, maybe a clean install with fix it for you. You can restore your settings after.
-
Hmmm… Sorry if you already said, but is this freshly upgraded to 2.1?
Yes. 2.0.3 > 2.1 RC > 2.1 released, with the two upgrades happening only the last few days.
If so, maybe a clean install with fix it for you.
Maybe and that is of course not a problem since this is for testing only but when evaluating the system for possible production use, it isn't an confidence building message…
-
I suspect a clean install SHOULD fix it since mine works fine as do most.
Keep in mind I always fully expect for the person with a pfsense complaint to flounder helplessly for about a couple days and then suddenly say "I just realized my Ethernet cable was unplugged" or something.I'd wipe it and reinstall - load no packages and set no rules. Try NTP.
If it works, it works.
Then restore your settings.
Hopefully it doesn't break.
If it does, it means something you have done is wrong.
-
Will do.
Thank you very much for being so very helpful!
-
I haven't helped you yet - But hopefully I can. Lets see what happens with a fresh install.
-
At least you have tried very much, for which I am grateful.
New 2.1 install, configuration restored -> same issue…
-
That is so strange. Something on your network is killing NTP. Has to be.
Its not broken here. Did you select WAN as interface and save? And you entered DNS servers? And you have NTP server address entered?
-
Something on your network is killing NTP. Has to be.
I very much doubt that (no such indication on any other system in the network) and even if it was, the result in pfSense should only be no contact (or in some other way a non-functional ntp), not that the service totally fail to start.
Regardless of whatever specific things I (and owner524 and val) have in the setup that causes issues, the service should still be starting. I tend to think it is a bug, that is only showing under some specific conditions.
It would probably be very useful if the other users reporting problems here could explain about their respective configurations. Maybe we could find out what we have in common that may cause the issue?
In addition to what I have reported so far in the thread, I can add that it is a full 64 bit install and I used the FreeBSD 64 bit template, gave it 3 bridged network interfaces, 2 cpus and 4011 MB RAM in VirtualBox.
Its not broken here.
Yes it seems only a few of us are having this issue.
Did you select WAN as interface and save?
Well I have to select both WAN and LAN since I have both my own and public ntp servers configured but there is no change in behaviour. And really, not selecting any interface does mean all interfaces are used, if I understand things correctly? If so it should be more forgiving, if anything, to not select any interface.
Only selecting the WAN interface means also that in your local network you cannot use the pfSense as an ntp server serving your internal network, doesn't it?
By my trial and error testing, I'm under the impression that the ntp server interface selection does limit the interface usage both for when the ntp service connects to other servers and also for serving ntp clients.
And you entered DNS servers?
Yes and it is working.
And you have NTP server address entered?
Yes, remember that when I use the manual workaround reported earlier (press the Save button on the System, General Setup page), so far the service have started every time and then it works.
-
So the process crashes, or???
-
Yes, it appears that way. When I logged in today the ntp service was once again stopped. I've attached the last of my ntp log…
-
SIGTERM does not sound like crash. Something is telling ntpd to terminate.
-
Okay.
At least it's not me… ;D
-
Look in the system log around the time of the "signal 15" NTPD exit. Hopefully there was some interesting other activity - link down/up, VPN down/up , something that might give a clue as to why NTPD is being told to stop. Then the question is, why is it not started again, or what goes wrong whne the system does try to start it again?
-
I logged in at 15:05:33. After that the system log looks like this:
-
Entirely different one, it crashed… should leave a core dump somewhere hopefully.
-
I did a fresh reinstall of PFSense and it still does it. crash's everytime
-
In services > NTPD, try selecting just one interface (e.g. LAN) and see if it stays up.
-
I think I tried that earlier but to make really sure I now run it with only the WAN interface selected and the same thing happens.