Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    (SOLVE)Centos ntpdate: no server suitable for synchronization found

    Scheduled Pinned Locked Moved General pfSense Questions
    6 Posts 3 Posters 4.3k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • perikoP
      periko
      last edited by

      Hi.

      I have some wear issue, none of my centos boxes 5/6 want to use my pfsense box as a time source, every time I try to run I got:

      ntpdate no server suitable for synchronization found

      I try with debug mode and I got that my pfsense is to high:

      192.168.2.4: Server dropped: strata too high
      server 192.168.2.4, port 123
      stratum 16, precision -6, leap 11, trust 000
      refid [192.168.2.4], delay 0.04158, dispersion 56.00000
      transmitted 4, in filter 4

      If i check my pfsense I got that is stratum 2, if I wrong let me know please:

      pe
          remote          refid      st t when poll reach  delay  offset  jitter

      *142.54.181.202  64.113.32.5      2 u  433  512  305  400.040  33.622  22.461
      +74.91.27.139    199.102.46.72    2 u  656  512  226  413.423  33.744  12.089
      +96.44.142.5    200.98.196.212  2 u  190  512  377  55.657  200.754  6.126

      I got other ubuntu boxes, no issue there.

      Someone with issues like this one?

      pfsense 2.2.2 x64, I have other 2.2.4 and same issue.

      Necesitan Soporte de Pfsense en México?/Need Pfsense Support in Mexico?
      www.bajaopensolutions.com
      https://www.facebook.com/BajaOpenSolutions
      Quieres aprender PfSense, visita mi canal de youtube:
      https://www.youtube.com/c/PedroMorenoBOS

      1 Reply Last reply Reply Quote 0
      • W
        wbond
        last edited by

        You could try disabling the "Enable Kiss-o'-death packets" option under services/ntp/access restrictions.  I needed to do this to allow a nas4free box to use pfsense as a time server.  There may be a better way to do this, but it worked for me.

        Bill

        1 Reply Last reply Reply Quote 0
        • perikoP
          periko
          last edited by

          wbond hahahaha that did the trick, thanks  ;D

          Necesitan Soporte de Pfsense en México?/Need Pfsense Support in Mexico?
          www.bajaopensolutions.com
          https://www.facebook.com/BajaOpenSolutions
          Quieres aprender PfSense, visita mi canal de youtube:
          https://www.youtube.com/c/PedroMorenoBOS

          1 Reply Last reply Reply Quote 0
          • W
            wbond
            last edited by

            I'm glad to hear it worked periko.

            If anyone knows why disabling KOD was necessary I'd be interested in hearing about it.

            1 Reply Last reply Reply Quote 0
            • F
              firewalluser
              last edited by

              @wbond:

              I'm glad to hear it worked periko. 
              If anyone knows why disabling KOD was necessary I'd be interested in hearing about it.

              Not all Linux distro's are up to date. Might be a work around. http://www.ntp.org/ntpfaq/NTP-s-algo-crypt.htm

              Capitalism, currently The World's best Entertainment Control System and YOU cant buy it! But you can buy this, or some of this or some of these

              Asch Conformity, mainly the blind leading the blind.

              1 Reply Last reply Reply Quote 0
              • W
                wbond
                last edited by

                In my case the problem was with Nas4free which was built on FreeBSD 10.1 something at the time.  Not %100 of the version at the time I noticed it, but it was within the past month or so.

                1 Reply Last reply Reply Quote 0
                • First post
                  Last post
                Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.