ERROR NTP
-
I updated pfsense from version 2.6.0 to version 2.7.0, the configuration was uploaded, all the services are working but the NTP server service is not working correctly since it is not synchronizing the time to the client hosts, is there any error or option that performed the synchronization correctly
-
@Marlon-Alvarez
Are the clients even configured to request pfSense?
Are they allowed to access it?Does the NTP status widget show the correct time?
-
Are the clients even configured to request pfSense?
If currently the client hosts are configured to request the time from pfsenseAre they allowed to access it?
If client hosts are allowed to access it they respond to the pfsense ntp serverDoes the NTP status widget show the correct time?
if the widget shows the correct time statusAttached configuration images
Services Status
On the DHCP is set as "NTP Server 1"
Host client
-
Do you see open states on port 123 from clients querying pfSense?
Do you see ntp listening on port 123 in the output of:
sockstat | grep 123?You LAN firewall rules allow access on port 123?
Steve
-
Do you see open states on port 123 from clients querying pfSense?
yes, currently clients have port 123 enabled
Do you see ntp listening on port 123 in the output of: sockstat | grep 123 ?
yes, currently pfsense is listening for output port 123
You LAN firewall rules allow access on port 123?
Yes, currently pfsense has rules allowed on the LANI don't know if it's because of the new version 2.7.0 that changed something about the ntp synchronization with the client hosts, did you previously have a connection?
-
But do you see states on pfSense from clients querying the NTP server?
-
@stephenw10 How do I see which clients consult NTP server from pfsense?
-
@Marlon-Alvarez said in ERROR NTP:
@stephenw10 How do I see which clients consult NTP server from pfsense?
One way you could do that: Go to Diagnostics -> pfTop and under
Filter expressionfield put:dst port 123Hope this helps.
-
Yup that or go to Diag > States and filter on the LAN for
:123
