Thread: NTP Setup for Local LAN (No internet)

  #1
    Jul 2019

    NTP Setup for Local LAN (No internet)

    I want to setup NTP in an isolated local network with many PCs

    The network looks like this. There is no gateway. MainServer - Other servers and client PCs

    I am confused with all the ntp options in the config file. What options are really needed to get all offline PCs on the network tightly together?

    Can someone please comment of the setups of /etc/ntp.conf files for server and clients?

    Is this a good setup? If not what should be added and why?
    Main server (IP /etc/ntp.conf:
    driftfile /var/lib/ntp/ntp.drift
    server iburst 
    fudge stratum 2
    All others /etc/ntp.conf:
    driftfile /var/lib/ntp/ntp.drift
    server iburst
    fudge stratum 3

  #2
    Nov 2008
    Re: NTP Setup for Local LAN (No internet)

    How are you going to insure that the server has the correct time if it cannot synchronize with Internet time servers? There are methods to interface ntpd with external clocks.

    Can the server see the Internet, or is it physically disconnected? If it can see the Internet, you can use IP tables rules to limit it to connections on the NTP port, 123 tcp/udp.

    I think the configuration files are fine, but the way to make sure is to set up the server and a single client for testing. Manually reset the clock on the client so it's off by five minutes or so, then force it to get the correct time from the server.

    You could use ntpdate on the clients rather than another implementation of ntpd.
