Forum Discussion
Nimbostratusnot synchronising with NTP Server
Hallo all,
I have 4 vCMP. All vCMP have the same NTP server and there all in the same mangment network. One vCMP sync with NTP Server and and the other are not. And the host is also not sync
The Mangment IPs range from the mangment network is 10.10.2.0/24
Between the two networks are no firewalls
11 Replies
- nitass
Employee
can you ping ntp server from bigip?
Andre-Germanyyes the ping ist successful
- nitass
what do you get when running ntpdate?
ntpdate -u 10.10.1.10 - Andre-Germany
5 May 10:43:54 ntpdate[30037]: no server suitable for synchronization found
- Andre-Germany
On the vCMP with snc ok, I can see in the tcpdump he is going on a nother interface and not the mgmt interface. Whay use a nother interface and not the mgmt interface?
- nitass
5 May 10:43:54 ntpdate[30037]: no server suitable for synchronization found
can you try from vcmp host? does ntpdate work on the host?
- nitass
there is a known issue that vcmp guest is unable to connect to ntp server via mgmt interface in 11.6.0.
ID487233 ntp from a guest is being blocked by host side firewall rules
the following is workaround.
1) add the commands to /config/startup on vCMP host.
iptables -t nat -D PREROUTING -m physdev --physdev-in mgmt_vm_tap_+ -j ACCEPT
iptables -t nat -I PREROUTING 1 -m physdev --physdev-in mgmt_vm_tap_+ -j ACCEPT2) run the following command at vCMP host bash prompt:
clsh iptables -t nat -I PREROUTING 1 -m physdev --physdev-in mgmt_vm_tap_+ -j ACCEPT
afedden_1985Cirrus
Did you add a management route to get to the NTP servers? example sys management-route NTP { gateway 10.10.10.1 network 10.10.11.114/32 } create /sys management-route NTP network 10.10.11.114/32 gateway 10.10.10.1 then bigstart restart ntpd
- Andre-Germany
Thanks for you help. All vCMPs are now sync.
adamjones73_136Thanks for the workaround nitass. This bug is reported corrected in 11.6 HF5
