NTP服务 (C/S 架构)
它是通过网络在计算机系统之间进行时钟同步的网络协议
1、查看服务器是否安装ntp,系统默认安装ntpdate;
[root@~]# rpm -qa | grep ntp
2、安装ntp ntpdate,其中ntpdate默认安装,可以只安装ntp;
#yum install ntp ntpdate -y (每台都要安装)
3、修改配置文件,使该NTP服务器在不联网的情况下,使用本服务器的时间作为同步时间
NTP 服务端(1台)#vim /etc/ntp.conf
# For more information about this file, see the man pages
# ntp.conf(5), ntp_acc(5), ntp_auth(5), ntp_clock(5), ntp_misc(5), ntp_mon(5).
driftfile /var/lib/ntp/drift
# Permit time synchronization with our time source, but do not
# permit the source to query or modify the service on this system.
restrict default kod nomodify notrap nopeer noquery
restrict -6 default kod nomodify notrap nopeer noquery
# Permit all access over the loopback interface. This could
# be tightened as well, but to do so would effect some of
# the administrative functions.
restrict 127.0.0.1
restrict ::1
# Hosts on local network are less restricted.
#restrict 192.168.1.0 mask 255.255.255.0 nomodify notrap
# Use public servers from the pool.ntp.org project.
# Please consider joining the pool (http://www.pool.ntp.org/join.html).
#server 0.centos.pool.ntp.org iburst
#server 1.centos.pool.ntp.org iburst
#server 2.centos.pool.ntp.org iburst
#server 3.centos.pool.ntp.org iburst
server 127.127.1.0
fude 127.127.1.0 stratum 0
#broadcast 192.168.1.255 autokey # broadcast server
#broadcastclient # broadcast client
#broadcast 224.0.1.1 autokey # multicast server
#multicastclient 224.0.1.1 # multicast client
#manycastserver 239.255.254.254 # manycast server
#manycastclient 239.255.254.254 autokey # manycast client
# Enable public key cryptography.
#crypto
includefile /etc/ntp/crypto/pw
# Key file containing the keys and key identifiers used when operating
# with symmetric key cryptography.
keys /etc/ntp/keys
# Specify the key identifiers which are trusted.
#trustedkey 4 8 42
# Specify the key identifier to use with the ntpdc utility.
#requestkey 8
# Specify the key identifier to use with the ntpq utility.
#controlkey 8
# Enable writing of statistics records.
#statistics clockstats cryptostats loopstats peerstats
~
~
~
~
~
"/etc/ntp.conf" 53L, 1824C
NTP 客户端(2台)#vim /etc/ntp.conf
# Permit time synchronization with our time source, but do not
# permit the source to query or modify the service on this system.
#restrict default kod nomodify notrap nopeer noquery
#restrict -6 default kod nomodify notrap nopeer noquery
# Permit all access over the loopback interface. This could
# be tightened as well, but to do so would effect some of
# the administrative functions.
#restrict 127.0.0.1
#restrict ::1
# Hosts on local network are less restricted.
#restrict 192.168.1.0 mask 255.255.255.0 nomodify notrap
# Use public servers from the pool.ntp.org project.
# Please consider joining the pool (http://www.pool.ntp.org/join.html).
#server 0.centos.pool.ntp.org iburst
#server 1.centos.pool.ntp.org iburst
#server 2.centos.pool.ntp.org iburst
#server 3.centos.pool.ntp.org iburst
server 192.168.45.134 # 服务端IP
fudge 192.168.45.134 stratum 0
#broadcast 192.168.1.255 autokey # broadcast server
#broadcastclient # broadcast client
#broadcast 224.0.1.1 autokey # multicast server
#multicastclient 224.0.1.1 # multicast client
#manycastserver 239.255.254.254 # manycast server
#manycastclient 239.255.254.254 autokey # manycast client
4 启动ntp服务
systemctl start ntpd或service ntpd start
service ntpd status #查询ntp服务状态
service ntpd start #启动
service ntpd stop #停止
service ntpd restart #重启 systemctl start restart
查看ntp状态
命令(三个都可): service ntpd status
ntpstat
ntpq -p
5设置ntp为开机自启
命令: chkconfig ntpd on
6查看ntp的启动路径 命令:which ntpdate
7确认时间是否已经同步
[root@~]#date//多执行几次查看结果
8 常见问题
inappropriate address 192.168.45.134 for the fudge command, line ignored
bogon: timed out, nothing received
***Request timed out
1 推测这台主机有启用Ipv6 ,默认先走的ipv6地址
验证过程 ntpq -6p
永久关闭ipv6
vi /etc/sysctl.conf 中添加如下参数
# 禁用整个系统所有接口的IPv6
net.ipv6.conf.all.disable_ipv6 = 1
# 禁用某一个指定接口的IPv6(例如:eth0, eth1)
net.ipv6.conf.eth1.disable_ipv6 = 1
net.ipv6.conf.eth0.disable_ipv6 = 1
然后重启网络服务
service restart network