Linux中nfs与ntp,配置NTP及NFS服务-CSDN博客

NTP及NFS服务器

操作系统：Scientific Linux 7

IP地址：192.168.83.160

配置NTP(/etc/ntp.conf)

# For more information about this file, see the man pages

# ntp.conf(5), ntp_acc(5), ntp_auth(5), ntp_clock(5), ntp_misc(5), ntp_mon(5).

driftfile /var/lib/ntp/drift

# Permit time synchronization with our time source, but do not

# permit the source to query or modify the service on this system.

restrict default nomodify notrap nopeer noquery

# Permit all access over the loopback interface. This could

# be tightened as well, but to do so would effect some of

# the administrative functions.

restrict 127.0.0.1

restrict ::1

# Hosts on local network are less restricted.

# 为192.168.60.0网段机器提供NTP服务

restrict 192.168.60.0 mask 255.255.255.0 nomodify notrap

# Use public servers from the pool.ntp.org project.

# Please consider joining the pool (http://www.pool.ntp.org/join.html).

# 修改默认NTP服务器，其他服务器列表可在http://www.pool.ntp.org中查询

server 2.cn.pool.ntp.org iburst

server 0.asia.pool.ntp.org iburst

server 2.asia.pool.ntp.org iburst

#server 0.rhel.pool.ntp.org iburst

#server 1.rhel.pool.ntp.org iburst

#server 2.rhel.pool.ntp.org iburst

#server 3.rhel.pool.ntp.org iburst

#broadcast 192.168.1.255 autokey# broadcast server

#broadcastclient# broadcast client

#broadcast 224.0.1.1 autokey# multicast server

#multicastclient 224.0.1.1# multicast client

#manycastserver 239.255.254.254# manycast server

#manycastclient 239.255.254.254 autokey # manycast client

# 配置与外部的NTP服务器校准

restrict 2.cn.pool.ntp.org nomodify notrap noquery

restrict 0.asia.pool.ntp.org nomodify notrap noquery

restrict 2.asia.pool.ntp.org nomodify notrap noquery

# 当远程服务失效时，使用本地时钟

server 127.127.1.0

fudge 127.127.1.0 stratum 10

# Enable public key cryptography.

#crypto

includefile /etc/ntp/crypto/pw

# Key file containing the keys and key identifiers used when operating

# with symmetric key cryptography.

keys /etc/ntp/keys

# Specify the key identifiers which are trusted.

#trustedkey 4 8 42

# Specify the key identifier to use with the ntpdc utility.

#requestkey 8

# Specify the key identifier to use with the ntpq utility.

#controlkey 8

# Enable writing of statistics records.

#statistics clockstats cryptostats loopstats peerstats

# Disable the monitoring facility to prevent amplification attacks using ntpdc

# monlist command when default restrict does not include the noquery flag. See

# CVE-2013-5211 for more details.

# Note: Monitoring will not be disabled with the limited restriction flag.

disable monitor

配置NFS(/etc/exports)

/opt/nfs 192.168.32.96(rw,sync,no_root_squash) 192.168.60.0/24(rw,sync)

开放防火墙中NTP及NFS服务

[hadoop@host-192-168-83-160 ~]# firewall-cmd --add-service=ntp

[hadoop@host-192-168-83-160 ~]# firewall-cmd --add-service=nfs

[hadoop@host-192-168-83-160 ~]# firewall-cmd --permanent --add-service=ntp

[hadoop@host-192-168-83-160 ~]# firewall-cmd --permanent --add-service=nfs

客户机

分别为：

hadoop01.ihep.ac.cn

hadoop02.ihep.ac.cn

hadoop03.ihep.ac.cn

hadoop04.ihep.ac.cn

hadoop05.ihep.ac.cn

hadoop06.ihep.ac.cn

#均位于192.168.60.0网段