I also wanted to show you can manually set Stratum #’s behind the Master command, this is used to set preferences as to which Master is used, as the lower the Stratum # the more preferred. Note there is a “Server” option in there, but that is for Clients to point them at their respective NTP Servers, we are configuring SW1 as the “Master Clock” for this network. Trusted-key Key numbers for trusted time sources Source Configure interface for source address Panic Reject time updates > panic threshold Maxdistance Maximum Distance for synchronization Max-associations Set maximum number of associations End with CNTL/Z.Īuthentication-key Authentication key for trusted time sourcesīroadcastdelay Estimated round-trip delayĬlock-period Length of hardware clock tick I’ll step through the long list of NTP configs here to view them all, and add a “Stratum 2” at the end, and explain why I did that:Įnter configuration commands, one per line. NOW, we can get to some NTP configuration!Ĭonfiguration of the NTP “Master Server” on SW1 for NTP Clients time source I’m not sure the “clock initialize nvram” was really necessary, you MUST set the clock timezone if setting it locally for NTP, this is done on Global Configuration as seen! Summer-time Configure summer (daylight savings) timeĪug 18 19:24:14.811: %SYS-6-CLOCKUPDATE: System clock has been updated from 19:24:14 UTC Sat to 14:24:14 CDT Sat Aug 18 2018, configured from console by console.
Initialize Initialize system clock on restart *Aug 18 18:44:00.000: %SYS-6-CLOCKUPDATE: System clock has been updated from 00:49:41 UTC Mon to 18:44:00 UTC Sat Aug 18 2018, configured from console by console.īUT THIS IS FAR FROM OVER JUST YET – WE HAVE SOME MORE CLOCK CONFIG! Its a bit weird, as “clock set” and “show clock” are both done as User Priv mode:
NTP also keeps things like QoS, SLA, and other services running so it needs to be set for any sort of advanced feature set to be deployed on the network (or keep track of logs).Ĭonfiguration of “clock set” on the NTP Master for NTP Clients! When configuring NTP on your LAN switches, you will want to check the website for Atomic Clock addresses in all Regions of the world at as they have extensive lists of servers for use.Īlso be sure to allow outbound UDP Port 123 (NTP) on your Firewalls / Edge devices.
Without NTP not only is your network logging going to be a nightmare to match up, but various other services rely on NTP being correct, which is why my configuration of a local MLS being the Master Clock is a TERRIBLE idea! Config of Clock Set, NTP Server / Client, Authentication, but first Fundamentals!
0 kommentar(er)
