Peers; Security; Acts Interface: Dial-Up - Symmetricom SyncServer S100 User Manual

Symmetricom network device user guide s100

Hide thumbs Also See for SyncServer S100:

User manual (152 pages)

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

page of 166

/ 166
Contents
Table of Contents
Bookmarks

Table of Contents

Peers

Setting up a peer can be accomplished by adding the peer command to the ntp.conf file. The

configuration of a peer is basically the same as setting up a client: an address or host name

needs to be specified, along with a key and possibly the prefer keyword. Peers also have an

associated polling interval that can be set in the ntp.conf file. While a set of peers can use

different polling intervals, true peers use the same polling interval. The defaults should be

acceptable except when peers are connected by very slow links. Setting the polling range is

described in the ntpd man page. Generally, peer connections are used to improve the time

accuracy at the base of the NTP tree (low numbered strata), or provide additional

redundancy at the leaves of the NTP tree (high numbered strata). Using peer connections

allows both of these without resorting to creating a new level of hierarchy.

Security

NTP provides the capability for NTP clients and servers to authenticate each other. This is

accomplished with symmetric authentication keys and key identifiers. The term symmetric

means that the keys must be the same on both the client and the server. Because NTP keys

are stored outside of the ntp.conf file, the NTP keys file must be specified in the ntp.conf file

for any configuration that will use keys. This is accomplished using the keys keyword,

followed by the absolute path to the file.

With NTP version 3, authentication keys must be manually distributed to each of the client

systems (NTP version 4 can use an automatic public key distribution, which is fully described

in the NTP version 4 documentation). Caution must be exercised when transferring these

keys to each client system. Be sure to use a protocol that supports strong authentication and

encryption.

Establishing authenticated communication between a client and server requires configuration

on both the client and the server. In order for authentication to work, both the client and the

server must have a keys.conf file specified in ntp.conf that contains the same key with the

same key ID. In other words, both the client and the server should have a line in the

keys.conf file that is identical.

ACTS Interface: Dial-up

The Automated Computer Time Service (ACTS) is maintained by the U. S. National Institute

of Standards and Technology (NIST). More information is in the next section. In most of this

guide, the term dial-up is used instead.

S100 User Guide – Rev. D – June 2005

Figure 5-47: Minimum Net NTP Configuration

103

Table of Contents

Chapters

Table of Contents

Peers; Security; Acts Interface: Dial-Up - Symmetricom SyncServer S100 User Manual

Peers

Security

ACTS Interface: Dial-up

Chapters

Related Manuals for Symmetricom SyncServer S100

Related Products for Symmetricom SyncServer S100

Table of Contents