Closed Bug 585683 Opened 15 years ago Closed 15 years ago

Give community network machines access to some NTP server

Categories

(Infrastructure & Operations Graveyard :: NetOps, task)

Product:
Infrastructure & Operations Graveyard
Component:
NetOps
Type:
task
Priority:
Not set
Severity:
normal

Tracking

(Not tracked)

Status:
VERIFIED WORKSFORME

People

(Reporter: kairo, Assigned: ravi)

Details

It looks like some time ago, ports have been closed in a way that the SeaMonkey machines on the community network can't access any NTP servers any more. That's particularly bad as our Parallels-hosted Linux machines, including the buildmaster, tend to get ahead of their time - roughly a minute per day in the last few days. I had set it up earlier to sync with us.pool.ntp.org, but if we have an internal NTP server we can access, that's fine, as long as something can bring the master more in sync with the time tinderbox runs on...
Assignee: server-ops → dmoore
Assignee: dmoore → ravi
Macs by default try to use time.apple.com; I noticed this weekend that all Camino's machines were wildly out-of-sync with real time and that forcing a manual NTP sync didn't do anything. :( It's one more thing to configure if we have to use an internal NTP server, certainly, but I'm happy with anything that gets us the correct time.
Status: NEW → ASSIGNED
Talked about this, we'll open ntp to the world.
Component: Server Operations → Server Operations: Netops
Outbound NTP should already be allowed. ! allow ntp & dns back in permit udp any eq 53 any permit udp any eq 123 any
Status: ASSIGNED → RESOLVED
Closed: 15 years ago
Resolution: --- → WORKSFORME
verified on the time problems on our machines not popping up any more.
Status: RESOLVED → VERIFIED
Product: mozilla.org → Infrastructure & Operations
Product: Infrastructure & Operations → Infrastructure & Operations Graveyard
You need to log in before you can comment on or make changes to this bug.