[chrony-dev] Running chronyd without syncing system clock

[ Thread Index | Date Index | More chrony.tuxfamily.org/chrony-dev Archives ]

To: chrony-dev@xxxxxxxxxxxxxxxxxxxx
Subject: [chrony-dev] Running chronyd without syncing system clock
From: Leo Baltus <Leo.Baltus@xxxxxxxxx>
Date: Tue, 21 Feb 2012 17:39:54 +0100

Hi,

We would like to use chrony in our environment to replace ntpd.

What we really like in chrony is the ability to bind() to an interface
so we can make really tight firewall rules.

In our setup we do not like to pin a service to a specific piece of
hardware. If, for some reason, a service should run elsewhere we just
stop it en start it elsewhere. bind() make is invisible for the outside
to see and firewalls do not need to know about it either. This is what
we do for all our services, except ... ntp

Apart from the ntp network service we of course also like to keep our
system clocks synchronized. If we stop chrony and start it elsewhere there
is nothing to keep the system clock any more so we have to start a chrony-
instance without visible network service.

It would be quite nice if we could separate the network service from the
sync-to-system-clock service. In that case we could a) run a local chronyd
which bind()'s to an unusual port and acts as a ntpclient syncing the
system clock, and b) have a network service which communicates to the outside
and serves ntp to network clients, possibly the one which runs locally.

Now if we stop the network service and start it elsewhere there is
nothing more to do and the clients will just records this as a short
ntp-outage.

For this to work we 'only' have to have an option that says something
like no-system-clock-sync everything else seems to be there already.

I may be overlooking something in the documentation, otherwise could
somebody comment on this or give some pointers on how to implement it?

--
Leo Baltus, internetbeheerder /\
NPO ICT Internet Services /NPO/\
Sumatralaan 45, 1217 GP Hilversum, Filmcentrum, west \ /\/
beheer@xxxxxxxxx, 035-6773555 \/

--
To unsubscribe email chrony-dev-request@xxxxxxxxxxxxxxxxxxxx with "unsubscribe" in the subject.
For help email chrony-dev-request@xxxxxxxxxxxxxxxxxxxx with "help" in the subject.
Trouble? Email listmaster@xxxxxxxxxxxxxxxxxxxx.

Follow-Ups:
- Re: [chrony-dev] Running chronyd without syncing system clock
  - From: Miroslav Lichvar
- Re: [chrony-dev] Running chronyd without syncing system clock
  - From: Ed W

Messages sorted by: [ date | thread ]
Prev by Date: [chrony-dev] [GIT] chrony/chrony.git branch, master, updated. 1.26-39-gf7c65a4
Next by Date: Re: [chrony-dev] Running chronyd without syncing system clock
Previous by thread: [chrony-dev] [GIT] chrony/chrony.git branch, master, updated. 1.26-39-gf7c65a4
Next by thread: Re: [chrony-dev] Running chronyd without syncing system clock

Mail converted by MHonArc 2.6.19+

http://listengine.tuxfamily.org/