Re: [chrony-dev] Multihomed (multiple) network interfaces support !

[ Thread Index | Date Index | More chrony.tuxfamily.org/chrony-dev Archives ]

It seems I found out what is permissions issue where.
It is necessary to add in apparmor chroyd file appropriate paths with write permissions.
For example:
  @{run}/chrony1/{,*} rw,
  @{run}/chrony2/{,*} rw,
and there is no necessity to set permissions manually.
All is done automatically.
But in this case chronyd hangs up during starting.




ср, 6 дек. 2023 г. в 00:48, CpServiceSPb <cpservicespb@xxxxxxxxx>:
I set up _chrony user and _chrony group for /var/run/chrony1 and even set up 755 permission to the folder.
Here is my one config at :/etc/chrony/conf.d /lan.conf
At the time only one file:
server 192.168.0.200 port 1123 minpoll 0 maxpoll 0 copy
allow
cmdport 1123
bindcmdaddress /var/run/chrony1/chronyd-server_lan.sock
pidfile /var/run/chrony1/chronyd-server_lan.pid
driftfile /var/lib/drift-server1_lan

Launch chronyd either from systemctl start chronyd or chronyd -D and get:
2023-12-05T21:45:17Z chronyd version 4.3 starting (+CMDMON +NTP +REFCLOCK +RTC +PRIVDROP +SCFILTER +SIGND +ASYNCDNS +NTS +SECHASH +IPV6 -DEBUG)
2023-12-05T21:45:17Z Wrong permissions on /var/run/chrony1
2023-12-05T21:45:17Z Disabled command socket /var/run/chrony1/chronyd-server_lan.sock
2023-12-05T21:45:17Z Fatal error : Could not open /var/run/chrony1/chronyd-server_lan.pid : Permission denied

What and where is wrong ?



ср, 6 дек. 2023 г. в 00:28, CpServiceSPb <cpservicespb@xxxxxxxxx>:
Can you either post a link or detailed instruction on how to launch multiple chrony server instances for the same port but different interfaces/addresses ?

пн, 4 дек. 2023 г. в 18:25, Miroslav Lichvar <mlichvar@xxxxxxxxxx>:
On Thu, Nov 30, 2023 at 11:04:37PM +0300, CpServiceSPb wrote:
> But there is
> сен 05 22:55:07 key chronyd[152706]: chronyd version 4.3 starting (+CMDMON
> +NTP +REFCLOCK +RTC +PRIVDROP +SCFILTER +SIGND +ASYNCDNS +NTS +SECHASH
> +IPV6 -DEBUG)
> сен 05 22:55:07 key chronyd-starter.sh[152704]: Could not open
> /var/run/cc/chronyd-server1.pid : Permission denied
> сен 05 22:55:07 key chronyd[152706]: Wrong permissions on /var/run/cc

You will need to fix the permission of the directory to be writable by
the chrony user.

--
Miroslav Lichvar


--
To unsubscribe email chrony-dev-request@xxxxxxxxxxxxxxxxxxxx with "unsubscribe" in the subject.
For help email chrony-dev-request@xxxxxxxxxxxxxxxxxxxx with "help" in the subject.
Trouble?  Email listmaster@xxxxxxxxxxxxxxxxxxxx.


Mail converted by MHonArc 2.6.19+ http://listengine.tuxfamily.org/