NTP syncing

Gene Heskett gene.heskett at verizon.net
Thu Sep 23 16:04:49 UTC 2004 

On Thursday 23 September 2004 05:54, Nifty Hat Mitch wrote:
>On Wed, Sep 22, 2004 at 08:31:12PM -0400, Gene Heskett wrote:
>> On Wednesday 22 September 2004 19:21, Nifty Hat Mitch wrote:
>> >On Tue, Sep 21, 2004 at 10:34:23PM -0700, Kenneth Porter wrote:
>> >> --On Tuesday, September 21, 2004 11:17 AM -0400 Gene Heskett
>> >>
[...]
>Name servers  and smtp boxes are commonly hunkered down
>in some far off 'safe' location.   If you run "dig" on
>the IP address you posted from I find
>    ;; AUTHORITY SECTION:
>    88.73.153.141.in-addr.arpa. 52848 IN    NS     
> ns1.bellatlantic.net. 88.73.153.141.in-addr.arpa. 52848 IN    NS   
>   ns2.bellatlantic.net. And then dig on those name servers:
>    ;; AUTHORITY SECTION:
>    bellatlantic.net.       13149   IN      NS      ns4.verizon.net.
>    bellatlantic.net.       13149   IN      NS     
> ns1.bellatlantic.net. bellatlantic.net.       13149   IN      NS   
>   ns2.verizon.net. bellatlantic.net.       13149   IN      NS     
> ns2.bellatlantic.net.
>
>So any three of these (ns[1234]) would be good in your
> /etc/resolv.conf. Pick ones that have the most 'different' routes
> for reliability. If you run dig on any of the dhcp assigned host
> names you are given and look at the NS records you might locate
> some closer.
>
>> 2. One would think that in 17 other machines, there would be a
>> timeserver.  Obviously these twerps aren't running a thing we
>> don't scream for.
>
>Don't scream just ask.

verizon doesn't seem to hear unless you scream. :)
>
>In the case of NTP most router guys do not look on their
>boxes as a service resource so they never think to turn ntp
>on. As long as they route packets the other stuff is extra.

And no doubt someone will come up with a tariff rule that allows them 
to charge extra for it :(

>So, In your case use these three ntp hosts.
>Yes all three.
>  # http://www.pool.ntp.org/
>  server pool.ntp.org
>  server pool.ntp.org
>  server pool.ntp.org
>
>> Actually, there's a 3rd question: WTF if the secondary dns doing
>> when it attempts to contact my firewall box on a high port, 32,711
>> or such as I posted last night?  I sent a nastygram to both
>> postmaster and abuse at the secondary dns's name, specifically
>> requesting a reply, but in 18 hours none has been forthcoming. 
>> Should I just keep beating on them till they get tired of me and
>> disconnect me, or what?
>
>Nastygrams only make support folk nasty.  In this case the details
> of their network will be unknown to all but a handful.  It does not
> hurt to ask but it is not worth a nastygram.

When it costs me a new router for $80+tax, its worth a "nastygram"...

>As long as the line gets you packets in and out for the right price,
>not a problem.

That it does for the most part.

>A tool like firestarter has knowledge of common port use
>and translates to human what it can.  The rest you need
>to google.   As long as your firewall blocked the connection
>... who cares.

portsentry has blocked many many hack attempts. Back when I was on 
dialup, I was rarely connected for long enough to get the mail 
without getting hit.  Those who loudly proclaim that an un-protected 
windows box is owned in 20 seconds aren't being the least bit 
facetious.  But out of many thousands of logged attempts, no one ever 
got past portsentry (that I know of) yet.  And traffic indicated by 
the modems lights is exclusively generated by my activities

>Note that traceroute will generate icmp messages back to your box. 
> We can start another thread to research and discuss that topic
> (routing and icmp) if your Google efforts do not find good answers.
>
>If /etc/services does not help look at header files like these:
>
>   /usr/include/netdb.h /usr/include/netinet/in.h ... etc.

I'll do a read of these, thanks.

>Programmers have done some homework on this stuff..

-- 
Cheers, Gene
"There are four boxes to be used in defense of liberty:
 soap, ballot, jury, and ammo. Please use in that order."
-Ed Howdershelt (Author)
99.26% setiathome rank, not too shabby for a WV hillbilly
Yahoo.com attorneys please note, additions to this message
by Gene Heskett are:
Copyright 2004 by Maurice Eugene Heskett, all rights reserved.

More information about the users mailing list