chrony lan -

[Ed Greshko]

On 01/04/15 07:30, Bob Goodwin wrote:
>
> On 01/03/15 17:53, Ed Greshko wrote:
>> My read of your request is this....
>>
>> You have a system for which WAN access is blocked.  So it can't contact an ntp server on outside of your LAN for time synchronization.
>>
>> In that case,*if*  you have a local system server as a time source you need to set the "server" parameter in the config file to tell chronyd what time sources to contact.  If your router can also act as an ntp server you can point to it.
> I have a LAN with a router and two workstations that get their time from their internet connection. I have two servers that I prefer not to connect to the internet since it serves no purpose other than keep the clocks synced. It's a simple matter to block the server connection in the router.
>
> One of the servers is using Scientific Linux 7. It appeared the clock was not being synced until I opened it's internet access. I would like to fix that ...
>

So, you need a local ntp server.....

You have 2 workstations getting their time sync from the internet as their access is enabled.  One of those could act as a time server.

Assuming that one of them is running chronyd you'll need to configure it to Allow NTP client access from local network using the "allow" directive in the config file.  You'll also need to change the firewall settings to allow incoming ntp requests as this is normally blocked.

On the SL7 side you'll need to configure it to point to the workstation acting as the time server instead of servers on the internet.

-- 
If you can't laugh at yourself, others will gladly oblige.