[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

ntpd woes - "could not parse"

To: misc_(_at_)_openbsd_(_dot_)_org
Subject: ntpd woes - "could not parse"
From: Kimi Ostro <kimimeister_(_at_)_gmail_(_dot_)_com>
Date: Wed, 20 Apr 2005 01:09:07 +0100
Reply-to: Kimi Ostro <kimimeister_(_at_)_gmail_(_dot_)_com>

Hello misc!

Basically my /var/log/daemon is pretty much filled up with the following:
Apr 19 23:46:09 gateway ntpd[28314]: could not parse
"ntp.cpsc.ucalgary.ca": no address associated with name
Apr 19 23:52:35 gateway ntpd[28314]: could not parse
"ntp2b.mcc.ac.uk": no address associated with name

Not very descriptive really, other then it can't find the address for
the host's name?

On this gateway, it hosts named as a caching forwarder, ntpd as a
relay for my private network and pf doing some basic filtering.

dmesg:
$ dmesg | head -2 
OpenBSD 3.6-stable (GENERIC) #0: Mon Apr 18 00:19:43 GMT 2005
    root_(_at_)_gateway:/usr/src/sys/arch/i386/compile/GENERIC

ntpd.conf:
$ sudo ca# $OpenBSD: ntpd.conf,v 1.7 2004/07/20 17:38:35 henning Exp $
# sample ntpd configuration file, see ntpd.conf(5)

listen on 10.10.10.254 
listen on 127.0.0.1

server ntp.prodigynet.co.uk
server ntp.cpsc.ucalgary.cat /etc/ntpd.conf

pf.conf:
$ sudo cat /etc/pf.conf
ext_if= "tun0"                  # External interface (Outside)
prv_if= "vr1"                   # Private interface (Inside)
lpb_if= "lo0"                   # Loopback interface

set require-order yes
set optimization normal
set block-policy drop
set state-policy if-bound
set loginterface $ext_if
set debug misc

altq on $ext_if priq bandwidth \
 queue { q_pri q_def }

 queue q_pri priority 7
 queue q_def priority 1 priq(default)

nat on $ext_if inet proto { tcp udp icmp } \
 from $prv_if:network to any \
 tag INT_NAT \
 -> $ext_if:0 sticky-address

pass quick on $lpb_if

block drop log on $ext_if
block return log on $prv_if

pass quick on $prv_if \
 from $prv_if:network to $prv_if:network \
 label "$if:$proto: Private Network"

pass in on $prv_if inet proto tcp \
 from $prv_if:network to any port \
  { ftp ssh rsync cvspserver 5999 http https \
    smtp pop3 imap smtps imaps pop3s 6667 } \
 flags S/SA modulate state \
 label "$nr: In from $srcaddr to $dstaddr:$dstport"

pass out on $ext_if inet proto udp \
 from $ext_if:0 to any port { domain ntp } \
 keep state \
 label "$nr: Out from $srcaddr to $dstaddr:$dstport" \
 queue ( q_def q_pri )

pass out on $ext_if inet proto tcp \
 from any to any \
 flags S/SA modulate state \
 tagged INT_NAT \
 label "$nr: Out from $srcaddr to $dstaddr:$dstport" \
 queue ( q_def q_pri )

pass out on $ext_if inet proto { udp icmp } \
 from any to any \
 keep state \
 tagged INT_NAT \
 label "$nr: Out from $srcaddr to $dstaddr:$dstport" \
 queue ( q_def q_pri )

pass on $ext_if inet proto tcp udp icmp \
 from $ext_if:0 to $ext_if:peer \
 flags S/SA modulate state \
 label "$nr: Out from $srcaddr to $dstaddr - ISP" \
 queue ( q_def q_pri )

antispoof for $ext_if
antispoof for $prv_if

# EOF

Thanks
-- 
Kimi

Prev by Date: End-to-End IPsec Tunnels
Next by Date: Re: Web cluster on OBSD?
Previous by thread: Re: End-to-End IPsec Tunnels
Next by thread: sys in cvs
Index(es):
- Date
- Thread

Visit your host, monkey.org