System Tutorial
LINUX
Centos 7 installation and configuration NTP network time synchronization server
Centos 7 installation and configuration NTP network time synchronization server
Aug 05, 2024 pm 10:35 PM
Experimental environment:
OS: Linux Centos 7.4 x86_64
1. View the current server time zone & list the time zone and set the time zone (if it is already the correct time zone, please skip):
# timedatectl # timedatectl list-timezones # timedatectl set-timezone Asia/Shanghai
2. Understanding the concept of time and time zone:
GMT, UTC, CST, DST
UTC:
The entire earth is divided into twenty-four time zones, and each time zone has its own local time. In international radio communications, for the sake of unification, a unified time is used, called Universal Time Coordinated (UTC: Universal Time Coordinated).
GMT:
Greenwich Mean Time refers to the standard time of the Royal Greenwich Observatory located in the suburbs of London, England, because the prime meridian is defined on the longitude passing there (UTC and GMT time are basically the same).
CST:
China Standard Time
GMT + 8 = UTC + 8 = CST
DST:
Daylight Saving Time means that when the sun rises earlier in the summer, the time is set forward one hour to advance the use of daylight (not used in China).
2. Use NTP Public Pool Time Servers http://www.pool.ntp.org to synchronize your server time.
Check whether it is installed:
# rpm -q ntp ntp-4.2.6p5-25.el7.centos.2.x86_64
If it is already installed, please skip this step, otherwise please execute the following command to install:
# yum install ntpdate ntp -y
Modify NTP configuration:
Note: The green color is the original content that I commented out, the red color is the new content that replaces the previous comment, and the others are default.
# vim /etc/ntp.conf # For more information about this file, see the man pages # ntp.conf(5), ntp_acc(5), ntp_auth(5), ntp_clock(5), ntp_misc(5), ntp_mon(5). driftfile /var/lib/ntp/drift #新增:日志目錄. logfile /var/log/ntpd.log # Permit time synchronization with our time source, but do not # permit the source to query or modify the service on this system. restrict default nomodify notrap nopeer noquery # Permit all access over the loopback interface. This could # be tightened as well, but to do so would effect some of # the administrative functions. restrict 127.0.0.1 restrict ::1 #這一行的含義是授權(quán)172.16.128.0網(wǎng)段上的所有機(jī)器可以從這臺(tái)機(jī)器上查詢(xún)和同步時(shí)間. restrict 172.16.128.0 mask 255.255.255.0 nomodify notrap # Hosts on local network are less restricted. #restrict 192.168.1.0 mask 255.255.255.0 nomodify notrap # Use public servers from the pool.ntp.org project. # Please consider joining the pool (http://www.pool.ntp.org/join.html). #server 0.centos.pool.ntp.org iburst #server 1.centos.pool.ntp.org iburst #server 2.centos.pool.ntp.org iburst #server 3.centos.pool.ntp.org iburst #新增:時(shí)間服務(wù)器列表. server 0.cn.pool.ntp.org iburst server 1.cn.pool.ntp.org iburst server 2.cn.pool.ntp.org iburst server 3.cn.pool.ntp.org iburst #新增:當(dāng)外部時(shí)間不可用時(shí),使用本地時(shí)間. server 172.16.128.171 iburst fudge 127.0.0.1 stratum 10 #broadcast 192.168.1.255 autokey # broadcast server #broadcastclient # broadcast client #broadcast 224.0.1.1 autokey # multicast server #multicastclient 224.0.1.1 # multicast client #manycastserver 239.255.254.254 # manycast server #manycastclient 239.255.254.254 autokey # manycast client #新增:允許上層時(shí)間服務(wù)器主動(dòng)修改本機(jī)時(shí)間. restrict 0.cn.pool.ntp.org nomodify notrap noquery restrict 1.cn.pool.ntp.org nomodify notrap noquery restrict 2.cn.pool.ntp.org nomodify notrap noquery # Enable public key cryptography. #crypto includefile /etc/ntp/crypto/pw # Key file containing the keys and key identifiers used when operating # with symmetric key cryptography. keys /etc/ntp/keys # Specify the key identifiers which are trusted. #trustedkey 4 8 42 # Specify the key identifier to use with the ntpdc utility. #requestkey 8 # Specify the key identifier to use with the ntpq utility. #controlkey 8 # Enable writing of statistics records. #statistics clockstats cryptostats loopstats peerstats # Disable the monitoring facility to prevent amplification attacks using ntpdc # monlist command when default restrict does not include the noquery flag. See # CVE-2013-5211 for more details. # Note: Monitoring will not be disabled with the limited restriction flag. disable monitor
3. Set the system to start automatically when booting:
# systemctl enable ntpd # systemctl enable ntpdate # systemctl is-enabled ntpd
When the ntpd service starts, first use the ntpdate command to synchronize the time:
# ntpdate -u 1.cn.pool.ntp.org
One of the reasons: When the time difference between the server and the client is too large, modifying the time at this time may cause unpredictable problems to the system or application, and NTP will stop time synchronization. If you check that the time is not synchronized after NTP is started, you should consider that the time error may be too large. In this case, you need to manually synchronize the time first.
Start NTP server:
# systemctl start ntpdate # systemctl start ntpd
4. Join the firewall:
# firewall-cmd --permanent --add-service=ntp # firewall-cmd --reload
5. Check the ntp connection status. If there is no problem, write the correct time to the hardware:
# ss -tlunp | grep ntp # ntpq -p # hwclock -w
5.1. System time and hardware time
Hardware time:
RTC (Real-Time Clock) or CMOS time is usually powered by batteries on the motherboard, and the server will continue to run even after the server is powered off. Only date and time values ??are saved, time zone and daylight saving time settings cannot be saved.
System time:
Generally, the RTC time is copied when the server starts, and then runs independently, saving the time, time zone and daylight saving time settings.
6. Client:
Real-time synchronization through service process (NTP needs to be installed):
# vim /etc/ntp.conf server 172.16.128.171
Important: Modifying the NTP configuration file of any node server requires restarting the ntpd service:
# systemctl restart ntpd
Synchronize time with crontab task plan (ntpdate needs to be installed, synchronization time is updated at 24:00 every day):
# crontab -e 0 0 * * * /usr/sbin/sntp -P no -r 172.16.128.171;hwclock -w
Deployed. In this way, the cluster will automatically synchronize services regularly, so that the cluster time will remain consistent.
The above is the detailed content of Centos 7 installation and configuration NTP network time synchronization server. For more information, please follow other related articles on the PHP Chinese website!
Hot AI Tools
Undress AI Tool
Undress images for free
Undresser.AI Undress
AI-powered app for creating realistic nude photos
AI Clothes Remover
Online AI tool for removing clothes from photos.
Clothoff.io
AI clothes remover
Video Face Swap
Swap faces in any video effortlessly with our completely free AI face swap tool!
Hot Article
Hot Tools
Notepad++7.3.1
Easy-to-use and free code editor
SublimeText3 Chinese version
Chinese version, very easy to use
Zend Studio 13.0.1
Powerful PHP integrated development environment
Dreamweaver CS6
Visual web development tools
SublimeText3 Mac version
God-level code editing software (SublimeText3)
How does the cost of ownership differ between Linux and Windows?
Jun 09, 2025 am 12:17 AM
Linux's cost of ownership is usually lower than Windows. 1) Linux does not require license fees, saving a lot of costs, while Windows requires purchasing a license. 2) Linux has low hardware requirements and can extend the service life of the device. 3) The Linux community provides free support to reduce maintenance costs. 4) Linux is highly secure and reduces productivity losses. 5) The Linux learning curve is steep, but Windows is easier to use. The choice should be based on specific needs and budget.
What Are the Prerequisites for Installing Redis on Linux?
Jun 10, 2025 am 12:02 AM
Installing RedisonLinux requires the following prerequisites: 1. A Linux distribution, such as Ubuntu, CentOS, or Debian; 2. GCC compiler, used to compile Redis from source; 3. Make and libc6-dev, used to build Redis; 4. Tcl (optional), used to run Redis tests. These tools ensure smooth installation and testing of Redis.
How to install Linux alongside Windows (dual boot)?
Jun 18, 2025 am 12:19 AM
The key to installing dual systems in Linux and Windows is partitioning and boot settings. 1. Preparation includes backing up data and compressing existing partitions to make space; 2. Use Ventoy or Rufus to make Linux boot USB disk, recommend Ubuntu; 3. Select "Coexist with other systems" or manually partition during installation (/at least 20GB, /home remaining space, swap optional); 4. Check the installation of third-party drivers to avoid hardware problems; 5. If you do not enter the Grub boot menu after installation, you can use boot-repair to repair the boot or adjust the BIOS startup sequence. As long as the steps are clear and the operation is done properly, the whole process is not complicated.
What Are the Steps to Install Redis on a Linux System?
Jun 11, 2025 am 12:11 AM
ToinstallRedisonaLinuxsystem,followthesesteps:1)DownloadandextractRedisfromtheofficialGitHubrepository,2)CompileRedisusingthe'make'command,3)InstallRediswith'sudomakeinstall',4)ConfigureRedisbycopyingandeditingtheconfigurationfile,and5)StartRedisusin
How to enable the EPEL (Extra Packages for Enterprise Linux) repository?
Jun 17, 2025 am 09:15 AM
The key to enabling EPEL repository is to select the correct installation method according to the system version. First, confirm the system type and version, and use the command cat/etc/os-release to obtain information; second, enable EPEL through dnfinstallepel-release on CentOS/RockyLinux, and the 8 and 9 version commands are the same; third, you need to manually download the corresponding version of the .repo file and install it on RHEL; fourth, you can re-import the GPG key when encountering problems. Note that the old version may not be supported, and you can also consider enabling epel-next to obtain the test package. After completing the above steps, use dnfrepolist to verify that the EPEL repository is successfully added.
How does Linux perform compared to Windows for web server workloads?
Jun 08, 2025 am 12:18 AM
Linux usually performs better in web server performance, mainly due to its advantages in kernel optimization, resource management and open source ecosystem. 1) After years of optimization of the Linux kernel, mechanisms such as epoll and kqueue make it more efficient in handling high concurrent requests. 2) Linux provides fine-grained resource management tools such as cgroups. 3) The open source community continuously optimizes Linux performance, and many high-performance web servers such as Nginx are developed on Linux. By contrast, Windows performs well when handling ASP.NET applications and provides better development tools and commercial support.
How to choose a Linux distro for a beginner?
Jun 19, 2025 am 12:09 AM
Newbie users should first clarify their usage requirements when choosing a Linux distribution. 1. Choose Ubuntu or LinuxMint for daily use; programming and development are suitable for Manjaro or Fedora; use Lubuntu and other lightweight systems for old devices; recommend CentOSStream or Debian to learn the underlying principles. 2. Stability is preferred for UbuntuLTS or Debian; you can choose Arch or Manjaro to pursue new features. 3. In terms of community support, Ubuntu and LinuxMint are rich in resources, and Arch documents are technically oriented. 4. In terms of installation difficulty, Ubuntu and LinuxMint are relatively simple, and Arch is suitable for those with basic needs. It is recommended to try it first and then decide.
How to add a new disk to Linux
Jun 27, 2025 am 12:15 AM
The steps to add a new hard disk to the Linux system are as follows: 1. Confirm that the hard disk is recognized and use lsblk or fdisk-l to check; 2. Use fdisk or parted partitions, such as fdisk/dev/sdb and create and save; 3. Format the partition to a file system, such as mkfs.ext4/dev/sdb1; 4. Use the mount command for temporary mounts, such as mount/dev/sdb1/mnt/data; 5. Modify /etc/fstab to achieve automatic mount on the computer, and test the mount first to ensure correctness. Be sure to confirm data security before operation to avoid hardware connection problems.
