Академический Документы
Профессиональный Документы
Культура Документы
NTP
Installation and Configuration on
DMN Vision
Cisco CSS
Sun Netra T1 AC-200
Brighton 2, MMV Relays and Client PCs
Client
By:
System Verification Test Laboratory
HNS-SVT
xxxxxxx-0001
Revision
January 17, 2002
HNS Proprietary II
1
Trademarks
All trademarks, marks, names, or product names referenced in this publication are the property of
their respective owners, and Hughes Network Systems neither endorses nor otherwise sponsors
any such products or services referred to herein.
Contents
CONTENTS .................................................................................................................................................................3
TABLE OF FIGURES ................................................................................................................................................4
REVISION HISTORY ................................................................................................................................................5
ABOUT THIS DOCUMENT......................................................................................................................................6
CHAPTER 1.................................................................................................................................................................7
DMN VISION .............................................................................................................................................................7
NTP Protocol ........................................................................................................................................................7
CHAPTER 2...............................................................................................................................................................12
IPGW CONFIGURATION ...........................................................................................................................................12
CHAPTER 3...............................................................................................................................................................14
RELAY (BRIGHTON 2 OR MMV) CONFIGURATION ...................................................................................................14
CHAPTER 4...............................................................................................................................................................19
CAC SERVER CONFIGURATION................................................................................................................................19
CHAPTER 5...............................................................................................................................................................20
CISCO CONTENT SERVICES SWITCH 11051-AC .......................................................................................................20
Enabling NTP .....................................................................................................................................................20
Enabling logging.................................................................................................................................................20
Interfacing with the MGMT LAN ........................................................................................................................21
Showing the Log..................................................................................................................................................22
Configuring Date, Time and Timezone in CSS ...................................................................................................22
CHAPTER 6...............................................................................................................................................................24
SUN NETRA T1 AC-200 CONFIGURATION ................................................................................................................24
CHAPTER 7...............................................................................................................................................................29
NTPTIME .............................................................................................................................................................29
SAMPLE NETWORK CHART...............................................................................................................................35
NOTES .......................................................................................................................................................................36
Table of Figures
Figure 1 HP-UX man xntpd command ......................................................................................................... 7
Figure 2 IPGW Configuration..................................................................................................................... 12
Figure 3 Adding Multicast address to IPGW.............................................................................................. 13
Figure 4 Relay's IP Multicast Profile .......................................................................................................... 14
Figure 5 Adding Multicast Address to Relay.............................................................................................. 15
Figure 6 Sniffer Matrix at the Remote LAN........................................................................................... 18
Figure 7 NTP multicast address (224.0.1.1) configuration in CAC server................................................. 19
Figure 8 NTPTime URL ............................................................................................................................. 29
Figure 9 NTPTime icon in Control Panel ................................................................................................... 30
Figure 10 NTPTime Servers tab ................................................................................................................. 31
Figure 11 NTPTime Settings tab ................................................................................................................ 31
Figure 12 NTPTIme Log Files tab.............................................................................................................. 32
Figure 13 NTPTime Retry tab .................................................................................................................... 32
Figure 14 NTPTime Advanced tab ............................................................................................................. 33
Figure 15 NTPTime Sample Sniffer Capture.......................................................................................... 34
Figure 16 Sample Network Layout............................................................................................................. 35
Revision History
Date
January 17, 2002
January 18, 2002
Name
Juan Zavala
Juan Zavala
Joe Szekeres
Rohit Tripathi
February 8, 2002
Juan Zavala
Description
First release for comments
Add reference to TIMEZONE file for Netra
Add Copyright notice and logos
Add Revision History
Add Sniffer Matrix picture from Remote LAN
Proofreading, suggested changing some graphics
to a higher resolution
Suggested changing some graphics to a higher
resolution and to document NTP multicast address
in CAC server
Insert Chapters and more document formatting
Add About this document section
Add references on NTPTime
Incorporate feedback from John Border
Time synchronization is important because it assures that all devices running web cache
applications keep accurate measurements of web objects freshness. Without NTP running on
the network there is not guarantee that an object just cached can be detected as such by
another device with different time, consequently, there will unnecessary traffic generated in the
network going back and forth to retrieve web content from origin servers.
The intended audience for this document is Network Engineers from the Business and Software
Engineering Groups.
Organization
This document is organized in Chapters as follows:
-
Chapter 1
DMN Vision
NTP Protocol
This section defines the steps required to configure the NMS platform to support XNTP, a
requirement for caching and other features of the VSATs. Note that this functionality is provided
by the HP-UX operating system and is not part of the NMS release. However, to aid in the
configuration of NTP, a template configuration file has been provided in the NMS release.
1. There are two versions of XNTPD available on HP-UX. To determine which is installed on
your machine, type: man xntpd
If, under SYNOPSIS, the first argument is "-ab", you have a version of XNTPD that does not
support the Time To Live (TTL) argument.
If the first argument is "-abdm", you have a version of XNTPD that does support the Time To
Live (TTL) argument.
Example: man xntpd
#
# trustedkey: The keys defined here are used when authenticate is on.
#
We only trust (and sync to) peers who know and use these keys.
#
#trustedkey 1 3 4 8
##
# keys: It specifies the file which holds the authentication keys.
#
#keys /etc/ntp.keys
#
# controlkey: It indicates which key is to be used for validating
#
mode 6 write variables commands. If this isn't defined, no
#
mode 6 write variables commands can be done on the xntpd.
#
#controlkey 65534
#
# restrict: This option places restrictions on one or more systems.
#
This is implemented as a sorted address-and-mask list, with
#
each entry including a set of flags which define what a host
#
matching the entry *can't* do.
#
The syntax is :
#
restrict address [ mask numeric mask ] [ flag ]
#
#
The flags are:
#
#
ignore
- ignore all traffic from host
#
noserve - don't give host any time (but let him make queries?)
#
notrust - give the host time, and let it make queries, but don't
#
sync to it.
#
noquery - host can have time, but can not make queries
#
nomodify - allow the host to make queries except those which are
#
actually run-time configuration commands.
#
ntpport - Makes matches for this entry only if the source
#
port is 123.
#
#The matching machines can be served time, but they will be restricted to
#make non-modifying queries
#
#restrict 129.140.0.0 mask 255.255.0.0 notrust nomodify
#
#Ignore all packets from host 15.1.15.1
#
# restrict 15.1.15.1 ignore
#
# Restric 35.1.1.0 to query only
#
#restrict 35.1.1.0 mask 255.255.255.0 noserve nomodify
#
# take time from the 128.116.64.3, but don't let it query
#
#restrict 128.116.64.3 noquery
#
# statdir : Indicates the full path of the directory where statistics files
10
#
should be created:
#
statsdir /var/tmp/ntp
#
# statistics : Enables writing of statistics records: loopstats/peerstats.
#
#statistics loopstats
#statistics peerstats
#
# filegen : Configures the ways to generate the statistic file set. It
#
provides a mean for handling files that are continously growing
#
during the lifetime of a server.
#
#
The syntax is :
#
filegen statsname [ file filename ] [ type typename ]
#
[ link/nolink ] [ enable/disable ]
#
filegen loopstats file loopstat type week link
filegen peerstats file loopstat type week link
#
# Local clock : Allows the server to synchronize to its own clock.
#
server 127.127.1.0 minpoll 6 prefer
#fudge 127.127.1.0 time1 1
#
# Spectracom Netclock/2 clocks : synchronize to netclock/2 which receives WWVB.
#
# server 127.127.4.1
# End of File
root
0:13 /usr/sbin/xntpd
bin
11
Chapter 2
IPGW Configuration
12
13
Chapter 3
Relay (Brighton 2 or MMV) Configuration
14
(SB)
-> date
GM Time:
THU JAN 17 22:20:04 2002
Local Time: THU JAN 17 17:20:04 2002
value = 0 = 0x0
-> sntpt_set_date 01,17,2002
------------------------------------------------------set_clock
------------------------------------------------------tv_sec
: 1011306035
15
tv_nsec
: 0
------------------------------------------------------GM Time:
THU JAN 17 22:20:35 2002
Local Time: THU JAN 17 17:20:35 2002
value = 0 = 0x0
-> sntpt_set_time 22,25,00
<-Must be GMT
------------------------------------------------------set_clock
------------------------------------------------------tv_sec
: 1011306300
tv_nsec
: 0
------------------------------------------------------GM Time:
THU JAN 17 22:25:00 2002
Local Time: THU JAN 17 17:25:00 2002
value = 0 = 0x0
->
-> sntpt_show
--------------------------------------------------------------SNTP Task:
--------------------------------------------------------------Startup:
System Init
Completed : YES
Task Init
Completed : YES
Task Init Done
Completed : YES
System Shutdown
Completed : NO
Handlers:
Mcast Queue Handler Calls
: 698
New Parms Handler Calls
: 0
Configuration:
Multicast Address for SNTP
: 224.0.1.1
Timezone Index
: 11
DST Calc. Enable
: 0
Statistics:
Successful Clock Update Count : 698
Failed Clock Update Count
: 0
--------------------------------------------------------------value = 0 = 0x0
->
-> aam_show
aam info
--------------------------------------------------------state
dpcmac
ethmac
key
------------------ -------- ------------ ---------------ADDR_RESERVED (4) 03000000 030000000000 0000000000000000
ADDR_RESERVED (4) 8A482501 8A4825010000 0000000000000000
ADDR_UNICAST
(8) 88482502 884825020000 D5EDA78A4F9DA8D9
ADDR_CLOSED
(5) 00000000 01005E020203 0000000000000000
ADDR_ACTIVE
(2) 0D14FF00 01005E000104 55CF8400703F4179
ADDR_ACTIVE
(2) 1914FF00 01005E000101 55CF8400703F4179
ADDR_ACTIVE
(2) 0918FF00 01005E010301 783020F42AF02D8C
ADDR_ACTIVE
(2) 1914FF00 01005E000106 55CF8400703F4179
ADDR_CLOSED
(5) 00000000 01005E020202 0000000000000000
16
slh info
-----------------------------dpcmac
total
out of seq
-------- ---------- ---------03000000
4131
0
8A482501
903
0
88482502
12731
428
0D14FF00
0
0
1914FF00
20382
707
0918FF00
74
0
value = 0 = 0x0
-> aam_show
aam info
--------------------------------------------------------state
dpcmac
ethmac
key
------------------ -------- ------------ ---------------ADDR_RESERVED (4) 03000000 030000000000 0000000000000000
ADDR_RESERVED (4) 8A482501 8A4825010000 0000000000000000
ADDR_UNICAST
(8) 88482502 884825020000 D5EDA78A4F9DA8D9
ADDR_CLOSED
(5) 00000000 01005E020203 0000000000000000
ADDR_ACTIVE
(2) 0D14FF00 01005E000104 55CF8400703F4179
ADDR_ACTIVE
(2) 1914FF00 01005E000101 55CF8400703F4179
ADDR_ACTIVE
(2) 0918FF00 01005E010301 783020F42AF02D8C
ADDR_ACTIVE
(2) 1914FF00 01005E000106 55CF8400703F4179
ADDR_CLOSED
(5) 00000000 01005E020202 0000000000000000
slh info
-----------------------------dpcmac
total
out of seq
-------- ---------- ---------03000000
4133
0
8A482501
903
0
88482502
12742
428
0D14FF00
0
0
1914FF00
20393
707
0918FF00
74
0
value = 0 = 0x0
->
-> aam_debug=1
aam_debug = 0x3dcc80: value = 1 = 0x1
CAC Msg type: P
IP Dest = 10.2.9.36
IP Dest = 224.0.1.6
IP Dest = 10.2.9.36
IP Dest = 224.0.1.6
IP Dest = 10.2.9.36
IP Dest = 224.0.1.6
IP Dest = 10.2.9.36
IP Dest = 224.0.1.6
IP Dest = 224.0.1.1
IP Dest = 224.0.1.1
IP Dest = 224.0.1.6
17
IP Dest = 10.2.9.36
CAC Msg type: P
IP Dest = 10.2.9.36
IP Dest = 224.0.1.6
IP Dest = 10.2.9.36
IP Dest = 224.0.1.6
IP Dest = 10.2.9.36
IP Dest = 224.0.1.6
IP Dest = 10.2.9.36
IP Dest = 224.0.1.6
IP Dest = 10.2.9.36
CAC Msg type: E
IP Dest = 224.0.1.6
IP Dest = 10.2.9.36
CAC Msg type: P
aam_debug=0
->
18
Chapter 4
CAC Server Configuration
19
Chapter 5
Cisco Content Services Switch 11051-AC
In this chapter IP addresses are shown as a sample only, you must verify your IP scheme and
enter the correct IP addresses for your configuration.
Enabling NTP
Add the following lines to the CSS configuration:
CSS11050# config t
CSS11050(config)# sntp server 192.168.11.190 version 3
CSS11050(config)# sntp poll-interval 30
CSS11050(config)# exit
CSS11050# wr mem
CSS11050# sho run
!*************************** GLOBAL ***************************
sntp server 192.168.11.190 version 3
sntp poll-interval 30
..
..
..
Enabling logging
Add the following lines to the CSS configuration:
CSS11050# config t
CSS11050(config)# logging buffer 64000
CSS11050(config)# logging commands enable
CSS11050(config)# logging subsystem all level debug-7
CSS11050(config)# exit
CSS11050# wr mem
CSS11050# sho run
logging buffer 64000
logging commands enable
logging subsystem syssoft level debug-7
logging subsystem buffer level debug-7
logging subsystem flowmgr level debug-7
logging subsystem radius level debug-7
logging subsystem wcc level debug-7
logging subsystem ipv4 level debug-7
20
21
The CSS will received the multicast stream from the NMS on IP address 224.0.1.1 and forward
it to other VLANs (VLAN2 in the sample network layout). From here the CSS and Sun Netras
can synchronized its clocks and the IPGateway will forward this multicast traffic to the remote
relays.
Sample:
22
CSS11050# clock ?
date
Modify the system clock date
time
Modify the system clock time
timezone
Modify the timeZone information
CSS11050# clock date
Enter date [01-01-2000]:01-17-2002
CSS11050# clock time
Enter time [14:17:54]:14:17:56
CSS11050# clock timezone ?
<Text>
Enter timezone name (Len: 1-31)
CSS11050# clock timezone EST ?
hour
Configure hours from UTC
CSS11050# clock timezone EST hour 5 before-UTC
CSS11050# sho clock
Date: 01-17-2002
Time: 14:37:08
TimeZone: EST: -05:+00:+00
CSS11050#
(Installed software as of on CSS is ap0501005)
23
Chapter 6
Sun Netra T1 AC-200 Configuration
In this chapter IP addresses are shown as a sample only, you must verify your IP scheme and
enter the correct IP addresses for your configuration.
During the Sun Netra factory setup, the correspondent Locale is selected as shown below:
Netra 200
LOM event: +21h33m42s host power on
Netra T1 200 (UltraSPARC-IIe 500MHz), No Keyboard
OpenBoot 4.0, 1024 MB memory installed, Serial #16675624.
Ethernet address 8:0:20:fe:73:28, Host ID: 80fe7328.
Initializing Memory Boot device: disk File and args:
SunOS Release 5.8 Version Generic_108528-06 64-bit
Copyright 1983-2000 Sun Microsystems, Inc. All rights reserved.
Hostname: unknown
Configuring /dev and /devices
6/26/2001 17:45:30 GMT LOM time reference
Configuring the /dev directory (compatibility devices)
ufs fsck: sanity check: /dev/rdsk/c1t0d0s3 okay
S99testslice: Removing partition c1t0d0s3...
The system is coming up. Please wait.
Select a Language
0. English
1. French
2. German
3. Italian
4. Spanish
5. Swedish
Please make a choice (0 - 5), or press h or ? for help: 0
Select a Locale
0. English (C - 7-bit ASCII)
1. Albania (ISO8859-2)
2. Australia (ISO8859-1)
3. Belgium-Flemish (ISO8859-1)
4. Belgium-Flemish (ISO8859-15 - Euro)
5. Bosnia (ISO8859-2)
6. Brazil (ISO8859-1)
7. Bulgaria (ISO8859-5)
8. Canada-English (ISO8859-1)
9. Catalan, Spain (ISO8859-1)
24
Select a Locale
19. Great Britain (ISO8859-1)
20. Great Britain (ISO8859-15 - Euro)
21. Greece (ISO8859-7)
22. Hungary (ISO8859-2)
23. Iceland (ISO8859-1)
24. Ireland (ISO8859-1)
25. Ireland (ISO8859-15 - Euro)
26. Israel (ISO8859-6)
27. Latvia (ISO8859-13)
28. Lithuania (ISO8859-13)
29. Macedonia (ISO8859-5)
30. Netherlands (ISO8859-1)
31. Netherlands (ISO8859-15 - Euro)
32. New Zealand (ISO8859-1)
33. Norway (ISO8859-1 - Bokmal)
34. Norway (ISO8859-1 - Nynorsk)
35. Poland (ISO8859-2)
36. Poland (UTF-8)
37. Portugal (ISO8859-1)
Press Return to show more choices.
Please make a choice (0 - 51), or press h or ? for help:
Select a Locale
38. Portugal (ISO8859-15 - Euro)
39. Romania (ISO8859-2)
40. Russia (ANSI 1251)
41. Russia (ISO8859-5)
42. Russia (KOI8-R)
43. Russia (UTF-8)
44. Serbia (ISO8859-5)
45. Slovakia (ISO8859-2)
46. Slovenia (ISO8859-2)
47. Thai
48. Turkey (ISO8859-9)
25
Now that your Sun has the correct Timezone, configure NTP in it to listen for your NMS NTP Server.
# cd /etc/inet
# cp ntp.client ntp.conf
# vi ntp.conf
#@(#)ntp.client
1.2
#
#/etc/inet/ntp.client
#
96/11/06 SMI
26
Then run:
# /etc/init.d/xntpd start
0:01 /usr/lib/inet/xntpd
# date 0117145802
Thu Jan 17 14:58:00 EST 2002
192.168.11.190 -> 224.0.1.1
Run snoop
# snoop v d eri1 |grep NTP
NTP:
NTP:
NTP:
NTP:
NTP:
NTP:
NTP:
NTP:
NTP:
----- Network Time Protocol ----Leap = 0x3 (alarm condition (clock unsynchronized))
Version = 3
Mode = 3 (client)
Stratum = 0 (unspecified)
Poll = 6
Precision = 239 seconds
Synchronizing distance = 0x0000.0000 (0.000000)
27
NTP:
NTP:
NTP:
NTP:
NTP:
NTP:
UDP:
NTP:
NTP:
NTP:
NTP:
NTP:
NTP:
NTP:
NTP:
NTP:
NTP:
NTP:
NTP:
NTP:
NTP:
UDP:
28
Chapter 7
NTPTime
To synchronize client PCs there are many free utilities on the Internet. As a sample, this chapter
presents NTPTime, a freeware that can be downloaded from
http://home.att.net/~Tom.Horsley/ntptime.html
Note: HNS does not support this utility, it is presented in this chapter as an illustration only on
how to synchronize client PCs with a Time Server
29
30
31
32
[-567353/-131275889]:
[-567353/-131275889]:
[-567353/-131443057]:
[-567353/-131443057]:
[-567353/-131443057]:
[-567353/-131443057]:
The following picture shows a Sniffer capture showing the NTP traffic between a client PC
and a NTP server.
33
HNS Proprietary II
34
35
Notes
HNS Proprietary II
36