Le 2020-11-29T21:49+0100, Kurt Roeckx a écrit :
On Sun, Nov 29, 2020 at 09:33:48PM +0100, Vincent Blut wrote:Control: tags -1 pendingLe 2020-11-28T22:09+0100, Kurt Roeckx a écrit : > On Sat, Nov 28, 2020 at 07:54:05PM +0100, Vincent Blut wrote: > > Anyone willing to test the attached deb on Buster? FWIW, it seems to behave > > nicely on my VM. > > It seems to be working fine for me. > > I've enabled NTS on ntp.roeckx.be, both as client and server, and > both seem to be working fine. Good to hear! > It seems to set up NTS as a server, I had to put the key and > certificate in /var/lib/chrony/, it was not happy with files in any > other place. It works without problems as a client. To double-check that the server side works correctly with NTS enabled, could you please run "chronyc serverstats" and check that "NTS-KE connections accepted" and "Authenticated NTP packets" report non-zero values?That currently returns: NTP packets received : 10969 NTP packets dropped : 0 Command packets received : 832793 Command packets dropped : 0 Client log records dropped : 0 NTS-KE connections accepted: 1 NTS-KE connections dropped : 0 Authenticated NTP packets : 3650
Looks sane.
(I had to restart one of the clients, remove it's .nts files in /var/lib/chrony/ to make the "connections accepted" change to 1, because the server restarted in between.)
Indeed, see "ntsdumpdir" in chrony.conf(5) for a bit more details.
signature.asc
Description: PGP signature
