2000-01-12 14:41:00 +00:00
|
|
|
.\"
|
|
|
|
.\" $FreeBSD$
|
|
|
|
.\"
|
|
|
|
.Dd January 7, 2000
|
|
|
|
.Dt NTPDC 8
|
|
|
|
.Os
|
|
|
|
.Sh NAME
|
|
|
|
.Nm ntpdc
|
|
|
|
.Nd special NTP query program
|
|
|
|
.Sh SYNOPSIS
|
2000-11-20 20:10:44 +00:00
|
|
|
.Nm
|
2000-01-12 14:41:00 +00:00
|
|
|
.Op Fl ilnps
|
|
|
|
.Op Fl c Ar command
|
|
|
|
.Op Ar host ...
|
|
|
|
.Sh DESCRIPTION
|
2002-07-14 14:47:15 +00:00
|
|
|
The
|
2000-01-12 14:41:00 +00:00
|
|
|
.Nm
|
2002-07-14 14:47:15 +00:00
|
|
|
utility is used to query the
|
2000-01-12 14:41:00 +00:00
|
|
|
.Xr ntpd 8
|
2001-08-29 14:50:56 +00:00
|
|
|
daemon about its
|
|
|
|
current state and to request changes in that state.
|
|
|
|
The program may
|
|
|
|
be run either in interactive mode or controlled using command line
|
|
|
|
arguments.
|
|
|
|
Extensive state and statistics information is available
|
|
|
|
through the
|
2000-01-12 14:41:00 +00:00
|
|
|
.Nm
|
|
|
|
interface.
|
2001-08-29 14:50:56 +00:00
|
|
|
In addition, nearly all the
|
|
|
|
configuration options which can be specified at startup using
|
|
|
|
ntpd's configuration file may also be specified at run time using
|
2000-11-20 20:10:44 +00:00
|
|
|
.Nm .
|
2000-01-12 14:41:00 +00:00
|
|
|
.Pp
|
2001-08-29 14:50:56 +00:00
|
|
|
The following options are available:
|
|
|
|
.Bl -tag -width indent
|
|
|
|
.It Fl c Ar command
|
|
|
|
The following argument is interpreted as an interactive format
|
|
|
|
command and is added to the list of commands to be executed on the
|
|
|
|
specified host(s).
|
|
|
|
Multiple
|
|
|
|
.Fl c
|
|
|
|
options may be given.
|
|
|
|
.It Fl i
|
|
|
|
Force
|
|
|
|
.Nm
|
|
|
|
to operate in interactive mode.
|
|
|
|
Prompts
|
|
|
|
will be written to the standard output and commands read from the
|
|
|
|
standard input.
|
|
|
|
.It Fl l
|
|
|
|
Obtain a list of peers which are known to the server(s).
|
|
|
|
This
|
|
|
|
switch is equivalent to
|
|
|
|
.Ql -c listpeers .
|
|
|
|
.It Fl n
|
|
|
|
Output all host addresses in dotted-quad numeric format rather
|
|
|
|
than converting to the canonical host names.
|
|
|
|
.It Fl p
|
|
|
|
Print a list of the peers known to the server as well as a
|
|
|
|
summary of their state.
|
|
|
|
This is equivalent to
|
|
|
|
.Ql -c peers .
|
|
|
|
.It Fl s
|
|
|
|
Print a list of the peers known to the server as well as a
|
|
|
|
summary of their state, but in a slightly different format than the
|
|
|
|
.Fl p
|
|
|
|
switch.
|
|
|
|
This is equivalent to
|
|
|
|
.Ql -c dmpeers .
|
|
|
|
.El
|
|
|
|
.Pp
|
|
|
|
If one or more request options are included on the command line
|
|
|
|
when
|
2000-01-12 14:41:00 +00:00
|
|
|
.Nm
|
2001-08-29 14:50:56 +00:00
|
|
|
is executed, each of the requests will be sent
|
|
|
|
to the NTP servers running on each of the hosts given as command
|
|
|
|
line arguments, or on localhost by default.
|
|
|
|
If no request options
|
|
|
|
are given,
|
2000-01-12 14:41:00 +00:00
|
|
|
.Nm
|
2001-08-29 14:50:56 +00:00
|
|
|
will attempt to read commands from the
|
|
|
|
standard input and execute these on the NTP server running on the
|
|
|
|
first host given on the command line, again defaulting to localhost
|
2000-01-12 14:41:00 +00:00
|
|
|
when no other host is specified.
|
2002-07-14 14:47:15 +00:00
|
|
|
The
|
2000-01-12 14:41:00 +00:00
|
|
|
.Nm
|
2002-07-14 14:47:15 +00:00
|
|
|
utility will prompt for
|
2001-08-29 14:50:56 +00:00
|
|
|
commands if the standard input is a terminal device.
|
2000-01-12 14:41:00 +00:00
|
|
|
.Pp
|
2002-07-14 14:47:15 +00:00
|
|
|
The
|
2000-01-12 14:41:00 +00:00
|
|
|
.Nm
|
2002-07-14 14:47:15 +00:00
|
|
|
utility uses NTP mode 7 packets to communicate with the
|
2002-12-27 12:15:40 +00:00
|
|
|
NTP server, and hence can be used to query any compatible server on
|
2001-08-29 14:50:56 +00:00
|
|
|
the network which permits it.
|
2000-01-12 14:41:00 +00:00
|
|
|
Note that since NTP is a UDP protocol
|
2001-08-29 14:50:56 +00:00
|
|
|
this communication will be somewhat unreliable, especially over
|
|
|
|
large distances in terms of network topology.
|
2002-07-14 14:47:15 +00:00
|
|
|
The
|
2000-01-12 14:41:00 +00:00
|
|
|
.Nm
|
2002-07-14 14:47:15 +00:00
|
|
|
utility makes
|
2001-08-29 14:50:56 +00:00
|
|
|
no attempt to retransmit requests, and will time requests out if
|
|
|
|
the remote host is not heard from within a suitable timeout
|
|
|
|
time.
|
2000-01-12 14:41:00 +00:00
|
|
|
.Pp
|
|
|
|
The operation of
|
|
|
|
.Nm
|
2001-08-29 14:50:56 +00:00
|
|
|
are specific to the particular
|
|
|
|
implementation of the
|
2000-01-12 14:41:00 +00:00
|
|
|
.Xr ntpd 8
|
2001-08-29 14:50:56 +00:00
|
|
|
daemon and can be expected to
|
|
|
|
work only with this and maybe some previous versions of the daemon.
|
2000-01-12 14:41:00 +00:00
|
|
|
Requests from a remote
|
|
|
|
.Nm
|
2002-07-14 14:47:15 +00:00
|
|
|
utility which affect the
|
2001-08-29 14:50:56 +00:00
|
|
|
state of the local server must be authenticated, which requires
|
|
|
|
both the remote program and local server share a common key and key
|
|
|
|
identifier.
|
2000-01-12 14:41:00 +00:00
|
|
|
Specifying a command line option other than
|
|
|
|
.Fl i
|
|
|
|
or
|
|
|
|
.Fl n
|
2001-08-29 14:50:56 +00:00
|
|
|
will cause the specified query (queries) to be sent to
|
|
|
|
the indicated host(s) immediately.
|
2000-01-12 14:41:00 +00:00
|
|
|
Otherwise,
|
|
|
|
.Nm
|
2001-08-29 14:50:56 +00:00
|
|
|
will
|
|
|
|
attempt to read interactive format commands from the standard
|
2000-01-12 14:41:00 +00:00
|
|
|
input.
|
2001-08-29 14:50:56 +00:00
|
|
|
.Ss "Interactive Commands"
|
|
|
|
Interactive format commands consist of a keyword followed by zero
|
|
|
|
to four arguments.
|
|
|
|
Only enough characters of the full keyword to
|
|
|
|
uniquely identify the command need be typed.
|
|
|
|
The output of a
|
|
|
|
command is normally sent to the standard output, but optionally the
|
|
|
|
output of individual commands may be sent to a file by appending a
|
2002-01-21 20:12:02 +00:00
|
|
|
.Ql \&> ,
|
2001-08-29 14:50:56 +00:00
|
|
|
followed by a file name, to the command line.
|
2000-01-12 14:41:00 +00:00
|
|
|
.Pp
|
2001-08-29 14:50:56 +00:00
|
|
|
A number of interactive format commands are executed entirely
|
|
|
|
within the
|
2000-01-12 14:41:00 +00:00
|
|
|
.Nm
|
2002-07-14 14:47:15 +00:00
|
|
|
utility itself and do not result in NTP
|
2001-08-29 14:50:56 +00:00
|
|
|
mode 7 requests being sent to a server.
|
|
|
|
These are described
|
|
|
|
following.
|
2000-01-12 14:41:00 +00:00
|
|
|
.Bl -tag -width indent
|
2001-08-29 14:50:56 +00:00
|
|
|
.It Ic \&? Ar command_keyword
|
|
|
|
.It Ic help Ar command_keyword
|
2000-01-12 14:41:00 +00:00
|
|
|
A
|
2001-08-29 14:50:56 +00:00
|
|
|
.Ic \&?
|
|
|
|
will print a list of all the command
|
|
|
|
keywords known to this incarnation of
|
2000-11-20 20:10:44 +00:00
|
|
|
.Nm .
|
2000-01-12 14:41:00 +00:00
|
|
|
A
|
2001-08-29 14:50:56 +00:00
|
|
|
.Ic \&?
|
|
|
|
followed by a command keyword will print function and usage
|
|
|
|
information about the command.
|
2000-01-12 14:41:00 +00:00
|
|
|
This command is probably a better
|
|
|
|
source of information about
|
2001-08-29 14:50:56 +00:00
|
|
|
.Xr ntpq 8
|
|
|
|
than this manual
|
|
|
|
page.
|
2000-01-12 14:41:00 +00:00
|
|
|
.It Ic delay Ar milliseconds
|
2001-08-29 14:50:56 +00:00
|
|
|
Specify a time interval to be added to timestamps included in
|
|
|
|
requests which require authentication.
|
|
|
|
This is used to enable
|
|
|
|
(unreliable) server reconfiguration over long delay network paths
|
|
|
|
or between machines whose clocks are unsynchronized.
|
|
|
|
Actually the
|
|
|
|
server does not now require timestamps in authenticated requests,
|
2000-01-12 14:41:00 +00:00
|
|
|
so this command may be obsolete.
|
|
|
|
.It Ic host Ar hostname
|
|
|
|
Set the host to which future queries will be sent.
|
2001-08-29 14:50:56 +00:00
|
|
|
Hostname may
|
|
|
|
be either a host name or a numeric address.
|
|
|
|
.It Ic hostnames Op Cm yes | Cm no
|
2000-01-12 14:41:00 +00:00
|
|
|
If
|
2001-08-29 14:50:56 +00:00
|
|
|
.Cm yes
|
|
|
|
is specified, host names are printed in
|
|
|
|
information displays.
|
2000-01-12 14:41:00 +00:00
|
|
|
If
|
2001-08-29 14:50:56 +00:00
|
|
|
.Cm no
|
|
|
|
is specified, numeric
|
|
|
|
addresses are printed instead.
|
2000-01-12 14:41:00 +00:00
|
|
|
The default is
|
2001-08-29 14:50:56 +00:00
|
|
|
.Cm yes ,
|
|
|
|
unless
|
|
|
|
modified using the command line
|
2000-01-12 14:41:00 +00:00
|
|
|
.Fl n
|
|
|
|
switch.
|
|
|
|
.It Ic keyid Ar keyid
|
2001-08-29 14:50:56 +00:00
|
|
|
This command allows the specification of a key number to be
|
|
|
|
used to authenticate configuration requests.
|
|
|
|
This must correspond
|
|
|
|
to a key number the server has been configured to use for this
|
|
|
|
purpose.
|
2000-01-12 14:41:00 +00:00
|
|
|
.It Ic quit
|
|
|
|
Exit
|
2000-11-20 20:10:44 +00:00
|
|
|
.Nm .
|
2000-01-12 14:41:00 +00:00
|
|
|
.It Ic passwd
|
2001-08-29 14:50:56 +00:00
|
|
|
This command prompts you to type in a password (which will not
|
|
|
|
be echoed) which will be used to authenticate configuration
|
|
|
|
requests.
|
|
|
|
The password must correspond to the key configured for
|
|
|
|
use by the NTP server for this purpose if such requests are to be
|
|
|
|
successful.
|
2000-01-12 14:41:00 +00:00
|
|
|
.It Ic timeout Ar milliseconds
|
|
|
|
Specify a timeout period for responses to server queries.
|
2001-08-29 14:50:56 +00:00
|
|
|
The
|
|
|
|
default is about 8000 milliseconds.
|
2000-01-12 14:41:00 +00:00
|
|
|
Note that since
|
|
|
|
.Nm
|
2001-08-29 14:50:56 +00:00
|
|
|
retries each query once after a timeout, the total waiting time for
|
|
|
|
a timeout will be twice the timeout value set.
|
2000-01-12 14:41:00 +00:00
|
|
|
.El
|
2001-08-29 14:50:56 +00:00
|
|
|
.Ss "Control Message Commands"
|
|
|
|
Query commands result in NTP mode 7 packets containing requests for
|
2000-01-12 14:41:00 +00:00
|
|
|
information being sent to the server.
|
2001-08-29 14:50:56 +00:00
|
|
|
These are read-only commands
|
|
|
|
in that they make no modification of the server configuration
|
2000-01-12 14:41:00 +00:00
|
|
|
state.
|
|
|
|
.Bl -tag -width indent
|
|
|
|
.It Ic listpeers
|
2001-08-29 14:50:56 +00:00
|
|
|
Obtains and prints a brief list of the peers for which the
|
|
|
|
server is maintaining state.
|
|
|
|
These should include all configured
|
|
|
|
peer associations as well as those peers whose stratum is such that
|
|
|
|
they are considered by the server to be possible future
|
2005-07-31 03:30:48 +00:00
|
|
|
synchronization candidates.
|
2000-01-12 14:41:00 +00:00
|
|
|
.It Ic peers
|
2001-08-29 14:50:56 +00:00
|
|
|
Obtains a list of peers for which the server is maintaining
|
|
|
|
state, along with a summary of that state.
|
|
|
|
Summary information
|
|
|
|
includes the address of the remote peer, the local interface
|
|
|
|
address (0.0.0.0 if a local address has yet to be determined), the
|
|
|
|
stratum of the remote peer (a stratum of 16 indicates the remote
|
|
|
|
peer is unsynchronized), the polling interval, in seconds, the
|
|
|
|
reachability register, in octal, and the current estimated delay,
|
|
|
|
offset and dispersion of the peer, all in seconds.
|
|
|
|
.Pp
|
|
|
|
The character in the left margin indicates the mode this peer
|
|
|
|
entry is operating in.
|
2000-01-12 14:41:00 +00:00
|
|
|
A
|
2001-08-29 14:50:56 +00:00
|
|
|
.Ql \&+
|
|
|
|
denotes symmetric active, a
|
|
|
|
.Ql \&-
|
2000-01-12 14:41:00 +00:00
|
|
|
indicates symmetric passive, a
|
2001-08-29 14:50:56 +00:00
|
|
|
.Ql \&=
|
|
|
|
means the
|
|
|
|
remote server is being polled in client mode, a
|
|
|
|
.Ql \&^
|
2000-01-12 14:41:00 +00:00
|
|
|
indicates that the server is broadcasting to this address, a
|
2001-08-29 14:50:56 +00:00
|
|
|
.Ql \&~
|
2000-01-12 14:41:00 +00:00
|
|
|
denotes that the remote peer is sending broadcasts and a
|
2001-08-29 14:50:56 +00:00
|
|
|
.Ql \&*
|
2002-12-27 12:15:40 +00:00
|
|
|
marks the peer the server is currently synchronizing
|
2001-08-29 14:50:56 +00:00
|
|
|
to.
|
2000-01-12 14:41:00 +00:00
|
|
|
.Pp
|
|
|
|
The contents of the host field may be one of four forms.
|
2001-08-29 14:50:56 +00:00
|
|
|
It may
|
|
|
|
be a host name, an IP address, a reference clock implementation
|
|
|
|
name with its parameter or
|
|
|
|
.Fn REFCLK "implementation_number" "parameter" .
|
|
|
|
On
|
|
|
|
.Ic hostnames
|
|
|
|
.Cm no
|
|
|
|
only IP-addresses
|
|
|
|
will be displayed.
|
2000-01-12 14:41:00 +00:00
|
|
|
.It Ic dmpeers
|
|
|
|
A slightly different peer summary list.
|
2001-08-29 14:50:56 +00:00
|
|
|
Identical to the output
|
|
|
|
of the
|
|
|
|
.Ic peers
|
|
|
|
command, except for the character in the
|
|
|
|
leftmost column.
|
|
|
|
Characters only appear beside peers which were
|
|
|
|
included in the final stage of the clock selection algorithm.
|
2000-01-12 14:41:00 +00:00
|
|
|
A
|
2002-11-27 15:25:07 +00:00
|
|
|
.Ql \&.
|
2001-08-29 14:50:56 +00:00
|
|
|
indicates that this peer was cast off in the falseticker
|
|
|
|
detection, while a
|
2002-11-27 15:25:07 +00:00
|
|
|
.Ql \&+
|
2001-08-29 14:50:56 +00:00
|
|
|
indicates that the peer made it
|
|
|
|
through.
|
2000-01-12 14:41:00 +00:00
|
|
|
A
|
2002-11-27 15:25:07 +00:00
|
|
|
.Ql \&*
|
2001-08-29 14:50:56 +00:00
|
|
|
denotes the peer the server is currently
|
|
|
|
synchronizing with.
|
|
|
|
.It Ic showpeer Ar peer_address ...
|
|
|
|
Shows a detailed display of the current peer variables for one
|
|
|
|
or more peers.
|
|
|
|
Most of these values are described in the NTP
|
|
|
|
Version 2 specification.
|
|
|
|
.It Ic pstats Ar peer_address ...
|
|
|
|
Show per-peer statistic counters associated with the specified
|
|
|
|
peer(s).
|
|
|
|
.It Ic clockinfo Ar clock_peer_address ...
|
2000-01-12 14:41:00 +00:00
|
|
|
Obtain and print information concerning a peer clock.
|
2001-08-29 14:50:56 +00:00
|
|
|
The
|
|
|
|
values obtained provide information on the setting of fudge factors
|
|
|
|
and other clock performance information.
|
2000-01-12 14:41:00 +00:00
|
|
|
.It Ic kerninfo
|
|
|
|
Obtain and print kernel phase-lock loop operating parameters.
|
2001-08-29 14:50:56 +00:00
|
|
|
This information is available only if the kernel has been specially
|
|
|
|
modified for a precision timekeeping function.
|
|
|
|
.It Ic loopinfo Op Cm oneline | Cm multiline
|
2000-01-12 14:41:00 +00:00
|
|
|
Print the values of selected loop filter variables.
|
2001-08-29 14:50:56 +00:00
|
|
|
The loop
|
|
|
|
filter is the part of NTP which deals with adjusting the local
|
|
|
|
system clock.
|
2000-01-12 14:41:00 +00:00
|
|
|
The
|
2001-08-29 14:50:56 +00:00
|
|
|
.Sq offset
|
|
|
|
is the last offset given to the
|
|
|
|
loop filter by the packet processing code.
|
2000-01-12 14:41:00 +00:00
|
|
|
The
|
2001-08-29 14:50:56 +00:00
|
|
|
.Sq frequency
|
|
|
|
is the frequency error of the local clock in parts-per-million
|
|
|
|
(ppm).
|
2000-01-12 14:41:00 +00:00
|
|
|
The
|
2001-08-29 14:50:56 +00:00
|
|
|
.Sq time_const
|
|
|
|
controls the stiffness of the
|
|
|
|
phase-lock loop and thus the speed at which it can adapt to
|
|
|
|
oscillator drift.
|
2000-01-12 14:41:00 +00:00
|
|
|
The
|
2001-08-29 14:50:56 +00:00
|
|
|
.Sq watchdog timer
|
|
|
|
value is the number
|
|
|
|
of seconds which have elapsed since the last sample offset was
|
|
|
|
given to the loop filter.
|
2000-01-12 14:41:00 +00:00
|
|
|
The
|
2001-08-29 14:50:56 +00:00
|
|
|
.Cm oneline
|
2000-01-12 14:41:00 +00:00
|
|
|
and
|
2001-08-29 14:50:56 +00:00
|
|
|
.Cm multiline
|
|
|
|
options specify the format in which this
|
|
|
|
information is to be printed, with
|
|
|
|
.Cm multiline
|
|
|
|
as the
|
|
|
|
default.
|
2000-01-12 14:41:00 +00:00
|
|
|
.It Ic sysinfo
|
2001-08-29 14:50:56 +00:00
|
|
|
Print a variety of system state variables, i.e., state related
|
|
|
|
to the local server.
|
|
|
|
All except the last four lines are described
|
|
|
|
in the NTP Version 3 specification, RFC-1305.
|
|
|
|
.Pp
|
2000-01-12 14:41:00 +00:00
|
|
|
The
|
2001-08-29 14:50:56 +00:00
|
|
|
.Sq system flags
|
|
|
|
show various system flags, some of
|
|
|
|
which can be set and cleared by the
|
2000-01-12 14:41:00 +00:00
|
|
|
.Ic enable
|
|
|
|
and
|
|
|
|
.Ic disable
|
2001-08-29 14:50:56 +00:00
|
|
|
configuration commands, respectively.
|
|
|
|
These are
|
|
|
|
the
|
2004-07-03 18:35:53 +00:00
|
|
|
.Cm auth ,
|
2001-08-29 14:50:56 +00:00
|
|
|
.Cm bclient ,
|
|
|
|
.Cm monitor ,
|
|
|
|
.Cm pll ,
|
|
|
|
.Cm pps
|
|
|
|
and
|
|
|
|
.Cm stats
|
|
|
|
flags.
|
|
|
|
See the
|
|
|
|
.Xr ntpd 8
|
|
|
|
documentation for the meaning of these flags.
|
|
|
|
There
|
|
|
|
are two additional flags which are read only, the
|
|
|
|
.Cm kernel_pll
|
|
|
|
and
|
|
|
|
.Cm kernel_pps .
|
|
|
|
These flags indicate
|
|
|
|
the synchronization status when the precision time kernel
|
|
|
|
modifications are in use.
|
|
|
|
The
|
|
|
|
.Sq kernel_pll
|
|
|
|
indicates that
|
|
|
|
the local clock is being disciplined by the kernel, while the
|
|
|
|
.Sq kernel_pps
|
|
|
|
indicates the kernel discipline is provided by the PPS
|
|
|
|
signal.
|
2000-01-12 14:41:00 +00:00
|
|
|
.Pp
|
|
|
|
The
|
2001-08-29 14:50:56 +00:00
|
|
|
.Sq stability
|
|
|
|
is the residual frequency error remaining
|
2002-01-21 20:12:02 +00:00
|
|
|
after the system frequency correction is applied and is intended for
|
2001-08-29 14:50:56 +00:00
|
|
|
maintenance and debugging.
|
|
|
|
In most architectures, this value will
|
|
|
|
initially decrease from as high as 500 ppm to a nominal value in
|
|
|
|
the range .01 to 0.1 ppm.
|
2000-01-12 14:41:00 +00:00
|
|
|
If it remains high for some time after
|
2001-08-29 14:50:56 +00:00
|
|
|
starting the daemon, something may be wrong with the local clock,
|
|
|
|
or the value of the kernel variable
|
|
|
|
.Va kern.clockrate.tick
|
|
|
|
may be
|
|
|
|
incorrect.
|
2000-01-12 14:41:00 +00:00
|
|
|
.Pp
|
|
|
|
The
|
2002-01-21 20:12:02 +00:00
|
|
|
.Sq broadcastdelay
|
2001-08-29 14:50:56 +00:00
|
|
|
shows the default broadcast delay,
|
|
|
|
as set by the
|
|
|
|
.Ic broadcastdelay
|
|
|
|
configuration command.
|
|
|
|
.Pp
|
|
|
|
The
|
|
|
|
.Sq authdelay
|
|
|
|
shows the default authentication delay,
|
|
|
|
as set by the
|
|
|
|
.Ic authdelay
|
|
|
|
configuration command.
|
2000-01-12 14:41:00 +00:00
|
|
|
.It Ic sysstats
|
2001-08-29 14:50:56 +00:00
|
|
|
Print statistics counters maintained in the protocol
|
|
|
|
module.
|
2000-01-12 14:41:00 +00:00
|
|
|
.It Ic memstats
|
|
|
|
Print statistics counters related to memory allocation
|
|
|
|
code.
|
|
|
|
.It Ic iostats
|
2001-08-29 14:50:56 +00:00
|
|
|
Print statistics counters maintained in the input-output
|
|
|
|
module.
|
2000-01-12 14:41:00 +00:00
|
|
|
.It Ic timerstats
|
2001-08-29 14:50:56 +00:00
|
|
|
Print statistics counters maintained in the timer/event queue
|
|
|
|
support code.
|
2000-01-12 14:41:00 +00:00
|
|
|
.It Ic reslist
|
|
|
|
Obtain and print the server's restriction list.
|
2001-08-29 14:50:56 +00:00
|
|
|
This list is
|
|
|
|
(usually) printed in sorted order and may help to understand how
|
|
|
|
the restrictions are applied.
|
2000-01-12 14:41:00 +00:00
|
|
|
.It Ic monlist Op Ar version
|
2001-08-29 14:50:56 +00:00
|
|
|
Obtain and print traffic counts collected and maintained by the
|
|
|
|
monitor facility.
|
|
|
|
The version number should not normally need to be
|
|
|
|
specified.
|
2002-01-21 20:12:02 +00:00
|
|
|
.It Ic clkbug Ar clock_peer_address ...
|
2000-01-12 14:41:00 +00:00
|
|
|
Obtain debugging information for a reference clock driver.
|
2001-08-29 14:50:56 +00:00
|
|
|
This
|
|
|
|
information is provided only by some clock drivers and is mostly
|
2000-01-12 14:41:00 +00:00
|
|
|
undecodable without a copy of the driver source in hand.
|
|
|
|
.El
|
2001-08-29 14:50:56 +00:00
|
|
|
.Ss "Runtime Configuration Requests"
|
|
|
|
All requests which cause state changes in the server are
|
|
|
|
authenticated by the server using a configured NTP key (the
|
|
|
|
facility can also be disabled by the server by not configuring a
|
|
|
|
key).
|
|
|
|
The key number and the corresponding key must also be made
|
|
|
|
known to
|
2000-11-20 20:10:44 +00:00
|
|
|
.Nm .
|
2000-01-12 14:41:00 +00:00
|
|
|
This can be done using the
|
|
|
|
.Ic keyid
|
|
|
|
and
|
|
|
|
.Ic passwd
|
2001-08-29 14:50:56 +00:00
|
|
|
commands, the latter of which will prompt at the terminal for a
|
|
|
|
password to use as the encryption key.
|
|
|
|
You will also be prompted
|
|
|
|
automatically for both the key number and password the first time a
|
|
|
|
command which would result in an authenticated request to the
|
|
|
|
server is given.
|
|
|
|
Authentication not only provides verification that
|
|
|
|
the requester has permission to make such changes, but also gives
|
|
|
|
an extra degree of protection again transmission errors.
|
2000-01-12 14:41:00 +00:00
|
|
|
.Pp
|
2001-08-29 14:50:56 +00:00
|
|
|
Authenticated requests always include a timestamp in the packet
|
|
|
|
data, which is included in the computation of the authentication
|
|
|
|
code.
|
|
|
|
This timestamp is compared by the server to its receive time
|
|
|
|
stamp.
|
|
|
|
If they differ by more than a small amount the request is
|
|
|
|
rejected.
|
2000-01-12 14:41:00 +00:00
|
|
|
This is done for two reasons.
|
2001-08-29 14:50:56 +00:00
|
|
|
First, it makes simple
|
|
|
|
replay attacks on the server, by someone who might be able to
|
|
|
|
overhear traffic on your LAN, much more difficult.
|
|
|
|
Second, it makes
|
|
|
|
it more difficult to request configuration changes to your server
|
|
|
|
from topologically remote hosts.
|
|
|
|
While the reconfiguration facility
|
|
|
|
will work well with a server on the local host, and may work
|
|
|
|
adequately between time-synchronized hosts on the same LAN, it will
|
|
|
|
work very poorly for more distant hosts.
|
|
|
|
As such, if reasonable
|
|
|
|
passwords are chosen, care is taken in the distribution and
|
2000-01-12 14:41:00 +00:00
|
|
|
protection of keys and appropriate source address restrictions are
|
|
|
|
applied, the run time reconfiguration facility should provide an
|
|
|
|
adequate level of security.
|
|
|
|
.Pp
|
|
|
|
The following commands all make authenticated requests.
|
|
|
|
.Bl -tag -width indent
|
2001-08-29 14:50:56 +00:00
|
|
|
.It Xo Ic addpeer Ar peer_address
|
2000-01-12 14:41:00 +00:00
|
|
|
.Op Ar keyid
|
|
|
|
.Op Ar version
|
2001-08-29 14:50:56 +00:00
|
|
|
.Op Cm prefer
|
2000-01-12 14:41:00 +00:00
|
|
|
.Xc
|
2001-08-29 14:50:56 +00:00
|
|
|
Add a configured peer association at the given address and
|
|
|
|
operating in symmetric active mode.
|
|
|
|
Note that an existing
|
|
|
|
association with the same peer may be deleted when this command is
|
|
|
|
executed, or may simply be converted to conform to the new
|
|
|
|
configuration, as appropriate.
|
|
|
|
If the optional
|
2000-01-12 14:41:00 +00:00
|
|
|
.Ar keyid
|
2001-08-29 14:50:56 +00:00
|
|
|
is a
|
|
|
|
nonzero integer, all outgoing packets to the remote server will
|
|
|
|
have an authentication field attached encrypted with this key.
|
|
|
|
If
|
|
|
|
the value is 0 (or not given) no authentication will be done.
|
2000-01-12 14:41:00 +00:00
|
|
|
The
|
|
|
|
.Ar version
|
|
|
|
can be 1, 2 or 3 and defaults to 3.
|
|
|
|
The
|
2001-08-29 14:50:56 +00:00
|
|
|
.Cm prefer
|
|
|
|
keyword indicates a preferred peer (and thus will
|
|
|
|
be used primarily for clock synchronisation if possible).
|
|
|
|
The
|
|
|
|
preferred peer also determines the validity of the PPS signal - if
|
|
|
|
the preferred peer is suitable for synchronisation so is the PPS
|
|
|
|
signal.
|
|
|
|
.It Xo Ic addserver Ar peer_address
|
2000-01-12 14:41:00 +00:00
|
|
|
.Op Ar keyid
|
|
|
|
.Op Ar version
|
2001-08-29 14:50:56 +00:00
|
|
|
.Op Cm prefer
|
2000-01-12 14:41:00 +00:00
|
|
|
.Xc
|
2001-08-29 14:50:56 +00:00
|
|
|
Identical to the addpeer command, except that the operating
|
|
|
|
mode is client.
|
|
|
|
.It Xo Ic broadcast Ar peer_address
|
2000-01-12 14:41:00 +00:00
|
|
|
.Op Ar keyid
|
|
|
|
.Op Ar version
|
2001-08-29 14:50:56 +00:00
|
|
|
.Op Cm prefer
|
2000-01-12 14:41:00 +00:00
|
|
|
.Xc
|
2001-08-29 14:50:56 +00:00
|
|
|
Identical to the addpeer command, except that the operating
|
|
|
|
mode is broadcast.
|
|
|
|
In this case a valid key identifier and key are
|
|
|
|
required.
|
2000-01-12 14:41:00 +00:00
|
|
|
The
|
|
|
|
.Ar peer_address
|
2001-08-29 14:50:56 +00:00
|
|
|
parameter can be the broadcast
|
|
|
|
address of the local network or a multicast group address assigned
|
|
|
|
to NTP.
|
|
|
|
If a multicast address, a multicast-capable kernel is
|
|
|
|
required.
|
|
|
|
.It Ic unconfig Ar peer_address ...
|
|
|
|
This command causes the configured bit to be removed from the
|
|
|
|
specified peer(s).
|
|
|
|
In many cases this will cause the peer
|
|
|
|
association to be deleted.
|
|
|
|
When appropriate, however, the
|
|
|
|
association may persist in an unconfigured mode if the remote peer
|
|
|
|
is willing to continue on in this fashion.
|
|
|
|
.It Xo Ic fudge Ar peer_address
|
|
|
|
.Op Cm time1
|
|
|
|
.Op Cm time2
|
2000-01-12 14:41:00 +00:00
|
|
|
.Op Ar stratum
|
|
|
|
.Op Ar refid
|
|
|
|
.Xc
|
2001-08-29 14:50:56 +00:00
|
|
|
This command provides a way to set certain data for a reference
|
|
|
|
clock.
|
2000-01-12 14:41:00 +00:00
|
|
|
See the source listing for further information.
|
2002-01-21 20:12:02 +00:00
|
|
|
.It Ic enable Ar flag ...
|
|
|
|
.It Ic disable Ar flag ...
|
2000-01-12 14:41:00 +00:00
|
|
|
These commands operate in the same way as the
|
2001-08-29 14:50:56 +00:00
|
|
|
.Ic enable
|
2000-05-15 11:42:03 +00:00
|
|
|
and
|
2001-08-29 14:50:56 +00:00
|
|
|
.Ic disable
|
2000-01-12 14:41:00 +00:00
|
|
|
configuration file commands of
|
2004-07-03 18:35:53 +00:00
|
|
|
.Xr ntpd 8 .
|
2000-01-12 14:41:00 +00:00
|
|
|
Following is a description of the flags.
|
2001-08-29 14:50:56 +00:00
|
|
|
Note that only the
|
2004-07-03 18:35:53 +00:00
|
|
|
.Cm auth ,
|
2001-08-29 14:50:56 +00:00
|
|
|
.Cm bclient ,
|
|
|
|
.Cm monitor ,
|
|
|
|
.Cm pll ,
|
|
|
|
.Cm pps
|
|
|
|
and
|
|
|
|
.Cm stats
|
|
|
|
flags can be set by
|
2000-11-20 20:10:44 +00:00
|
|
|
.Nm ;
|
2001-08-29 14:50:56 +00:00
|
|
|
the
|
|
|
|
.Cm pll_kernel
|
|
|
|
and
|
|
|
|
.Cm pps_kernel
|
|
|
|
flags are
|
|
|
|
read-only.
|
2000-01-12 14:41:00 +00:00
|
|
|
.Bl -tag -width indent
|
2001-08-29 14:50:56 +00:00
|
|
|
.It Cm auth
|
|
|
|
Enables the server to synchronize with unconfigured peers only
|
|
|
|
if the peer has been correctly authenticated using a trusted key
|
|
|
|
and key identifier.
|
2000-01-12 14:41:00 +00:00
|
|
|
The default for this flag is enable.
|
2001-08-29 14:50:56 +00:00
|
|
|
.It Cm bclient
|
|
|
|
Enables the server to listen for a message from a broadcast or
|
|
|
|
multicast server, as in the
|
|
|
|
.Ic multicastclient
|
|
|
|
command with
|
|
|
|
default address.
|
2000-01-12 14:41:00 +00:00
|
|
|
The default for this flag is disable.
|
2001-08-29 14:50:56 +00:00
|
|
|
.It Cm monitor
|
|
|
|
Enables the monitoring facility.
|
|
|
|
See the
|
2000-01-12 14:41:00 +00:00
|
|
|
.Ic monlist
|
2001-08-29 14:50:56 +00:00
|
|
|
command for further information.
|
|
|
|
The
|
|
|
|
default for this flag is enable.
|
|
|
|
.It Cm pll
|
2000-01-12 14:41:00 +00:00
|
|
|
Enables the server to adjust its local clock by means of NTP.
|
2001-08-29 14:50:56 +00:00
|
|
|
If disabled, the local clock free-runs at its intrinsic time and
|
|
|
|
frequency offset.
|
|
|
|
This flag is useful in case the local clock is
|
|
|
|
controlled by some other device or protocol and NTP is used only to
|
|
|
|
provide synchronization to other clients.
|
|
|
|
In this case, the local
|
|
|
|
clock driver is used.
|
2000-01-12 14:41:00 +00:00
|
|
|
See the
|
2001-08-29 14:50:56 +00:00
|
|
|
.Qq "Reference Clock Drivers"
|
2000-03-20 11:51:05 +00:00
|
|
|
page
|
|
|
|
(available as part of the HTML documentation
|
|
|
|
provided in
|
|
|
|
.Pa /usr/share/doc/ntp )
|
2001-08-29 14:50:56 +00:00
|
|
|
page for further information.
|
|
|
|
The default for
|
|
|
|
this flag is enable.
|
|
|
|
.It Cm pps
|
|
|
|
Enables the pulse-per-second (PPS) signal when frequency and
|
|
|
|
time is disciplined by the precision time kernel modifications.
|
|
|
|
See
|
|
|
|
the
|
|
|
|
.Qq "A Kernel Model for Precision Timekeeping"
|
|
|
|
page for further information.
|
|
|
|
The default for this flag is
|
|
|
|
disable.
|
|
|
|
.It Cm stats
|
2000-01-12 14:41:00 +00:00
|
|
|
Enables the statistics facility.
|
|
|
|
See the
|
2001-08-29 14:50:56 +00:00
|
|
|
.Sx Monitoring Options
|
|
|
|
section
|
|
|
|
of the
|
2000-01-13 09:59:55 +00:00
|
|
|
.Xr ntp.conf 5
|
2001-08-29 14:50:56 +00:00
|
|
|
page for further information.
|
2000-01-12 14:41:00 +00:00
|
|
|
The default for this flag is enable.
|
2001-08-29 14:50:56 +00:00
|
|
|
.It Cm pll_kernel
|
2000-01-12 14:41:00 +00:00
|
|
|
When the precision time kernel modifications are installed,
|
2001-08-29 14:50:56 +00:00
|
|
|
this indicates the kernel controls the clock discipline; otherwise,
|
|
|
|
the daemon controls the clock discipline.
|
|
|
|
.It Cm pps_kernel
|
|
|
|
When the precision time kernel modifications are installed and
|
|
|
|
a pulse-per-second (PPS) signal is available, this indicates the
|
|
|
|
PPS signal controls the clock discipline; otherwise, the daemon or
|
|
|
|
kernel controls the clock discipline, as indicated by the
|
|
|
|
.Cm pll_kernel
|
|
|
|
flag.
|
2000-01-12 14:41:00 +00:00
|
|
|
.El
|
2001-08-29 14:50:56 +00:00
|
|
|
.It Xo Ic restrict Ar address Ar mask
|
|
|
|
.Ar flag ...
|
2000-01-12 14:41:00 +00:00
|
|
|
.Xc
|
2001-08-29 14:50:56 +00:00
|
|
|
This command operates in the same way as the
|
|
|
|
.Ic restrict
|
|
|
|
configuration file commands of
|
2004-07-03 18:35:53 +00:00
|
|
|
.Xr ntpd 8 .
|
2001-08-29 14:50:56 +00:00
|
|
|
.It Xo Ic unrestrict Ar address Ar mask
|
|
|
|
.Ar flag ...
|
2000-01-12 14:41:00 +00:00
|
|
|
.Xc
|
|
|
|
Unrestrict the matching entry from the restrict list.
|
2001-08-29 14:50:56 +00:00
|
|
|
.It Xo Ic delrestrict Ar address Ar mask
|
|
|
|
.Op Cm ntpport
|
2000-01-12 14:41:00 +00:00
|
|
|
.Xc
|
|
|
|
Delete the matching entry from the restrict list.
|
|
|
|
.It Ic readkeys
|
2001-08-29 14:50:56 +00:00
|
|
|
Causes the current set of authentication keys to be purged and
|
|
|
|
a new set to be obtained by rereading the keys file (which must
|
|
|
|
have been specified in the
|
2000-01-12 14:41:00 +00:00
|
|
|
.Xr ntpd 8
|
|
|
|
configuration file).
|
2001-08-29 14:50:56 +00:00
|
|
|
This
|
|
|
|
allows encryption keys to be changed without restarting the
|
|
|
|
server.
|
|
|
|
.It Ic trustedkey Ar keyid ...
|
|
|
|
.It Ic untrustedkey Ar keyid ...
|
2000-01-12 14:41:00 +00:00
|
|
|
These commands operate in the same way as the
|
2001-08-29 14:50:56 +00:00
|
|
|
.Ic trustedkey
|
2000-01-12 14:41:00 +00:00
|
|
|
and
|
2001-08-29 14:50:56 +00:00
|
|
|
.Ic untrustedkey
|
|
|
|
configuration file
|
|
|
|
commands of
|
2004-07-03 18:35:53 +00:00
|
|
|
.Xr ntpd 8 .
|
2000-01-12 14:41:00 +00:00
|
|
|
.It Ic authinfo
|
2001-08-29 14:50:56 +00:00
|
|
|
Returns information concerning the authentication module,
|
|
|
|
including known keys and counts of encryptions and decryptions
|
|
|
|
which have been done.
|
2000-01-12 14:41:00 +00:00
|
|
|
.It Ic traps
|
|
|
|
Display the traps set in the server.
|
2001-08-29 14:50:56 +00:00
|
|
|
See the source listing for
|
|
|
|
further information.
|
|
|
|
.It Xo Ic addtrap Ar address
|
2000-01-12 14:41:00 +00:00
|
|
|
.Op Ar port
|
|
|
|
.Op Ar interface
|
|
|
|
.Xc
|
|
|
|
Set a trap for asynchronous messages.
|
2001-08-29 14:50:56 +00:00
|
|
|
See the source listing
|
|
|
|
for further information.
|
|
|
|
.It Xo Ic clrtrap Ar address
|
2000-01-12 14:41:00 +00:00
|
|
|
.Op Ar port
|
|
|
|
.Op Ar interface
|
|
|
|
.Xc
|
|
|
|
Clear a trap for asynchronous messages.
|
2001-08-29 14:50:56 +00:00
|
|
|
See the source listing
|
|
|
|
for further information.
|
|
|
|
.It Ic reset
|
2000-01-12 14:41:00 +00:00
|
|
|
Clear the statistics counters in various modules of the server.
|
|
|
|
See the source listing for further information.
|
|
|
|
.El
|
|
|
|
.Sh SEE ALSO
|
2000-01-13 09:59:55 +00:00
|
|
|
.Xr ntp.conf 5 ,
|
2000-01-12 14:41:00 +00:00
|
|
|
.Xr ntpd 8
|
|
|
|
.Rs
|
|
|
|
.%A David L. Mills
|
|
|
|
.%T Network Time Protocol (Version 3)
|
|
|
|
.%O RFC1305
|
|
|
|
.Re
|
|
|
|
.Sh BUGS
|
2002-07-14 14:47:15 +00:00
|
|
|
The
|
2000-01-12 14:41:00 +00:00
|
|
|
.Nm
|
2002-07-14 14:47:15 +00:00
|
|
|
utility is a crude hack.
|
2001-08-29 14:50:56 +00:00
|
|
|
Much of the information it shows is
|
|
|
|
deadly boring and could only be loved by its implementer.
|
|
|
|
The
|
|
|
|
program was designed so that new (and temporary) features were easy
|
|
|
|
to hack in, at great expense to the program's ease of use.
|
|
|
|
Despite
|
|
|
|
this, the program is occasionally useful.
|