?
Solved

Server03 - stupid ntp question

Posted on 2010-11-16
2
1 solution
Medium Priority
?
511 Views
Last Modified: 2012-05-10
Why does w32tm /monitor give me a random internet IP/name for a refID?

The offending ip/name is shown below (68.68.18.78).  I have the sntp peer set to pool.ntp.org on both dc's.

dc1.mydomain.local *** PDC *** [192.168.1.251]:
    ICMP: 8ms delay.
    NTP: +0.0000000s offset from dc1.mydomain.local
        RefID: 68.68.18.78.customer.bluemilenetworks.com [68.68.18.78]
dc2.mydomain.local [192.168.2.254]:
    ICMP: 1ms delay.
    NTP: +4.9007335s offset from dc1.mydomain.local
        RefID: unspecified / unsynchronized [0.0.0.0]
0
Comment
Question by:snowdog_2112
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
Join The Community
2 Comments
 
LVL 2

Accepted Solution

by:
ExpertSteve earned 2000 total points
ID: 34151241
Cause that's what pool.ntp.org does. It's a DNS record pointing to a (large) pool of ntp servers.
You got one of the A records that was resolved at the time the ntp client queried who pool.ntp.org was.
0
 

Author Closing Comment

by:snowdog_2112
ID: 34151298
a) I was suspecting that after I got that same IP on several hosts on the internal network. I restarted w32tm on several boxes on the internal network and got a different IP.

b)  I told you it was a stupid question.  :)

Thanks for the quick response!
0

Featured Post

Free learning courses: Active Directory Deep Dive

Get a firm grasp on your IT environment when you learn Active Directory best practices with Veeam! Watch all, or choose any amount, of this three-part webinar series to improve your skills. From the basics to virtualization and backup, we got you covered.

Register
Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

The File Replication Service has detected that the replica set "DOMAIN SYSTEM VOLUME (SYSVOL SHARE)" is in JRNL_WRAP_ERROR
Article by: Satish
After seeing many questions for JRNL_WRAP_ERROR for replication failure, I thought it would be useful to write this article.
How to manage local account passwords from Active Directory without LAPS
Article by: Shaun
This process allows computer passwords to be managed and secured without using LAPS. This is an improvement on an existing process, enhanced to store password encrypted, instead of clear-text files within SQL
[Webinar] Is Your Active Directory as Secure as You Think?
Video by: Experts Exchange
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …
[Webinar] How Hackers Steal Your Credentials and Why Active Directory Must be Secure to Stop Them
Video by: Experts Exchange
Sometimes it takes a new vantage point, apart from our everyday security practices, to truly see our Active Directory (AD) vulnerabilities. We get used to implementing the same techniques and checking the same areas for a breach. This pattern can re…
Advertise Here
Suggested Courses

765 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Advertise Here