Go Premium for a chance to win a PS4. Enter to Win

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 850
  • Last Modified:

VMWare host best practice to configure NTP server to PDCe or external source

Hello EE,

We have a PDCe that all our internal environment gets it's time from.  It happens to be a VM and one time the NTP client on my host stopped running and the time on this PDCe was off and started handing out faulty time.

I am wondering how to avoid this situation?  I have my PDCe setup to NTP to time.gov but it still got the time it appears from the host.  What are the best practices and how do you have it setup?
0
bergquistcompany
Asked:
bergquistcompany
  • 6
  • 6
1 Solution
 
Andrew Hancock (VMware vExpert / EE MVE^2)VMware and Virtualization ConsultantCommented:
How we setup our clients is as follows:-

1. ESXi/ESX Hosts are set to an external time source.

2. DC, PDC emulator is set to the same external time source as in 1.

3. VMware Tools Sync time with host is disable on ALL Windows VMs. They will get time from Domain.

4. Linux/Unix VMs are synced with external time source as in 1.

I also refer you to:-

VMware KB: Timekeeping best practices for Windows, including NTP

VMware KB: Troubleshooting NTP on ESX and ESXi 4.x / 5.x

Timekeeping In VirtualMachines Whitepaper
0
 
bergquistcompanyAuthor Commented:
Excellent!  Yes I found the first article and have the DC setup properly but was concerned as my hosts are getting time from the PDC that is getting time from outside and when the service stopped on one host it was really ugly and I want to make sure I'm setting it up properly to avoid.

I setup the Client, Parameter to NTP, but on the NTP server will it appear as follows or should there be no number 1.2.3:
 1.pool.ntp.org,0x1 2.pool.ntp.org,0x1 3.pool.ntp.org,0x1
0
 
Andrew Hancock (VMware vExpert / EE MVE^2)VMware and Virtualization ConsultantCommented:
We usually setup the Hosts to go directly to the NTP Source. (same source as PDCe)

so that would be:-

server 0.pool.ntp.org
server 1.pool.ntp.org
server 2.pool.ntp.org
server 3.pool.ntp.org

We have read, that's it's etiquitte that, only a single device from your LAN should contact an external NTP server.

I cannot remember where I read that...

but we some clients also use an NTP Virtual Server as a time server, which fetches the time from a random set of servers, to maintain accuracy, and then clients set ALL LAN devices to this NTP Virtual Server (or physical server on the LAN!).
0
VIDEO: THE CONCERTO CLOUD FOR HEALTHCARE

Modern healthcare requires a modern cloud. View this brief video to understand how the Concerto Cloud for Healthcare can help your organization.

 
bergquistcompanyAuthor Commented:
so in the registry I have this:
1.pool.ntp.org,0x1 2.pool.ntp.org,0x1 3.pool.ntp.org,0x1

should be:
server 0.pool.ntp.org,server 1.pool.ntp.org,server 2.pool.ntp.org, server 3.pool.ntp.org
0
 
Andrew Hancock (VMware vExpert / EE MVE^2)VMware and Virtualization ConsultantCommented:
fqdn is 0.pool.ntp.org etc

that's Linux config from our ntp.conf
0
 
bergquistcompanyAuthor Commented:
oh I'm in the windows registry
Capture2.JPG
0
 
Andrew Hancock (VMware vExpert / EE MVE^2)VMware and Virtualization ConsultantCommented:
okay, a little confused here....

I'm discussing hosts getting time from external time source.

and I though your Windows is working correctly getting time from external time source?
0
 
bergquistcompanyAuthor Commented:
Ok my bad put the setting in VMware, thought should change PDCe to point to same location
0
 
Andrew Hancock (VMware vExpert / EE MVE^2)VMware and Virtualization ConsultantCommented:
both PDCe and VMware Hosts should point to same NTP location.

some organizations have their own time server.
0
 
bergquistcompanyAuthor Commented:
Ok ill change the PDCe then too once I figure how to add the list.  Thanks
0
 
Andrew Hancock (VMware vExpert / EE MVE^2)VMware and Virtualization ConsultantCommented:
so what are you Windows server set to currently?
0
 
bergquistcompanyAuthor Commented:
Time.gov
0

Featured Post

Free learning courses: Active Directory Deep Dive

Get a firm grasp on your IT environment when you learn Active Directory best practices with Veeam! Watch all, or choose any amount, of this three-part webinar series to improve your skills. From the basics to virtualization and backup, we got you covered.

  • 6
  • 6
Tackle projects and never again get stuck behind a technical roadblock.
Join Now