I posted a question previously about how to configure NTP to keep it from accepting queries or broadcasting. Now I'm running into problems with synchronization.
As mentioned previously, I'm trying to sync an internal router with an external router (internet facing). I've tried a couple different time servers, but the message I'm getting is this:
Clock is unsynchronized, stratum 16, no reference clock
nominal freq is 250.0000 Hz, actual freq is 250.0000 Hz, precision is 2**18
reference time is CBD577B6.75A21916 (10:37:42.459 EST Wed May 14 2008)
clock offset is 0.0000 msec, root delay is 0.00 msec
root dispersion is 0.02 msec, peer dispersion is 0.02 msec
I get this message on both ROUTER1 (outside the firewall) and ROUTER2 (inside the firewall). Our security provider states that no 'hole' needs to be punched through the f/w.
Internally (ROUTER2), the config is as simple as such...
ntp server <ip_of_external_router>
The external router (ROUTER1) is configured as such...
access-list 20 permit <ip_of_ROUTER2>
access-list 20 deny any
ntp access-group peer 20
ntp server 220.127.116.11
ntp peer <ip_of_ROUTER2>
Any suggestions are appreciated.