The default requirement to have 4 or more NTP servers is too strict
Bug #1934876 reported by
Nobuto Murata
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
NTP Charm |
Confirmed
|
Undecided
|
Unassigned |
Bug Description
At this moment, ntp charm has Nagios checks as follows:
https:/
"offset peers reach sync proc vars"
If I'm not mistaken "peers" will check the number of available NTP servers and if it's less than 3 then it gives a warning/error.
In a typical firewalled environment, it's pretty common to have two AD servers, two DNS servers, and two NTP servers in a local network. So we would like to check if "at least 2 ntp servers are available" out of the box instead.
Changed in ntp-charm: | |
status: | New → Confirmed |
To post a comment you must log in.
Thanks, Nobuto. I agree with the sentiment that this should be configurable.
To that end, I've opened a request upstream for configurable metric alerting thresholds in check_ntpmon.py.
https:/ /github. com/paulgear/ ntpmon/ issues/ 14
In the mean time, you can disable the check by removing the peers check from your specific deployment, as the reach check should provide you enough feedback about ntp server connectivity.
The upstream recommendation is to swap to tracking NTP via telegraf plugin and configure alerting thresholds within Alertmanager.
As a philosophical side note, NTP does better keeping an agreed time across a platform with more sources rather than fewer. Given this, we should encourage adoption of additional ntp sources in these environments where there are only two servers available.