Subject: Re: how to make ntpd listen only on ipv4
To: Bill Stouder-Studenmund <firstname.lastname@example.org>
From: Zafer Aydogan <email@example.com>
Date: 12/03/2007 16:42:25
2007/10/4, Bill Stouder-Studenmund <firstname.lastname@example.org>:
> On Tue, Oct 02, 2007 at 09:52:11PM -0400, Brian A. Seklecki wrote:
> > On Sun, 2007-09-30 at 14:21 +0200, Zafer Aydogan wrote:
> > > hello list,
> > >
> > > Giving -4 only affects name resolution and passing -I iface does use
> > > ipv6 anyway on the given interface and on lo0.
> > >
> > Z: Isn't there a syctl? net.inet6.bindv6only etc.?
> If you look at the log, such a thing wouldn't help.
> > > $ sockstat -l
> > > root ntpd 22109 20 udp *.ntp *.*
> > > root ntpd 22109 21 udp6 *.ntp *.*
> There are two separate sockets, a v4-only one and a v6-only one. Thus
> something trying to keep v6 sticking to v6 won't work so well.
> What needs to happen is for ntpd to not bind to all addresses.
> Take care,
One solution is to use openntpd from pkgsrc.
In openntpd you can define, where to listen.
$ sockstat -l
_ntp ntpd 15586 6 udp localhost.ntp *.*
What about replacing ntpd with openntpd in base ?