NTP Time Difference between Active and Passive Nodes

Question

Hello,I need some help. I have a two F5 (Active- Passive) and they are configured to have same NTP server. Active one is showing correct time, however the standby is showing 3 minutes of difference compare to the Active appliance. Even I sync the time manually, it slowly experience delay, and time difference start getting increased between both of the appliances.&nbsp;Because of the 3 minutes differences, when I tried to sync the devices I get an warning saying that:System Times of Devices Do Not Match One or more system times of the devices in the device trust do not match the system time of the local device.&nbsp;Auto or manual device group sync operations may fail. Verify that the NTP Settings on all devices are properly configured and that the system times are equal.&nbsp;/Common/f5-01 is 3 seconds ahead.&nbsp;I have tried to query the ntp server from both appliance but that didn't work. According to result of Ntpq -np, both devices can reach and take time from NTP.Is there anyone have the same problem before? Thank you. &nbsp;

snl · Answer

&nbsp;try below on standby device verify the route  for ntp server and its reachable via same as active device path netstat -rntmsh list /sys management-routetmsh show /net route&nbsp;verify  NTP sync&nbsp;ntpq -np&nbsp;&nbsp;finally try to restart the ntp daemon&nbsp;on standby devicebigstart restart ntpd&nbsp;

canan · Answer

Hi Snl,Ntp server is reachable via management, path is the same in both appliance. I have tried to restart ntp daemon  on both appliences but it didn't work.

dario_garrido · Answer

When the difference is too big, sometimes is not possible to synchronize. I recommend you to force the datetime manually and after that, try to check using NTP

https://support.f5.com/csp/article/K3381

BTW, you can check your NTP reachability with this command

# ntpdate -q <ntp_server_ip>

KR,

Dario.

Forum Discussion

NTP Time Difference between Active and Passive Nodes

3 Replies

Recent Discussions

preserve client IP on layer 4 VIP

Failed to convert character dclid=%EDclid!

ASM - Parent policy vs OWASPcompliance

Rewrite uri translation not working

CONNECTION IS LOST DUE TO SELF IP IS DELIVERED

Related Content

Especial Load Balancing Active-Passive Scenario (I)

Copper SFP Differences

Especial Load Balancing Active-Passive Scenario (II)

Active/Passive VIP - 2 different DC's

Different policies same destination and pool