Ntp configuration example, Network requirements – H3C Technologies H3C SecBlade LB Cards User Manual

116

Item Description

Key 1

Set NTP authentication key.
The NTP authentication feature should be enabled for a system

running NTP in a network where there is a high security demand.
This feature enhances the network security by means of client-server

key authentication, which prohibits a client from synchronizing with

a device that has failed authentication.
You can set two authentication keys, each of which is composed of a
key ID and key string.

•

ID is the ID of a key.

•

Key string is a character string for MD5 authentication key.

Key 2

External Reference
Source

NTP Server
1/Reference Key
ID

Specify the IP address of an NTP server, and configure the
authentication key ID used for the association with the NTP server.
Only if the key provided by the server is the same with the specified

key will the device synchronize its time to the NTP server.
You can configure two NTP servers. The clients will choose the

optimal reference source.

IMPORTANT:

The IP address of an NTP server is a unicast address, and cannot be a

broadcast or a multicast address, or the IP address of the local clock
source.

NTP Server
2/Reference Key
ID

NTP configuration example

In this example, Device A is the LB product.

Network requirements

The local clock of Device A is set as the reference clock, with the stratum level 2. Device B operates in
client mode, and uses Device A as the NTP server.

Figure 81 Network diagram

1.

Set the IP address for each interface as shown in

Figure 81

. (Details not shown.)

2.

Configure Device A:
Configure the local clock as the reference clock, with the stratum level 2.

a.

Select System > System Time from the navigation tree.

b.

Click Network Time Protocol.
The page for setting up NTP appears.

c.

Select 127.127.1.1 from the Local Reference Source list, and select 2 from the Stratum list.

d.

Click Apply.