NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Forum Discussion
CHRONYD Errors: Can't synchronise: no reachable sources
Any idea what these are? Going through my logs today, I see these periodically...
Feb 6 06:30:36 despair chronyd[3235]: Selected source 209.249.181.22
Feb 6 08:34:24 despair chronyd[3235]: Can't synchronise: no reachable sources
Feb 6 08:55:45 despair chronyd[3235]: Selected source 209.249.181.22
Feb 6 09:42:42 despair chronyd[3235]: Can't synchronise: no reachable sources
Feb 6 09:55:30 despair chronyd[3235]: Selected source 209.249.181.22
Feb 6 11:25:12 despair chronyd[3235]: Can't synchronise: no reachable sources
Feb 6 11:29:28 despair chronyd[3235]: Selected source 209.249.181.22
Feb 6 12:42:02 despair chronyd[3235]: Can't synchronise: no reachable sources
Feb 6 12:46:18 despair chronyd[3235]: Selected source 209.249.181.22
Feb 6 13:24:43 despair chronyd[3235]: Can't synchronise: no reachable sources
Feb 6 14:28:44 despair chronyd[3235]: Selected source 209.249.181.22
Feb 6 16:58:07 despair chronyd[3235]: Can't synchronise: no reachable sources
Feb 6 16:58:07 despair chronyd[3235]: Selected source 209.249.181.22
Feb 6 17:36:32 despair chronyd[3235]: Can't synchronise: no reachable sources
Feb 6 18:23:29 despair chronyd[3235]: Selected source 209.249.181.22
Feb 6 06:30:36 despair chronyd[3235]: Selected source 209.249.181.22
Feb 6 08:34:24 despair chronyd[3235]: Can't synchronise: no reachable sources
Feb 6 08:55:45 despair chronyd[3235]: Selected source 209.249.181.22
Feb 6 09:42:42 despair chronyd[3235]: Can't synchronise: no reachable sources
Feb 6 09:55:30 despair chronyd[3235]: Selected source 209.249.181.22
Feb 6 11:25:12 despair chronyd[3235]: Can't synchronise: no reachable sources
Feb 6 11:29:28 despair chronyd[3235]: Selected source 209.249.181.22
Feb 6 12:42:02 despair chronyd[3235]: Can't synchronise: no reachable sources
Feb 6 12:46:18 despair chronyd[3235]: Selected source 209.249.181.22
Feb 6 13:24:43 despair chronyd[3235]: Can't synchronise: no reachable sources
Feb 6 14:28:44 despair chronyd[3235]: Selected source 209.249.181.22
Feb 6 16:58:07 despair chronyd[3235]: Can't synchronise: no reachable sources
Feb 6 16:58:07 despair chronyd[3235]: Selected source 209.249.181.22
Feb 6 17:36:32 despair chronyd[3235]: Can't synchronise: no reachable sources
Feb 6 18:23:29 despair chronyd[3235]: Selected source 209.249.181.22
8 Replies
Replies have been turned off for this discussion
- Also worried, what this might mean:
Sep 19 23:22:27 despair chronyd[2803]: NTP packet received from unauthorised host 176.28.54.183 port 40342
see a few of these from random addresses about once a month. - It appears to be your time servers. What are they set to (system->clock)?
If this happens a lot, you can change them. 0.pool.ntp.org works (at least in the US). - That's just it, they are
time-a.netgear.com and
time-c.netgear.com
The unauthorised ones concern me. - Well, the NAS is rejecting the packets, which is the good news. NTP is a very old protocol, and not as secure as it should be. Since fast responses are essential to its operation, it is not the easiest protocol to secure. http://blog.cloudflare.com/understandin ... s-attacks/ provides some information, but there's not much that a client can do except reject/ignore packets from servers it isn't using.
You probably should escalate to netgear support, as there could be security issues in their servers (though there are other possibilities).
You could find alternative NTP servers in your geography, and see if that changes anything. - Well... Thinking about this...
Sep 19 23:22:27 despair chronyd[2803]: NTP packet received from unauthorised host 176.28.54.183 port 40342
As the NAS sits behind a router and has not port redirection to 40342, it must be in reply to something from the NAS. Could it be a hijack of Netgear DNS? I've PMed one of the Netgear folks. - I think there are other possibilities than DNS hijack, some are outlined in the blog.
Are you seeing anything recent? - Which blog? Where can I see these?
Yes something last month. - The blog.cloudflare.com link I posted earlier in the thread.
NETGEAR Academy
Boost your skills with the Netgear Academy - Get trained, certified and stay ahead with the latest Netgear technology!
Join Us!
