You can have your Router be the Time Server. Your Router synchs with one of
the public servers, then you configure your Root PDCE to synch with your
Router. All your other DCs will synch with the Root PDCE. The key is the
"ReliableTimeServer" reg hack.
On the other hand, you could do it the way you described, letting you Root
PDCE go out and do the synch. I just think that letting the Router do the
external part is more efficient.
In any case, here is a good read for you:
http://www.microsoft.com/windows2000/docs/wintimeserv.doc
Sincerely,
D�j� Ak�m�l�f�, MCSE MCSA MCP+I
Microsoft MVP - Directory Services
www.readymaids.com - we know IT
www.akomolafe.com
Do you now realize that Today is the Tomorrow you were worried about
Yesterday? -anon
________________________________
From: [EMAIL PROTECTED] on behalf of Rimmerman, Russ
Sent: Fri 7/23/2004 4:25 AM
To: '[EMAIL PROTECTED]'
Subject: RE: [ActiveDir] NTP server
So your firewall lets only the PDC emulator go out the NTP port, and all
devices including things like Switches and Routers all sync with the PDC
emulator as well?
If we have an empty root domain, could we use the PDC emulator in that domain
and have all our child domain servers and all other objects go there just as
well?
-----Original Message-----
From: Brian Desmond [mailto:[EMAIL PROTECTED]
Behalf Of Brian Desmond
Sent: Thursday, July 22, 2004 8:09 PM
To: [EMAIL PROTECTED]
Subject: RE: [ActiveDir] NTP server
I use my PDC. It syncs with the government. All you rclients
automatically talk to the PDC unless you told em not to.
--Brian
-----Original Message-----
From: Rimmerman, Russ [mailto:[EMAIL PROTECTED]
Sent: Thu 7/22/2004 7:24 PM
To: '[EMAIL PROTECTED]'
Cc:
Subject: [ActiveDir] NTP server
Where does everyone have their NTP services come from? We
are getting rid
of our current firewall which has NTP on it and everything is
pointed to it
for NTP services. Our new firewall won't have NTP built in,
so we are going
to have to set up an internal NTP server for all our internal
hosts to sync
to. Do we put it in the DMZ or the internal network? Or
does it matter?
Do we just install NTP on an existing Win2k server in our
DMZ? What is
everyone else doing for NTP?
Thanks
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
This e-mail is confidential, may contain proprietary
information
of the Cooper Cameron Corporation and its operating Divisions
and may be confidential or privileged.
This e-mail should be read, copied, disseminated and/or used
only
by the addressee. If you have received this message in error
please
delete it, together with any attachments, from your system.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
List info : http://www.activedir.org/mail_list.htm
List FAQ : http://www.activedir.org/list_faq.htm
List archive:
http://www.mail-archive.com/activedir%40mail.activedir.org/
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
This e-mail is confidential, may contain proprietary information
of the Cooper Cameron Corporation and its operating Divisions
and may be confidential or privileged.
This e-mail should be read, copied, disseminated and/or used only
by the addressee. If you have received this message in error please
delete it, together with any attachments, from your system.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
List info : http://www.activedir.org/mail_list.htm
List FAQ : http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
