Re: [chrony-dev] Multihomed (multiple) network interfaces support !

Tue, 05 Dec 2023 14:44:27 -0800 

It seems I found out what is permissions issue where.
It is necessary to add in apparmor chroyd file appropriate paths with write
permissions.
For example:
  @{run}/chrony1/{,*} rw,
  @{run}/chrony2/{,*} rw,
and there is no necessity to set permissions manually.
All is done automatically.
But in this case chronyd hangs up during starting.




ср, 6 дек. 2023 г. в 00:48, CpServiceSPb <cpservice...@gmail.com>:

> I set up _chrony user and _chrony group for /var/run/chrony1 and even set
> up 755 permission to the folder.
> Here is my one config at :/etc/chrony/conf.d /lan.conf
> At the time only one file:
> server 192.168.0.200 port 1123 minpoll 0 maxpoll 0 copy
> allow
> cmdport 1123
> bindcmdaddress /var/run/chrony1/chronyd-server_lan.sock
> pidfile /var/run/chrony1/chronyd-server_lan.pid
> driftfile /var/lib/drift-server1_lan
>
> Launch chronyd either from systemctl start chronyd or chronyd -D and get:
> 2023-12-05T21:45:17Z chronyd version 4.3 starting (+CMDMON +NTP +REFCLOCK
> +RTC +PRIVDROP +SCFILTER +SIGND +ASYNCDNS +NTS +SECHASH +IPV6 -DEBUG)
> 2023-12-05T21:45:17Z Wrong permissions on /var/run/chrony1
> 2023-12-05T21:45:17Z Disabled command socket
> /var/run/chrony1/chronyd-server_lan.sock
> 2023-12-05T21:45:17Z Fatal error : Could not open
> /var/run/chrony1/chronyd-server_lan.pid : Permission denied
>
> What and where is wrong ?
>
>
>
> ср, 6 дек. 2023 г. в 00:28, CpServiceSPb <cpservice...@gmail.com>:
>
>> Can you either post a link or detailed instruction on how to launch
>> multiple chrony server instances for the same port but different
>> interfaces/addresses ?
>>
>> пн, 4 дек. 2023 г. в 18:25, Miroslav Lichvar <mlich...@redhat.com>:
>>
>>> On Thu, Nov 30, 2023 at 11:04:37PM +0300, CpServiceSPb wrote:
>>> > But there is
>>> > сен 05 22:55:07 key chronyd[152706]: chronyd version 4.3 starting
>>> (+CMDMON
>>> > +NTP +REFCLOCK +RTC +PRIVDROP +SCFILTER +SIGND +ASYNCDNS +NTS +SECHASH
>>> > +IPV6 -DEBUG)
>>> > сен 05 22:55:07 key chronyd-starter.sh[152704]: Could not open
>>> > /var/run/cc/chronyd-server1.pid : Permission denied
>>> > сен 05 22:55:07 key chronyd[152706]: Wrong permissions on /var/run/cc
>>>
>>> You will need to fix the permission of the directory to be writable by
>>> the chrony user.
>>>
>>> --
>>> Miroslav Lichvar
>>>
>>>
>>> --
>>> To unsubscribe email chrony-dev-requ...@chrony.tuxfamily.org with
>>> "unsubscribe" in the subject.
>>> For help email chrony-dev-requ...@chrony.tuxfamily.org with "help" in
>>> the subject.
>>> Trouble?  Email listmas...@chrony.tuxfamily.org.
>>>
>>>

Reply via email to