I tested the non-bootstrap Ubuntu NTS servers separately: 1.ntp.ubuntu.com 2.ntp.ubuntu.com 3.ntp.ubuntu.com 4.ntp.ubuntu.com
They show successful NTS authentication/key establishment in `chronyc authdata`, with cookies present, but all four remain `^?` with Reach 0, LastRx -, and NP 0 in sourcestats. A packet capture shows outbound UDP/123 NTS-protected NTP packets to the Ubuntu server IPs, but no replies. Plain 48-byte UDP/123 NTP packets to other servers do receive replies. So the problem is not limited to `ntp-bootstrap.ubuntu.com`. On my network, the non-bootstrap Ubuntu NTS servers fail in the authenticated UDP/123 NTP stage as well. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/2152270 Title: nts-bootstrap-ubuntu.crt missing CN=ubuntu CA cert, NTS sync fails on fresh install To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/chrony/+bug/2152270/+subscriptions -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
