关于NTP使用autokey加密的困惑。求解
在配置NTP时候,我想使用Autokey加密,但是无论怎样发现在wireshark里都抓不到Autokey的包,而其他包ASSOC、CERT、COOK、SIGN、TAI都能抓到。密钥保存位置在/etc/ntp,密钥生成:ntp-keygen -T -G -m 2048,已经交换过GQ参数。123端口开放。
下面时我的服务器配置:
driftfile /var/lib/ntp/drift
restrict 127.0.0.1
restrict ::1
fudge 127.127.1.0 stratum 5
includefile /etc/ntp/crypto/pw
keys /etc/ntp/keys
crypto
keysdir /etc/ntp
logfile /var/log/ntp.log
statsdir /var/log/ntpstats/
statistics loopstats peerstats clockstats cryptostats
filegen loopstats file loopstats type day enable
filegen peerstats file peerstats type day enable
filegen clockstats file clockstats type day enable
filegen cryptostats file cryptostats type day enable
disable monitor
下面时客服端配置文件:
crypto
keysdir /etc/ntp
statsdir /var/log/ntpstats/
statistics loopstats peerstats clockstats cryptostats
filegen loopstats file loopstats type day enable
filegen peerstats file peerstats type day enable
filegen clockstats file clockstats type day enable
filegen cryptostats file cryptostats type day enable
driftfile /var/lib/ntp/drift
restrict 127.0.0.1
restrict ::1
server 192.168.235.128 autokey
includefile /etc/ntp/crypto/pw
keys /etc/ntp/keys
file /var/log/ntp.log
disable monitor