This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

SOPHOS UTM 9.503-4 Home - gaining time

I just upgraded my old firewall (Dell PC) with a Zotac CI327. I installed UTM 9.503.4 and loaded my backup. Everything is running fine but the time gains more than an hour per hour. 

I opened a case with Zotac as well because I don't know if this is a hardware of software issue.

Any ideas?



This thread was automatically locked due to age.
  • If I do this from the CLI the firewall restarts.

    /var/mdw/scripts/ntp stop
    ntpdate 209.87.233.53
    /var/mdw/scripts/ntp start


  • Hi, Michael, and welcome to the UTM Community!

    As I bet you've already concluded, the problem is not the UTM.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • I am 90% there - still waiting to get a definitive from Zotac. They told me to reset CMOS but it was cleared when I got it. I will bring down firewall and do it again but I doubt it will fix it.

  • NTP doesn't seem to be working on my system. If I go it from CLI it works. How often is it supposed to automatically update?

  • sophomofo:/root # ntpq -pn
    remote refid st t when poll reach delay offset jitter
    ==============================================================================
    *127.127.1.0 .LOCL. 10 l 20 9h 377 0.000 0.000 3.906
    209.87.233.53 209.87.233.52 2 u 33 128 377 63.963 -131366 192490.

  • Replaced the Zotac - same issue. Ran Lubuntu from USB - time is fine. Run Sophos from hard drive and time is messed up.

     

    So it looks like Sophos to me.

  • Michael Bryenton said:

    sophomofo:/root # ntpq -pn
    remote refid st t when poll reach delay offset jitter
    ==============================================================================
    *127.127.1.0 .LOCL. 10 l 20 9h 377 0.000 0.000 3.906
     209.87.233.52 2 u 33 128 377 63.963 -131366 192490.

     

    NTP is using local time because the offset and jitter are too great to sync properly although the remote ntp server is answering. You can try setting the correct time and use a different NTP server and assigning multiple NTP servers but with that kind of jitter, it probably won't sync. It seems hardware related but sophos not playing nice with your hardware can be a possibility.  

    Here is my output for comparison


    gatekeeper:/home/login # ntpq -p
    remote refid st t when poll reach delay offset jitter
    ==============================================================================
    LOCAL(0) .LOCL. 10 l 19h 128 0 0.000 0.000 0.000
    *ntp.okstate.edu .GPS. 1 u 71 128 377 43.378 0.713 4.743
    +ntp.quintex.com .CDMA. 1 u 19 128 377 70.438 -0.887 0.291

  • Real time clock and a bootable Lubuntu both kept correct time. Seems to be the OS (Sophos UTM) after all. Don't know how to go about fixing it. Seems I may have to try Sophos XG.

  • Is your virtual macine configured to force time sync on to guest systems?   I have seen time sync issues when time is being set by both normal (s)ntp time sync and "hardware" (host system) time sync.

    But if your time is jumping by an hour, I would also look for a problem with daylight savings settings or time zone problems between guest and host.

  • Dear Michael,

     

    I had the same Problem with a new Zotac ZBox CI327. 

    Solution: insert the following text into /etc/init.d/boot (go to bottom, insert before 'exit 0'!)

     

    echo „tsc“> /sys/devices/system/clocksource/clocksource0/current_clocksource

     

    Works like a charm. However I'm not sure if you have to add the line again after UTM update.

     

    Best regards and happy X-mas

    Michael