NCC - Auto Provision NTP Server Settings
Zyxel Employee
As part of the continuous improvements in Nebula 19.00, Zyxel Networks has introduced an enhanced mechanism for auto-provisioning NTP server settings. This upgrade brings better reliability, smarter load balancing, and improved time synchronization handling across Nebula-managed devices.
Here’s everything you need to know about this new feature.
Background: Why Improve NTP Server Handling?
Previously, some users experienced issues where devices failed to synchronize with NTP servers. One specific case involved an ISP in the specific country that blocked access to a popular NTP server, causing synchronization failures.
Additionally, when too many cloud-managed devices tried to connect to the same NTP server simultaneously — especially during recovery or initial setup — it often caused short bursts of high load and response delays.
To address these problems, Zyxel Networks made important adjustments:
- Devices must have backup NTP servers available.
- Devices must be randomly assigned NTP servers to enable load sharing.
New Auto-Provision Behavior: Switches and APs
For Switches:
- Default Setting:Switches are now provisioned automatically with three NTP servers.
- NTP Server 1 and 2: Automatically managed and assigned by Nebula Control Center (NCC) for load sharing.
- NTP Server 3: User-configurable — administrators can define their own preferred NTP server here.
For Access Points (APs):
- NTP Server 1: Fully user-configurable and retained even after reconnection.
- NTP Server 2: Automatically updated by Nebula Control Center for backup and load sharing purposes.
- NTP Servers 3, 4, and 5: System-level defaults used purely for backup. These are not visible or modifiable by users.
Behavior During Device Connection or Reconnection
NTP updates when a device (Switch or AP) connects or reconnects to Nebula:
- Switches:
- NTP 1 and 2 are re-provisioned by NCC.
- NTP 3 retains the user’s original setting.
- Access Points:
- NTP 1 retains the user’s configured server.
- NTP 2 is updated by NCC.
- NTP 3-5 remain unchanged (backup-only, system-managed).
Load Sharing Mechanism: How It Works
Nebula’s NTP load sharing strategy ensures not all devices hit the same NTP server simultaneously:
- Randomized Assignment: NCC provisions different NTP servers like “pool.ntp.org” or “time.google.com” randomly across different devices.
- Example:
- Switch A might have pool.ntp.org as NTP Server 1.
- Switch B might have time.google.com instead.
- APs might show a different combination based on user input and system provisioning.
This reduces the risk of overloading any single NTP server, ensuring smoother and faster time synchronization across large deployments.
Categories
- All Categories
- 431 Beta Program
- 2.6K Nebula
- 165 Nebula Ideas
- 112 Nebula Status and Incidents
- 6K Security
- 366 USG FLEX H Series
- 293 Security Ideas
- 1.5K Switch
- 78 Switch Ideas
- 1.2K Wireless
- 42 Wireless Ideas
- 6.7K Consumer Product
- 264 Service & License
- 408 News and Release
- 87 Security Advisories
- 31 Education Center
- 10 [Campaign] Zyxel Network Detective
- 3.9K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 85 About Community
- 83 Security Highlight