Troubleshooting NTP

Hello Rene/Laz,

I have a question about NTP which i’ve not been able to find an answer to in the config guides.

Let’s say R1-R2 have formed an NTP association. R1 is then configured with ntp access-group serve-only 2 - see ACL details below. In this case the IP address of R2 does not match access-list 2 on R1. What is the expected behaviour of R2 in terms of its association?

When labbing this I was expecting that R2 would tear down the association, but R2 actually continues to maintain it. Is it the case that R2 would simply no longer receive any more replies from R1 for NTP requests due to being filtered by the access-group, but it will still maintain its system clock which was previously set by R1? And over time it might become more inaccurate due to not receiving any more NTP updates from R1 ect…

R1: 192.168.12.1
R2: 192.168.12.2
access-list 2 permit 192.168.12.22

edit: Ok so after some time (approx 8/9 ntp requests later) R2 did finally move to unsynchronized and removed R1’s IP as its reference. Looks like it takes some time.

Thanks