So, I'm running into some issues trying to configure NTP sync on my DC. This is a Virtual Machine running on Hyper-V. I disabled time sync for this VM.
I forwarded 123/udp both on the windows firewall and my sonicwall firewall.
As you can see in Pic 1, the time is currently pulled from the cmos battery.
The problem I cannot seem to figure out is that even when I try to manually set the NTP servers, syncing doesn't work.
Like so
So, naturally I wanted to test if the port is even active. Here is a telnet connection that fails from my workstation to the DC, and the netstat on the DC to show it should be enabled. here
The config for w32tm is the following:
config
Verifying that the server actually has any traffic on UDP/123 I noticed that there are other devices on the network that parse these NTP syncs without issue and the traffic traverses the firewall without a hitch. So I checked the firewall settings on the DC and I have an NTP rule
I've already tried to go this over a GPO, but that was even less successful.
Unregistering, resetting the config or any other manipulations don't seem to change the end result at all. Unfortunatly the event viewer doens't show many details to troubleshoot this issue.
Best Answer
I've found the problem after many hours of googlefu I found this forum post detailing the exact same issue I was having.
The problem was the security features enabled on my HP switches that blocked UDP NTP requests. As soon as I disabled the 'UDP BLAT attack' feature and boom, no more issues.
THANKS to everyone pointing me in the right direction. I learned a LOT from this issue.