Why Bother Using a NTP Time Server?
| By Richard N Williams
Keeping computers synchronized on a network is vitally important, especially if the network in question deals with time sensitive transactions. And failing to keep a network synchronized can cause havoc leading to errors, vulnerabilities and endless problems with debugging.
However with the amount of online time servers available from reputable places such as NIST or Microsoft it is often queried as to why computer networks need to be synchronised to an external NTP time server.
These dedicated NTP devices are often seen as an unnecessary expense and many network administrators simply forgo them and connect to an online time server, after-all, it does the same job doesn’t it?
Actually there are two major reasons why NTP time servers are not only important but essential for most computer networks and to overlook them could be costly in many ways.
Let me explain. The first reason why an external NTP server is important is accuracy. It’s not that internet time sources are generally inaccurate (although many are) but there is the question of distance the time reference has to travel. Furthermore, in times when the connection is lost -whether it’s because of a local connection fault or the time server itself goes down – the network will start to drift until the connection is restored.
Secondly and perhaps most important is the security issues involved in using an Internet time source. The main problem is that if your connection to a time server through the then a open port (UDP 123 fro NTP requests) has to be left open, And as with any open port that can used as a gateway for malicious software and users.
The reason dedicated NTP time servers are essential for computer networks is that they work completely independently and external to the network’s firewall. Instead of accessing a time source across the Internet they use either GPS or radio transmissions to get the time. And in doing so they can provide accurate time all the time without fear of losing a connection or allowing a nasty Trojan through the firewall.