DNS privacy and NTP Merlin

[eastavin]

Ax-86u. Setup DNS over TLS strict. Also had amtm download NTP Merlin and start it as I have a couple clients that could use more accurate time.

Noticed in the Merlin wiki it says "Note that TLS requires a properly configured clock. DNS Privacy won't use encryption until after your router's clock has been properly set through NTP."

At this point I am a tad puzzled. In the admin-system-basic_config panel their is a button to Enable local NTP server. If I set it to yes and save it appears to take but then the system log file reports a NTP Merlin conflict with a local NTP and says it is disabling it. So am I interpreting the wiki incorrectly for DNS privacy and NTP Merlin? The local NTP button is not needed?

To add to my puzzle... Nested under the local NTP server selection is the intercept all NTP client requests feature.. Which can't be selected unless local NTP server is enabled.

This is 3004.388.8_4 so what is my take away? With NTP Merlin installed will DNS privacy work even if the enable local NTP server button is no? And is the correct conclusion that NTP Merlin does not support intercept NTP client requests as this feature can't be selected if Merlin resets the local NTP server to no and hides the intercept feature?

Thanks for the input

Edward

 

[Ripshod]

their is a button to Enable local NTP server.

NtpMerlin replaces the standard one. By activating this setting you attempted to have two ntp servers running at the same time. It's your choice which one you want to use. Either use ntpMerlin or uninstall it.
NtpMerlin is working totally fine on my ax88u, along with DoT/DNS Privacy, so there has to be something wrong in your configuration, or there's some file damage somewhere.

 

[eastavin]

ok thanks. Maybe I will uninstall it at reinstall it then. I usually work from the Asus GUI so I was assuming the wiki meant the button on the admin panel needs to be on. I now understand its automatic once you install NTP Merlin. I just reviewed the amtm ntp merlin panel and I see that there is a workaround there for the intercept problem on the Asus GUI. I think once I reinstall it my issue will be solved.

 

[dave14305]

You don’t need an NTP server for DoT strict to work. You only need the standard NTP client to set the router’s clock.

 

[heysoundude]

ok thanks. Maybe I will uninstall it at reinstall it then. I usually work from the Asus GUI so I was assuming the wiki meant the button on the admin panel needs to be on. I now understand its automatic once you install NTP Merlin. I just reviewed the amtm ntp merlin panel and I see that there is a workaround there for the intercept problem on the Asus GUI. I think once I reinstall it my issue will be solved.

just reconfig - no need to uninstall/reinstall - after deselecting the Asus option fron the GUI. and choose chrony over ntp when you do.