NTP Pool DNS servers
To direct our millions of NTP users to an appropriate server we run a customized DNS server. Many of the instances are offered by volunteers around the world. This page provides more information if you are interested in providing a (virtual) server to be used for DNS services.
Requirements for hosting a server
The NTP Pool DNS server usually runs on CentOS or Ubuntu LTS; either will work though Ubuntu LTS is preferred. We also have one instance running on FreeBSD (in a jail I believe) which is performing very very well, but our automation setup isn't as robust for configuring it.
If it's a virtual machine it needs to be something like KVM or BHyve based, not a "kernel container based" system (basically our setup process needs full root access to a kernel).
- Operating System
- Basically just a minimal-ish install of (64-bit, x86_64) CentOS or Ubuntu LTS. Our software also works with FreeBSD, but we prefer not maintaining the base system on other operating systems than Ubunutu and CentOS, so if the system runs FreeBSD we prefer just getting a jail on a well maintained system.
- Almost any two core 64-bit CPU from the last 4-5 years will do a nice job
- Minimum 1GB, ideally 2-4GB to ease system maintenance tasks.
- Disk space
- 6-8GB or more, again mostly to allow for system updates etc. It can be just about as slow as you can imagine and it'll be fine.
- IP addresses
- One routable IPv4 address, ideally also IPv6. If your network supports us announcing our anycast network then we like doing that, see below for BGP information.
It used to be less, currently it's about 5-10Mbit/second per server (anywhere
from 1-2TB data per month).
During certain times of the hour and the day the rate goes up significantly for a few seconds. If you are in a country with poor DNS server coverage but can't serve that many requests, we have tools to give you less traffic.
- Regular DNS servers can't smartly respond with a "nearby" server out of several thousand and do so weighted, so we run a bit of quirky DNS software that can.
No external firewall is needed, but in case you operate one:
- port 53 (UDP and TCP)
- port 22 (ssh)
- port 8052 and 8053 (mTLS authenticated monitoring)
- port 179 (for optional bgp setups)
- We typically do the day-to-day management of the system.
If you are interested in helping with this, please email email@example.com.