I've noticed that my pihole is making thousands of queries to NTP servers.
Any ideas why it would do this and is it normal?
Mar 4 17:51:36 dnsmasq[13568]: query[A] 3.debian.pool.ntp.org from 127.0.0.1
Mar 4 17:51:36 dnsmasq[13568]: config 3.debian.pool.ntp.org is 192.168.0.45
Mar 4 17:51:36 dnsmasq[13568]: query[AAAA] 3.debian.pool.ntp.org from 127.0.0.1Mar 4 17:51:36 dnsmasq[13568]: config 3.debian.pool.ntp.org is NODATA-IPv6
Mar 4 17:51:59 dnsmasq[13568]: query[A] 1.debian.pool.ntp.org from 127.0.0.1
Mar 4 17:51:59 dnsmasq[13568]: config 1.debian.pool.ntp.org is 192.168.0.45
Mar 4 17:51:59 dnsmasq[13568]: query[AAAA] 1.debian.pool.ntp.org from 127.0.0.1Mar 4 17:51:59 dnsmasq[13568]: config 1.debian.pool.ntp.org is NODATA-IPv6
Mar 4 17:52:04 dnsmasq[13568]: query[A] 0.debian.pool.ntp.org from 127.0.0.1
Mar 4 17:52:04 dnsmasq[13568]: config 0.debian.pool.ntp.org is 192.168.0.45
Mar 4 17:52:04 dnsmasq[13568]: query[AAAA] 0.debian.pool.ntp.org from 127.0.0.1Mar 4 17:52:04 dnsmasq[13568]: config 0.debian.pool.ntp.org is NODATA-IPv6
Mar 4 17:52:13 dnsmasq[13568]: query[A] 2.debian.pool.ntp.org from 127.0.0.1
Mar 4 17:52:13 dnsmasq[13568]: config 2.debian.pool.ntp.org is 192.168.0.45
Mar 4 17:52:13 dnsmasq[13568]: query[AAAA] 2.debian.pool.ntp.org from 127.0.0.1Mar 4 17:52:13 dnsmasq[13568]: config 2.debian.pool.ntp.org is NODATA-IPv6
Mar 4 17:52:40 dnsmasq[13568]: query[A] 3.debian.pool.ntp.org from 127.0.0.1
Mar 4 17:52:40 dnsmasq[13568]: config 3.debian.pool.ntp.org is 192.168.0.45
Mar 4 17:52:40 dnsmasq[13568]: query[AAAA] 3.debian.pool.ntp.org from 127.0.0.1Mar 4 17:52:40 dnsmasq[13568]: config 3.debian.pool.ntp.org is NODATA-IPv6
Mar 4 17:53:04 dnsmasq[13568]: query[A] 1.debian.pool.ntp.org from 127.0.0.1
Mar 4 17:53:04 dnsmasq[13568]: config 1.debian.pool.ntp.org is 192.168.0.45
Mar 4 17:53:04 dnsmasq[13568]: query[AAAA] 1.debian.pool.ntp.org from 127.0.0.1Mar 4 17:53:04 dnsmasq[13568]: config 1.debian.pool.ntp.org is NODATA-IPv6
Mar 4 17:53:10 dnsmasq[13568]: query[A] 0.debian.pool.ntp.org from 127.0.0.1
Mar 4 17:53:10 dnsmasq[13568]: config 0.debian.pool.ntp.org is 192.168.0.45
Mar 4 17:53:10 dnsmasq[13568]: query[AAAA] 0.debian.pool.ntp.org from 127.0.0.1Mar 4 17:53:10 dnsmasq[13568]: config 0.debian.pool.ntp.org is NODATA-IPv6
Mar 4 17:53:18 dnsmasq[13568]: query[A] 2.debian.pool.ntp.org from 127.0.0.1
Mar 4 17:53:18 dnsmasq[13568]: config 2.debian.pool.ntp.org is 192.168.0.45
Mar 4 17:53:18 dnsmasq[13568]: query[AAAA] 2.debian.pool.ntp.org from 127.0.0.1Mar 4 17:53:18 dnsmasq[13568]: config 2.debian.pool.ntp.org is NODATA-IPv6
Mar 4 17:53:45 dnsmasq[13568]: query[A] 3.debian.pool.ntp.org from 127.0.0.1
Mar 4 17:53:45 dnsmasq[13568]: config 3.debian.pool.ntp.org is 192.168.0.45
Mar 4 17:53:45 dnsmasq[13568]: query[AAAA] 3.debian.pool.ntp.org from 127.0.0.1Mar 4 17:53:45 dnsmasq[13568]: config 3.debian.pool.ntp.org is NODATA-IPv6
Mar 4 17:54:11 dnsmasq[13568]: query[A] 1.debian.pool.ntp.org from 127.0.0.1
Mar 4 17:54:11 dnsmasq[13568]: config 1.debian.pool.ntp.org is 192.168.0.45
Mar 4 17:54:11 dnsmasq[13568]: query[AAAA] 1.debian.pool.ntp.org from 127.0.0.1Mar 4 17:54:11 dnsmasq[13568]: config 1.debian.pool.ntp.org is NODATA-IPv6
To be clear, this is not the Pi-hole software making these requests. It is some other process on the host platform that is making the ntp queries.
This may indicate that the time on the host device is so far off that it cannot be reset using the ntp servers. Check the date/time with the date command and verify that they are correct for your location and time.
Server? No, Raspberry Pi do not have Real Time Clocks so an NTP server would be very bad. You could add a GPS receiver with PPS capability to build a Stratum1/2 NTP server on the Raspberry Pi though. But that's for another forum.
Boy do I look stupid....and deservedly
So I guess if I remove /etc/dnsmasq.d/05-pihole-timeserver-redirect.conf and then restart with sudo service pihole-FTL restart I'll be good?