Hi,
I'm trying to get one of my time servers to synchronize with an external
stratum 1 server. I got it working with the following acls (inbound only):
access-list 101 permit udp host <ip_external_time_server> eq ntp host
<ip_my_time_server>
It works perfectly this way. But I was wondering if I can tighten the rules
further. Is there a way to control the ntp query port, just like bind? Would
also love to hear how you guys run your time servers securely... TIA.
Rgrds,
Wong.
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
