On Sun, Apr 17, 2016, at 07:27 AM, Tom Eastep wrote: > > NTP(ACCEPT):info:[NTP1] $FW any > I frankly don't believe that your problem has anything to do with Shorewall.
And rightly so. I beat my head against this wall for awhile longer, and simply could NOT get ntpd _server_ to work with SW. I tried a bunch of CW config, then finally just turned it off. I tried a bunch of variations of ntpd configuration, both with and without chroot. Just no dice. I got a hint that it's a user privileges problem, & to try openntpd instead, which does privilege separation in the app itself without having to worry about chroot. Works great. All I need in SW rules is the single line NTP(ACCEPT) $FW any The usual response to ntp-can't-sync questions in irc & ml seems to be "it's the firewall". Turns out here that's not the case! Jason ------------------------------------------------------------------------------ Find and fix application performance issues faster with Applications Manager Applications Manager provides deep performance insights into multiple tiers of your business applications. It resolves application problems quickly and reduces your MTTR. Get your free trial! https://ad.doubleclick.net/ddm/clk/302982198;130105516;z _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
