Firewalls: Config NTP

Firewalls
(July 1996)

Indexed By Thread: [Previous] [Next]

Subject:	Config NTP
From:	Jean-Francois Zwobada <zwobada @ apogee-com . fr>
Organization:	APOGEE Communications
Date:	Mon, 01 Jul 1996 14:21:38 +0200
To:	firewalls @ greatcircle . com
References:	<199606280840 . KAA08501 @ mailimailo . univ-rennes1 . fr>

Hi,
I need to configure a firewall as an NTP relay... I will use 2 or 3
french public servers (Is this enough to avoid any time spoof ?) and
relay it to internal servers.

I built a first configuration scheme, and I am interested by any
comment on such a config

--------------------------------------
driftfile /usr/local/ntp/ntp.drift
statsdir /usr/local/ntp/stats/
disable pll 	# firewall won't be affected
enable monitor	
enable stats

restrict default notrust nomodify	
peer external_ntp_server_1
restrict external_ntp_server_1
peer ...
restrict ...

broadcast my_subnet
---------------------------------------

I won't use any authentication on the site, since I trust my firewall 
(Well... :^) and all the servers will be managed by the same team.

Any advice would be welcomed !

Jean-Francois

-- 
______________________ Jean-Francois Zwobada ____________________

Apogee Communications              Tel    : +33 (1) 69 85 56 47
Parc Club Universite               Fax    : +33 (1) 69 85 56 48
28, rue Jean Rostand
91893 ORSAY Cedex                  e-mail : zwobada @
 apogee-com .
 fr
__________________________________________________________________

Indexed By Date	Previous:	RE: ftp problem From: Dave Roberts <djr @ saa-cons . co . uk>
Indexed By Date	Next:	Re: NCSA Certification From: gary flynn <gary @ habanero . jmu . edu>
Indexed By Thread	Previous:	RE: ftp problem From: Dave Roberts <djr @ saa-cons . co . uk>
Indexed By Thread	Next:	Re: Hardware requirements of Firewall-1 From: Rick Romkey <pokey @ maddie . atlantic . com>