>
> >Has anynone knowed and experienced about some tools that
> >relay traffic back and forth between two NTP servers.
> >They must run on a bastion system (FWTK,SunOS4.1.4).
>
> Ntpd is pretty good for the job. :)
>
> Firewalls make good network clocks, especially if you have
> more than one of them. Just have the firewall sync with a timesource
> outside, and have inside systems get clocking from the firewall and
> spread it internally.
>
> mjr.
>
We are using the xntpd among the two hosts on our class C with the firewall
acting as a server to both hostsi, the router allows the firewall access to
our class C net, so we needed to use the firewall as a server. The firewall
itself is using the kerberos master server as the xntpd master server. It is
absolutely essential for the system clocks to be in sync for kerberos to
operate. If not then the tickets issued will be out of sync and not operate
or better yet expire (at least for 5 minute root instance tickets).
Marcus is right they make good clocks. We are using the xntpd in just the
fashion that marcus describes.
steve payne
spayne @
dsac .
dla .
mil
comm 614-692-9991
References:
|
|
