Firewalls: xntpd and gauntlet 3.2

Firewalls
(April 1997)

Indexed By Thread: [Previous] [Next]

Subject:	xntpd and gauntlet 3.2
From:	DSAWYER @ PILLSBURY . COM
Date:	Fri, 4 Apr 1997 12:51:20 -0600
To:	"firewalls(a)greatcircle.com" <firewalls @ greatcircle . com>
X400-content-type:	P2-1988 (22)
X400-mts-identifier:	[/PRMD=PILLSBURY/ADMD=ATTMAIL/C=US/;0035600002046493000002]
X400-originator:	DSAWYER @ PILLSBURY . COM
X400-recipients:	firewalls @ greatcircle . com

     Gauntlet firewall (TIS) fundamentally does not allow udp based
     services through the firewall.  We really only need it for
     synchronization, however somebody got the idea of getting time from
     the Internet and here we are.  How can you make xntpd work?  In order
     to reduce the bouncing that could go on, here is what I already know.

     -Run xntpd on the firewall, chroot it, use authentication, and have it
     be your highest level stratum server.

     -Have your second level of time servers poll your time server on the
     firewall.

     -Have those second level stratums broadcast to other devices.

     In a nutshell what I need to know is how do I get udp based packets on
     port 123 through the firewall?

     Anybody have any ideas?

     Thanks in advance-
     Douglas R. Sawyer

Follow-Ups:

RE: xntpd and gauntlet 3.2
From: Ken Kempster <kempster @ monarch . rnb . com>
Re: xntpd and gauntlet 3.2
From: Arley Carter <ac @ twinds . com>

Indexed By Date	Previous:	Re: Dead Web Sites From: peter . gregory-unix @ mccaw-stg . com (Peter Gregory)
Indexed By Date	Next:	Re: Frame Relay From: Vern Williams <logicon @ flash . net>
Indexed By Thread	Previous:	Re: New Security Technology (fwd) From: minaba @ mail1 . ci . chi . il . us (Mark Inaba)
Indexed By Thread	Next:	Re: xntpd and gauntlet 3.2 From: Arley Carter <ac @ twinds . com>