Routers
--
Questions
--
Followers
Top Experts
Our cisco router is the time source, it gets its time from another server in corporate without authentication.
What we need is for our cisco router to get its time from the corporate source WITHOUT authentication, but server time to our internal switches and linux servers WITH authentication.
I am attaching a VERY crude drawing to help explain what we need.
I need to know how to configure our router to get unauthenticated ntp time from a source, but authenticate anything it servers out. Â Does this make sense?
I am told by the Cisco guy that our router is a 6504
crude-drawing.jpg
Zero AI Policy
We believe in human intelligence. Our moderation policy strictly prohibits the use of LLM content in our Q&A threads.
Is it possible to have the network set up like the ugly drawing I posted?
Our router needs to get unauthenticated ntp data and needs to give authenticated data to the rest of the devices on the network.
EARN REWARDS FOR ASKING, ANSWERING, AND MORE.
Earn free swag for participating on the platform.
the router is a ntp client (not authenticated)
the router is a ntp server that atuthenticates the messages with a key.
ntp client &Â ntp server are two separate processes.
it is possible to do it.
you need to configure the router as ntp client and then as ntp master with the desired keys.
The problem I am having is the cisco guy at work does not understand this. Â I was tasked with setting up ntp authentication on all our linux servers. Â Unfortunately our ntp servers are cisco devices and I have no control over them, or the source they receive their ntp data from. Â So I asked the cisco guy to setup the exact thing you mentioned above. Â And after 15 tries he is yet to get it right.
I was hoping you (or someone) would give me the exact commands, or close so I can pass the information off to someone with cisco enable access.
ntp host x.x.x.x (where x.x.x.x is the update source for your ntp server...not needed though)
ntp authenticate
ntp authentication-key 1 md5 <password>
ntp client:
ntp authenticate
ntp authentication-key 1 md5 <password>
ntp host y.y.y.y key 1 (where y.y.y.y is the ip address of the server)
you can lock down the ntp further by only allowing those specific ntp clients to update by use of ACLs.
Get a FREE t-shirt when you ask your first question.
We believe in human intelligence. Our moderation policy strictly prohibits the use of LLM content in our Q&A threads.
ntp authentication key 11 md5 NTPKEY
ntp trusted-key 11
ntp server x.x.x.x (where x.x.x.x is the 6500 chassis)
ntp authenticate
Routers
--
Questions
--
Followers
Top Experts
A router is a networking device that forwards data packets between computer networks. Routers perform the "traffic directing" functions on the Internet. The most familiar type of routers are home and small office cable or DSL routers that simply pass data, such as web pages, email, IM, and videos between computers and the Internet. More sophisticated routers, such as enterprise routers, connect large business or ISP networks up to the powerful core routers that forward data at high speed along the optical fiber lines of the Internet backbone. Though routers are typically dedicated hardware devices, use of software-based routers has grown increasingly common.