Mike Paradis
asked on
Can another NTP server respond when connecting to an NTP server?
Since NTP is using UDP, is it possible that another NTP service (or anything else?) could respond when sending an NTP request to an NTP server.
1: Is it possible to confirm that we reached the correct NTP server?
2: Is it possible to somehow authenticate the src to the NTP dst server to prevent public access without using iptables/firewall and/or web server such as .htaccess. None of those would work in our case.
1: Is it possible to confirm that we reached the correct NTP server?
2: Is it possible to somehow authenticate the src to the NTP dst server to prevent public access without using iptables/firewall and/or web server such as .htaccess. None of those would work in our case.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
It's fast, we have "tons of devices" synced on ntp servers.
:)
:)
ASKER
Thanks, that will work.
You're welcome.
ASKER
One small question... how can I monitor ntp client requests from different IPs so I can confirm which are being authenticated and which are not? Using tcpdump doesn't seem to give enough information and cannot find any way of logging or seeing client connections.
Not sure about details (I configure just network devices side all the time), but I guess you can configure server to log authentication details (I guess it is server dependent).
ASKER
Logging can be done on the server side but mainly, I'm wanting to see live connections from clients.
ASKER
How fast is the authentication process since we have a lot of traffic hitting it.