[c-nsp] Use NTP server for syncing but do not respond to NTP requests
Frank Bulk
frnkblk at iname.com
Sat Mar 22 13:01:18 EDT 2014
It's not as good as an access-group, but I've applied "ntp disable" on each
Vlan interface that I don't want to participate in NTP. It seems effective.
Frank
-----Original Message-----
From: cisco-nsp [mailto:cisco-nsp-bounces at puck.nether.net] On Behalf Of Nick
Hilliard
Sent: Saturday, March 22, 2014 11:11 AM
To: Andrew Clark; cisco-nsp at puck.nether.net
Subject: Re: [c-nsp] Use NTP server for syncing but do not respond to NTP
requests
On 22/03/2014 15:31, Andrew Clark wrote:
> Take a look at NTP access-groups. You can control access for each
> aspect (server, peer, etc). Details here:
CSCuj66318: "15.2 ntp allows query with access-group configured"
Affects all 15.2 through 15.4 before: 15.4(1.13)S, 15.3(3)S2.4 and
15.2(1)IC273.28, including if you've configured your box to handle ntp
service only in a different VRF.
Nick
_______________________________________________
cisco-nsp mailing list cisco-nsp at puck.nether.net
https://puck.nether.net/mailman/listinfo/cisco-nsp
archive at http://puck.nether.net/pipermail/cisco-nsp/
More information about the cisco-nsp
mailing list