Hi!
I’m trying to make my NTP server (running on the local net) available to the rest of the Internet. I thought I’d configured it correctly, but according to a contact in Switzerland it’s not working yet…
What rules would be needed?
and: is anyone able to successfully connect to NTP on 213.151.155.141? 
hello.
123/UDP Network Time Protocol RFC 1305
no, port 123 isn’t open.
the dst-nat rule should be somewhat like:
/ip firewall dst-nat pr
in-interface=ether1-lan dst-address=:123 protocol=udp action=redirect to-dst-address=192.168.x.y
to-dst-port=123
I’ve tried this from a host on another continent:
/usr/sbin/ntptrace 213.151.155.141
213.151.155.141.dsl.kvalito.net: stratum 3, offset 0.470265, synch distance 0.26660
88.247.216.81.nykop.siwnet.net: stratum 2, offset 0.366623, synch distance 0.03391
Time1.Stupi.SE: stratum 1, offset 0.257534, synch distance 0.00185, refid 'PPS'
Doesn’t this mean the NTP server is accessible to anyone?
$ ntptrace 213.151.155.141
213.151.155.141.dsl.kvalito.net: stratum 16, offset 0.376504, synch distance 0.49796
53544550.cable.casema.nl: *Timeout*
Hmm, since I haven’t made any firewall changes, let’s conclude that the thing is up, but mighty unstable for now… 