NTP question

randyloveless · May 19, 2005, 3:09am

can i limit what clients are allowed to access my local NTP server

would this work. ? or is there a better way to limit NTP traffic.
just dont want anyone using our main router except our clients.

add protocol=udp src-port=123 action=accept src-address=(client ip address) chain=input

then drop everything else

add protocol=udp src-port=123 action=drop

UniKyrn · May 19, 2005, 5:08am

If your clients come through internal interfaces, it would probably be easier to drop requests from the external interface instead of adding all those other rules.

randyloveless · May 19, 2005, 5:32am

some of our clients are on the outside of our network so we could i guess just add those who are on the outside

UniKyrn · May 19, 2005, 5:40am

If you end up with fewer rules, it’s worth it.