Hi folks I don't know a lot about firewalls so please be gentle! I run the personal fire wall which meets my requirements admirably. However if I wish to set my system clock using netdate.....currently I turn the fire wall off ...log in....set the time...log off, switch on the firewall,and redial. Is there any way to change the personal fire wall to allow connection to the ntp server....and if so....what values do I change? TIA Brian -- Brian Galbraith | GnuPG 1.0.6 | SuSE Linux 7.2-2.4.9 PGP Key 0x8232434C http://www.culcreuch.org.uk ICQ# 110426381 Yahoo Messenger ID: bagalbraith
Hi folks I don't know a lot about firewalls so please be gentle! I run the personal fire wall which meets my requirements admirably. However if I wish to set my system clock using netdate.....currently I turn the fire wall off ...log in....set the time...log off, switch on the firewall,and redial.
Is there any way to change the personal fire wall to allow connection to the ntp server....and if so....what values do I change?
You would have to open port 37 from your timeserver. Change /sbin/SuSEpersonal-firewall to read: $ipchains -A $rulechain -p udp -j DENY # REJECT tcp connection attempts (tcp SYN set) $ipchains -A $rulechain -p tcp -y -j REJECT -l $ipchains -I $rulechain -p udp -s your.time.server 37 -j ACCEPT -l # some tweaking with the ipv4 /proc-filesystem tree: # against smurf attacks: Roman. -- - - | Roman Drahtmüller <draht@suse.de> // "Caution: Cape does | SuSE GmbH - Security Phone: // not enable user to fly." | Nürnberg, Germany +49-911-740530 // (Batman Costume warning label) | - -
participants (2)
-
Brian Galbraith -
Roman Drahtmueller