Mailinglist Archive: opensuse-security (757 mails)

< Previous Next >
Re: [suse-security] SuSEfirewall2 and NTP
  • From: Steffen Dettmer <steffen@xxxxxxx>
  • Date: Thu, 17 Jan 2002 10:20:02 +0100
  • Message-id: <20020117102002.D16468@xxxxxxxxx>
* Igor Nichvolodin wrote on Wed, Jan 16, 2002 at 11:47 +0100:
> > the server (dest port 123) the response was coming back with a source
> > port of 123 as well. The "FW_ALLOW_INCOMING_HIGHPORTS_UDP" permits NTP
> > replies on source ports 1024-65535. I fixed it by adding the following
> > rule to "firewall2-custom.rc.config";

> Try something like this:
> FW_TRUSTED_NETS="... your.time.server.ip-address,udp,ntp"
> and
> FW_ALLOW_INCOMING_HIGHPORTS_UDP="... time"

Maybe you misunderstood the question? I think the high ports
thing is working but of course usually NTP servers answer
port 123->123.

oki,

Steffen

--
Dieses Schreiben wurde maschinell erstellt,
es trägt daher weder Unterschrift noch Siegel.

< Previous Next >
References