Re: NTP

• Next message: Phil Regnauld: "Re: NTP"
• Previous message: Sven Esbjerg: "Re: NTP"
• In reply to: Sven Esbjerg: "Re: NTP"
• Next in thread: Phil Regnauld: "Re: NTP"
• Reply: Phil Regnauld: "Re: NTP"
• Reply: Sven Esbjerg: "Re: NTP"
• Reply: Sven Esbjerg: "Re: NTP"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
• Mail actions: [ respond to this message ] [ mail a new topic ]

Date: Fri, 24 Aug 2001 12:50:42 +0200 (CEST)
From: Kristian Vilmann <none@vilmann--strangeparty.dk.lh.bsd-dk.dk>
To: <none@bsd-dk--bsd-dk.dk.lh.bsd-dk.dk>
Subject: Re: NTP

On Fri, 24 Aug 2001, Sven Esbjerg wrote:

> On Fri, Aug 24, 2001 at 12:24:28PM +0200, Flemming Jacobsen wrote:
> > Det er min opfattelse at ntp altid er UDP 123-123.
> > Er du sikker på at du har set rigtigt?
>
> NTP-Client 16338 -> NTP-Server 123
> NTP-Server 123 -> NTP-Client 16338
>
> Ovenstående er en et eksempel på en session. Klient porten skifter fra gang
> til gang.

Bruger du ipfw eller ip-filter?

IP-filter har en keep state option. Også til UDP.
Fra http://www.obfuscation.org/ipf/ipf-howto.html#TOC_21:
When machine A sends a UDP packet to machine B with source port X and
destination port Y, ipf will allow a reply from machine B to machine A
with source port Y and destination port X. This is a short term state
entry, a mere 60 seconds.

Den kan vist det du beder om.

Jeg har ikke leget sindsyg meget med endnu, men det ser ud til at fungere.

/kristian

-- 

• Next message: Phil Regnauld: "Re: NTP"
• Previous message: Sven Esbjerg: "Re: NTP"
• In reply to: Sven Esbjerg: "Re: NTP"
• Next in thread: Phil Regnauld: "Re: NTP"
• Reply: Phil Regnauld: "Re: NTP"
• Reply: Sven Esbjerg: "Re: NTP"
• Reply: Sven Esbjerg: "Re: NTP"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
• Mail actions: [ respond to this message ] [ mail a new topic ]

This archive was generated by hypermail 2b30 : Wed 15 Nov 2006 - 18:24:13 CET