[ntp:hackers] NTPv4: Configuring for Access Control

Steve Kostecke kostecke at ntp.isc.org
Fri Oct 6 21:41:03 UTC 2006


Danny Mayer said:

>Chen Helen-A12587 wrote:

>> I understand that the NTP authentication is different from access
>> control. In NTPv4, is access control implemented by defining (1)
>> the list of clients in the server's ntp.conf and/or (2) the list of
>> servers in the clients' ntp.conf?
>
>Both, but not the way you stated. See the restrict statement about what
>packets it will look at and what it would potentially do with them.

Restrict statements are used to control access to an ntpd. These
configuration directives are not client/server lists.

Ntpd restrictions are applied any arbitrary subnet (as small as one IP
address).

The Distribution Documentation for ntpd Access Control Options (i.e.
restrictions) is at
http://www.eecis.udel.edu/~mills/ntp/html/accopt.html

There is also an Access Restrictions guide in the Community Supported
Documentation at http://ntp.isc.org/Support/AccessRestrictions

-- 
Steve Kostecke <kostecke at ntp.isc.org>
NTP Public Services Project http://ntp.isc.org/
Public Key at http://ntp.isc.org/Users/SteveKostecke


More information about the hackers mailing list