This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

NTP packets dropped even though permitted with a rule

Firewall log is full of entries for outbound UDP to 123 (NTP) such as:

2018:10:07-11:35:51 antssophos ulogd[18887]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60002" initf="eth0" outitf="eth1" srcmac="c4:2f:90:0d:0d:4c" dstmac="00:15:5d:9e:f7:03" srcip="192.168.1.232" dstip="210.50.117.21" proto="17" length="76" tos="0x00" prec="0x00" ttl="63" srcport="40996" dstport="123"

However I have created a firewall rule to allow all NTP traffic from internal netowrk to external network

Any ideas why the firewall is logging those drops even with that rule in place?

Thanks

This thread was automatically locked due to age.

Parents

0 Jay Jay over 6 years ago

If you want it to access the internet you need to use the predefined Internet IPv4/6 definition.

Btw, I'm using the utm as the ntp server. All external ntp requests are redirected (dnat rule) back to the utm. That way everything on the network is on the same time.
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 Jay Jay over 6 years ago

If you want it to access the internet you need to use the predefined Internet IPv4/6 definition.

Btw, I'm using the utm as the ntp server. All external ntp requests are redirected (dnat rule) back to the utm. That way everything on the network is on the same time.
Cancel
Vote Up 0 Vote Down

Cancel

Children

No Data