I have a pair of 3750 L3 switches which we use as our internet edge switches running the below code:
sho ver Cisco IOS Software, C3750 Software (C3750-IPSERVICESK9-M), Version 15.0(2)SE7, RELEASE SOFTWARE (fc1) Technical Support: http://www.cisco.com/techsupport Copyright (c) 1986-2014 by Cisco Systems, Inc. Compiled Thu 23-Oct-14 14:36 by prod_rel_team
ROM: Bootstrap program is C3750 boot loader BOOTLDR: C3750 Boot Loader (C3750-HBOOT-M) Version 12.2(25r)SEE4, RELEASE SOFTWARE (fc1)
I wanted to disable NTP on the internet facing interfaces (which are vlan interfaces), however while the "ntp disable" command has taken I have found the switches are still responding on the interface to ntp requests.
below is an example interface config
interface Vlan5 description VoIPINET ip address x.x.x.x 255.255.255.224 no ip proxy-arp standby 5 ip x.x.x.x ntp disable end
the configured NTP servers in the config are defined to use a different vlan interface (which leads to the internal network)
I know I could use an ACL instead to lock this down but is anyone aware why the ntp disable command is not being respected?