Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
12170
Views
16
Helpful
2
Replies

How to disable ntp queries

Go to solution
jigarrg
Level 1
Level 1

‎01-02-2019 10:28 AM - last edited on ‎08-27-2023 09:50 PM by Community Manager

Hi,

Our Infosec team send us a vulnerability list, in which one was disable ntp queries.

Currently i dont have an acl on ntp, it is just configured as

ntp server x.x.x.x source port-channel 1.1

 

How do i disable ntp queries and what all command i need to do?

1 person had this problem
Labels:
0 Helpful
2 Accepted Solutions

Accepted Solutions

Go to solution
Pedro Arrieta
Level 1
Level 1

‎01-02-2019 11:26 AM - last edited on ‎08-27-2023 09:57 PM by Community Manager

Hi jigarrg,

 

About NTP, you can implement ACLs to secure your NTP service, you can allow traffic from a source and deny the rest, for example:

 

I have 3 routers (R1, R2, R3 and R4) -> R2 (10.1.0.1), R3 (10.2.0.2) and R4 (10.3.0.3)

 

Using Peer:

Then on R1:

R1(config)#access-list 1 permit 10.1.0.1 log
R1(config)#access-list 1 permit 10.2.0.2 log 
R1(config)#access-list 1 deny any log
R1(config)#ntp access-group peer 1

and the output:

 

%SEC-6-IPACCESSLOGNP: list 1 denied 0 10.3.0.3 -> 0.0.0.0, 30 packets
%SEC-6-IPACCESSLOGNP: list 1 permitted 0 10.1.0.1 -> 0.0.0.0, 1 packet
%SEC-6-IPACCESSLOGNP: list 1 permitted 0 10.2.0.2 -> 0.0.0.0, 1 packet

Hope it helps,

 

 

View solution in original post

Go to solution
luis_cordova
VIP Alumni
VIP Alumni

‎01-02-2019 11:46 AM

Hi @jigarrg,

 

I found this link very informative:

https://labs.apnic.net/?p=464

 

Regards

View solution in original post

2 Replies 2

Go to solution
Pedro Arrieta
Level 1
Level 1

‎01-02-2019 11:26 AM - last edited on ‎08-27-2023 09:57 PM by Community Manager

Hi jigarrg,

 

About NTP, you can implement ACLs to secure your NTP service, you can allow traffic from a source and deny the rest, for example:

 

I have 3 routers (R1, R2, R3 and R4) -> R2 (10.1.0.1), R3 (10.2.0.2) and R4 (10.3.0.3)

 

Using Peer:

Then on R1:

R1(config)#access-list 1 permit 10.1.0.1 log
R1(config)#access-list 1 permit 10.2.0.2 log 
R1(config)#access-list 1 deny any log
R1(config)#ntp access-group peer 1

and the output:

 

%SEC-6-IPACCESSLOGNP: list 1 denied 0 10.3.0.3 -> 0.0.0.0, 30 packets
%SEC-6-IPACCESSLOGNP: list 1 permitted 0 10.1.0.1 -> 0.0.0.0, 1 packet
%SEC-6-IPACCESSLOGNP: list 1 permitted 0 10.2.0.2 -> 0.0.0.0, 1 packet

Hope it helps,

 

 

Go to solution
luis_cordova
VIP Alumni
VIP Alumni

‎01-02-2019 11:46 AM

Hi @jigarrg,

 

I found this link very informative:

https://labs.apnic.net/?p=464

 

Regards

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card