07-27-2022 12:22 PM - edited 07-29-2022 04:46 AM
Hello,
In short, I'm working with a closed enclave and have two Linux machines that are connected to a data diode, then to the C1000 switch, which is the NTP master. The NTP works on the other machines that are not attached to the data diode, but are attached to the switch. The NTP does not work with the machines that are after the diode, presumably because the switch cannot get the message back from computers. Is there a way to force NTP to these machines? The switch is on 15.2-7R-E6 if that helps. I tried getting into a port config on the switch where one of the machines connects and typing "NTP broadcast" but it wont take the command past the NTP. Any advice would be appreciated.
07-27-2022 12:57 PM
Hi,
For testing, would NTP work if you connect the two Linus machines directly to the switch (no data diode)?
HTH
07-28-2022 04:41 AM
07-29-2022 06:26 AM
NTP is by default bi-directional. Because of the data diode, blocks the client return traffic. You need to put your ntp server in broadcast mode. Then becomes one-way. Issue with that is accuracy then is degraded, but you'll get it on the other side of the data diode.
07-29-2022 03:36 PM
Sorry if I wasn't clear. The broadcast configuration is done on the ntp server itself. Without knowing what server you are using, I cant provide the exact configuration details for you.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide