NTP security and configuring Windows NTP clients

Source: Internet
Author: User
Keywords Security NTP Client
Tags authentication class click client clients common concern communication domain

You should know how NTP is affected by your network security policy. Here are some areas of common concern.

Firewalls and NTP

The NTP server uses UDP's 123 destination port traffic. Unlike most UDP protocols, the source port is not a high end (more than 1023). You must allow UDP source/destination port 123 to communicate between your server and the straum1/217853.html "> Class Server."

NTP authentication

It is possible that you will not only want to limit NTP synchronization to the specified network, but also need a sync password.

Configuring Windows NTP clients

Windows clients that are part of the Active Directory domain automatically get time synchronization from the domain server, and if your client is not part of a domain, you can add a new NTP server to the Windows client. Here:

1. Click the time icon in the lower-right corner of the screen.
2. Click the "Internet Time" tab in the dialog box.
3. Click the check box to mark "Auto sync and Internet time Server" and enter a name or IP address.
4. Click the "Update Now" button.

When the operation is complete you will get a message saying: "Your time has been successfully synchronized."

It is important that all systems under your control have the same exact time. It can help you understand a series of events clearly under a variety of devices, and it can also assist in synchronizing time-sensitive transactions.

There is an NTP server on your local network that can be easily done. Sometimes, all of your NTP customers have the opportunity to sync with Class 1 2 servers on the Internet, which is not the way to go, and if the connection to the Internet is lost, there is a risk Out of sync. And for multiple NTP services to connect to the Internet Maintaining firewall rules is also daunting, especially if the firewall is managed by other departments.

The local NTP server, even when the Internet connection is temporarily lost, can also ensure that the client has the same time to reduce the problem. Firewall rules can also be greatly simplified. Setting up a local NTP server is often based on these reasons.

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

  • Sales Support

    1 on 1 presale consultation

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.