Date: Tue, 9 Jan 2001 00:19:58 -0800 From: "Crist J. Clark" <cjclark@reflexnet.net> To: blaz <blaz@satx.rr.com> Cc: freebsd-questions@FreeBSD.ORG Subject: Re: ntpdate problems for machines behind firewall Message-ID: <20010109001958.P95729@rfx-64-6-211-149.users.reflexco> In-Reply-To: <3A5A9DF4.AA3DE3B@satx.rr.com>; from blaz@satx.rr.com on Mon, Jan 08, 2001 at 11:13:24PM -0600 References: <3A5A9DF4.AA3DE3B@satx.rr.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Mon, Jan 08, 2001 at 11:13:24PM -0600, blaz wrote:
> greetings,
>
> when running ntpdate clock.isc.org on a machine behind my firewall, I
> get the following message:
>
> 8 Jan 23:09:02 ntpdate[2817]: no server suitable for synchronization
> found
>
> and I noticed that my ipfwlog is producing the following:
>
> Jan 8 23:08:58 blaz /kernel: ipfw: 65000 Deny UDP 24.160.144.62:51315
> 204.152.184.72:123 out via xl0
>
> my rules for ntp are as follows:
>
> # NTP - Allow queries out in the world
> ${fwcmd} add pass udp from any 123 to any 123 via ${oif}
> ${fwcmd} add pass udp from any 123 to any via ${iif}
> ${fwcmd} add pass udp from any to any 123 via ${iif}
>
>
> what do I need to do in order for my machines behind the firewall to
> update their clocks as well? thanks in advance.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20010109001958.P95729>