DES-7200 Configuration Guide Chapter 3 NTP
Configuration
3.2.10 Configuring the
Access Control
Privilege of
NTP Service
NTP services access control function provides a minimal security measures
(more secure way is to use the NTP authentication mechanism). By default, no
NTP access control rules are configured in the system.
To set the NTP services access control privilege, run the following command in
the global configuration mode.
Command Function
ntp access-group { peer | serve |
serve-only | query-only }
access-list-number|access-list-name
Set the access control privilege of the
local service.
no ntp access-group { peer | serve |
serve-only | query-only }
access-list-number|access-list-name
Cancel the settings of access control
privilege of the local service.
peer: not only allow the time requests and control queries for the local NTP
service, but also allow the time synchronization between the local device and
the remote system (full access privilege).
serve: only allow the time requests and control queries for the local NTP service,
not allow the time synchronization between the local device and the remote
system.
serve-only: only allow the time requests for the local NTP service.
query-only: only allow the control queries for the local NTP service.
access-list-number: IP access control list label; the range of 1 ~ 99 and 1300 ~
1999. On how to create IP access control list, refer to the relevant description in
"Access Control List Configuration Guide".
access-list-name: IP access control list name. On how to create IP access
control list , refer to the the relevant description in "Access Control List
Configuration Guide" .
When an access request arrives, NTP service matches the rules in accordance
with the sequence from the smallest to the largest to access restriction, and the
first matched rule shall prevail. The matching order is peer, serve, serve-only,
query-only.
3-8