NTP Intercept
Have T55. Firmware is up2date as of today.
I'd like to intercept all outbound port 123udp (time service) and send it
over to my own internal homenet time server.
I have several pieces of embedded hardware that look to ntp.org for time.
They have no gui and I cannot change a thing in them.
It makes no sense and it's much cleaner if I redirect their ntp requests
over to an NTP server located right there on the same local lan.
Would that be SNAT, or DNAT? I'm confused which.
Is there a tech blurb that I can follow about this or a similiar service?
I assume only the port number and destination addresses would be different
so I could use the blurb as a general guide.
Thx Gurus.
0
Sign In to comment.
Comments
No can do.
XTM can’t redirect packets.
XTM can only deny or allow packets of if using a proxy policy, modify allowed packets.
Actually there is one type of redirect - to a caching proxy server for HTTP - otherwise none.
is there place where to request such feature.
@PJAlso
If you need to redirect something like NTP, I would suggest using your own DNS server, so you can point a query at anything you like.
If you'd like a feature request, I would suggest opening a support case. Please provide as much information as possible -- information like why this needs to be done via the firebox redirecting traffic can help my project management team prioritize the feature request.
-James Carson
WatchGuard Customer Support