-----Original Message----- From: netfilter-admin@xxxxxxxxxxxxxxxxxxx [mailto:netfilter-admin@xxxxxxxxxxxxxxxxxxx] On Behalf Of Antony Stone Sent: Friday, July 02, 2004 11:07 AM To: netfilter@xxxxxxxxxxxxxxxxxxx Subject: Re: NTP On Friday 02 July 2004 5:28 pm, Hudson Delbert J Contr 61 CS/SCBN wrote: > do not i repeat...do not allow inbound ntp with a source port above > the root ports. Why not? What difference does the client's source port make? Antony. Yes - I'm quite curious about this too as the protocol "normally" acts as follows: Client > 1023 -> Server 123 Server 123 -> Client > 1023 Server 123 -> Server 123
