Yes, 123/UDP is open in both directions. -----Original Message----- From: redhat-list-bounces@xxxxxxxxxx [mailto:redhat-list-bounces@xxxxxxxxxx] On Behalf Of Stephen Carville Sent: Friday, May 18, 2007 3:01 PM To: General Red Hat Linux discussion list Subject: Re: Firewalled NTP on Redhat - ntpdate works, but ntpq doesn't Young, Mike wrote: > Hello, > > I'm seeing an odd NTP problem on a couple of Redhat servers here. > Basically the NTP client is on a firewalled DMZ, away from the NTP server. > NTP updates via ntpq work fine on the local NTP server subnet, but it > isn't working for hosts on the firewalled DMZ. We've checked ports on the > firewall, and 123/UDP is open. In addition, we see packets incrementing > when we use the "iostat" command in ntpdc, and don't see any dropped or > ignored packets in iostat either. > > Any ideas? Does the firewall allow port 123 in _both_ directions? NTP requires unrestricted access to 123/udp for _both_ source and destination. > Thanks, > Mike. > -- Stephen Carville <stephen@xxxxxxxxxxxxxx> Systems Engineer Land America 1.626.667.1450 X326 -- redhat-list mailing list unsubscribe mailto:redhat-list-request@xxxxxxxxxx?subject=unsubscribe https://www.redhat.com/mailman/listinfo/redhat-list -- redhat-list mailing list unsubscribe mailto:redhat-list-request@xxxxxxxxxx?subject=unsubscribe https://www.redhat.com/mailman/listinfo/redhat-list
