Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Forcing All Devices to Use pfSense for NTP (Correction NOT NNTP)

    Scheduled Pinned Locked Moved General pfSense Questions
    12 Posts 7 Posters 2.0k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • KOMK Offline
      KOM
      last edited by

      Try this.  It's DNS-specific but the concepts should still apply.

      https://doc.pfsense.org/index.php/Redirecting_all_DNS_Requests_to_pfSense

      1 Reply Last reply Reply Quote 0
      • jimpJ Offline
        jimp Rebel Alliance Developer Netgate
        last edited by

        May seem nitpicky but do you actually mean NTP (Network Time Protocol)?

        NNTP is a much different protocol (Network News Transfer Protocol, Usenet news groups).

        If NTP is what you're after, then KOM's solution is the closest you'll get.

        Remember: Upvote with the 👍 button for any user/post you find to be helpful, informative, or deserving of recognition!

        Need help fast? Netgate Global Support!

        Do not Chat/PM for help!

        1 Reply Last reply Reply Quote 0
        • dennypageD Offline
          dennypage
          last edited by

          You're dating yourself. :)

          @jimp:

          NNTP is a much different protocol (Network News Transfer Protocol, Usenet news groups).

          1 Reply Last reply Reply Quote 0
          • jahonixJ Offline
            jahonix
            last edited by

            You think so?
            The latest RFC update concerning NNTP is from 2006. https://tools.ietf.org/html/rfc3977

            We still don't know if OP meant NNTP or (S)NTP.

            1 Reply Last reply Reply Quote 0
            • dennypageD Offline
              dennypage
              last edited by

              Yep, just in time for the formal declaration of Usenet's death. :)

              @jahonix:

              The latest RFC update concerning NNTP is from 2006.

              1 Reply Last reply Reply Quote 0
              • KOMK Offline
                KOM
                last edited by

                Yep, just in time for the formal declaration of Usenet's death. :)

                And yet here I am, 10 years later, still sending money to Giganews on a monthly basis.  You can still find lots of obscure, cool stuff via Usenet that isn't on torrent.

                1 Reply Last reply Reply Quote 0
                • G Offline
                  guardian Rebel Alliance
                  last edited by

                  @jimp:

                  May seem nitpicky but do you actually mean NTP (Network Time Protocol)?

                  NNTP is a much different protocol (Network News Transfer Protocol, Usenet news groups).

                  If NTP is what you're after, then KOM's solution is the closest you'll get.

                  Thanks for catching that… I actually do know that... just some sloppy typing..... Maybe I should start another thread?  Also forget to set the notify me check, so I didn't notice it.

                  If you find my post useful, please give it a thumbs up!
                  pfSense 2.7.2-RELEASE

                  1 Reply Last reply Reply Quote 0
                  • B Offline
                    brandur
                    last edited by

                    The answer you got from @KOM is the same way I handle NTP redirects(and DNS for that matter).
                    Works just fine in my environment ;)

                    SG-4860 w/128GB SSD & 8GB RAM

                    1 Reply Last reply Reply Quote 0
                    • G Offline
                      guardian Rebel Alliance
                      last edited by

                      @brandur:

                      The answer you got from @KOM is the same way I handle NTP redirects(and DNS for that matter).
                      Works just fine in my environment ;)

                      Thanks… Just wondering does NTP validate the source in any way, or does simply routing traffic to the internal server that I want to handle it get the job done?

                      If you find my post useful, please give it a thumbs up!
                      pfSense 2.7.2-RELEASE

                      1 Reply Last reply Reply Quote 0
                      • G Offline
                        guardian Rebel Alliance
                        last edited by

                        @KOM:

                        Try this.  It's DNS-specific but the concepts should still apply.

                        https://doc.pfsense.org/index.php/Redirecting_all_DNS_Requests_to_pfSense

                        Thanks… I gave this a try, and... since I want to do the same thing with DNS, so I tried to do exactly what it said in the directions, and all DNS is blocked by the default deny - so for some reason this rule isn't getting triggered. Or am I missing something (or did I find a bug)?

                        DNS_NAT0.jpg
                        DNS_NAT0.jpg_thumb
                        DNS_NAT1.jpg
                        DNS_NAT1.jpg_thumb
                        DNS_NAT2.jpg
                        DNS_NAT2.jpg_thumb

                        If you find my post useful, please give it a thumbs up!
                        pfSense 2.7.2-RELEASE

                        1 Reply Last reply Reply Quote 0
                        • M Offline
                          MoonKnight
                          last edited by

                          @guardian:

                          @KOM:

                          Try this.  It's DNS-specific but the concepts should still apply.

                          https://doc.pfsense.org/index.php/Redirecting_all_DNS_Requests_to_pfSense

                          Thanks… I gave this a try, and... since I want to do the same thing with DNS, so I tried to do exactly what it said in the directions, and all DNS is blocked by the default deny - so for some reason this rule isn't getting triggered. Or am I missing something (or did I find a bug)?

                          Hi,
                          I also using the redirect all DNS request to OpenDNS servers for my LAN_2 users
                          This is my firewall rule for my LAN_2 users.  By this I prevent them for using another DNS, Only OpenDNS in this case.

                          ![Desktop 26-07-2016 22.03.45-233.png](/public/imported_attachments/1/Desktop 26-07-2016 22.03.45-233.png)
                          ![Desktop 26-07-2016 22.03.45-233.png_thumb](/public/imported_attachments/1/Desktop 26-07-2016 22.03.45-233.png_thumb)

                          --- 24.11 ---
                          Intel(R) Xeon(R) CPU D-1518 @ 2.20GHz
                          Kingston DDR4 2666MHz 16GB ECC
                          2 x HyperX Fury SSD 120GB (ZFS-mirror)
                          2 x Intel i210 (ports)
                          4 x Intel i350 (ports)

                          1 Reply Last reply Reply Quote 0
                          • First post
                            Last post
                          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.