Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Forcing All Devices to Use pfSense for NTP (Correction NOT NNTP)

    Scheduled Pinned Locked Moved General pfSense Questions
    12 Posts 7 Posters 2.0k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • jimpJ Offline
      jimp Rebel Alliance Developer Netgate
      last edited by

      May seem nitpicky but do you actually mean NTP (Network Time Protocol)?

      NNTP is a much different protocol (Network News Transfer Protocol, Usenet news groups).

      If NTP is what you're after, then KOM's solution is the closest you'll get.

      Remember: Upvote with the 👍 button for any user/post you find to be helpful, informative, or deserving of recognition!

      Need help fast? Netgate Global Support!

      Do not Chat/PM for help!

      1 Reply Last reply Reply Quote 0
      • dennypageD Offline
        dennypage
        last edited by

        You're dating yourself. :)

        @jimp:

        NNTP is a much different protocol (Network News Transfer Protocol, Usenet news groups).

        1 Reply Last reply Reply Quote 0
        • jahonixJ Offline
          jahonix
          last edited by

          You think so?
          The latest RFC update concerning NNTP is from 2006. https://tools.ietf.org/html/rfc3977

          We still don't know if OP meant NNTP or (S)NTP.

          1 Reply Last reply Reply Quote 0
          • dennypageD Offline
            dennypage
            last edited by

            Yep, just in time for the formal declaration of Usenet's death. :)

            @jahonix:

            The latest RFC update concerning NNTP is from 2006.

            1 Reply Last reply Reply Quote 0
            • KOMK Offline
              KOM
              last edited by

              Yep, just in time for the formal declaration of Usenet's death. :)

              And yet here I am, 10 years later, still sending money to Giganews on a monthly basis.  You can still find lots of obscure, cool stuff via Usenet that isn't on torrent.

              1 Reply Last reply Reply Quote 0
              • G Offline
                guardian Rebel Alliance
                last edited by

                @jimp:

                May seem nitpicky but do you actually mean NTP (Network Time Protocol)?

                NNTP is a much different protocol (Network News Transfer Protocol, Usenet news groups).

                If NTP is what you're after, then KOM's solution is the closest you'll get.

                Thanks for catching that… I actually do know that... just some sloppy typing..... Maybe I should start another thread?  Also forget to set the notify me check, so I didn't notice it.

                If you find my post useful, please give it a thumbs up!
                pfSense 2.7.2-RELEASE

                1 Reply Last reply Reply Quote 0
                • B Offline
                  brandur
                  last edited by

                  The answer you got from @KOM is the same way I handle NTP redirects(and DNS for that matter).
                  Works just fine in my environment ;)

                  SG-4860 w/128GB SSD & 8GB RAM

                  1 Reply Last reply Reply Quote 0
                  • G Offline
                    guardian Rebel Alliance
                    last edited by

                    @brandur:

                    The answer you got from @KOM is the same way I handle NTP redirects(and DNS for that matter).
                    Works just fine in my environment ;)

                    Thanks… Just wondering does NTP validate the source in any way, or does simply routing traffic to the internal server that I want to handle it get the job done?

                    If you find my post useful, please give it a thumbs up!
                    pfSense 2.7.2-RELEASE

                    1 Reply Last reply Reply Quote 0
                    • G Offline
                      guardian Rebel Alliance
                      last edited by

                      @KOM:

                      Try this.  It's DNS-specific but the concepts should still apply.

                      https://doc.pfsense.org/index.php/Redirecting_all_DNS_Requests_to_pfSense

                      Thanks… I gave this a try, and... since I want to do the same thing with DNS, so I tried to do exactly what it said in the directions, and all DNS is blocked by the default deny - so for some reason this rule isn't getting triggered. Or am I missing something (or did I find a bug)?

                      DNS_NAT0.jpg
                      DNS_NAT0.jpg_thumb
                      DNS_NAT1.jpg
                      DNS_NAT1.jpg_thumb
                      DNS_NAT2.jpg
                      DNS_NAT2.jpg_thumb

                      If you find my post useful, please give it a thumbs up!
                      pfSense 2.7.2-RELEASE

                      1 Reply Last reply Reply Quote 0
                      • M Offline
                        MoonKnight
                        last edited by

                        @guardian:

                        @KOM:

                        Try this.  It's DNS-specific but the concepts should still apply.

                        https://doc.pfsense.org/index.php/Redirecting_all_DNS_Requests_to_pfSense

                        Thanks… I gave this a try, and... since I want to do the same thing with DNS, so I tried to do exactly what it said in the directions, and all DNS is blocked by the default deny - so for some reason this rule isn't getting triggered. Or am I missing something (or did I find a bug)?

                        Hi,
                        I also using the redirect all DNS request to OpenDNS servers for my LAN_2 users
                        This is my firewall rule for my LAN_2 users.  By this I prevent them for using another DNS, Only OpenDNS in this case.

                        ![Desktop 26-07-2016 22.03.45-233.png](/public/imported_attachments/1/Desktop 26-07-2016 22.03.45-233.png)
                        ![Desktop 26-07-2016 22.03.45-233.png_thumb](/public/imported_attachments/1/Desktop 26-07-2016 22.03.45-233.png_thumb)

                        --- 24.11 ---
                        Intel(R) Xeon(R) CPU D-1518 @ 2.20GHz
                        Kingston DDR4 2666MHz 16GB ECC
                        2 x HyperX Fury SSD 120GB (ZFS-mirror)
                        2 x Intel i210 (ports)
                        4 x Intel i350 (ports)

                        1 Reply Last reply Reply Quote 0
                        • First post
                          Last post
                        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.