Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Forcing All Devices to Use pfSense for NTP (Correction NOT NNTP)

    Scheduled Pinned Locked Moved General pfSense Questions
    12 Posts 7 Posters 2.0k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • G Offline
      guardian Rebel Alliance
      last edited by

      Is it possible (likely with DNS magic or something similar) to forcie all Device (including embedded devices with hard coded NNTP pool urls)  to Use pfSense for NNTP?  If so, how?

      Any assistance would be much appreciated.

      If you find my post useful, please give it a thumbs up!
      pfSense 2.7.2-RELEASE

      1 Reply Last reply Reply Quote 0
      • KOMK Offline
        KOM
        last edited by

        Try this.  It's DNS-specific but the concepts should still apply.

        https://doc.pfsense.org/index.php/Redirecting_all_DNS_Requests_to_pfSense

        1 Reply Last reply Reply Quote 0
        • jimpJ Offline
          jimp Rebel Alliance Developer Netgate
          last edited by

          May seem nitpicky but do you actually mean NTP (Network Time Protocol)?

          NNTP is a much different protocol (Network News Transfer Protocol, Usenet news groups).

          If NTP is what you're after, then KOM's solution is the closest you'll get.

          Remember: Upvote with the 👍 button for any user/post you find to be helpful, informative, or deserving of recognition!

          Need help fast? Netgate Global Support!

          Do not Chat/PM for help!

          1 Reply Last reply Reply Quote 0
          • dennypageD Offline
            dennypage
            last edited by

            You're dating yourself. :)

            @jimp:

            NNTP is a much different protocol (Network News Transfer Protocol, Usenet news groups).

            1 Reply Last reply Reply Quote 0
            • jahonixJ Offline
              jahonix
              last edited by

              You think so?
              The latest RFC update concerning NNTP is from 2006. https://tools.ietf.org/html/rfc3977

              We still don't know if OP meant NNTP or (S)NTP.

              1 Reply Last reply Reply Quote 0
              • dennypageD Offline
                dennypage
                last edited by

                Yep, just in time for the formal declaration of Usenet's death. :)

                @jahonix:

                The latest RFC update concerning NNTP is from 2006.

                1 Reply Last reply Reply Quote 0
                • KOMK Offline
                  KOM
                  last edited by

                  Yep, just in time for the formal declaration of Usenet's death. :)

                  And yet here I am, 10 years later, still sending money to Giganews on a monthly basis.  You can still find lots of obscure, cool stuff via Usenet that isn't on torrent.

                  1 Reply Last reply Reply Quote 0
                  • G Offline
                    guardian Rebel Alliance
                    last edited by

                    @jimp:

                    May seem nitpicky but do you actually mean NTP (Network Time Protocol)?

                    NNTP is a much different protocol (Network News Transfer Protocol, Usenet news groups).

                    If NTP is what you're after, then KOM's solution is the closest you'll get.

                    Thanks for catching that… I actually do know that... just some sloppy typing..... Maybe I should start another thread?  Also forget to set the notify me check, so I didn't notice it.

                    If you find my post useful, please give it a thumbs up!
                    pfSense 2.7.2-RELEASE

                    1 Reply Last reply Reply Quote 0
                    • B Offline
                      brandur
                      last edited by

                      The answer you got from @KOM is the same way I handle NTP redirects(and DNS for that matter).
                      Works just fine in my environment ;)

                      SG-4860 w/128GB SSD & 8GB RAM

                      1 Reply Last reply Reply Quote 0
                      • G Offline
                        guardian Rebel Alliance
                        last edited by

                        @brandur:

                        The answer you got from @KOM is the same way I handle NTP redirects(and DNS for that matter).
                        Works just fine in my environment ;)

                        Thanks… Just wondering does NTP validate the source in any way, or does simply routing traffic to the internal server that I want to handle it get the job done?

                        If you find my post useful, please give it a thumbs up!
                        pfSense 2.7.2-RELEASE

                        1 Reply Last reply Reply Quote 0
                        • G Offline
                          guardian Rebel Alliance
                          last edited by

                          @KOM:

                          Try this.  It's DNS-specific but the concepts should still apply.

                          https://doc.pfsense.org/index.php/Redirecting_all_DNS_Requests_to_pfSense

                          Thanks… I gave this a try, and... since I want to do the same thing with DNS, so I tried to do exactly what it said in the directions, and all DNS is blocked by the default deny - so for some reason this rule isn't getting triggered. Or am I missing something (or did I find a bug)?

                          DNS_NAT0.jpg
                          DNS_NAT0.jpg_thumb
                          DNS_NAT1.jpg
                          DNS_NAT1.jpg_thumb
                          DNS_NAT2.jpg
                          DNS_NAT2.jpg_thumb

                          If you find my post useful, please give it a thumbs up!
                          pfSense 2.7.2-RELEASE

                          1 Reply Last reply Reply Quote 0
                          • M Offline
                            MoonKnight
                            last edited by

                            @guardian:

                            @KOM:

                            Try this.  It's DNS-specific but the concepts should still apply.

                            https://doc.pfsense.org/index.php/Redirecting_all_DNS_Requests_to_pfSense

                            Thanks… I gave this a try, and... since I want to do the same thing with DNS, so I tried to do exactly what it said in the directions, and all DNS is blocked by the default deny - so for some reason this rule isn't getting triggered. Or am I missing something (or did I find a bug)?

                            Hi,
                            I also using the redirect all DNS request to OpenDNS servers for my LAN_2 users
                            This is my firewall rule for my LAN_2 users.  By this I prevent them for using another DNS, Only OpenDNS in this case.

                            ![Desktop 26-07-2016 22.03.45-233.png](/public/imported_attachments/1/Desktop 26-07-2016 22.03.45-233.png)
                            ![Desktop 26-07-2016 22.03.45-233.png_thumb](/public/imported_attachments/1/Desktop 26-07-2016 22.03.45-233.png_thumb)

                            --- 24.11 ---
                            Intel(R) Xeon(R) CPU D-1518 @ 2.20GHz
                            Kingston DDR4 2666MHz 16GB ECC
                            2 x HyperX Fury SSD 120GB (ZFS-mirror)
                            2 x Intel i210 (ports)
                            4 x Intel i350 (ports)

                            1 Reply Last reply Reply Quote 0
                            • First post
                              Last post
                            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.