Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    Running NTP Server on pfSense

    General pfSense Questions
    3
    3
    37
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • E
      ericnix last edited by

      I have my pfSense box running OpenVPN and serving as my DDNS relay. I'm also running Snort on it. My primary router is a Ubiquiti router.

      I noticed a setting for an NTP server while messing around with the pfSense web configurator.

      What is the advantage of running an NTP server within your own network?

      My pfSense box is configured as 10.0.1.90. The router handles DHCP (I previously had used the pfSense box to handle it). If I were to configure the NTP server, do I put 10.0.1.90 as the NTP server on computers, Ubiquiti LAN configuration, etc.?

      JKnott 1 Reply Last reply Reply Quote 0
      • JKnott
        JKnott @ericnix last edited by

        @ericnix

        You could have your own stratum 0 server, such as a GPS receiver. Also, good practice is to have local servers to reduce the load on upstream servers. The more a server handles, the less precision it can provide.

        N 1 Reply Last reply Reply Quote 0
        • N
          netblues @JKnott last edited by

          In addition to that, there have been amplification attacks based on ntp. So using an external service increases your attack surface in any future possible breach attempts.

          Best security practices dictates to use as less external services as possible.
          Same goes for dns and forwarders.

          (and the beauty of running a stratum 0 ntp server, over pps, remains with the few who have attempted the task.
          Now, I wish datacenters had glass roofs so gps could work on top of racks.. :)

          1 Reply Last reply Reply Quote 0
          • First post
            Last post

          Products

          • Platform Overview
          • TNSR
          • pfSense Plus
          • Appliances

          Services

          • Training
          • Professional Services

          Support

          • Subscription Plans
          • Contact Support
          • Product Lifecycle
          • Documentation

          News

          • Media Coverage
          • Press
          • Events

          Resources

          • Blog
          • FAQ
          • Find a Partner
          • Resource Library
          • Security Information

          Company

          • About Us
          • Careers
          • Partners
          • Contact Us
          • Legal
          Our Mission

          We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

          Subscribe to our Newsletter

          Product information, software announcements, and special offers. See our newsletter archive to sign up for future newsletters and to read past announcements.

          © 2021 Rubicon Communications, LLC | Privacy Policy