Hi
At work we send NTP from one network to another network through a one-way-filter.
Due to safety, the networks must be separated.
In order to get the NTP through the one-way-filter, we have been sending broadcast messages. which has been working super while using FreeBSD 9.1 on both ends.
We had to replace the computers and have now installed FreeBSD 12.1 on the new once.
The FreeBSD 12.1 receives the NTP-packages, but does not accept them and I can't figure out why it won't. (used wireshark to see that the package actually came through)
On a fresh start of the ntpd service, i see that the client tries to send a message back to the broadcast-sender.
I think he does not accept the broadcast-NTP because he does not get a replay.
It works without the one-way-filter.
I use the same config as I did in FreeBSD 9.1.
The client only contains this in the ntp.conf:
broadcastclient
disable auth
Is there a way to force NTP-client to accept the broadcast messages without question?
I do not understand why this does not work when it did on FreeBSD 9.1.
Something in NTP changed?
security features i can turn off?
I also tried to install FreeBSD 9.1 on the new computers, but the network interface was not supported. I found a driver on Intels homepage, followed the installation guide, but no luck.
(One-way-filter: Media converters connected together. Normally there is one fiber for TX and one for RX. We have removed the RX so the data can only flow one way.)
Thanks
Rabbeleet
At work we send NTP from one network to another network through a one-way-filter.
Due to safety, the networks must be separated.
In order to get the NTP through the one-way-filter, we have been sending broadcast messages. which has been working super while using FreeBSD 9.1 on both ends.
We had to replace the computers and have now installed FreeBSD 12.1 on the new once.
The FreeBSD 12.1 receives the NTP-packages, but does not accept them and I can't figure out why it won't. (used wireshark to see that the package actually came through)
On a fresh start of the ntpd service, i see that the client tries to send a message back to the broadcast-sender.
I think he does not accept the broadcast-NTP because he does not get a replay.
It works without the one-way-filter.
I use the same config as I did in FreeBSD 9.1.
The client only contains this in the ntp.conf:
broadcastclient
disable auth
Is there a way to force NTP-client to accept the broadcast messages without question?
I do not understand why this does not work when it did on FreeBSD 9.1.
Something in NTP changed?
security features i can turn off?
I also tried to install FreeBSD 9.1 on the new computers, but the network interface was not supported. I found a driver on Intels homepage, followed the installation guide, but no luck.
(One-way-filter: Media converters connected together. Normally there is one fiber for TX and one for RX. We have removed the RX so the data can only flow one way.)
Thanks
Rabbeleet