Comware

 View Only
Back to discussions
Expand all | Collapse all

1950 JG962A NTP configuration

This thread has been viewed 7 times

  • 1.  1950 JG962A NTP configuration

    Posted Jun 15, 2023 08:28 AM

    Hello all,

    Once again, vulnerability scan against the 1950 has me scratching my head.  This time it has to do with the switch responding to NTP mode 6 queries.  The switch itself is not configured as an NTP server however it is using NTP to get it's time.  What's really killing me is the documentation on NTP configuration is horrible.  What's the difference between a "Unicast server" and a "unicast peer"?  How would I configure the switch to not respond to NTP mode 6 queries?

    Here is what my NTP settings currently are

    display current-configuration | include ntp
     clock protocol ntp
     ntp-service enable
     ntp-service source Vlan-interface1
     ntp-service unicast-server 192.168.35.22
     ntp-service unicast-server 10.81.10.20
     ntp-service unicast-peer 192.168.35.201

    Thanks in advance!

     



  • 2.  RE: 1950 JG962A NTP configuration

    Posted Jun 15, 2023 01:11 PM

    I did find this which is a bit more helpful than the 1950 documentation but I'm still searching for a way to restrict the "ntp mode 6 queries".

    https://techhub.hpe.com/eginfolib/networking/docs/switches/5130ei/5200-3961_nmm_cr/content/index.htm




Related Content