Zyxel RGS200-12P

ArturSW
ArturSW Posts: 3  Freshman Member
First Comment
edited August 2022 in Switch
Hello 
I got 3 RGS200-12P. How can i permit one ntp serwer to switch and deny all ? i know how to permit ssh, http but i can't find something else like ntp 

Accepted Solution

All Replies

  • Sakura_T
    Sakura_T Posts: 101  Ally Member
    5 Answers First Comment Friend Collector Second Anniversary
    Hi
    Not quite get your idea.
    For NTP setting: Web interface -> Configuration -> System -> NTP

    Cheers


  • ArturSW
    ArturSW Posts: 3  Freshman Member
    First Comment
    edited May 2019
    Hello

    I know where i can setting for NTP. When i permit only one NTP server and deny all i will restrict NTP mode 6 queries.

    Or different question - how can i restrict NTP mode 6 queries in RGS200-12P ? 

    Or how to disable ntp protocol ? when i disable in Web interface -> Configuration -> System -> NTP i still got ntp queries from scanner (nessus) in this switch, 

    I'm preparing my network for security audit - and i got this problem.

    Cheers
  • ArturSW
    ArturSW Posts: 3  Freshman Member
    First Comment
    Thank you mate for answer. I didn't catch this user guide - thank you !. 

    But... i still got a problem that i don't have clue how to resolve.

    In my network i got some cisco switches, when i create acl for ntp like
    ntp access-group serve-only 1999 (acl number)
    and i permit in this acl my ntp server everything is ok - i don't have an answer from nessus about my ntp server. 

    When i made ACL like you show in post - i still have a answer from nessus about my ntp server - even if it's blocked...

    Got any clue ? i finished my idea's at this moment.
  • Zyxel小編 Lucious
    Zyxel小編 Lucious Posts: 278  Zyxel Employee
    25 Answers First Comment Friend Collector Third Anniversary
    edited May 2019
    Hi @ArturSW

    We've forwarded this vulnerability issue to the internal for analysis and will have a conclusion for you.

    Meanwhile, we locally had some test on our RGS200-12P regarding Nessus NTP Mode 6 Scanner (https://www.tenable.com/plugins/nessus/97861) according to your description.
    But unfortunately we've not seen similar issue in our lab.

    So, if possible, could you provide your test method/procedure as detailed as you can (such as configuration, topology, software version, etc.)?
    It'd be better to have some screenshots as well about Nessus scanner results.

    Thank you for your patience and support.

    Sincerely,
    Zyxel_Lucious