Zyxel RGS200-12P
Accepted Solution
-
To disable NTP, you may try using ACL (Configuration -> Security -> Network -> ACL) to deny NTP packets.
You can refer to the official user guide for ACL config details.
ftp://ftp.zyxel.com/RGS200-12P/user_guide/RGS200-12P_V1_Ed2.pdf
Here is my result with ACL criteria: UDP source port 123 (officially assigned for NTP)
Cheers5
All Replies
-
Hi
Not quite get your idea.
For NTP setting: Web interface -> Configuration -> System -> NTP
Cheers
0 -
Hello
I know where i can setting for NTP. When i permit only one NTP server and deny all i will restrict NTP mode 6 queries.
Or different question - how can i restrict NTP mode 6 queries in RGS200-12P ?
Or how to disable ntp protocol ? when i disable in Web interface -> Configuration -> System -> NTP i still got ntp queries from scanner (nessus) in this switch,
I'm preparing my network for security audit - and i got this problem.
Cheers0 -
To disable NTP, you may try using ACL (Configuration -> Security -> Network -> ACL) to deny NTP packets.
You can refer to the official user guide for ACL config details.
ftp://ftp.zyxel.com/RGS200-12P/user_guide/RGS200-12P_V1_Ed2.pdf
Here is my result with ACL criteria: UDP source port 123 (officially assigned for NTP)
Cheers5 -
Thank you mate for answer. I didn't catch this user guide - thank you !.
But... i still got a problem that i don't have clue how to resolve.
In my network i got some cisco switches, when i create acl for ntp like
ntp access-group serve-only 1999 (acl number)
and i permit in this acl my ntp server everything is ok - i don't have an answer from nessus about my ntp server.
When i made ACL like you show in post - i still have a answer from nessus about my ntp server - even if it's blocked...
Got any clue ? i finished my idea's at this moment.0 -
Hi @ArturSW
We've forwarded this vulnerability issue to the internal for analysis and will have a conclusion for you.
Meanwhile, we locally had some test on our RGS200-12P regarding Nessus NTP Mode 6 Scanner (https://www.tenable.com/plugins/nessus/97861) according to your description.
But unfortunately we've not seen similar issue in our lab.
So, if possible, could you provide your test method/procedure as detailed as you can (such as configuration, topology, software version, etc.)?
It'd be better to have some screenshots as well about Nessus scanner results.
Thank you for your patience and support.
Sincerely,
Zyxel_Lucious
0
Categories
- All Categories
- 415 Beta Program
- 2.3K Nebula
- 141 Nebula Ideas
- 94 Nebula Status and Incidents
- 5.5K Security
- 216 USG FLEX H Series
- 262 Security Ideas
- 1.4K Switch
- 71 Switch Ideas
- 1K Wireless
- 39 Wireless Ideas
- 6.3K Consumer Product
- 243 Service & License
- 382 News and Release
- 81 Security Advisories
- 27 Education Center
- 8 [Campaign] Zyxel Network Detective
- 3K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 83 About Community
- 71 Security Highlight