To disable NTP, you may try using ACL (Configuration -> Security -> Network -> ACL) to deny NTP packets.
You can refer to the official user guide for ACL config details.
Here is my result with ACL criteria: UDP source port 123 (officially assigned for NTP)
Not quite get your idea.
For NTP setting: Web interface -> Configuration -> System -> NTP
I know where i can setting for NTP. When i permit only one NTP server and deny all i will restrict NTP mode 6 queries.
Or different question - how can i restrict NTP mode 6 queries in RGS200-12P ?
Or how to disable ntp protocol ? when i disable in Web interface -> Configuration -> System -> NTP i still got ntp queries from scanner (nessus) in this switch,
I'm preparing my network for security audit - and i got this problem.
Thank you mate for answer. I didn't catch this user guide - thank you !.
But... i still got a problem that i don't have clue how to resolve.
In my network i got some cisco switches, when i create acl for ntp like
ntp access-group serve-only 1999 (acl number)
and i permit in this acl my ntp server everything is ok - i don't have an answer from nessus about my ntp server.
When i made ACL like you show in post - i still have a answer from nessus about my ntp server - even if it's blocked...
Got any clue ? i finished my idea's at this moment.0
Zyxel小編 Lucious Posts: 279Hi @ArturSW
We've forwarded this vulnerability issue to the internal for analysis and will have a conclusion for you.
Meanwhile, we locally had some test on our RGS200-12P regarding Nessus NTP Mode 6 Scanner (https://www.tenable.com/plugins/nessus/97861) according to your description.
But unfortunately we've not seen similar issue in our lab.
So, if possible, could you provide your test method/procedure as detailed as you can (such as configuration, topology, software version, etc.)?
It'd be better to have some screenshots as well about Nessus scanner results.
Thank you for your patience and support.
- 8K All Categories
- 1.6K Nebula
- 60 Nebula Ideas
- 54 Nebula Status and Incidents
- 4.4K Security
- 224 Security Ideas
- 897 Switch
- 46 Switch Ideas
- 868 WirelessLAN
- 20 WLAN Ideas
- 5.2K Consumer Product
- 139 Service & License
- 260 News and Release
- 95 Success Stories
- 53 Security Advisories
- 12 Education Center
- 573 FAQ
- 273 Nebula FAQ
- 132 Security FAQ
- 73 Switch FAQ
- 72 WirelessLAN FAQ
- 7 Consumer Product FAQ
- 34 Nebula Monthly Express
- 71 About Community
- 44 Security Highlight