Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 2 replies
  • Answers 1 answer
  • Subscribers 40 subscribers
  • Views 7365 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

DNAT NTP instead of NTP Server

Edgar Quintana

 

I created this Business Application Rule to DNAT internat NTP queries to XG-> external NTP server because XG is not a NTP Server (SG yes)

 

But I still have at log:

where XG is 192.168.157.70. why?

2018-08-03 14:41:21
Appliance Access
Denied
  
0
Port2
  
192.168.158.104
192.168.157.70
123
123

Regards



This thread was automatically locked due to age.
Parents
  • 0

    Hi, 

    would suggest to use an internal Interface instead of external WAN Interface. 

    And delete the WAN Zone as Source. 

    Start with DNAT:

    Source LAN.

    Destination LAN Interface Port 123

    Forward to WAN - NTP Server

     

    Should work. 

    Now Clone this rule for your other rules. 

    __________________________________________________________________________________________________________________

Reply
  • 0

    Hi, 

    would suggest to use an internal Interface instead of external WAN Interface. 

    And delete the WAN Zone as Source. 

    Start with DNAT:

    Source LAN.

    Destination LAN Interface Port 123

    Forward to WAN - NTP Server

     

    Should work. 

    Now Clone this rule for your other rules. 

    __________________________________________________________________________________________________________________

Children
No Data
Unfiltered HTML