Possible bug with ntpd and Iptables

Yang Xiao yxiao2004 at gmail.com
Tue Aug 31 20:04:07 UTC 2004


On Tue, 31 Aug 2004 15:41:35 -0400, Scot L. Harris <webid at cfl.rr.com> wrote:
> I have noticed an anomaly with iptables and ntpd.  During boot ntpd
> opens up some ports in the firewall.
> 
> If you stop and start iptables these ports are no longer open.  I
> believe this would mean that ntp would stop working as expected.
> 
> I have not noticed any issues with the clock not tracking but it could
> be a problem particularly for sites running certain authentication
> packages which require time on the systems to be synchronized closely.
> 
> It also seems that if ntp requires ports to be open then they should be
> configured in the normal /etc/sysconfig/iptables file.
> 
> Should this be reported in bugzilla or is there a logical reason things
> are setup this way?
> 
> --
> Scot L. Harris
> webid at cfl.rr.com
> 
> Q:      What do Winnie the Pooh and John the Baptist have in common?
> A:      The same middle name.
> 
> --
> fedora-list mailing list
> fedora-list at redhat.com
> To unsubscribe: http://www.redhat.com/mailman/listinfo/fedora-list
> 
The port is opened by the /etc/init.d/ntp script, this means you need
to restart ntp after you restart iptables.

Yang





More information about the users mailing list