Configuring common NTP multicast mode on the firewall

1

Configure common NTP multicast mode on the firewall as follows:
1. Configure FW_C as the NTP multicast server.
2. Configure FW_A and FW_D as the NTP multicast clients. For configuration examples, see "Example: Configuring Common NTP Multicast Mode" in USG6300 Product Documentation.

Other related questions:
Configuring NTP broadcast mode
Configure NTP broadcast mode as follows: -Configure the NTP broadcast server. 1. Run the system-view command to access the system view. 2. Run the interface interface-type interface-number command to specify the interface that sends NTP broadcast packets. 3. Run the ntp-service broadcast-server [ version number | [ authentication-keyid key-id | autokey ] | port port-number ] * command to configure the local firewall as the NTP broadcast server. After the preceding configurations are complete, the local firewall periodically sends clock synchronization packets to broadcast address 255.255.255.255. Note: The broadcast mode can be used only in a LAN. -Configure the NTP broadcast client. 1. Run the system-view command to access the system view. 2. Optional: Run the ntp-service max-dynamic-sessions number command to configure the number of dynamic sessions that can be established locally. By default, a maximum of 100 dynamic NTP sessions can be established. Running this command does not affect existing NTP sessions. After the number of local dynamic NTP sessions exceeds the upper limit, you can no longer establish new sessions. 3. Run the interface interface-type interface-number command to specify the interface that receives NTP broadcast packets. 4. Run the ntp-service broadcast-client command to configure the local firewall as the NTP broadcast client. After the preceding configurations are complete, the local firewall receives broadcast NTP packets from the NTP server and synchronizes the local clock.

Displaying the NTP configuration information on the firewall
Check the NTP configuration information of the firewall as follows: -Run the display ntp-service status command to view the NTP service status. -Run the display ntp-service sessions [ verbose ] command to view the NTP session status. -Run the display ntp-service trace command to view brief information traced from the local device to the NTP servers of the reference clock source. -Run the display ntp-service statistics packet [ ipv6 | peer [ ip-address [ vpn-instance vpn-instance-name ] | ipv6 [ ipv6-address [ vpn-instance vpn-instance-name ] ] ] command to view the global NTP packet statistics. -Run the display current-configuration | include ntp-service command to view configuration parameters currently valid to the KOD feature on the firewall.

Common working modes of 10GE optical transceivers
The common working mode of the 10GE optical transceiver is subject to the transmission media. For example, M and N in 10GBASE-(M)(N) indicate the corresponding transmission media. The common situation is as follows: M indicates: -S: short wavelength (850 nm, multi-mode) -L: long wavelength (1310 nm, most being single-mode and a few being multi-mode) -E: extended wavelength (1550 nm, single-mode) -T: twisted pair -C: coaxial cable (copper) -K: backplane N indicates: -X: 8B/10B coding -R: 64B/66B coding -W: STS-192 encapsulation 64B/66B coding (SONET) parameter 2 -M indicates multi-mode in -LRM. The digit attached to the end indicates the number of lanes, such as CX4 and -LX4. In summary, common 10GE optical transceivers on the firewall usually use SR (working with a wavelength of 850 nm, multi-mode, and 64B/66B coding) and LR.

Debugging NTP packets on the firewall
Debug firewall NTP packets as follows: Before enabling the debugging function, you must run the terminal monitor and terminal debugging commands in the user view to enable the information display and debugging information display functions of the terminal. Note: Enabling the debugging function affects the system performance. After debugging, run the undo debugging all command to disable the debugging function immediately. Run the debugging ntp-service { access | adjustment | all | authentication | event | filter | packet [ ipv6 ] [ send | receive ] | parameter | refclock | selection | synchronization | validity } command to enable NTP debugging.

If you have more questions, you can seek help from following ways:
To iKnow To Live Chat
Scroll to top