https://community.hpe.com/t5/operating-system-hp-ux/system-clock-vulnerability/m-p/3145107#M801744 Hi<BR /><BR />Try a trace route to 209.195.3.50 and see where is stops<BR /><BR /><BR />Paula Mon, 15 Dec 2003 14:08:24 GMT Paula J Frazer-Campbell 2003-12-15T14:08:24Z https://community.hpe.com/t5/operating-system-hp-ux/system-clock-vulnerability/m-p/3145104#M801741 Hello all-<BR /> I am trying to syncronize my systems clocks with a Straus 2 server that is near me (U of Georgia). It is a easy fix but I get this error:<BR /><BR />"Could not establish connection. Either 209.195.3.50 is not availiable or firewall settings on your computer are blocking NTP connections" <BR /><BR />I'm Pretty sure it's the firewall. Which goes to my next question, How to I make it so the NTP connections don't get blocked? Thanks!<BR /><BR />Kyle Mon, 15 Dec 2003 14:02:05 GMT https://community.hpe.com/t5/operating-system-hp-ux/system-clock-vulnerability/m-p/3145104#M801741 Kyle D. Harris 2003-12-15T14:02:05Z https://community.hpe.com/t5/operating-system-hp-ux/system-clock-vulnerability/m-p/3145105#M801742 Check port required for ntp is open.<BR /><BR />contact ur firewall administrator<BR /><BR />ntp uses port 123.<BR /><BR />(Check /etc/services file) Mon, 15 Dec 2003 14:04:49 GMT https://community.hpe.com/t5/operating-system-hp-ux/system-clock-vulnerability/m-p/3145105#M801742 RAC_1 2003-12-15T14:04:49Z https://community.hpe.com/t5/operating-system-hp-ux/system-clock-vulnerability/m-p/3145106#M801743 Open up udp port 123. NTP is not considered to be a significant vulnerability.<BR /> Mon, 15 Dec 2003 14:07:39 GMT https://community.hpe.com/t5/operating-system-hp-ux/system-clock-vulnerability/m-p/3145106#M801743 A. Clay Stephenson 2003-12-15T14:07:39Z https://community.hpe.com/t5/operating-system-hp-ux/system-clock-vulnerability/m-p/3145107#M801744 Hi<BR /><BR />Try a trace route to 209.195.3.50 and see where is stops<BR /><BR /><BR />Paula Mon, 15 Dec 2003 14:08:24 GMT https://community.hpe.com/t5/operating-system-hp-ux/system-clock-vulnerability/m-p/3145107#M801744 Paula J Frazer-Campbell 2003-12-15T14:08:24Z https://community.hpe.com/t5/operating-system-hp-ux/system-clock-vulnerability/m-p/3145108#M801745 The Port was open. NTP was listed as a "Medium Risk" on my Vulnerability sheet I got. Mon, 15 Dec 2003 14:48:49 GMT https://community.hpe.com/t5/operating-system-hp-ux/system-clock-vulnerability/m-p/3145108#M801745 Kyle D. Harris 2003-12-15T14:48:49Z https://community.hpe.com/t5/operating-system-hp-ux/system-clock-vulnerability/m-p/3145109#M801746 Hi Kyle,<BR /><BR />1) Verify the 123/UDP is open in *both* directions.<BR />2) Verify that your host is allowed to connect to the UofG server.<BR />3) Run netstat -an | grep 123 &amp; make sure you have a line like<BR />udp 0 0 *.123 *.*<BR /><BR />HTH,<BR />Jeff<BR /> Mon, 15 Dec 2003 14:58:47 GMT https://community.hpe.com/t5/operating-system-hp-ux/system-clock-vulnerability/m-p/3145109#M801746 Jeff Schussele 2003-12-15T14:58:47Z https://community.hpe.com/t5/operating-system-hp-ux/system-clock-vulnerability/m-p/3145110#M801747 What did you mean make sure the port is open in "both" directions??<BR /><BR />The traceroute stopped at 30 by the way. Mon, 15 Dec 2003 15:05:39 GMT https://community.hpe.com/t5/operating-system-hp-ux/system-clock-vulnerability/m-p/3145110#M801747 Kyle D. Harris 2003-12-15T15:05:39Z https://community.hpe.com/t5/operating-system-hp-ux/system-clock-vulnerability/m-p/3145111#M801748 By both directions I mean that 123/UDP traffic is allowed out as well as in through the firewall.<BR /><BR />And by stopped at 30 do you mean it made 30 hops &amp; then stopped?<BR /><BR />If so you have a router out there that's sending you on a bad route. 30 hops is the max allowed for TCP connections.<BR /><BR />Are there a bunch that are all the same or a loop i.e. goes to router A &amp; to router B &amp; back to A &amp; back to B &amp; on &amp; on? Then that's the problem.<BR /><BR />Rgds,<BR />Jeff Mon, 15 Dec 2003 15:09:23 GMT https://community.hpe.com/t5/operating-system-hp-ux/system-clock-vulnerability/m-p/3145111#M801748 Jeff Schussele 2003-12-15T15:09:23Z https://community.hpe.com/t5/operating-system-hp-ux/system-clock-vulnerability/m-p/3145112#M801749 Yes, to 30, then the prompt came back up. Mon, 15 Dec 2003 15:15:16 GMT https://community.hpe.com/t5/operating-system-hp-ux/system-clock-vulnerability/m-p/3145112#M801749 Kyle D. Harris 2003-12-15T15:15:16Z