cancel
Showing results for 
Search instead for 
Did you mean: 
Create a Post
Highlighted

NTP and version

Gents and Galls,

We are having an issue with time. For on of our customers we are forwarding logs to a SOC SIEM solution. From the guys running that platform we are getting complaints that we do not keep all gateways on the same time.

All gateways are running NTP, however as we support customers globally on Internet connections from many different suppliers, there is no single NTP server that we can use.

In these case we mostly use pool.ntp.org the only problem there is that Check Point forces you to enter a version. Why is this a problem? When you set the primary with lets say version 3 and a secondary with version 4. The primary will get a server from the pool, will it run V3? who knows? 

What we found is that most of the times when we add 2 NTP servers like pool.ntp.org and uk.pool.ntp.org it still fails to work properly.

So one of the primary questions would be: Why is Check Point forcing us to add a version?

Yes we could setup our own NTP server, however before I have that properly setup and running it takes me about a month.

Regards, Maarten
0 Kudos
4 Replies

Re: NTP and version

Honestly I always select version 4. It's backwards compatible with version 3 which is from 1992, so you'd be hard pressed finding a timeserver using an older version than that.

0 Kudos

Re: NTP and version

You can use ntp.checkpoint.com 😉
0 Kudos

Re: NTP and version

Ok so always use 4 and use ntp.checkpoint.com, is there also a secondary, or a ie ntp.cisco.com?
Regards, Maarten
0 Kudos

Re: NTP and version

ntp.checkpoint.com and ntp2.checkpoint.com 🙂 Though you can also sync to an internal AD, those function as time servers as well. Never a bad idea to have everything synced to the same source.
0 Kudos