Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
Frank_Hauser
Explorer

Violated unidirectional connection

I'm desperately looking for an error in my CP 600  R77.20.80 configuration.
My clients don't get the latest internet time anymore.
In the log at service ntp/123 inbound I see "Violated unidirectional connection".
Can anyone help me?
Thank you,
Frank.

0 Kudos
5 Replies
AlekseiShelepov
Advisor

0 Kudos
Vladimir
Champion
Champion

If the situation you are experiencing is similar to the one described in the SK Aleksei Shelepov‌ have referred to, you are better off configuring your clients to get their time from external NTP servers, same as your internal network is using as reference source.

So long as this is the only UDP service you are experiencing problem with, it should solve your issues.

0 Kudos
Nicolay_Astasho
Explorer

Go to Service > create that specific UDP port service > go to advanced and tick "Accept Replies". Then go to policy and create new incoming rule (unless already created) using that specific port (service that you created).

HCL_Security_Te
Explorer

Specific rule is works nice, Thanks for the solution. 🙂

0 Kudos
Ricardo_Gros
Collaborator

You need to have a specific rule accepting this traffic on your rule set, you also should do as Nicolay is stating and create a specific service accepting udp replies.

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

Upcoming Events

    CheckMates Events