This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
Joe_Kanaszka
Advisor
yesterday
Jump to solution

Security Gateways and NTP - Implied rule?

While looking at my NTP rules for a planned security gateway migration, I noticed that my security gateways are able to query the NTP servers that I have configured in their GAIA portals without an explicit rule.  When I look at the logs, they are getting out via their external interface using rule "0".  

 

I cannot see any implied rule allowing NTP.  Is this perhaps a side effect of my ISP Redundancy configuration?

Labels
0 Kudos
1 Solution

Accepted Solutions
Danny
MVP Platinum
MVP Platinum
yesterday
Jump to solution

The 'Accept outgoing packets originating from Gateway' setting is likely allowing the NTP queries from your gateway.
implied_rules_accept_outgoing.png

View solution in original post

(1)
4 Replies
the_rock
MVP Platinum
MVP Platinum
yesterday
Jump to solution

Good point brother. Let me check in my lab and see.

Best,
Andy
Danny
MVP Platinum
MVP Platinum
yesterday
Jump to solution

The 'Accept outgoing packets originating from Gateway' setting is likely allowing the NTP queries from your gateway.
implied_rules_accept_outgoing.png

(1)
the_rock
MVP Platinum
MVP Platinum
yesterday
In response to Danny
Jump to solution

Good point Danny. I checked and was unable to find anything related to NTP in the implied rules.

Best,
Andy
0 Kudos
Joe_Kanaszka
Advisor
yesterday
In response to Danny
Jump to solution

Bingo!  That is checked for me as well.  Thanks Danny!  

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    CheckMates Events