peer 10.3.3.3
peer 10.4.4.4
peer 10.5.5.5
peer 10.6.6.6
peer 10.7.7.7
peer 10.8.8.8
access-group peer peer-acl
access-group serve serve-acl
access-group serve-only serve-only-acl
access-group query-only query-only-acl
exit
ipv4 access-list peer-acl
10 permit ip host 10.1.1.1 any
20 permit ip host 10.8.8.8 any
exit
ipv4 access-list serve-acl
10 permit ip host 10.4.4.4 any
20 permit ip host 10.5.5.5 any
exit
ipv4 access-list query-only-acl
10 permit ip host 10.2.2.2 any
20 permit ip host 10.3.3.3 any
exit
ipv4 access-list serve-only-acl
10 permit ip host 10.6.6.6 any
20 permit ip host 10.7.7.7 any
exit
Configuring NTP Authentication: Example
The following example shows an NTP authentication configuration. In this example, the following is configured:
•
NTP authentication is enabled.
•
Two authentication keys are configured (key 2 and key 3).
•
The router is configured to allow its software clock to be synchronized with the clock of the peer (or
vice versa) at IP address 10.3.32.154 using authentication key 2.
•
The router is configured to allow its software clock to be synchronized with the clock by the device at
IP address 10.32.154.145 using authentication key 3.
•
The router is configured to synchronize only to systems providing authentication key 3 in their NTP
packets.
ntp
authenticate
authentication-key 2 md5 encrypted 06120A2D40031D1008124
authentication-key 3 md5 encrypted 1311121E074110232621
trusted-key 3
server 10.3.32.154 key 3
peer 10.32.154.145 key 2
Disabling NTP on an Interface: Example
The following example shows an NTP configuration in which 0/2/0/0 interface is disabled:
ntp
interface tengige 0/2/0/0
disable
exit
authentication-key 2 md5 encrypted 06120A2D40031D1008124
authentication-key 3 md5 encrypted 1311121E074110232621
authenticate
Cisco ASR 9000 Series Aggregation Services Router System Management Configuration Guide, Release 5.1.x
227
Implementing NTP
Configuration Examples for Implementing NTP
To Next Page
Loading...
Need help?
General
