I setup a local NTP server/client and it seems to work fine and used a static DNS entry for time.nist.gov and time.windows.com to point to my local NTP server. Hope that is the way to goFurther, the Router has its own NTP server and Client which is already available so not sure what your are doing.........
If you need devices to make use of the ROUTER NTP, set it up and modify the input chain rule to as follows..
Thank you, removed!(3) Not sure what you are doing with dns port here in the forward chain?????
Could you please help me understand a couple of rules better?
Why the additional drop rule on input would make sense, aren't those packages filtered in the general drop fule at the end anyway?
Why are untracked packages not fast-tracked, but in the acceptance rule?add action=drop chain=input comment="drop invalid" connection-state=invalid
I noticed that you removed the Connection State "new" in forward rules. Could you please explain why it is not required?add action=fasttrack-connection chain=forward comment="defconf: fasttrack" connection-state=established,related hw-offload=yes
Statistics: Posted by fobo — Fri Feb 23, 2024 7:33 pm