I find the most worrying thing about this post is that the mighty (sic)
Symantec couln't explain how to open the NTP port in their own firewall!!
Very good advert as to why not to use them.
However the reply is not all that accurate as Windows Vista firewall also
blocks NTP by default! Microsofts own help does not even recognise the term
NTP !! I also note that NTP is classed as an unrequested incoming message
when it is always requested, howver a partial answer was hinted at in that
the request is a UDP ? on another port with the NTP packet returning on 123.
But how do we set this up in windows firewall?? My Kerio firewall on XP
handles it transparently in the standard settings - roll on the Vista version.
My business server at work has a special tick box for NTP and it documents
it as "NTP packets are akllowed only within 1 second of a corresponding
request to the same IP address", this seems a million miles from how desktop
firewalls handle it.
"Paul Smith" wrote:
> "Michael Gerbasio" <email@example.com> wrote in message
> > I have Norton Internet Security 2007 installed on Vista Business x64. I
> > can't get the time on my pc to update Internet Time when the firewall is
> > on. I contacted Symantec, but they weren't helpful. I guess I need t ogive
> > the time applet permission to get past the firewall, but I don't know the
> > name and neither does symantec. Any ideas? Thanks.
> The time service is NTP and uses port 123.
> However I would not have any Norton software installed on my machine, I'd
> recommend using the built in Firewall, which doesn't block everything under
> the Sun for no good reason. Then using AVG (http://free.grisoft.com/) or
> NOD32 (http://www.eset.com/) for anti-virus.
> Who knows why Norton have their firewall setup to block non-malicious
> internet traffic out of the box which practically every Windows machine
> uses. The amount of problems these heavy security suites cause is
> unbelievable, and the number of hours wasted troubleshooting is
> Paul Smith,
> Yeovil, UK.
> Microsoft MVP Windows Shell/User.
> *Remove nospam. to reply by e-mail*