Configuring NTP support

The protector includes an NTP package that contains a NTPD service and a set of related utilities. The service is turned off by default. Enabling the NTP service is simple, but requires deployment-dependent configuration settings.

Applies to:

• Forcepoint DLP, v8.5.x, v8.6.x, v8.7.x, v8.8.x, v8.9.x

The following procedure is a general description of the steps that can be customized as needed.

The NTP service requires root user permissions.

For further NTP configuration details, refer to: http://en.linuxreviews.org/NTP_- _Howto_make_the_clock_show_the_correct_time or http://doc.ntp.org/4.2.2/ and many other sites on the Web.

Configuration

1. Define which NTP servers or servers to use.
2. Configure the firewall according to the NTP server decision. The NTP port is UDP 123.
3. Edit the relevant configuration files (/etc/ntp.conf, and so on).

Execution

1. Perform an initial time synchronization. This can be done manually via the protector’s wizard, or via the ntpdate utility.
2. Enter chkconfig ntpd on at the command line to start the service each time the protector machine is started.
3. Type ntpq -p to verify the synchronization is correct.