Unusual Security Alert

Comments

2 comments

  • Avatar
    Firewalla

    The current code (as of 1.966) does not check the protocol, only the src/dst.  So in this case, it is very likely one of the servers (there are many ... many) NTP servers in the pool.ntp.org domain set is marked to be malicious.   In this case, I'd just block that IP, NTP will use the next one anyway

    0
    Comment actions Permalink
  • Avatar
    Christopher J. Shaker

    I saw this, too

    0
    Comment actions Permalink

Please sign in to leave a comment.

Powered by Zendesk