From time to time NTP connections to IPs like 185.83.169.27 are made.
Why and how can I block them? I don't see an option for this particular protocol in the rules.
I have my VPN providers DNS IP configured.
NTP is port 123
The system defaults to OPNsense pool NTP servers. You really DO want NTP to do it's thing so that your system time is accurate and not drifting.
Time is CRITICAL for certificate and SSL validation.
attached is what my system is currently using.
Thanks for the explanation. Can I not simply have time synced via my specified DNS servers?
DNS is *NOT* NTP.
NTP servers synchronize to GPS and other stratum 1 servers.
DNS is purely for Domain Name (Human Readable)-> IP address (and other info). It has NOTHING to do with time.
Please read up on NTP.
http://www.ntp.org/ntpfaq/NTP-s-def.htm
You can specify custom NTP servers on services -> network time -> general
but this is not really needed, default is a good setting, especially since you don't seems to be an expert on this topic
I am wondering the same. Why does OPNsense try to contact the following IPs with UDP/123 (i.e. NTP) 185.17.70.106, 212.25.1.1, etc. (see picture attached)? These are not the default OPNsense NTP Servers (which by the way at the moment are configured as "do not use").
Where are the NTP servers show in the picture configured?