Hi,
I just ran a Nessus scan on my home network and it showed a "medium" vulnerability for NTP service running on OPNSense. I am not sure what to make out of this output but hoping someone can take a look at it and guide if this is serious and how to plug if necessary.
My hesitation to tweak the NTP settings is due to the fact that few months back I had lots of issues with my IoTs related to NTP service (which I blocked for outside access) and forced the IoTs to use the NTP server running on OPNSense box.
Thanks,
You do not allow your NTP server to be queried from outside, right? So no worries ...
Absolutely spot on, I've not selected WAN interface on NTP listening interface! Thanks for weighing in :)