Hi,
following the release notes I would like to understand what the following means.
"Also take note that the NTP default changes to "restrict noquery" so that
the system cannot externally be queried for revealing system internals
anymore unless explicitly allowed."
Where can I find that setting?
"The interface selection must therefore include a WAN type interface so that normal routing to the internet can take place."
Ref: https://docs.opnsense.org/manual/ntpd.html
That was my mistake at the beginning. So I had to add the WAN interface, but did not add any rules. As of course I did not want anyone in the internet to be able to connect to 123/UDP to my system.
https://docs.opnsense.org/manual/ntpd.html
The relevant ticket is https://github.com/opnsense/core/issues/7832
Cheers,
Franco
And to answer your question:
Access restrictions -> Disable ntpq and ntpdc queries
But you don't really need to flip this. The default makes sense and was most likely only given backwards before so that the NTP status page could work but that isn't really necessary as the latest change shows.
Cheers,
Franco
Thanks a lot for the explanation and the super fast feedback.
So everything is fine then.
Keep up the good work! :)