Re: [fw-wiz] Acqusition of time
From: Volker Tanger (volker.tanger@discon.de)
Date: 01/29/03
- Next message: Luis Bruno: "Re: [fw-wiz] Acqusition of time"
- Previous message: Barney Wolff: "Re: [fw-wiz] terminal services"
- In reply to: Brian Monkman: "Re: RE: [fw-wiz] Acqusition of time"
- Next in thread: Bennett Todd: "Re: RE: [fw-wiz] Acqusition of time"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: Volker Tanger <volker.tanger@discon.de> To: Brian Monkman <bmonkman@comcast.net> Date: Wed Jan 29 12:13:35 2003
Greetings!
Brian Monkman wrote:
>
> We are talking about a firewall farm. [...] central logging server.
[...]
> In your opinion - should we have a battery backed-up clock on these
> firewalls or is the network time source sufficient?
Do both - the battery back-up for having an approximately accurate time
in case of rebooting during problems with the external time source.
Network problems are more probable than attacks against radio or GPS
clocks here.
But for a real sync between the servers you need them to synchronize
onto the same source - be it via network (same, preferrably internal NTP
server) or via the same external source (radio clock or GPS clock).
Bye
Volker Tanger
IT-Security Consulting
-- discon gmbh Wrangelstraße 100 D-10997 Berlin fon +49 30 6104-3307 fax +49 30 6104-3461 volker.tanger@discon.de http://www.discon.de/
- Next message: Luis Bruno: "Re: [fw-wiz] Acqusition of time"
- Previous message: Barney Wolff: "Re: [fw-wiz] terminal services"
- In reply to: Brian Monkman: "Re: RE: [fw-wiz] Acqusition of time"
- Next in thread: Bennett Todd: "Re: RE: [fw-wiz] Acqusition of time"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
