(Optional) Configuring the Broadcast Mode
The NTP broadcast mode can be configured on a LAN to synchronize clocks on the LAN.
Procedure
- Configure an NTP broadcast server.
- Run ntp-service authentication-keyid keyId authentication-mode { md5 | hmac-sha256 } { password | cipher password }
The NTP authentication key is set.
Using the HMAC-SHA256 algorithm for NTP authentication is recommended.
The system automatically verifies the strength of an entered key. Only the key that meets the strength requirements can be configured. To disable key strength check, run the ntp authentication-password complexity-check disable command.
Disabling the key strength check function causes security risks. Therefore, you are advised not to run this command.
- Run ntp-service broadcast-server [ authentication-keyid key-id | version version-number | port port-number ] *
The local router is configured as an NTP broadcast server.
The NTP broadcast server periodically sends clock-synchronization packets to the broadcast address 255.255.255.255.
The NTP broadcast server functions for a LAN only.
- Run ntp-service authentication-keyid keyId authentication-mode { md5 | hmac-sha256 } { password | cipher password }
- Configure an NTP broadcast client.
- Run ntp-service authentication-keyid keyId authentication-mode { md5 | hmac-sha256 } { password | cipher password }
The NTP authentication key is set.
Using the HMAC-SHA256 algorithm for NTP authentication is recommended.
The system automatically verifies the strength of an entered key. Only the key that meets the strength requirements can be configured. To disable key strength check, run the ntp authentication-password complexity-check disable command.
Disabling the key strength check function causes security risks. Therefore, you are advised not to run this command.
- Run ntp-service authentication-keyid keyId authentication-mode { md5 | hmac-sha256 } { password | cipher password }