Configuring Kod - Huawei AR530 Series Configuration Manual

Industrial switch router

Hide thumbs Also See for AR530 Series:

Configuration manual (409 pages)

Quick start manual (9 pages)

Hardware installation and maintenance manual (219 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

page of 117

/ 117
Contents
Table of Contents
Bookmarks

Table of Contents

Huawei AR530&AR550 Series Industrial Switch Routers

Configuration Guide - Device Management

4.5.4.4 Configuring KOD

Context

The Kiss-o'-Death (KOD) is a brand new access control technology put forward by NTPv4, and

the KOD is mainly used for a server to provide information, such as a status report and access

control, for a client.

After the KOD is enabled on the server, the server sends the kiss code DENY or the kiss code

RATE to the client according to the operating status of the system.

Procedure

Step 1 Run:

system-view

The system view is displayed.

Step 2 Run:

ntp-service kod-enable

The KOD function is enabled.

By default, the KOD function is disabled.

Step 3 Configure the basic ACL.

Before configuring the access control authority, you must create a basic ACL. For the creation

procedure, see "ACL Configuration" in the Huawei AR530&AR550 Series Industrial Switch

Routers Configuration Guide-Security.

Step 4 Run:

ntp-service access limited { acl-number | ipv6 acl6-number }

Control on the rate of incoming NTP packets is enabled.

By default, control on the rate of incoming NTP packets is disabled.

Step 5 Run:

Issue 01 (2014-11-30)

When receiving the kiss code DENY, the client terminates all connections with the server,

and stops sending packets to the server.

When receiving the kiss code RATE, the client immediately shortens a poll interval with

the server. Every time the kiss code RATE is received after the first shortening operation,

the poll interval is further shortened.

NOTE

The KOD supports the unicast client/server mode, symmetric peer mode, and manycast mode.

The KOD only functions in NTPv4.

The following configuration is performed on the server.

NOTE

Before enabling control on the rate of incoming NTP packets, check the ACL rule configuration. When

the ACL rule is deny, the server sends the kiss code DENY. When the ACL is permit and the rate of

incoming NTP packets reaches the upper threshold, the server sends the kiss code RATE.

Huawei Proprietary and Confidential

4 NTP Configuration

Table of Contents

This manual is also suitable for:

Ar550 series

Configuring Kod - Huawei AR530 Series Configuration Manual

4.5.4.4 Configuring KOD

Related Manuals for Huawei AR530 Series

Related Content for Huawei AR530 Series

This manual is also suitable for:

Table of Contents