Hello,
I received a report that my Esxi 4.1 host is participating in a NTP Distributed Denial of Service attack.
I posses limited Vmware skill set and this is what I have done so far:
However, I am still getting reports that my host is participating in the NTP attack. Did I miss anything else?
Thanks in advance for any help
Hi,
there's a KB article on how to fix your ESXi by adding some lines in the ntp.conf:
Tim
Hi,
there's a KB article on how to fix your ESXi by adding some lines in the ntp.conf:
Tim
Thank you Tim.
Do I need to restart any services after I update the ntp.conf file?
I would restart the NTP Daemon to make sure.
Also you should think about moving the ESXi hosts into private subnets, that are not routed to the internet, as most times, they don't need direct internet access.
Regards
Tim
Thanks again, Tim!
I appreciate the advice as well.