Menu
What's new
By:
Filters
Better Search

Cloudflare Time

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

Status
Not open for further replies.
Stevens243 said:
Very interesting blog post! I learned a few things. I've also set my Merlin sourced NTP server to; time.cloudflare.com per the article. No data yet, but looking at it over the next few days.

https://blog.cloudflare.com/secure-time/
Click to expand...
the real question that will be waiting to be answered by @RMerlin the great is, does his time server support NTS function? and also @Jack Yaz does his implementation support NTS as well?

if so Cloudflares NTS feature can be used by the address time.cloudflare.com:1234

and another questionable feature is their secure implementation of rough time
roughtime.cloudflare.com:2002
 
RMerlin said:
No, Busybox only supports regular NTP.
Click to expand...
though security is important, i do not really care for all the stratum 3 servers I am seeing when i use the pool option with cloud flare's basic ntp server.
 
Thank you. What a well written, well explained article (except for “perspicuously“); you don’t need to be an expert to get a fair understanding of it.


I’ve set time.cloudflare.com as my primary and pool.ntp.org as the secondary ntp server. I look forwards to your follow up with data, which I assume will be a lot more scientific than my did-it-break-my router.
 
martinr said:
Thank you. What a well written, well explained article (except for “perspicuously“); you don’t need to be an expert to get a fair understanding of it.


I’ve set time.cloudflare.com as my primary and pool.ntp.org as the secondary ntp server. I look forwards to your follow up with data, which I assume will be a lot more scientific than my did-it-break-my router.
Click to expand...

I can confirm that it supports not only being run as a server but also as a pool if you prefer to use pool option. I have it placed in line a more precise server to see how well it handles.
 
RMerlin said:
No, Busybox only supports regular NTP.
Click to expand...
Not much appears to support NTS for users, other than ntpsec, maybe not even that depending on what version of TLS is being run, which probably demands the latest openssl... could be quite an updating exercise. Interesting development - a long time in the works, draft 19 of that IETF.
 
Can someone explain why one would like to switch from the std time.pool.gov etc servers? Where is the upside what security hole is at stake here? It’s just a time svr feeding your router no?
 
Raphie said:
Can someone explain why one would like to switch from the std time.pool.gov etc servers? Where is the upside what security hole is at stake here? It’s just a time svr feeding your router no?
Click to expand...
Speed and security, I get 8-10ms response time from the cloudflare NTP server compared to pool.ntp.org with response times of 22-24ms.
 
Speed? How is speed (as in ms) relevant for a time server that syncs once every 24h?
What is the security improvement? Can you qualify?
 
Raphie said:
Speed? How is speed (as in ms) relevant for a time server that syncs once every 24h?
What is the security improvement? Can you qualify?
Click to expand...
Well first off that means the servers are closer to you and more likely to be accurate to you. As far as security goes , the only risk to time is people with time critical applications, but I would not recommend nts if accuracy is your main focus. It is more like false sense of security vs accuracy.
 
Why? They send a timestamp, the network corrects the latency. There is no advantage on “time” what’s the security improvement?
 
Protection from DDos of some types to protect servers
 
Some functions require time accuracy to function or they will not function at all and if time can suffer a ddos attack then somethings will be forced to stop functioning possibly even lose all security and allow easier hacking.
 
Swistheater said:
Some functions require time accuracy to function or they will not function at all and if time can suffer a ddos attack then somethings will be forced to stop functioning possibly even lose all security and allow easier hacking.
Click to expand...
And how accurate has time to be for said functions?
And how accurate needed for ddos attack protection?
 
That I am not qualified to specify, but I have heard of security networks being taken down simply because the clocks did not function. Do I think nts is important to every day home user, maybe not so much , but arguably it does serve a purpose. BTW when using nts you naturally give up some level of accuracy for security.
 
Exactly it’s BS, time is a timestamp pulse, to set your local time, depending on the interval it can touch your lan as little as once a month.
And DDOS? your router drops those packets. Again I don’t see ANY real world use for us prosumers, other than “because we can”
 
Status
Not open for further replies.

Similar threads

D
Solved Windows 11 updates won't download attempted disabling router settings.
Replies
18
Views
2K
DJones
D
I
Unable to connect to VPN with specific ISP (and more weird symptoms)
Replies
5
Views
517
iraweissman
I
S
Moving DHCP to Pi-Hole
Replies
2
Views
347
Scott Kaforey
S
tomasm
Cloudflare DNS problems caused by Comcast?
2
Replies
23
Views
3K
drinkingbird
drinkingbird
AGTDenton
Solved RT-AC5300 - Crashing & Rebooting (Merlin 386.12)
Replies
5
Views
971
jerry6
jerry6
Similar threads
Thread starter Title Forum Replies Date
E Cloudflare ddns-start script Asuswrt-Merlin 2
J Cloudflare DDNS 388.6 Asuswrt-Merlin 4
R DNS filtering when using cloudflare DNS? Asuswrt-Merlin 4
A Solved Need help setting up DDNS for cloudflare Asuswrt-Merlin 5
U Solved Cloudflare DoT test Asuswrt-Merlin 5

Similar threads

Latest threads

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Members online

Total: 618 (members: 22, guests: 596)
Top