22.16.2. Configure Rate Limiting Access to an NTP Service

To enable rate limiting access to the NTP service running on a system, add the limited option to the restrict command as explained in Section 22.16.1, “Configure Access Control to an NTP Service”. If you do not want to use the default discard parameters, then also use the discard command as explained here.

The discard command takes the following form:

discard [average value] [minimum value] [monitor value]

average — specifies the minimum average packet spacing to be permitted, it accepts an argument in log₂ seconds. The default value is 3 (2³ equates to 8 seconds).
minimum — specifies the minimum packet spacing to be permitted, it accepts an argument in log₂ seconds. The default value is 1 (2¹ equates to 2 seconds).
monitor — specifies the discard probability for packets once the permitted rate limits have been exceeded. The default value is 3000 seconds. This option is intended for servers that receive 1000 or more requests per second.

Examples of the discard command are as follows:

discard average 4

discard average 4 minimum 2

Where did the comment section go?

Red Hat's documentation publication system recently went through an upgrade to enable speedier, more mobile-friendly content. We decided to re-evaluate our commenting platform to ensure that it meets your expectations and serves as an optimal feedback mechanism. During this redesign, we invite your input on providing feedback on Red Hat documentation via the discussion platform.

Log in to Your Red Hat Account

Red Hat Account

Customer Portal

Select Your Language

Infrastructure and Management

Cloud Computing

Storage

JBoss Development and Management

JBoss Integration and Automation

Mobile

Services

Tools

Red Hat Product Security Center

Security Updates

Resources

Customer Portal Community

Customer Events

Stories

22.16.2. Configure Rate Limiting Access to an NTP Service

Where did the comment section go?