Configuring Restrict Lists

You can configure a restrict list to deny/permit a particular host or network. The following limitations apply:
  • You cannot add an NTP server to the restrict list. When the NTP server is added, the server IP address is added as the system restrict list with the action "permit".
  • If an NTP is enabled on a VLAN, that VLAN IP address/network cannot be added as restrict list entry.

To create or delete a restrict list, use the following command:

configure ntp restrict-list [add | delete] network {mask} [permit | deny] {{vr} vr_name}

To show the NTP access list of the current system based on the source IP address blocks, use the following command:

show ntp restrict-list {user | system} {{vr}vr_name}