Time Synchronization

akakapp
New here

Time Synchronization

Is there documentation I can download explaining how Meraki synchronizes time across a network?  I need this for PCI.

4 Replies 4
RWelch
A model citizen

The Upstream Firewall Rules for Cloud Connectivity references NTP resolution as follows: 

Screenshot 2024-10-14 at 11.52.13.pnghttps://documentation.meraki.com/General_Administration/Other_Topics/Upstream_Firewall_Rules_for_Clo...

If you found this post helpful, please give it Kudos. If my answer solves your problem please click Accept as Solution so others can benefit from it.
RaphaelL
Kind of a big deal
Kind of a big deal

 

I though I read somewhere that devices running recent firmware are no longer using udp 123 for ntp. They are doing ntp inside next-tunnel. Can't find info about it tho.

RWelch
A model citizen

Possibly so - another location to reference is HELP > Firewall Info which shows UDP 123.

If you found this post helpful, please give it Kudos. If my answer solves your problem please click Accept as Solution so others can benefit from it.
PhilipDAth
Kind of a big deal
Kind of a big deal

I don't see NTP queries being made from Meraki devices over the public Internet - so I believe this is correct.

 

About 2 weeks ago I had a customers AnyConnect SAML configuration break because of time synchronisation.  The time it was syncing from the Meraki NTP servers was around 100s out.  SAML allows for a time error of 30s.

 

Support wasn't able actually to do anything.  I was hoping they could point it at some different NTP servers, but nope.  It can only use the internal Meraki time servers.

After enough reboots I guess it locked onto a different internal NTP server with the correct time.

 

That is the only time issue I have ever run into.

Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels