Operation Manual – NTPH3C S3600 Series Ethernet Switches-Release 1510 Chapter 1 NTP Configuration1-9IV. NTP multicast server modeWhen an S3600 Ethernet switch operates in NTP multicast server mode, it multicastsclock synchronization packets periodically. The devices in the NTP multicast clientmode will respond to these packets and start the clock synchronization process. Theswitch operating in this mode can support up to 1,024 multicast clients.Note:z The total number of the servers and peers configured for a switch is up to 128.z After the configuration, an S3600 Ethernet switch does not establish connectionswith peers if it operates in NTP server mode. Whereas if it operates in any of theother modes, it establishes connections with peers.z If an S3600 Ethernet switch operates in passive peer mode, NTP broadcast clientmode, or NTP multicast client mode, it establishes connections with peersdynamically. If it operates in any of the other modes, it establishes connections withpeers statically.1.3 Configuring Access Control RightThe access control right to the NTP server only provides a minimal degree of securitymeasure. A more secure way is to perform identity authentication.The right of an access request received by the NTP server is matched from the highestto the lowest in order of peer, server, synchronization, and query.Table 1-3 Configure the access control right to the local NTP serverOperation Command DescriptionEnter system view system-view —Configure the accesscontrol right to the localNTP serverntp-service access{ peer | server |synchronization |query } acl-numberOptionalBy default, the accesscontrol right to the localNTP server is peer.1.4 Configuring NTP AuthenticationIn networks with higher security requirements, the NTP authentication function must beenabled to run NTP. Through password authentication on the client and the server, theclient is synchronized only to the server that passes the authentication. This improvesnetwork security.