hijacks the Internet NTP. However, my TiVo can’t update its schedule if I enable it; it freezes on the “update clock” step. I can understand why TiVo restricts its clock setting to its own clock, but I’d like to implement NTP Best Practices. How can I bypass the port forwarding for my TiVo? (I’ve tried, but I don’t understand well enough to succeed on my own.)
Hi @Fred_H
What you could do is create another NAT rule above the hijack, and for source enter the IP address of your TiVo. BTW make sure you give your TiVo a static IP or a DHCP lease reseveration.
Then with this new NAT rule, check the box to Disable redirection for traffic matching this rule
Otherwise make it the same as the hijack rule.
Just realized a simpler approach might be to create an alias with the hosts you want to exempt, and then in the hijack NAT rule, set the source to that alias and check Invert Match option.
As we have three TiVo’s that would indeed be simpler. But for me (I’m 81 and it’s a home network) it raises the likelihood of forgetting how it works. So I’m going to leave it with the three rules. Thanks again, Arthur
I’m also noticing that the NTP server on pfsense seems to be giving the wrong time to clients. It is the wrong time zone and a half hour out. How can I check what time it is giving?
If using the router as an NTP server it will be handing out the same time as itself. So check that your router is keeping proper time and is set to the correct time zone.