Sophos XG: XG as NTP server – workaround

Sophos UTM provided the ability to act as an NTP server, which was very usefull in many installations.

It looks like though, that Sophos has no intentions to add this feature to XG.

But Rob Andrews, in the Sophos Community, came up with a very simple workaround, a SNAT rule, that catches NTP traffic comming to the XG LAN IP and passes it on to the NTP server of your choice, I tried it out, and here is what I did:

Create a NAT rule:

Now point your NTP client to the LAN IP of the XG, and see what happends 🙂

Remember to create a firewall rule accordingly, if you do not allow LAN –> WAN (ANY) 🙂

Thanks for the workaround Rob!



  1. Thorsten Sult

    Hey, thanks for the instructions.
    However, the workaround is like entering the car through the boot. 😉

    The NTP feature is definitely missing here. Best regards!

    1. Martin (Post author)

      Ha ha exactly!! 😀
      Thanks Thorsten 🙂

      Best regards!


Leave a Comment

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.

By continuing to use the site, you agree to the use of cookies. more information

The cookie settings on this website are set to "allow cookies" to give you the best browsing experience possible. If you continue to use this website without changing your cookie settings or you click "Accept" below then you are consenting to this.