Hi Sam,
I am not sure if this is something you might want/can do, but with
openwrt you can set an initial "builddate" ( see :
https://forum.openwrt.org/viewtopic.php?id=39835 ) setting this to
something more recent (i.e June 2014 ) etc solves some of the cert
crazy you might be experiencing. I've 'fixed' several non mikrotiks
with the same issue doing this.
Obviously you want to run tiered NTP as well, but this may be of use.
-Joel
On 3 June 2014 12:02, Sam Russell
Hi all,
I'm playing with mikrotiks for VPNs, and one of the "features" is that the RB750's we have don't hold time when they reboot. I'm planning to build them with NTP access (so if they can get internet then they can get time), but I'm also tempted to generate certs backdated to 1970 instead.
Is anyone else doing this? How do you get mikrotiks to validate certs if the clock keeps resetting on power off - is relying on NTP the answer?
Cheers Sam
_______________________________________________ NZNOG mailing list NZNOG(a)list.waikato.ac.nz http://list.waikato.ac.nz/mailman/listinfo/nznog