-- NTP
-- time
-- synchronization
-- firewall

How to synchronize the time of a File Transfer Direct (FTD) server which is behind a firewall that filters NTP (UDP port 123)?

If the FTD server is not able to synchronize its time with Internet servers due to firewall filtering UDP port 123, you can still have current time on FTD by specifying a local NTP server, which most organizations do have in place already.

If you utilize Microsoft Active Directory infrastructure, the easiest way is to check which is the Logon server (if you do not use Microsoft AD - ask your firewall administrator which internal server is a local NTP server and use it):

1. Open a command prompt by Start -> Run -> cmd.exe
2. Execute in the console window the following command:

echo %logonserver%

3. Note the name of the machine, lets assume it is DC1, and issue the following command in the same window:

nslookup DC1

4. Note the IP address, lets assume it is 192.168.1.1, of the DC1 (your logon server)
5. Put the name (in our example - DC1) or, if it cannot be resolved, use its IP address (192.168.1.1) instead in FTD Admin UI -> Administration -> System Settings -> Time Settings -> Date/time Settings -> NTP Server
6. Synchronize and save.