How to enhance protection in my NTP architecture against cyber attacks? [closed]
I built three NTP servers each with chrony, openntpd and NTPsec and one Ubuntu server that monitors NTP traffic:
Zeek and Suricata generate logs
Logs are sent to syslog.
Logstash reads logs from syslog and processes them.
Logstash sends p…