Página inicial Explorar Ajuda
Entrar
ffdo-infrastruktur
/
ffdo-ansible-l2tp
mirror de https://github.com/ffdo/ffdo-ansible-l2tp.git
9
0
Fork 0
Arquivos Issues 0 Wiki
Branch: master
Branches Tags
ffdo-ansible...
/
roles
/
services_ntp
/
templates
/
ntp.conf.j2

ntp.conf.j2 2.6 KB
Link permanente Histórico Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475 
  1. # /etc/ntp.conf, configuration for ntpd; see ntp.conf(5) for help
    2. 

  2. 

  3. #
    4. 

  4. # This file is managed by ansible. Do not edit by hand!
    5. 

  5. #
    6. 

  6. 

  7. driftfile /var/lib/ntp/ntp.drift
    8. 

  8. 

  9. 

  10. # listen on if
    11. 

  11. interface ignore wildcard
    12. 

  12. interface listen {{ primary_vnic }}
    13. 

  13. {% if domaenenliste is defined %}
    14. 

  14. {% for domaene in domaenenliste|dictsort %}
    15. 

  15. interface listen bat{{domaene[0]}}
    16. 

  16. {% endfor %}
    17. 

  17. {% endif %}
    18. 

  18. 

  19. # Enable this if you want statistics to be logged.
    20. 

  20. #statsdir /var/log/ntpstats/
    21. 

  21. 

  22. statistics loopstats peerstats clockstats
    23. 

  23. filegen loopstats file loopstats type day enable
    24. 

  24. filegen peerstats file peerstats type day enable
    25. 

  25. filegen clockstats file clockstats type day enable
    26. 

  26. 

  27. 

  28. # You do need to talk to an NTP server or two (or three).
    29. 

  29. #server ntp.your-provider.example
    30. 

  30. 

  31. # pool.ntp.org maps to about 1000 low-stratum NTP servers.  Your server will
    32. 

  32. # pick a different set every time it starts up.  Please consider joining the
    33. 

  33. # pool: <http://www.pool.ntp.org/join.html>
    34. 

  34. server 0.debian.pool.ntp.org iburst
    35. 

  35. server 1.debian.pool.ntp.org iburst
    36. 

  36. server 2.debian.pool.ntp.org iburst
    37. 

  37. server 3.debian.pool.ntp.org iburst
    38. 

  38. 

  39. 

  40. # Access control configuration; see /usr/share/doc/ntp-doc/html/accopt.html for
    41. 

  41. # details.  The web page <http://support.ntp.org/bin/view/Support/AccessRestrictions>
    42. 

  42. # might also be helpful.
    43. 

  43. #
    44. 

  44. # Note that "restrict" applies to both servers and clients, so a configuration
    45. 

  45. # that might be intended to block requests from certain clients could also end
    46. 

  46. # up blocking replies from your own upstream servers.
    47. 

  47. 

  48. # By default, exchange time with everybody, but don't allow configuration.
    49. 

  49. # restrict -4 default kod notrap nomodify nopeer noquery
    50. 

  50. # restrict -6 default kod notrap nomodify nopeer noquery
    51. 

  51. restrict -4 default ignore
    52. 

  52. restrict -6 default ignore
    53. 

  53. 

  54. 

  55. # Local users may interrogate the ntp server more closely.
    56. 

  56. restrict 127.0.0.1
    57. 

  57. restrict ::1
    58. 

  58. 

  59. # allow from ff-do-subnets
    60. 

  60. restrict {{ff_network.v4_network|ipaddr('network')}} mask {{ff_network.v4_network|ipaddr('netmask')}} kod notrap nomodify nopeer noquery
    61. 

  61. restrict {{ff_network.v6_network|ipaddr('network')}} mask {{ff_network.v6_network|ipaddr('netmask')}} kod notrap nomodify nopeer noquery
    62. 

  62. 

  63. # Clients from this (example!) subnet have unlimited access, but only if
    64. 

  64. # cryptographically authenticated.
    65. 

  65. #restrict 192.168.123.0 mask 255.255.255.0 notrust
    66. 

  66. 

  67. 

  68. # If you want to provide time to your local subnet, change the next line.
    69. 

  69. # (Again, the address is an example only.)
    70. 

  70. #broadcast 192.168.123.255
    71. 

  71. 

  72. # If you want to listen to time broadcasts on your local subnet, de-comment the
    73. 

  73. # next lines.  Please do this only if you trust everybody on the network!
    74. 

  74. #disable auth
    75. 

  75. #broadcastclient
    76.