ntp.conf 1.5 KB

1234567891011121314151617181920212223242526272829303132333435363738394041424344
  1. #
  2. # /etc/ntp.conf (Salt managed)
  3. #
  4. # configuration for ntpd; see ntp.conf(5) for help
  5. #
  6. driftfile /var/lib/ntp/ntp.drift
  7. # Enable this if you want statistics to be logged.
  8. #statsdir /var/log/ntpstats/
  9. statistics loopstats peerstats clockstats
  10. filegen loopstats file loopstats type day enable
  11. filegen peerstats file peerstats type day enable
  12. filegen clockstats file clockstats type day enable
  13. # You do need to talk to an NTP server or two (or three).
  14. #server ntp.your-provider.example
  15. # pool.ntp.org maps to about 1000 low-stratum NTP servers. Your server will
  16. # pick a different set every time it starts up. Please consider joining the
  17. # pool: <http://www.pool.ntp.org/join.html>
  18. server 0.debian.pool.ntp.org iburst
  19. server 1.debian.pool.ntp.org iburst
  20. server 2.debian.pool.ntp.org iburst
  21. # Access control configuration; see /usr/share/doc/ntp-doc/html/accopt.html for
  22. # details. The web page <http://support.ntp.org/bin/view/Support/AccessRestrictions>
  23. # might also be helpful.
  24. #
  25. # Note that "restrict" applies to both servers and clients, so a configuration
  26. # that might be intended to block requests from certain clients could also end
  27. # up blocking replies from your own upstream servers.
  28. # By default, exchange time with everybody, but don't allow configuration.
  29. restrict -4 default kod notrap nomodify nopeer noquery
  30. restrict -6 default kod notrap nomodify nopeer noquery
  31. # Local users may interrogate the ntp server more closely.
  32. restrict 127.0.0.1
  33. restrict ::1
  34. # CVE-2013-5211
  35. disable monitor