| 1 | # /etc/ntp.conf, configuration for ntpd; see ntp.conf(5) for help |
|---|
| 2 | |
|---|
| 3 | driftfile /var/lib/ntp/ntp.drift |
|---|
| 4 | |
|---|
| 5 | # Leap seconds definition provided by tzdata |
|---|
| 6 | leapfile /usr/share/zoneinfo/leap-seconds.list |
|---|
| 7 | |
|---|
| 8 | # Enable this if you want statistics to be logged. |
|---|
| 9 | #statsdir /var/log/ntpstats/ |
|---|
| 10 | |
|---|
| 11 | statistics loopstats peerstats clockstats |
|---|
| 12 | filegen loopstats file loopstats type day enable |
|---|
| 13 | filegen peerstats file peerstats type day enable |
|---|
| 14 | filegen clockstats file clockstats type day enable |
|---|
| 15 | |
|---|
| 16 | |
|---|
| 17 | # You do need to talk to an NTP server or two (or three). |
|---|
| 18 | #server ntp.your-provider.example |
|---|
| 19 | |
|---|
| 20 | # pool.ntp.org maps to about 1000 low-stratum NTP servers. Your server will |
|---|
| 21 | # pick a different set every time it starts up. Please consider joining the |
|---|
| 22 | # pool: <http://www.pool.ntp.org/join.html> |
|---|
| 23 | pool 0.debian.pool.ntp.org iburst |
|---|
| 24 | pool 1.debian.pool.ntp.org iburst |
|---|
| 25 | pool 2.debian.pool.ntp.org iburst |
|---|
| 26 | pool 3.debian.pool.ntp.org iburst |
|---|
| 27 | |
|---|
| 28 | |
|---|
| 29 | # Access control configuration; see /usr/share/doc/ntp-doc/html/accopt.html for |
|---|
| 30 | # details. The web page <http://support.ntp.org/bin/view/Support/AccessRestrictions> |
|---|
| 31 | # might also be helpful. |
|---|
| 32 | # |
|---|
| 33 | # Note that "restrict" applies to both servers and clients, so a configuration |
|---|
| 34 | # that might be intended to block requests from certain clients could also end |
|---|
| 35 | # up blocking replies from your own upstream servers. |
|---|
| 36 | |
|---|
| 37 | # By default, exchange time with everybody, but don't allow configuration. |
|---|
| 38 | restrict -4 default kod notrap nomodify nopeer noquery limited |
|---|
| 39 | restrict -6 default kod notrap nomodify nopeer noquery limited |
|---|
| 40 | |
|---|
| 41 | # Local users may interrogate the ntp server more closely. |
|---|
| 42 | restrict 127.0.0.1 |
|---|
| 43 | restrict ::1 |
|---|
| 44 | |
|---|
| 45 | # Needed for adding pool entries |
|---|
| 46 | restrict source notrap nomodify noquery |
|---|
| 47 | |
|---|
| 48 | # Clients from this (example!) subnet have unlimited access, but only if |
|---|
| 49 | # cryptographically authenticated. |
|---|
| 50 | #restrict 192.168.123.0 mask 255.255.255.0 notrust |
|---|
| 51 | |
|---|
| 52 | |
|---|
| 53 | # If you want to provide time to your local subnet, change the next line. |
|---|
| 54 | # (Again, the address is an example only.) |
|---|
| 55 | #broadcast 192.168.123.255 |
|---|
| 56 | |
|---|
| 57 | # If you want to listen to time broadcasts on your local subnet, de-comment the |
|---|
| 58 | # next lines. Please do this only if you trust everybody on the network! |
|---|
| 59 | #disable auth |
|---|
| 60 | #broadcastclient |
|---|
