| 1 | # /etc/ntp.conf, configuration for ntpd; see ntp.conf(5) for help |
|---|
| 2 | |
|---|
| 3 | driftfile /var/lib/ntp/ntp.drift |
|---|
| 4 | |
|---|
| 5 | |
|---|
| 6 | # Enable this if you want statistics to be logged. |
|---|
| 7 | #statsdir /var/log/ntpstats/ |
|---|
| 8 | |
|---|
| 9 | statistics loopstats peerstats clockstats |
|---|
| 10 | filegen loopstats file loopstats type day enable |
|---|
| 11 | filegen peerstats file peerstats type day enable |
|---|
| 12 | filegen clockstats file clockstats type day enable |
|---|
| 13 | |
|---|
| 14 | |
|---|
| 15 | # You do need to talk to an NTP server or two (or three). |
|---|
| 16 | #server ntp.your-provider.example |
|---|
| 17 | |
|---|
| 18 | # pool.ntp.org maps to about 1000 low-stratum NTP servers. Your server will |
|---|
| 19 | # pick a different set every time it starts up. Please consider joining the |
|---|
| 20 | # pool: <http://www.pool.ntp.org/join.html> |
|---|
| 21 | #server 0.debian.pool.ntp.org iburst |
|---|
| 22 | #server 1.debian.pool.ntp.org iburst |
|---|
| 23 | #server 2.debian.pool.ntp.org iburst |
|---|
| 24 | #server 3.debian.pool.ntp.org iburst |
|---|
| 25 | server ntp.public.core2.co.uk |
|---|
| 26 | |
|---|
| 27 | # Access control configuration; see /usr/share/doc/ntp-doc/html/accopt.html for |
|---|
| 28 | # details. The web page <http://support.ntp.org/bin/view/Support/AccessRestrictions> |
|---|
| 29 | # might also be helpful. |
|---|
| 30 | # |
|---|
| 31 | # Note that "restrict" applies to both servers and clients, so a configuration |
|---|
| 32 | # that might be intended to block requests from certain clients could also end |
|---|
| 33 | # up blocking replies from your own upstream servers. |
|---|
| 34 | |
|---|
| 35 | # By default, exchange time with everybody, but don't allow configuration. |
|---|
| 36 | restrict -4 default kod notrap nomodify nopeer noquery |
|---|
| 37 | restrict -6 default kod notrap nomodify nopeer noquery |
|---|
| 38 | |
|---|
| 39 | # Local users may interrogate the ntp server more closely. |
|---|
| 40 | restrict 127.0.0.1 |
|---|
| 41 | restrict ::1 |
|---|
| 42 | |
|---|
| 43 | # Clients from this (example!) subnet have unlimited access, but only if |
|---|
| 44 | # cryptographically authenticated. |
|---|
| 45 | #restrict 192.168.123.0 mask 255.255.255.0 notrust |
|---|
| 46 | |
|---|
| 47 | |
|---|
| 48 | # If you want to provide time to your local subnet, change the next line. |
|---|
| 49 | # (Again, the address is an example only.) |
|---|
| 50 | #broadcast 192.168.123.255 |
|---|
| 51 | |
|---|
| 52 | # If you want to listen to time broadcasts on your local subnet, de-comment the |
|---|
| 53 | # next lines. Please do this only if you trust everybody on the network! |
|---|
| 54 | #disable auth |
|---|
| 55 | #broadcastclient |
|---|
