diff options
author | Georgiy Tugai <georgiy@crossings.link> | 2021-10-13 13:28:11 +0200 |
---|---|---|
committer | Georgiy Tugai <georgiy@crossings.link> | 2021-10-13 13:28:11 +0200 |
commit | 854c68d43d8f1cf20417edd12284ea20f9e7ec9a (patch) | |
tree | 3f8f6a29fed5a20e8881407ad87b4fef0d8e4deb /data/templates/ntp/ntpd.conf.tmpl | |
parent | e84623a1cd284d742d5c8849a75c56c3b178e0ef (diff) | |
download | vyos-1x-854c68d43d8f1cf20417edd12284ea20f9e7ec9a.tar.gz vyos-1x-854c68d43d8f1cf20417edd12284ea20f9e7ec9a.zip |
ntp: T3904: Fix NTP pool associations
As of NTP 4.2.7, 'nopeer' also blocks pool associations.
See https://bugs.ntp.org/show_bug.cgi?id=2657
See also https://github.com/geerlingguy/ansible-role-ntp/pull/84
Diffstat (limited to 'data/templates/ntp/ntpd.conf.tmpl')
-rw-r--r-- | data/templates/ntp/ntpd.conf.tmpl | 2 |
1 files changed, 2 insertions, 0 deletions
diff --git a/data/templates/ntp/ntpd.conf.tmpl b/data/templates/ntp/ntpd.conf.tmpl index 2b56b53c3..38e68f24f 100644 --- a/data/templates/ntp/ntpd.conf.tmpl +++ b/data/templates/ntp/ntpd.conf.tmpl @@ -6,6 +6,8 @@ driftfile /var/lib/ntp/ntp.drift # By default, only allow ntpd to query time sources, ignore any incoming requests restrict default noquery nopeer notrap nomodify +# Allow pool associations +restrict source nomodify notrap noquery # Local users have unrestricted access, allowing reconfiguration via ntpdc restrict 127.0.0.1 restrict -6 ::1 |