diff options
| author | Marcel Gisselmann <mg@affito.de> | 2019-09-27 13:10:35 +0200 |
|---|---|---|
| committer | Marcel Gisselmann <mg@affito.de> | 2019-09-27 13:10:35 +0200 |
| commit | 258c24ab9be8aa4ced8bfa1c19f134ec8bbfb1a0 (patch) | |
| tree | bbaa40d3bf0d7973d14f646d662903e8441632cf | |
| parent | 9def20e8d74475a5fe3e4844c13e988e03f4c363 (diff) | |
| download | vyos-1x-258c24ab9be8aa4ced8bfa1c19f134ec8bbfb1a0.tar.gz vyos-1x-258c24ab9be8aa4ced8bfa1c19f134ec8bbfb1a0.zip | |
T1694 NTPd: Do not listen on all interfaces by default
| -rwxr-xr-x | src/conf_mode/ntp.py | 3 |
1 files changed, 2 insertions, 1 deletions
diff --git a/src/conf_mode/ntp.py b/src/conf_mode/ntp.py index f706d502f..8f32e6e81 100755 --- a/src/conf_mode/ntp.py +++ b/src/conf_mode/ntp.py @@ -42,6 +42,8 @@ restrict default noquery nopeer notrap nomodify restrict 127.0.0.1 restrict -6 ::1 +# Do not listen on any interface address by default +interface ignore wildcard # # Configurable section # @@ -63,7 +65,6 @@ restrict {{ n.address }} mask {{ n.netmask }} nomodify notrap nopeer {% if listen_address -%} # NTP should listen on configured addresses only -interface ignore wildcard {% for a in listen_address -%} interface listen {{ a }} {% endfor -%} |