summaryrefslogtreecommitdiff
path: root/data/templates/ntp/ntpd.conf.tmpl
diff options
context:
space:
mode:
authorGeorgiy Tugai <georgiy@crossings.link>2021-10-13 13:28:11 +0200
committerChristian Poessinger <christian@poessinger.com>2021-10-13 14:08:13 +0200
commitd4c5e78fc94a375487a968083f88d96323b67301 (patch)
tree02ae74e80bd3948e78a7182cc96006f307ae6c35 /data/templates/ntp/ntpd.conf.tmpl
parent38421c50e9bda8a60413df99136227a9bd3758ef (diff)
downloadvyos-1x-d4c5e78fc94a375487a968083f88d96323b67301.tar.gz
vyos-1x-d4c5e78fc94a375487a968083f88d96323b67301.zip
ntp: T3904: Fix NTP pool associations
As of NTP 4.2.7, 'nopeer' also blocks pool associations. See https://bugs.ntp.org/show_bug.cgi?id=2657 See also https://github.com/geerlingguy/ansible-role-ntp/pull/84 (cherry picked from commit 854c68d43d8f1cf20417edd12284ea20f9e7ec9a)
Diffstat (limited to 'data/templates/ntp/ntpd.conf.tmpl')
-rw-r--r--data/templates/ntp/ntpd.conf.tmpl2
1 files changed, 2 insertions, 0 deletions
diff --git a/data/templates/ntp/ntpd.conf.tmpl b/data/templates/ntp/ntpd.conf.tmpl
index 2b56b53c3..38e68f24f 100644
--- a/data/templates/ntp/ntpd.conf.tmpl
+++ b/data/templates/ntp/ntpd.conf.tmpl
@@ -6,6 +6,8 @@
driftfile /var/lib/ntp/ntp.drift
# By default, only allow ntpd to query time sources, ignore any incoming requests
restrict default noquery nopeer notrap nomodify
+# Allow pool associations
+restrict source nomodify notrap noquery
# Local users have unrestricted access, allowing reconfiguration via ntpdc
restrict 127.0.0.1
restrict -6 ::1