summaryrefslogtreecommitdiff
path: root/src
diff options
context:
space:
mode:
authorChristian Poessinger <christian@poessinger.com>2018-05-06 23:17:21 +0200
committerChristian Poessinger <christian@poessinger.com>2018-05-07 13:23:07 +0200
commitdc815c27ebc76a55c0aa4bbabf42ed46a58f92ed (patch)
treef84a38e600ba9e430d714339eb1dc4b450ee848a /src
parent3a1586d0490b3babfa331650f9758c2928234138 (diff)
downloadvyos-1x-dc815c27ebc76a55c0aa4bbabf42ed46a58f92ed.tar.gz
vyos-1x-dc815c27ebc76a55c0aa4bbabf42ed46a58f92ed.zip
Switch to DNS hostnames for NTP servers
Diffstat (limited to 'src')
-rwxr-xr-xsrc/conf-mode/vyos-config-ntp.py18
1 files changed, 8 insertions, 10 deletions
diff --git a/src/conf-mode/vyos-config-ntp.py b/src/conf-mode/vyos-config-ntp.py
index 8d2ca99ba..b9328f3e0 100755
--- a/src/conf-mode/vyos-config-ntp.py
+++ b/src/conf-mode/vyos-config-ntp.py
@@ -19,7 +19,6 @@
import sys
import os
import time
-import socket
import ipaddress
from vyos.config import Config
@@ -80,30 +79,29 @@ def generate(ntp):
# write new configuration file
f = open(config_file, 'w')
f.write(config_header)
+ f.write('\n')
f.write('driftfile /var/lib/ntp/ntp.drift\n')
- f.write('# By default, only allow ntpd to query time sources, ignore any\n')
- f.write('# incoming requests.\n')
+ f.write('\n')
+ f.write('# By default, only allow ntpd to query time sources, ignore any incoming requests\n')
f.write('restrict default ignore\n')
f.write('\n')
- f.write('# Local users have unrestricted access, allowing reconfiguration\n')
- f.write('# via ntpdc\n')
+ f.write('# Local users have unrestricted access, allowing reconfiguration via ntpdc\n')
f.write('restrict 127.0.0.1\n')
f.write('restrict -6 ::1\n')
f.write('\n')
if 'servers' in ntp.keys():
for server in ntp['servers']:
- addr = socket.gethostbyname(server['name'])
opt = ['dynamic', 'noselect', 'preempt', 'prefer']
- f.write('# Server configuration {0}\n'.format(server['name']))
- f.write('server {0} iburst {1}\n'.format(addr, '{0}'.format(' '.join(str(o) for o in opt if server[o]))))
- f.write('restrict {0} nomodify notrap nopeer noquery\n'.format(addr))
+ f.write('# Server configuration for: {0}\n'.format(server['name']))
+ f.write('server {0} iburst {1}\n'.format(server['name'], '{0}'.format(' '.join(str(o) for o in opt if server[o]))))
+ f.write('restrict {0} nomodify notrap nopeer noquery\n'.format(server['name']))
f.write('\n')
if 'allow-networks' in ntp.keys():
for network in ntp['allow-networks']:
addr = ipaddress.ip_network(network)
- f.write('# Client configuration: {0}\n'.format(network))
+ f.write('# Client configuration for network: {0}\n'.format(network))
f.write('restrict {0} mask {1} nomodify notrap nopeer\n'.format(addr.network_address, addr.netmask))
f.write('\n')
generated by cgit v1.2.3 (git 2.39.1) at 2024-09-23 13:21:04 +0000