Merge pull request #559 from Giggum/vyos-build_T5694-6123

ntp: T6080: T6123: restrict config.boot.default NTP settings to RFC1918 and fe80::/10, fc00::/7 only
author: Daniil Baturin <daniil@vyos.io> 2024-04-14 01:55:41 +0200
committer: GitHub <noreply@github.com> 2024-04-14 01:55:41 +0200
commit: ba77dc5e0496297f30519b9e883b33810575f84b (patch)
tree: 65bfa1affc8e7bbde078a7f4aca5810aeef03acc
parent: 74bd332e9b40a33fc257efefe417a455ecfb0f9e (diff)
parent: d2d083ac579477db4a09b8d71d55e883a488ddf1 (diff)
download: vyos-build-ba77dc5e0496297f30519b9e883b33810575f84b.tar.gz
vyos-build-ba77dc5e0496297f30519b9e883b33810575f84b.zip
1 files changed, 10 insertions, 0 deletions
diff --git a/data/live-build-config/includes.chroot/opt/vyatta/etc/config.boot.default b/data/live-build-config/includes.chroot/opt/vyatta/etc/config.boot.default
index 7123ef54..c3ff6c79 100644
--- a/data/live-build-config/includes.chroot/opt/vyatta/etc/config.boot.default
+++ b/data/live-build-config/includes.chroot/opt/vyatta/etc/config.boot.default
@@ -19,6 +19,16 @@ system {
         }
     }
     ntp {
+        allow-client {
+            address 127.0.0.0/8
+            address 169.254.0.0/16
+            address 10.0.0.0/8
+            address 172.16.0.0/12
+            address 192.168.0.0/16
+            address ::1/128
+            address fe80::/10
+            address fc00::/7
+        }
         server "time1.vyos.net"
         server "time2.vyos.net"
         server "time3.vyos.net"
author	Daniil Baturin <daniil@vyos.io>	2024-04-14 01:55:41 +0200
committer	GitHub <noreply@github.com>	2024-04-14 01:55:41 +0200
commit	ba77dc5e0496297f30519b9e883b33810575f84b (patch)
tree	65bfa1affc8e7bbde078a7f4aca5810aeef03acc
parent	74bd332e9b40a33fc257efefe417a455ecfb0f9e (diff)
parent	d2d083ac579477db4a09b8d71d55e883a488ddf1 (diff)
download	vyos-build-ba77dc5e0496297f30519b9e883b33810575f84b.tar.gz vyos-build-ba77dc5e0496297f30519b9e883b33810575f84b.zip