|
Lines 19-28
Link Here
|
| 19 |
# |
19 |
# |
| 20 |
# The option `iburst' is used for faster initial synchronization. |
20 |
# The option `iburst' is used for faster initial synchronization. |
| 21 |
# |
21 |
# |
| 22 |
server 0.freebsd.pool.ntp.org iburst |
22 |
pool 0.freebsd.pool.ntp.org iburst |
| 23 |
server 1.freebsd.pool.ntp.org iburst |
23 |
pool 1.freebsd.pool.ntp.org iburst |
| 24 |
server 2.freebsd.pool.ntp.org iburst |
24 |
pool 2.freebsd.pool.ntp.org iburst |
| 25 |
#server 3.freebsd.pool.ntp.org iburst |
25 |
#pool 3.freebsd.pool.ntp.org iburst |
| 26 |
|
26 |
|
| 27 |
# |
27 |
# |
| 28 |
# If you want to pick yourself which country's public NTP server |
28 |
# If you want to pick yourself which country's public NTP server |
|
Lines 30-71
Link Here
|
| 30 |
# the next ones and replace CC with the country's abbreviation. |
30 |
# the next ones and replace CC with the country's abbreviation. |
| 31 |
# Make sure that the hostnames resolve to a proper IP address! |
31 |
# Make sure that the hostnames resolve to a proper IP address! |
| 32 |
# |
32 |
# |
| 33 |
# server 0.CC.pool.ntp.org iburst |
33 |
# pool 0.CC.pool.ntp.org iburst |
| 34 |
# server 1.CC.pool.ntp.org iburst |
34 |
# pool 1.CC.pool.ntp.org iburst |
| 35 |
# server 2.CC.pool.ntp.org iburst |
35 |
# pool 2.CC.pool.ntp.org iburst |
| 36 |
|
36 |
|
| 37 |
# |
37 |
# |
| 38 |
# Security: |
38 |
# Security: |
| 39 |
# |
39 |
# |
| 40 |
# By default, only allow time queries and block all other requests |
40 |
# By default, only allow time queries and block all other requests |
| 41 |
# from unauthenticated clients. |
41 |
# from unauthenticated downstream clients. |
| 42 |
# |
42 |
# |
| 43 |
# See http://support.ntp.org/bin/view/Support/AccessRestrictions |
43 |
# See http://support.ntp.org/bin/view/Support/AccessRestrictions |
| 44 |
# for more information. |
44 |
# for more information. |
| 45 |
# |
45 |
# |
| 46 |
restrict default limited kod nomodify notrap nopeer noquery |
46 |
restrict default limited kod nomodify notrap nopeer noquery |
| 47 |
restrict -6 default limited kod nomodify notrap nopeer noquery |
|
|
| 48 |
# |
47 |
# |
| 49 |
# Alternatively, the following rules would block all unauthorized access. |
48 |
# Alternatively, the following rule would block all unauthorized access. |
| 50 |
# |
49 |
# |
| 51 |
#restrict default ignore |
50 |
#restrict default ignore |
| 52 |
#restrict -6 default ignore |
|
|
| 53 |
# |
51 |
# |
| 54 |
# In this case, all remote NTP time servers also need to be explicitly |
52 |
# Now specify a restriction mask for our upstream time source servers |
| 55 |
# allowed or they would not be able to exchange time information with |
53 |
# (e.g. pool servers). This creates a dynamic 'restrict' entry for each |
| 56 |
# this server. |
54 |
# upstream server. |
| 57 |
# |
55 |
# |
| 58 |
# Please note that this example doesn't work for the servers in |
56 |
restrict source limited kod nomodify notrap noquery |
| 59 |
# the pool.ntp.org domain since they return multiple A records. |
|
|
| 60 |
# |
57 |
# |
| 61 |
#restrict 0.pool.ntp.org nomodify nopeer noquery notrap |
|
|
| 62 |
#restrict 1.pool.ntp.org nomodify nopeer noquery notrap |
| 63 |
#restrict 2.pool.ntp.org nomodify nopeer noquery notrap |
| 64 |
# |
| 65 |
# The following settings allow unrestricted access from the localhost |
58 |
# The following settings allow unrestricted access from the localhost |
| 66 |
restrict 127.0.0.1 |
59 |
restrict 127.0.0.1 |
| 67 |
restrict -6 ::1 |
60 |
restrict ::1 |
| 68 |
restrict 127.127.1.0 |
|
|
| 69 |
|
61 |
|
| 70 |
# |
62 |
# |
| 71 |
# If a server loses sync with all upstream servers, NTP clients |
63 |
# If a server loses sync with all upstream servers, NTP clients |
|
Lines 77-79
Link Here
|
| 77 |
# |
69 |
# |
| 78 |
#server 127.127.1.0 |
70 |
#server 127.127.1.0 |
| 79 |
#fudge 127.127.1.0 stratum 10 |
71 |
#fudge 127.127.1.0 stratum 10 |
|
|
72 |
#restrict 127.127.1.0 |