ntp.conf revision 1.14.6.1
1 1.14.6.1 tls # $NetBSD: ntp.conf,v 1.14.6.1 2014/08/19 23:45:50 tls Exp $ 2 1.1 fair # 3 1.7 fredb # NetBSD default Network Time Protocol (NTP) configuration file for ntpd 4 1.8 fredb 5 1.8 fredb # This file is intended to be both a usable default, and a Quick-Start 6 1.8 fredb # Guide. The directives and options listed here are not at all complete. 7 1.9 reed # A great deal of additional documentation, including links to FAQS and 8 1.8 fredb # other guides, may be found on the official NTP web site, in particular 9 1.8 fredb # 10 1.8 fredb # http://www.ntp.org/documentation.html 11 1.8 fredb # 12 1.1 fair 13 1.1 fair # Process ID file, so that the daemon can be signalled from scripts 14 1.1 fair 15 1.3 lukem pidfile /var/run/ntpd.pid 16 1.1 fair 17 1.2 simonb # The correction calculated by ntpd(8) for the local system clock's 18 1.7 fredb # drift is stored here. 19 1.1 fair 20 1.3 lukem driftfile /var/db/ntp.drift 21 1.1 fair 22 1.7 fredb # Suppress the syslog(3) message for each peer synchronization change. 23 1.1 fair 24 1.3 lukem logconfig -syncstatus 25 1.5 fredb 26 1.14.6.1 tls # Refuse to set the local clock if there are too few good peers or servers. 27 1.14.6.1 tls # This may help minimize disruptions due to network congestion. Don't 28 1.5 fredb # do this if you configure only one server! 29 1.5 fredb 30 1.5 fredb tos minsane 2 31 1.1 fair 32 1.10 christos # Set the number of tries to register with mdns. 0 means never 33 1.10 christos # 34 1.10 christos mdnstries 0 35 1.10 christos 36 1.14.6.1 tls # New ntpd disables the ntpdc protocol by default, to re-enable uncomment 37 1.14.6.1 tls # the following line 38 1.14.6.1 tls # enable mode7 39 1.14.6.1 tls 40 1.14.6.1 tls # Access control restrictions. 41 1.14.6.1 tls # See /usr/share/doc/html/ntp/accopt.html for syntax. 42 1.14.6.1 tls # See <http://support.ntp.org/bin/view/Support/AccessRestrictions> for advice. 43 1.14.6.1 tls # Last match wins. 44 1.14.6.1 tls # 45 1.14.6.1 tls # Some of the more common keywords are: 46 1.14.6.1 tls # ignore Deny packets of all kinds. 47 1.14.6.1 tls # kod Send "kiss-o'-death" packets if clients exceed rate 48 1.14.6.1 tls # limits. 49 1.14.6.1 tls # nomodify Deny attempts to modify the state of the server via 50 1.14.6.1 tls # ntpq or ntpdc queries. 51 1.14.6.1 tls # noquery Deny all ntpq and ntpdc queries. Does not affect time 52 1.14.6.1 tls # synchronisation. 53 1.14.6.1 tls # nopeer Prevent establishing new peer associations. 54 1.14.6.1 tls # Does not affect peers configured using "peer" lines. 55 1.14.6.1 tls # Does not affect client/server time synchronisation. 56 1.14.6.1 tls # noserve Deny all time synchronisation. Does not affect ntpq or 57 1.14.6.1 tls # ntpdc queries. 58 1.14.6.1 tls # notrap Deny the trap subset of the ntpdc control message protocol. 59 1.14.6.1 tls # notrust Deny packets that are not cryptographically authenticated. 60 1.14.6.1 tls # 61 1.14.6.1 tls # By default, allow client/server time exchange without prior 62 1.14.6.1 tls # arrangement, but deny configuration changes, queries, and peer 63 1.14.6.1 tls # associations that were not explicitly configured. 64 1.14.6.1 tls # 65 1.14.6.1 tls restrict default kod nopeer noquery 66 1.14.6.1 tls 67 1.14.6.1 tls # Fewer restrictions for the local subnet. 68 1.14.6.1 tls # (Uncomment and adjust as appropriate.) 69 1.14.6.1 tls # 70 1.14.6.1 tls #restrict 192.0.2.0 mask 255.255.255.0 kod nomodify notrap nopeer 71 1.14.6.1 tls #restrict 2001:db8:: mask ffff:ffff:: kod nomodify notrap nopeer 72 1.14.6.1 tls 73 1.14.6.1 tls # No restrictions for localhost. 74 1.14.6.1 tls # 75 1.14.6.1 tls restrict 127.0.0.1 76 1.14.6.1 tls restrict ::1 77 1.14.6.1 tls 78 1.7 fredb # Hereafter should be "server" or "peer" statements to configure other 79 1.14.6.1 tls # hosts to exchange NTP packets with. 80 1.14.6.1 tls # 81 1.14.6.1 tls # See <http://support.ntp.org/bin/view/Support/DesigningYourNTPNetwork> 82 1.14.6.1 tls # and <http://support.ntp.org/bin/view/Support/SelectingOffsiteNTPServers> 83 1.14.6.1 tls # for advice. 84 1.14.6.1 tls # 85 1.14.6.1 tls # Peers or servers should be selected in such a way that the network 86 1.14.6.1 tls # path to them is short, uncongested, and symmetric (that is, the series 87 1.14.6.1 tls # of links and routers used to get to the peer is the same one that 88 1.14.6.1 tls # the peer uses to get back). The best place to start looking for NTP 89 1.14.6.1 tls # peers for your system is within your own network, or at your Internet 90 1.14.6.1 tls # Service Provider (ISP). 91 1.1 fair # 92 1.7 fredb # Ideally, you should select at least three other systems to talk NTP 93 1.7 fredb # with, for an "what I tell you three times is true" effect. 94 1.1 fair 95 1.3 lukem #peer an.ntp.peer.goes.here 96 1.3 lukem #server an.ntp.server.goes.here 97 1.4 agc 98 1.14.6.1 tls # The pool.ntp.org project coordinates public time servers provided by 99 1.14.6.1 tls # volunteers. See <http://www.pool.ntp.org>. The *.netbsd.pool.ntp.org 100 1.14.6.1 tls # servers are intended to be used by default on NetBSD hosts, but 101 1.14.6.1 tls # servers that are closer to you are likely to be better. Consider 102 1.14.6.1 tls # using servers specific to your country, a nearby country, or your 103 1.14.6.1 tls # continent. 104 1.14.6.1 tls # 105 1.6 fredb # The pool.ntp.org project needs more volunteers! The only criteria to 106 1.6 fredb # join are a nailed-up connection and a static IP address. For details, 107 1.6 fredb # see the web page: 108 1.6 fredb # 109 1.14 christos # http://www.pool.ntp.org/join.html 110 1.6 fredb # 111 1.6 fredb 112 1.13 christos server 0.netbsd.pool.ntp.org 113 1.13 christos server 1.netbsd.pool.ntp.org 114 1.13 christos server 2.netbsd.pool.ntp.org 115 1.13 christos server 3.netbsd.pool.ntp.org 116
Indexes created Fri Oct 31 11:10:07 GMT 2025