ntp.conf revision 1.19
1 1.19 apb # $NetBSD: ntp.conf,v 1.19 2014/01/14 13:23:46 apb Exp $ 2 1.1 fair # 3 1.7 fredb # NetBSD default Network Time Protocol (NTP) configuration file for ntpd 4 1.8 fredb 5 1.8 fredb # This file is intended to be both a usable default, and a Quick-Start 6 1.8 fredb # Guide. The directives and options listed here are not at all complete. 7 1.9 reed # A great deal of additional documentation, including links to FAQS and 8 1.8 fredb # other guides, may be found on the official NTP web site, in particular 9 1.8 fredb # 10 1.8 fredb # http://www.ntp.org/documentation.html 11 1.8 fredb # 12 1.1 fair 13 1.1 fair # Process ID file, so that the daemon can be signalled from scripts 14 1.1 fair 15 1.3 lukem pidfile /var/run/ntpd.pid 16 1.1 fair 17 1.2 simonb # The correction calculated by ntpd(8) for the local system clock's 18 1.7 fredb # drift is stored here. 19 1.1 fair 20 1.3 lukem driftfile /var/db/ntp.drift 21 1.1 fair 22 1.7 fredb # Suppress the syslog(3) message for each peer synchronization change. 23 1.1 fair 24 1.3 lukem logconfig -syncstatus 25 1.5 fredb 26 1.17 apb # Refuse to set the local clock if there are too few good peers or servers. 27 1.17 apb # This may help minimize disruptions due to network congestion. Don't 28 1.5 fredb # do this if you configure only one server! 29 1.5 fredb 30 1.5 fredb tos minsane 2 31 1.1 fair 32 1.10 christos # Set the number of tries to register with mdns. 0 means never 33 1.10 christos # 34 1.10 christos mdnstries 0 35 1.10 christos 36 1.15 christos # New ntpd disables the ntpdc protocol by default, to re-enable uncomment 37 1.15 christos # the following line 38 1.15 christos # enable mode7 39 1.15 christos 40 1.16 apb # Access control restrictions. 41 1.16 apb # See /usr/share/doc/html/ntp/accopt.html for syntax. 42 1.16 apb # See <http://support.ntp.org/bin/view/Support/AccessRestrictions> for advice. 43 1.16 apb # Last match wins. 44 1.16 apb # 45 1.16 apb # Some of the more common keywords are: 46 1.16 apb # ignore Deny packets of all kinds. 47 1.16 apb # kod Send "kiss-o'-death" packets if clients exceed rate 48 1.16 apb # limits. 49 1.16 apb # nomodify Deny attempts to modify the state of the server via 50 1.16 apb # ntpq or ntpdc queries. 51 1.16 apb # noquery Deny all ntpq and ntpdc queries. Does not affect time 52 1.16 apb # synchronisation. 53 1.19 apb # nopeer Prevent establishing new peer associations. 54 1.19 apb # Does not affect peers configured using "peer" lines. 55 1.16 apb # Does not affect client/server time synchronisation. 56 1.16 apb # noserve Deny all time synchronisation. Does not affect ntpq or 57 1.16 apb # ntpdc queries. 58 1.16 apb # notrap Deny the trap subset of the ntpdc control message protocol. 59 1.16 apb # notrust Deny packets that are not cryptographically authenticated. 60 1.16 apb # 61 1.19 apb # By default, allow client/server time exchange without prior 62 1.19 apb # arrangement, but deny configuration changes, queries, and peer 63 1.19 apb # associations that were not explicitly configured. 64 1.16 apb # 65 1.16 apb restrict default kod nopeer noquery 66 1.16 apb 67 1.16 apb # Fewer restrictions for the local subnet. 68 1.16 apb # (Uncomment and adjust as appropriate.) 69 1.16 apb # 70 1.16 apb #restrict 192.0.2.0 mask 255.255.255.0 kod nomodify notrap nopeer 71 1.16 apb #restrict 2001:db8:: mask ffff:ffff:: kod nomodify notrap nopeer 72 1.16 apb 73 1.16 apb # No restrictions for localhost. 74 1.16 apb # 75 1.16 apb restrict 127.0.0.1 76 1.16 apb restrict ::1 77 1.16 apb 78 1.7 fredb # Hereafter should be "server" or "peer" statements to configure other 79 1.17 apb # hosts to exchange NTP packets with. 80 1.17 apb # 81 1.17 apb # See <http://support.ntp.org/bin/view/Support/DesigningYourNTPNetwork> 82 1.17 apb # and <http://support.ntp.org/bin/view/Support/SelectingOffsiteNTPServers> 83 1.17 apb # for advice. 84 1.17 apb # 85 1.19 apb # Peers or servers should be selected in such a way that the network 86 1.19 apb # path to them is short, uncongested, and symmetric (that is, the series 87 1.19 apb # of links and routers used to get to the peer is the same one that 88 1.19 apb # the peer uses to get back). The best place to start looking for NTP 89 1.19 apb # peers for your system is within your own network, or at your Internet 90 1.19 apb # Service Provider (ISP). 91 1.1 fair # 92 1.7 fredb # Ideally, you should select at least three other systems to talk NTP 93 1.7 fredb # with, for an "what I tell you three times is true" effect. 94 1.1 fair 95 1.3 lukem #peer an.ntp.peer.goes.here 96 1.3 lukem #server an.ntp.server.goes.here 97 1.4 agc 98 1.17 apb # The pool.ntp.org project coordinates public time servers provided by 99 1.17 apb # volunteers. See <http://www.pool.ntp.org>. The *.netbsd.pool.ntp.org 100 1.17 apb # servers are intended to be used by default on NetBSD hosts, but 101 1.17 apb # servers that are closer to you are likely to be better. Consider 102 1.17 apb # using servers specific to your country, a nearby country, or your 103 1.17 apb # continent. 104 1.17 apb # 105 1.6 fredb # The pool.ntp.org project needs more volunteers! The only criteria to 106 1.6 fredb # join are a nailed-up connection and a static IP address. For details, 107 1.6 fredb # see the web page: 108 1.6 fredb # 109 1.14 christos # http://www.pool.ntp.org/join.html 110 1.6 fredb # 111 1.6 fredb 112 1.13 christos server 0.netbsd.pool.ntp.org 113 1.13 christos server 1.netbsd.pool.ntp.org 114 1.13 christos server 2.netbsd.pool.ntp.org 115 1.13 christos server 3.netbsd.pool.ntp.org 116
Indexes created Sun Oct 12 09:09:55 GMT 2025