Entwicklungsumgebung/Dateiliste/ntp.conf
Diese Seite sollte nochmals überarbeitet werden. Eine Begründung befindet sich in der Regel unter Diskussion (oben). |
/etc/ntp.conf
Achtung: Bitte achten Sie unbedingt darauf, beim Kopieren und Einfügen einen Editor mit UNIX-Zeilenumbrüchen zu verwenden!
Hinweis: Die im delixs-Schulserver geänderten Zeilen sind gelb unterlegt.
<source highlight="17-19,43-44,51-60" line lang="text">
- /etc/ntp.conf, configuration for ntpd; see ntp.conf(5) for help
driftfile /var/lib/ntp/ntp.drift
- Enable this if you want statistics to be logged.
- statsdir /var/log/ntpstats/
statistics loopstats peerstats clockstats filegen loopstats file loopstats type day enable filegen peerstats file peerstats type day enable filegen clockstats file clockstats type day enable
- You do need to talk to an NTP server or two (or three).
- server ntp.your-provider.example
- die Server der Physikalisch-Technischen Bundesanstalt PTB
server ptbtime1.ptb.de server ptbtime2.ptb.de
- pool.ntp.org maps to about 1000 low-stratum NTP servers. Your server will
- pick a different set every time it starts up. Please consider joining the
- pool: <http://www.pool.ntp.org/join.html>
server 0.debian.pool.ntp.org iburst dynamic server 1.debian.pool.ntp.org iburst dynamic server 2.debian.pool.ntp.org iburst dynamic server 3.debian.pool.ntp.org iburst dynamic
- Access control configuration; see /usr/share/doc/ntp-doc/html/accopt.html for
- details. The web page <http://support.ntp.org/bin/view/Support/AccessRestrictions>
- might also be helpful.
- Note that "restrict" applies to both servers and clients, so a configuration
- that might be intended to block requests from certain clients could also end
- up blocking replies from your own upstream servers.
- By default, exchange time with everybody, but don't allow configuration.
- restrict -4 default kod notrap nomodify nopeer noquery
- restrict -6 default kod notrap nomodify nopeer noquery
- Local users may interrogate the ntp server more closely.
- Zugriff auf localhost gestatten (ntpq -p)
restrict 127.0.0.1 restrict ::1
- Clients from this (example!) subnet have unlimited access, but only if
- cryptographically authenticated.
- restrict 192.168.123.0 mask 255.255.255.0 notrust
- Zugriff durch NTP-Server gestatten
restrict ptbtime1.ptb.de restrict ptbtime2.ptb.de
- Zugriff aus dem internen Netz gestatten
restrict 10.100.0.0 mask 255.255.0.0
- allen anderen Zugriff verweigern
restrict default notrust nomodify nopeer
- If you want to provide time to your local subnet, change the next line.
- (Again, the address is an example only.)
- broadcast 192.168.123.255
- If you want to listen to time broadcasts on your local subnet, de-comment the
- next lines. Please do this only if you trust everybody on the network!
- disable auth
- broadcastclient
</source>