2 ## THIS FILE IS UNDER PUPPET CONTROL. DON'T EDIT IT HERE.
3 ## USE: git clone git+ssh://$USER@puppet.debian.org/srv/puppet.debian.org/git/dsa-puppet.git
6 driftfile /var/lib/ntp/ntp.drift
7 statsdir /var/log/ntpstats/
9 statistics loopstats peerstats clockstats cryptostats
10 filegen loopstats file loopstats type day enable
11 filegen peerstats file peerstats type day enable
12 filegen clockstats file clockstats type day enable
13 filegen cryptostats file cryptostats type day enable
15 crypto randfile /dev/urandom
16 keysdir /etc/ntp.keys.d
18 <% if scope.lookupvar('site::nodeinfo')['timeserver'] -%>
19 server 0.debian.pool.ntp.org iburst dynamic
20 server 1.debian.pool.ntp.org iburst dynamic
21 server 2.debian.pool.ntp.org iburst dynamic
22 server 3.debian.pool.ntp.org iburst dynamic
24 leapfile /usr/share/zoneinfo/leap-seconds.list
25 <% elsif scope.lookupvar('site::nodeinfo')['misc']['natted'] -%>
26 # autokey doesn't work behind nat
28 # czerny's, and bm-bl2's ipv4 IP, hard coded for the benefit of
29 # hosts that do not have RTC's (since they won't be able to do DNS until
30 # they have a reasonable clock).
31 server 82.195.75.109 iburst
32 server 5.153.231.242 iburst
34 server czerny.debian.org iburst
35 server clementi.debian.org iburst
36 server bm-bl1.debian.org iburst
37 server bm-bl2.debian.org iburst
39 server czerny.debian.org iburst autokey
40 server clementi.debian.org iburst autokey
41 server bm-bl1.debian.org iburst autokey
42 server bm-bl2.debian.org iburst autokey
43 restrict czerny.debian.org notrust nomodify notrap ntpport
44 restrict clementi.debian.org notrust nomodify notrap ntpport
45 restrict bm-bl1.debian.org notrust nomodify notrap ntpport
46 restrict bm-bl2.debian.org notrust nomodify notrap ntpport
49 restrict -4 default kod notrap nomodify nopeer noquery
50 restrict -6 default kod notrap nomodify nopeer noquery
57 # vim:set shiftwidth=4:
projects / mirror / dsa-puppet.git / blob