diff options
author | Jeff McCune <jeff@puppetlabs.com> | 2011-02-23 15:57:59 -0500 |
---|---|---|
committer | Jeff McCune <jeff@puppetlabs.com> | 2011-02-23 15:57:59 -0500 |
commit | 15a6088e2c68df7efc340957c20ecb5d8a373373 (patch) | |
tree | eadb9d237018d9df2f2a4896d06199b69968f2d1 | |
parent | ec06272db8ddb1b2c347ffcea797bad67005508a (diff) |
Updated documentation in ntp class header.
Added example for autoupdate and centos testing
support.
-rw-r--r-- | manifests/init.pp | 6 | ||||
-rw-r--r-- | templates/ntp.conf.el.erb | 50 |
2 files changed, 55 insertions, 1 deletions
diff --git a/manifests/init.pp b/manifests/init.pp index 78dbd5d..622b216 100644 --- a/manifests/init.pp +++ b/manifests/init.pp @@ -7,6 +7,7 @@ # # Tested platforms: # - Debian 6.0 Squeeze +# - CentOS 5.4 # # Parameters: # @@ -23,7 +24,10 @@ # # Sample Usage: # -# class { "ntp": servers => [ 'time.apple.com' ] } +# class { "ntp": +# servers => [ 'time.apple.com' ], +# autoupdate => false, +# } # # [Remember: No empty lines between comments and class definition] class ntp($servers=[ "0.debian.pool.ntp.org iburst", diff --git a/templates/ntp.conf.el.erb b/templates/ntp.conf.el.erb new file mode 100644 index 0000000..cfb4c8c --- /dev/null +++ b/templates/ntp.conf.el.erb @@ -0,0 +1,50 @@ +# Permit time synchronization with our time source, but do not +# permit the source to query or modify the service on this system. +restrict default kod nomodify notrap nopeer noquery +restrict -6 default kod nomodify notrap nopeer noquery + +# Permit all access over the loopback interface. This could +# be tightened as well, but to do so would effect some of +# the administrative functions. +restrict 127.0.0.1 +restrict -6 ::1 + +# Hosts on local network are less restricted. +#restrict 192.168.1.0 mask 255.255.255.0 nomodify notrap + +# Use public servers from the pool.ntp.org project. +# Please consider joining the pool (http://www.pool.ntp.org/join.html). +server 0.centos.pool.ntp.org +server 1.centos.pool.ntp.org +server 2.centos.pool.ntp.org + +#broadcast 192.168.1.255 key 42 # broadcast server +#broadcastclient # broadcast client +#broadcast 224.0.1.1 key 42 # multicast server +#multicastclient 224.0.1.1 # multicast client +#manycastserver 239.255.254.254 # manycast server +#manycastclient 239.255.254.254 key 42 # manycast client + +# Undisciplined Local Clock. This is a fake driver intended for backup +# and when no outside source of synchronized time is available. +server 127.127.1.0 # local clock +fudge 127.127.1.0 stratum 10 + +# Drift file. Put this in a directory which the daemon can write to. +# No symbolic links allowed, either, since the daemon updates the file +# by creating a temporary in the same directory and then rename()'ing +# it to the file. +driftfile /var/lib/ntp/drift + +# Key file containing the keys and key identifiers used when operating +# with symmetric key cryptography. +keys /etc/ntp/keys + +# Specify the key identifiers which are trusted. +#trustedkey 4 8 42 + +# Specify the key identifier to use with the ntpdc utility. +#requestkey 8 + +# Specify the key identifier to use with the ntpq utility. +#controlkey 8 |