Commit c318559c authored by zaiken's avatar zaiken 💬 Committed by root

Ajout du NTP sur kriek et lorrabelle

parent 20e51a51
- name: Install NTP
apt:
package: ntp
state: present
update_cache: yes
- name: Copy configuration file
template:
dest: /etc/ntp.conf
src: ntp.conf
# /etc/ntp.conf, configuration for ntpd; see ntp.conf(5) for help
driftfile /var/lib/ntp/ntp.drift
# Enable this if you want statistics to be logged.
# statsdir /var/log/ntpstats/
statistics loopstats peerstats clockstats
filegen loopstats file loopstats type day enable
filegen peerstats file peerstats type day enable
filegen clockstats file clockstats type day enable
# You do need to talk to an NTP server or two (or three). server
# ntp.your-provider.example
server 0.debian.pool.ntp.org
server 1.debian.pool.ntp.org
server 2.debian.pool.ntp.org
server 3.debian.pool.ntp.org
# pool.ntp.org maps to about 1000 low-stratum NTP servers. Your server will pick a
# different set every time it starts up. Please consider joining three pool:
# <http://www.pool.ntp.org/join.html>
pool 0.debian.pool.ntp.org iburst
pool 1.debian.pool.ntp.org iburst
pool 2.debian.pool.ntp.org iburst
pool 3.debian.pool.ntp.org iburst
# Access control configuration; see /usr/share/doc/ntp-doc/html/accopt.html for
# details. The web page <http://support.ntp.org/bin/view/Support/AccessRestrictions>
# might also be helpful.
#
# Note that "restrict" applies to both servers and clients, so a configuration that
# might be intended to block requests from certain clients could also end up blocking
# replies from your own upstream servers. By default, exchange time with everybody,
# but don't allow configuration.
restrict -4 default kod notrap nomodify nopeer noquery limited
restrict -6 default kod notrap nomodify nopeer noquery limited
# Local users may interrogate the ntp server more closely.
restrict 127.0.0.1
restrict ::1
restrict 10.7.0.0 mask 255.255.0.0
restrict 10.8.0.0 mask 255.255.0.0
restrict 10.69.0.0 mask 255.255.240.0
restrict 10.20.0.0 mask 255.255.248.0
# Needed for adding pool entries
restrict source notrap nomodify noquery
# Clients from this (example!) subnet have unlimited access, but only if
#cryptographically authenticated.
# restrict 192.168.123.0 mask 255.255.255.0 notrust
# If you want to provide time to your local subnet, change the next line. (Again, the
#address is an example only.)
# broadcast 192.168.123.255
# If you want to listen to time broadcasts on your local subnet, de-comment the next
#lines. Please do this only if you trust everybody on the network! disable
#authenticated
# broadcastclient
......@@ -9,3 +9,4 @@
- keepalived
- install_network_driver
- firewall
- ntp
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment