Sample ntp.conf File

The following is a sample ntp.conf file. If you do not have access to the xlntp script, you must modify this file manually. Modify the lines in bold according to your particular network settings.

 

 

#################################################################

# File: ntp.conf

# Generated by: xlntp Revision: 1.1

# Dialogic Corporation 08/11/05_12:53:05

# Dialogic Support @ 781-433-9600  http://www.dialogic.com/support

#################################################################

# which logfile group... log to /var/log/messages

# Prohibit general access to this service.

restrict default ignore

# Prohibit general access to this service.

restrict default ignore

restrict 66.187.224.4 mask 255.255.255.255 nomodify notrap noquery

restrict 18.26.4.105 mask 255.255.255.255 nomodify notrap noquery

restrict 128.249.1.10 mask 255.255.255.255 nomodify notrap noquery

# Permit all access over the loopback interface.  This could

# be tightened as well, but to do so would effect some of

# the administrative functions.

restrict 127.0.0.1

# -- CLIENT NETWORK -------

# Permit systems on this network to synchronize with this

# time service.  Do not permit those systems to modify the

# configuration of this service.  Also, do not use those

# systems as peers for synchronization.

# restrict 192.168.1.0 mask 255.255.255.0 notrust nomodify notrap

# IMG1

restrict 192.168.0.102 mask 255.255.255.0 notrust nomodify notrap (Red Hat Enterprise version 4)

restrict 192.168.0.102 mask 255.255.255.0 nomodify notrap (Red Hat Enterprise version 5)

# --- OUR TIMESERVERS -----

# or remove the default restrict line

# Permit time synchronization with our time source, but do not

# permit the source to query or modify the service on this system.

# restrict mytrustedtimeserverip mask 255.255.255.255 nomodify notrap noquery

# server mytrustedtimeserverip

# --- NTP MULTICASTCLIENT ---

# multicastclient # listen on default 224.0.1.1

# restrict 224.0.1.1 mask 255.255.255.255 notrust nomodify notrap

# restrict 192.168.1.0 mask 255.255.255.0 notrust nomodify notrap

# --- GENERAL CONFIGURATION ---

#

# Undisciplined Local Clock. This is a fake driver intended for backup

# and when no outside source of synchronized time is available. The

# default stratum is usually 3, but in this case we elect to use stratum

# 0. Since the server line does not have the prefer keyword, this driver

# is never used for synchronization, unless no other other

# synchronization source is available. In case the local host is

# controlled by some external source, such as an external oscillator or

# another protocol, the prefer keyword would cause the local host to

# disregard all other synchronization sources, unless the kernel

# modifications are in use and declare an unsynchronized condition.

#

server 127.127.1.0 # local clock

fudge 127.127.1.0 stratum 10

server 66.187.224.4

server 18.26.4.105

server 128.249.1.10

#

# Drift file.  Put this in a directory which the daemon can write to.

# No symbolic links allowed, either, since the daemon updates the file

# by creating a temporary in the same directory and then rename() ing

# it to the file.

#

driftfile /var/lib/ ntp/drift

broadcastdelay 0.008

#

# Authentication delay.  If you use, or plan to use someday, the

# authentication facility you should make the programs in the auth_stuff

# directory and figure out what this number should be on your machine.

#

authenticate yes

#

# Keys file.  If you want to diddle your server at run time, make a

# keys file (mode 600 for sure) and define the key number to be

# used for making requests.

#

# PLEASE DO NOT USE THE DEFAULT VALUES HERE. Pick your own, or remote

# systems might be able to reset your clock at will. Note also that

# ntpd is started with a -A flag, disabling authentication, that

# will have to be removed as well.

#

keys /etc/ ntp/keys