linux - NTP does not handle restrict on pool server correctly -
if running ntp (via ntp.conf) heavily restricted, cannot use pool server. why? because call restrict (to allow access pool) seems dns lookup, returns ip value used call server. please show me wrong/being stupid this.
crude example (portion of ntp.conf):
server 0.debian.pool.ntp.org iburst restrict default ignore restrict -6 default ignore restrict 0.debian.pool.ntp.org mask 255.255.255.255 nomodify notrap noquery
this not work (i think) because dns calls 0.debian.pool.ntp.org return different ip addresses , wrong ip address allowed via (poorly named) restrict.
use builtin source
alias/directive/whatever:
restrict source nomodify notrap noquery
updatedd include documentation source
:
restrict source configures template restriction automatically added @ runtime each association, whether configured, ephemeral, or preemptible, , removed when association demobilized.
from: http://www.eecis.udel.edu/~mills/ntp/html/accopt.html#restrict
Comments
Post a Comment