Date: Wed, 4 Jan 2006 01:13:52 -0800 From: "Darren Pilgrim" <darren.pilgrim@bitfreak.org> To: "'Matthew Seaman'" <m.seaman@infracaninophile.co.uk> Cc: freebsd-questions@freebsd.org Subject: RE: How to bind ntpd to a single address? Message-ID: <000001c6110f$31a02bc0$642a15ac@smiley> In-Reply-To: <43BA5FD9.5060108@infracaninophile.co.uk>
next in thread | previous in thread | raw e-mail | index | archive | help
From: Matthew Seaman [mailto:m.seaman@infracaninophile.co.uk]=20 > Darren Pilgrim wrote: > > I don't like (let alone want) ntpd binding to every IP address on > > the host. The man pages don't say anything about specifying a > > binding address for ntpd. A search of the sources and Google > > also failed to reveal anything useful. > >=20 > > So how to I tell ntpd to bind to a specific IP address? >=20 > ntpd doesn't have that functionality I'm afraid. The next best you > can do is review your /etc/ntpd.conf 'restrict' rules carefully and > implement a firewall to control access to port 123/UDP. The ntp.conf(5) man page isn't what I would consider well-written, so = it's a bit difficult understand how rules are applied. For example, if I put: restrict default noquery nopeer limited restrict local_network/mask nomodify restrict peerhost nomodify restrict 127.0.0.1 Does that mean: - Provide only rate-limited, non-peering time service by default. - Provide unlimited time service to the local network and also let the = local network make read-only mode 6/7 queries. - Peers are given the same treatment as the local network. - Let localhost do anything.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?000001c6110f$31a02bc0$642a15ac>