Skip to content

ghoneycutt/puppet-module-ntp

Repository files navigation

ntp module

===

Puppet module to manage NTP

Build Status

===

Compatibility

This module is supported on the following systems with Puppet v3 and v4 with Ruby versions 1.8.7, 1.9.3, 2.0.0, 2.1.0 and 2.3.1.

  • Debian 6
  • EL 5
  • EL 6
  • EL 7
  • Solaris 9
  • Solaris 10
  • Solaris 11
  • Suse 9
  • Suse 10
  • Suse 11
  • Suse 12
  • Ubuntu 12.04 LTS

===

Parameters

See ntp.conf(5) for more information regarding settings.

package_name

String or Array of the related ntp packages. 'USE_DEFAULTS' will choose the appropriate default for the system.

  • Default: 'USE_DEFAULTS'

package_latest

Use the latest version of the package.

  • Default: false

package_source

The source for packages on Solaris 5.10 and earlier.

  • Default: /var/spool/pkg

package_adminfile

Path to the admin file used for installation on Solaris 5.10 and earlier.

config_file_owner

ntp.conf's owner

  • Default: root

config_file_group

ntp.conf's group

  • Default: root

config_file_mode

ntp.conf's mode

  • Default: 0644

sysconfig_path

Path to the ntp sysconfig config file.

  • Default: 'USE_DEFAULTS'

sysconfig_options

String with startup options to pass to ntp.

  • Default: 'USE_DEFAULTS'

step_tickers_ensure

Ensure step tickers file. Valid values are 'present' and 'absent'.

  • Default: based on OS

driftfile

Path of the drift file. String with absolute path. Set to '' to disable drift file usage. 'USE_DEFAULTS' will choose the appropriate default for the system.

  • Default: 'USE_DEFAULTS'

service_running

If service should be running

  • Default: true

service_hasstatus

Service has a status option

  • Default: true

service_hasrestart

Service has a restart option

  • Default: true

keys

Path of the symmetric key file. See ntpd(1). Set to '' to disable drift file usage. 'USE_DEFAULTS' will choose the appropriate default for the system.

  • Default: 'USE_DEFAULTS'

servers

Array of pools to check time against.

  • Default: NTP's default pools in the US

server_options

Extra options to provide to ntp servers

  • Default: none

peers

String or Array or Hash of peer servers.

For the Hash, the following keys can be set: host and comment. See example below.

ntp::peers:
  'ntp1':
    host: 'x.x.x.x'
    comment: 'ntp1'
  • Default: 'UNSET'

restrict_localhost

Array with options to provide to access control configuration (restrict) in ntp.conf. 'USE_DEFAULTS' will choose the appropriate default for the system to allow localhost access only.

  • Default: 'USE_DEFAULTS'

restrict_options

Array with options to provide to access control configuration (restrict) in ntp.conf. 'USE_DEFAULTS' will choose the appropriate default for the system.

For backward compatibility a string can still be used here. It will be used for IPv4 and IPv6 configuration.

  • Default: 'USE_DEFAULTS'

orphan_mode_stratum

Orphan stratum configuration

  • Default: none

fudge_stratum

Stratum value

  • Default: 10

enable_stats

If statistics should be enabled.

  • Default: false

enable_tinker

If tinker should be enabled (boolean).

  • Default: true

statdir

Directory for storing ntpstats

  • Default: '/var/log/ntpstats/'

logfile

Log file name

  • Default: none

ignore_local_clock

Boolean to ignore the local clock. By setting this to true it ensures local clock is not referenced, useful if local clock drifts.

  • Default: false

disable_monitor

Adds 'disable monitor' line - disables NTP Monlist command, useful to prevent NTP reflection attack https://isc.sans.edu/forums/diary/NTP+reflection+attack/17300

  • Default: false