Hi guys,
This is my config file for my NTP Stratum 2 server. Any suggestion for fine tuning will be appreciated.
# Record the frequency of the system clock.
driftfile /var/lib/ntp/drift
# Permit time synchronization with our time source, but do not
# permit the source to query or modify the service on this system.
restrict default nomodify notrap nopeer noepeer noquery
# Permit association with pool servers.
restrict source nomodify notrap noepeer noquery
# Permit all access over the loopback interface. This could
# be tightened as well, but to do so would effect some of
# the administrative functions.
restrict 127.0.0.1
restrict ::1
# Hosts on local network are less restricted.
restrict 10.10.10.0 mask 255.255.255.0 nomodify notrap
restrict -4 default kod noquery nomodify notrap nopeer limited
restrict -6 default kod noquery nomodify notrap nopeer limited
# Use public servers from the [pool.ntp.org](http://pool.ntp.org) project.
# Please consider joining the pool (http://www.pool.ntp.org/join.html).
#server [ntp.svilengrad.eu](http://ntp.svilengrad.eu) iburst
#server [ntp.fizyka.umk.pl](http://ntp.fizyka.umk.pl) iburst
server [ntp.bsdbg.net](http://ntp.bsdbg.net) iburst
server [ptbtime1.ptb.de](http://ptbtime1.ptb.de) iburst
server [zeit.fu-berlin.de](http://zeit.fu-berlin.de) iburst
server [ntp0.fau.de](http://ntp0.fau.de) iburst
# Reduce the maximum number of servers used from the pool.
tos maxclock 5
# Enable public key cryptography.
#crypto
includefile /etc/ntp/crypto/pw
# Key file containing the keys and key identifiers used when operating
# with symmetric key cryptography.
keys /etc/ntp/keys
# Specify the key identifiers which are trusted.
#trustedkey 4 8 42
# Specify the key identifier to use with the ntpdc utility.
#requestkey 8
# Specify the key identifier to use with the ntpq utility.
#controlkey 8
# Enable writing of statistics records.
#statistics clockstats cryptostats loopstats peerstats
)