We now have multiple independent NTP servers, so it makes sense to
have the list of upstream servers in only one place. Make it so.
ssh
## We have to provide NTP service. The guests sync to our clock.
-ntpclient inbound 158.152.1.76 158.152.1.204 194.159.253.2
+ntpclient inbound $ntp_servers
m4_divert(-1)
###----- That's all, folks --------------------------------------------------
safe:172.29.199.64/27 \
untrusted:default
+## Default NTP servers.
+ntp_servers="158.152.1.76 158.152.1.204 194.159.253.2 195.173.57.232"
+
m4_divert(60)m4_dnl
###--------------------------------------------------------------------------
### Special forwarding exemptions.
## Other interesting things.
dnsresolver inbound
-ntpclient inbound 158.152.1.76 158.152.1.204 194.159.253.2
+ntpclient inbound $ntp_servers
m4_divert(-1)
###----- That's all, folks --------------------------------------------------