modules/ntp/manifests/init.pp

   1 class ntp {
   2
   3         package { 'ntp':
   4                 ensure => installed
   5         }
   6
   7         service { 'ntp':
   8                 ensure  => running,
   9                 require => Package['ntp']
  10         }
  11
  12         @ferm::rule { 'dsa-ntp':
  13                 domain      => '(ip ip6)',
  14                 description => 'Allow ntp access',
  15                 rule        => '&SERVICE(udp, 123)'
  16         }
  17
  18         file { '/etc/init.d/ntp':
  19                 source => 'puppet:///modules/ntp/ntp.init',
  20                 mode   => '0555',
  21                 notify => Exec['systemctl daemon-reload'],
  22         }
  23         file { '/var/lib/ntp':
  24                 ensure  => directory,
  25                 owner   => ntp,
  26                 group   => ntp,
  27                 mode    => '0755',
  28                 require => Package['ntp']
  29         }
  30         file { '/etc/ntp.conf':
  31                 content => template('ntp/ntp.conf'),
  32                 notify  => Service['ntp'],
  33                 require => Package['ntp'],
  34         }
  35         file { '/etc/ntp.keys.d':
  36                 ensure  => directory,
  37                 group   => 'ntp',
  38                 mode    => '0750',
  39                 notify  => Service['ntp'],
  40                 require => Package['ntp'],
  41         }
  42
  43         if getfromhash($site::nodeinfo, 'timeserver') {
  44                 include ntp::timeserver
  45         } else {
  46                 include ntp::client
  47         }
  48 }