Closed antoinetran closed 8 months ago
This issue has been marked 'stale' due to lack of recent activity. If there is no further activity, the issue will be closed in another 30 days. Thank you for your contribution!
Please read this blog post to see the reasons why I mark issues as stale.
This issue has been closed due to inactivity. If you feel this is in error, please reopen the issue or file a new issue with the relevant details.
This seems like it is not fixed yet in template code.
/reopen ?
ping @geerlingguy
@antoinetran - It looks like that'd be this line: https://github.com/geerlingguy/ansible-role-ntp/blob/master/templates/chrony.conf.j2#L28
For now you could add a lineinfile task to make sure that line is set correctly. Otherwise this template could be updated with that option being allowed to be configured perhaps.
Exactly. Using lineinfile will modify the file outside this module, which will break idempotence.
In fact, this template should be configured with the same template as ntp.conf (https://github.com/geerlingguy/ansible-role-ntp/blob/master/templates/ntp.conf.j2#L38C32-L41C13). Something like:
{% for item in ntp_restrict %}
allow {{ item }}
{% endfor %}
Current behavior:
Expected behavior:
The port udp 123 as LISTEN is present.
Why? Because the template chrony.conf.j2 does not generate restriction. Eg of correct restriction:
Which will enable udp listening.