From a751c0704a2bc933ca8ccede30be63e56fb10a65 Mon Sep 17 00:00:00 2001
From: paspo <paolo@asperti.com>
Date: Fri, 27 Oct 2023 12:34:26 +0200
Subject: [PATCH] NTP

---
 roles/pxeserver/tasks/common.yml       | 1 +
 roles/pxeserver/templates/dnsmasq/dhcp | 1 +
 roles/pxeserver/templates/rules.v4     | 1 +
 3 files changed, 3 insertions(+)

diff --git a/roles/pxeserver/tasks/common.yml b/roles/pxeserver/tasks/common.yml
index a23b41a..2ad9592 100644
--- a/roles/pxeserver/tasks/common.yml
+++ b/roles/pxeserver/tasks/common.yml
@@ -38,6 +38,7 @@
         "htop",
         "screen",
         "ntpdate",
+        "ntp",
         "unattended-upgrades",
         "dnsmasq",
         "nginx",
diff --git a/roles/pxeserver/templates/dnsmasq/dhcp b/roles/pxeserver/templates/dnsmasq/dhcp
index 901bb5a..64c457a 100644
--- a/roles/pxeserver/templates/dnsmasq/dhcp
+++ b/roles/pxeserver/templates/dnsmasq/dhcp
@@ -1,5 +1,6 @@
 dhcp-range={{ dhcp_start }},{{ dhcp_end }},4h
 dhcp-option=option:router,{{ lan_ip }}
 dhcp-option=option:dns-server,{{ lan_ip }}
+dhcp-option=42,{{ lan_ip }}
 dhcp-authoritative
 log-dhcp
\ No newline at end of file
diff --git a/roles/pxeserver/templates/rules.v4 b/roles/pxeserver/templates/rules.v4
index fd74fb3..ac153c6 100644
--- a/roles/pxeserver/templates/rules.v4
+++ b/roles/pxeserver/templates/rules.v4
@@ -13,6 +13,7 @@
 -A INPUT -i {{ lan_iface }} -p udp -m state --state NEW -m udp --dport 69 -j ACCEPT
 -A INPUT -i {{ lan_iface }} -p tcp -m state --state NEW -m tcp --dport 111 -j ACCEPT
 -A INPUT -i {{ lan_iface }} -p udp -m state --state NEW -m udp --dport 111 -j ACCEPT
+-A INPUT -i {{ lan_iface }} -p udp -m state --state NEW -m udp --dport 123 -j ACCEPT
 -A INPUT -i {{ lan_iface }} -p tcp -m state --state NEW -m tcp --dport 2049 -j ACCEPT
 -A INPUT -i {{ lan_iface }} -p udp -m state --state NEW -m udp --dport 2049 -j ACCEPT
 -A INPUT -i {{ lan_iface }} -p udp -m state --state NEW -m udp --dport 4047 -j ACCEPT