Added documentation on using ntpd-rs in the pool.

Author: davidv1992

docs/guide/nts-pool.md

@@ -0,0 +1,28 @@
+# Participating in the NTS pool
+
+Network Time Security (NTS) is an extension to the NTP protocol aimed at
+securing the communication between NTP clients and servers. An experimental
+pool for servers supporting NTS has recently been set up at
+<https://experimental.ntspooltest.org/>
+
+NTPD-rs versions newer than 1.7.0-alpha.20251003 support being added to this
+pool. This guide will assume you are running a version more recent than this,
+and have already setup an NTS server using the instructions in [our NTS guide](./nts.md).
+
+## Adding your server
+
+To add an NTS server to the pool, on the pool website add the domain name of
+the server on the `Time sources` page after logging in. The pool will give you
+an authentication key the pool will use to authenticate itself to your NTS
+server. This key will need to be added to the ntpd-rs configuration to allow
+the pool to handle NTS key exchange connections for your server.
+
+To add this key, modify the ntpd-rs configuration at `/etc/ntpd-rs/ntp.toml`,
+adding to the `[[nts-ke-server]]` section the following:
+```toml
+accepted-pool-authentication-tokens = ["<YOUR TOKEN HERE>"]
+```
+
+After restarting your server, it will start accepting requests from the pool,
+and you will start to see your score on the pool website increase. When this
+happens, your server is succesfully configured for use in the pool.

docs/man/ntp.toml.5.md

@@ -319,6 +319,11 @@ not tampered with.
     NTPv5 packets, you can set this value to `[4, 5]`. NTPv5 support is
     currently in beta and can still change in a backwards incompatible way.
 
+`accepted-pool-authentication-tokens` = *list of keys* (**[]**)
+:   Tokens pools can use to authenticate pool-specific requests to this NTS
+    server. Note that pool support is currently in beta and can still change in
+    a backwards incompatible way.
+
 ## `[synchronization]`
 This section of the configuration focusses on how the time information from the
 time sources is gathered and applied to the system clock.

docs/precompiled/man/ntp.toml.5

@@ -404,6 +404,12 @@ To also allow negotiating NTS for draft NTPv5 packets, you can set this
 value to \f[V][4, 5]\f[R].
 NTPv5 support is currently in beta and can still change in a backwards
 incompatible way.
+.TP
+\f[V]accepted-pool-authentication-tokens\f[R] = \f[I]list of keys\f[R] (\f[B][]\f[R])
+Tokens pools can use to authenticate pool-specific requests to this NTS
+server.
+Note that pool support is currently in beta and can still change in a
+backwards incompatible way.
 .SS \f[V][synchronization]\f[R]
 .PP
 This section of the configuration focusses on how the time information

mkdocs.yml

@@ -36,6 +36,7 @@ nav:
     - guide/gps-pps.md
     - guide/exporting-metrics.md
     - guide/nts.md
+    - guide/nts-pool.md
     - guide/ntpv5.md
     - guide/migrating-chrony.md
     - guide/migrating-ntpd.md