diff --git a/inventory/host_vars/cloud-noc01.cloud.fedoraproject.org b/inventory/host_vars/cloud-noc01.cloud.fedoraproject.org
index 2305cebee2..d1b1c91a7e 100644
--- a/inventory/host_vars/cloud-noc01.cloud.fedoraproject.org
+++ b/inventory/host_vars/cloud-noc01.cloud.fedoraproject.org
@@ -23,5 +23,6 @@ custom_rules: [ '-A INPUT -i br0 -p tcp -m tcp -s 209.132.184.0/24  --dport 67 -
                 '-A INPUT -i br1 -p tcp -m tcp -s 172.23.0.0/23  --dport 69 -j ACCEPT',
                 '-A INPUT -i br1 -p udp -m udp -s 172.23.0.0/23  --dport 67 -j ACCEPT',
                 '-A INPUT -i br1 -p udp -m udp -s 172.23.0.0/23  --dport 68 -j ACCEPT',
-                '-A INPUT -i br1 -p udp -m udp -s 172.23.0.0/23  --dport 69 -j ACCEPT' ]
+                '-A INPUT -i br1 -p udp -m udp -s 172.23.0.0/23  --dport 69 -j ACCEPT',
+                '-A INPUT -i br0 -p udp -m upd -s 209.132.184.0/24 --dport 123 -j ACCEPT' ]
 
diff --git a/roles/ntp/templates/ntp.conf.j2 b/roles/ntp/templates/ntp.conf.j2
index e72371caa7..959160edaf 100644
--- a/roles/ntp/templates/ntp.conf.j2
+++ b/roles/ntp/templates/ntp.conf.j2
@@ -14,6 +14,8 @@ restrict -6 ::1
 #
 server 10.5.126.12
 server 10.5.126.11
+{% elif datacenter == 'cloud' and not inventory_hostanem.startswith('cloud-noc01') %}
+server cloud-noc01.cloud.fedoraproject.org
 {% else %}
 server 1.rhel.pool.ntp.org
 server 2.rhel.pool.ntp.org