File:  [DragonFly] / src / share / man / man5 / rc.conf.5
Revision 1.5: download - view: text, annotated - select for diffs
Thu Mar 11 12:28:56 2004 UTC (10 years, 1 month ago) by hmp
Branches: MAIN
CVS tags: HEAD
Mega mdoc(7) update:

	* Introduce a .Dx macro, for meaning `DragonFly'.

	* Use the .Dx macro where we mean `DragonFly' and
	  revert to using .Fx where we mean `FreeBSD'.

	* Update various sentences, paragraphs to be in
	  context with DragonFly, and mention FreeBSD as
	  required in HISTORY sections.

	* Fix mdoc(7) markup wherever possible.

	* Use .Fx wherever possible, and minimize the use
	  of FreeBSD in favour of .Fx.  Do the same for
	  `OpenBSD' and `NetBSD' by using `.Ox' and `.Nx'
	  respectively.

	* Correct a confusion of `FreeBSD' is `DragonFly'
	  left by a previous commit to some of the manual
	  pages, by using the appropriate .Dx/.Fx entities.

NOTE: contrib/ and other manual pages such as sysintall(8)
manual pages are left untouched, because the former should
not be modified directly and the latter has reached
'End of Life' stage.

Submitted by:
Aaron Malone <aaron@munge.net>, Hiten Pandya <hmp@backplane.com>

    1: .\" Copyright (c) 1995
    2: .\"	Jordan K. Hubbard
    3: .\"
    4: .\" Redistribution and use in source and binary forms, with or without
    5: .\" modification, are permitted provided that the following conditions
    6: .\" are met:
    7: .\" 1. Redistributions of source code must retain the above copyright
    8: .\"    notice, this list of conditions and the following disclaimer.
    9: .\" 2. Redistributions in binary form must reproduce the above copyright
   10: .\"    notice, this list of conditions and the following disclaimer in the
   11: .\"    documentation and/or other materials provided with the distribution.
   12: .\"
   13: .\" THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND
   14: .\" ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
   15: .\" IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
   16: .\" ARE DISCLAIMED.  IN NO EVENT SHALL THE AUTHOR BE LIABLE
   17: .\" FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
   18: .\" DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
   19: .\" OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
   20: .\" HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
   21: .\" LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
   22: .\" OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
   23: .\" SUCH DAMAGE.
   24: .\"
   25: .\" $FreeBSD: src/share/man/man5/rc.conf.5,v 1.197 2003/07/28 13:56:00 mbr Exp $
   26: .\" $DragonFly: src/share/man/man5/rc.conf.5,v 1.5 2004/03/11 12:28:56 hmp Exp $
   27: .Dd March 3, 2002
   28: .Dt RC.CONF 5
   29: .Os
   30: .Sh NAME
   31: .Nm rc.conf
   32: .Nd system configuration information
   33: .Sh DESCRIPTION
   34: The file
   35: .Nm
   36: contains descriptive information about the local host name, configuration
   37: details for any potential network interfaces and which services should be
   38: started up at system initial boot time.
   39: In new installations, the
   40: .Nm
   41: file is generally initialized by the system installation utility,
   42: .Xr sysinstall 8 .
   43: .Pp
   44: The purpose of
   45: .Nm
   46: is not to run commands or perform system startup actions
   47: directly.
   48: Instead, it is included by the
   49: various generic startup scripts in
   50: .Pa /etc
   51: which conditionalize their
   52: internal actions according to the settings found there.
   53: .Pp
   54: The
   55: .Pa /etc/rc.conf
   56: file is included from the file
   57: .Pa /etc/defaults/rc.conf ,
   58: which specifies the default settings for all the available options.
   59: Options need only be specified in
   60: .Pa /etc/rc.conf
   61: when the system administrator wishes to override these defaults.
   62: The file
   63: .Pa /etc/rc.conf.local
   64: is used to override settings in
   65: .Pa /etc/rc.conf
   66: for historical reasons.
   67: See the
   68: .Va rc_conf_files
   69: variable below.
   70: .Pp
   71: The following list provides a name and short description for each
   72: variable that can be set in the
   73: .Nm
   74: file:
   75: .Bl -tag -width indent-two
   76: .It Va rc_debug
   77: .Pq Vt bool
   78: If set to
   79: .Dq Li YES ,
   80: enable output of debug messages from rc scripts.
   81: This variable can be helpful in diagnosing mistakes when
   82: editing or integrating new scripts.
   83: Beware that this produces copious output to the terminal and
   84: .Xr syslog 3 .
   85: .It Va rc_info
   86: .Pq Vt bool
   87: If set to
   88: .Dq Li NO ,
   89: disable informational messages from the rc scripts.
   90: Informational messages are displayed when
   91: a condition that is not serious enough to warrant a warning or
   92: an error occurs.
   93: .It Va swapfile
   94: .Pq Vt str
   95: If set to
   96: .Dq Li NO ,
   97: no swapfile is installed, otherwise the value is used as the full
   98: pathname to a file to use for additional swap space.
   99: .It Va apm_enable
  100: .Pq Vt bool
  101: If set to
  102: .Dq Li YES ,
  103: enable support for Automatic Power Management with
  104: the
  105: .Xr apm 8
  106: command.
  107: .It Va apmd_enable
  108: .Pq Vt bool
  109: Run
  110: .Xr apmd 8
  111: to handle APM event from userland.
  112: This also enables support for APM.
  113: .It Va apmd_flags
  114: .Pq Vt str
  115: If
  116: .Va apmd_enable
  117: is set to
  118: .Dq Li YES ,
  119: these are the flags to pass to the
  120: .Xr apmd 8
  121: daemon.
  122: .It Va devd_enable
  123: .Pq Vt bool
  124: Run
  125: .Xr devd 8
  126: to handle device added, removed or unknown events from the kernel.
  127: .It Va pccard_enable
  128: .Pq Vt bool
  129: If set to
  130: .Dq Li YES ,
  131: enable PCCARD support at boot time.
  132: .It Va pccard_mem
  133: .Pq Vt str
  134: Set to PCCARD controller memory address or
  135: .Dq Li DEFAULT
  136: for the default value.
  137: .It Va pccard_ifconfig
  138: .Pq Vt str
  139: List of arguments to be passed to
  140: .Xr ifconfig 8
  141: at boot time or on
  142: insertion of the card (e.g.\&
  143: .Dq Cm inet Li 192.168.1.1 Cm netmask Li 255.255.255.0
  144: for a fixed address or
  145: .Dq Li DHCP
  146: for a DHCP client).
  147: .It Va pccard_beep
  148: .Pq Vt int
  149: If 0,
  150: set the PCCARD controller to silent mode.
  151: If 1,
  152: set it to beep mode.
  153: If 2,
  154: set it to melody mode.
  155: .It Va pccard_conf
  156: .Pq Vt str
  157: Path to the configuration file for the
  158: .Xr pccardd 8
  159: daemon (e.g.\&
  160: .Pa /etc/pccard.conf.sample ) .
  161: .It Va pccardd_flags
  162: .Pq Vt str
  163: If
  164: .Va pccard_enable
  165: is set to
  166: .Dq Li YES ,
  167: these are the flags to pass to the
  168: .Xr pccardd 8
  169: daemon.
  170: .It Va pccard_ether_delay
  171: .Pq Vt str
  172: Set the delay before starting
  173: .Xr dhclient 8
  174: in the
  175: .Pa /etc/pccard_ether
  176: script.
  177: This defaults to 5 seconds to work around a bug in the
  178: .Xr ed 4
  179: driver which can lead to system hangs when using some newer
  180: .Xr ed 4
  181: based cards.
  182: .It Va removable_interfaces
  183: .Pq Vt str
  184: List of removable network interfaces to be supported by
  185: .Pa /etc/pccard_ether .
  186: .It Va local_startup
  187: .Pq Vt str
  188: List of directories to search for startup script files.
  189: .It Va script_name_sep
  190: .Pq Vt str
  191: The field separator to use for breaking down the list of startup script files
  192: into individual filenames.
  193: The default is a space.
  194: It is not necessary to change this unless there are startup scripts with names
  195: containing spaces.
  196: .It Va hostname
  197: .Pq Vt str
  198: The fully qualified domain name (FQDN) of this host on the network.
  199: This should almost certainly be set to something meaningful, even if
  200: there is no network connection.
  201: If
  202: .Xr dhclient 8
  203: is used to set the hostname via DHCP,
  204: this variable should be set to an empty string.
  205: .It Va ipv6_enable
  206: .Pq Vt bool
  207: Enable support for IPv6 networking.
  208: Note that this requires that the kernel have been compiled with
  209: .Cd "options INET6" .
  210: .It Va nisdomainname
  211: .Pq Vt str
  212: The NIS domain name of this host, or
  213: .Dq Li NO
  214: if NIS is not used.
  215: .It Va dhclient_program
  216: .Pq Vt str
  217: Path to the DHCP client program
  218: .Pa ( /sbin/dhclient ,
  219: the ISC DHCP client,
  220: is the default).
  221: .It Va dhclient_flags
  222: .Pq Vt str
  223: Additional flags to pass to the DHCP client program.
  224: For the ISC DHCP client, see the
  225: .Xr dhclient 8
  226: manpage for a description of the command line options available.
  227: .It Va background_dhclient
  228: .Pq Vt bool
  229: Set to
  230: .Dq Li YES
  231: to start the dhcp client in background.
  232: This can cause trouble with applications depending on
  233: a working network, but it will provide a faster startup
  234: in many cases.
  235: .It Va firewall_enable
  236: .Pq Vt bool
  237: Set to
  238: .Dq Li YES
  239: to load firewall rules at startup.
  240: If the kernel was not built with
  241: .Cd "options IPFIREWALL" ,
  242: the
  243: .Pa ipfw.ko
  244: kernel module will be loaded.
  245: See also
  246: .Va ipfilter_enable .
  247: .It Va ipv6_firewall_enable
  248: .Pq Vt bool
  249: The IPv6 equivalent of
  250: .Va firewall_enable .
  251: Set to
  252: .Dq Li YES
  253: to load IPv6 firewall rules at startup.
  254: If the kernel was not built with
  255: .Cd "options IPV6FIREWALL" ,
  256: the
  257: .Pa ip6fw.ko
  258: kernel module will be loaded.
  259: .It Va firewall_script
  260: .Pq Vt str
  261: This variable specifies the full path to the firewall script to run.
  262: The default is
  263: .Pa /etc/rc.firewall .
  264: .It Va ipv6_firewall_script
  265: .Pq Vt str
  266: The IPv6 equivalent of
  267: .Va firewall_script .
  268: .It Va firewall_type
  269: .Pq Vt str
  270: Names the firewall type from the selection in
  271: .Pa /etc/rc.firewall ,
  272: or the file which contains the local firewall ruleset.
  273: Valid selections from
  274: .Pa /etc/rc.firewall
  275: are:
  276: .Pp
  277: .Bl -tag -width ".Li simple" -compact
  278: .It Li open
  279: unrestricted IP access
  280: .It Li closed
  281: all IP services disabled, except via
  282: .Dq Li lo0
  283: .It Li client
  284: basic protection for a workstation
  285: .It Li simple
  286: basic protection for a LAN.
  287: .El
  288: .Pp
  289: If a filename is specified, the full path
  290: must be given.
  291: .It Va ipv6_firewall_type
  292: .Pq Vt str
  293: The IPv6 equivalent of
  294: .Va firewall_type .
  295: .It Va firewall_quiet
  296: .Pq Vt bool
  297: Set to
  298: .Dq Li YES
  299: to disable the display of firewall rules on the console during boot.
  300: .It Va ipv6_firewall_quiet
  301: .Pq Vt bool
  302: The IPv6 equivalent of
  303: .Va firewall_quiet .
  304: .It Va firewall_logging
  305: .Pq Vt bool
  306: Set to
  307: .Dq Li YES
  308: to enable firewall event logging.
  309: This is equivalent to the
  310: .Dv IPFIREWALL_VERBOSE
  311: kernel option.
  312: .It Va ipv6_firewall_logging
  313: .Pq Vt bool
  314: The IPv6 equivalent of
  315: .Va firewall_logging .
  316: .It Va firewall_flags
  317: .Pq Vt str
  318: Flags passed to
  319: .Xr ipfw 8
  320: if
  321: .Va firewall_type
  322: specifies a filename.
  323: .It Va ipv6_firewall_flags
  324: .Pq Vt str
  325: The IPv6 equivalent of
  326: .Va firewall_flags .
  327: .It Va natd_program
  328: .Pq Vt str
  329: Path to
  330: .Xr natd 8 .
  331: .It Va natd_enable
  332: .Pq Vt bool
  333: Set to
  334: .Dq Li YES
  335: to enable
  336: .Xr natd 8 .
  337: .Va firewall_enable
  338: must also be set to
  339: .Dq Li YES ,
  340: and
  341: .Xr divert 4
  342: sockets must be enabled in the kernel.
  343: .It Va natd_interface
  344: .Pq Vt str
  345: This is the name of the public interface on which
  346: .Xr natd 8
  347: should run.
  348: The interface may be given as an interface name or as an IP address.
  349: .It Va natd_flags
  350: .Pq Vt str
  351: Additional
  352: .Xr natd 8
  353: flags should be placed here.
  354: The
  355: .Fl n
  356: or
  357: .Fl a
  358: flag is automatically added with the above
  359: .Va natd_interface
  360: as an argument.
  361: .\" ----- ipfilter_enable setting --------------------------------
  362: .It Va ipfilter_enable
  363: .Pq Vt bool
  364: Set to
  365: .Dq Li NO
  366: by default.
  367: Setting this to
  368: .Dq Li YES
  369: enables
  370: .Xr ipf 8
  371: packet filtering.
  372: .Pp
  373: Typical usage will require putting
  374: .Bd -literal
  375: ipfilter_enable="YES"
  376: ipnat_enable="YES"
  377: ipmon_enable="YES"
  378: ipfs_enable="YES"
  379: .Ed
  380: .Pp
  381: into
  382: .Pa /etc/rc.conf
  383: and editing
  384: .Pa /etc/ipf.rules
  385: and
  386: .Pa /etc/ipnat.rules
  387: appropriately.
  388: .Pp
  389: Note that
  390: .Va ipfilter_enable
  391: and
  392: .Va ipnat_enable
  393: can be enabled independently.
  394: .Va ipmon_enable
  395: and
  396: .Va ipfs_enable
  397: both require at least one of
  398: .Va ipfilter_enable
  399: and
  400: .Va ipnat_enable
  401: to be enabled.
  402: .Pp
  403: Having
  404: .Bd -literal
  405: options IPFILTER
  406: options IPFILTER_LOG
  407: options IPFILTER_DEFAULT_BLOCK
  408: .Ed
  409: .Pp
  410: in the kernel configuration file is a good idea, too.
  411: .\" ----- ipfilter_program setting ------------------------------
  412: .It Va ipfilter_program
  413: .Pq Vt str
  414: Path to
  415: .Xr ipf 8
  416: (default
  417: .Pa /sbin/ipf ) .
  418: .\" ----- ipfilter_rules setting --------------------------------
  419: .It Va ipfilter_rules
  420: .Pq Vt str
  421: Set to
  422: .Pa /etc/ipf.rules
  423: by default.
  424: This variable contains the name of the filter rule definition file.
  425: The file is expected to be readable for the
  426: .Xr ipf 8
  427: command to execute.
  428: .\" ----- ipv6_ipfilter_rules setting ---------------------------
  429: .It Va ipv6_ipfilter_rules
  430: .Pq Vt str
  431: Set to
  432: .Pa /etc/ipf6.rules
  433: by default.
  434: This variable contains the IPv6 filter rule definition file.
  435: The file is expected to be readable for the
  436: .Xr ipf 8
  437: command to execute.
  438: .\" ----- ipfilter_flags setting --------------------------------
  439: .It Va ipfilter_flags
  440: .Pq Vt str
  441: Empty by default.
  442: This variable contains flags passed to the
  443: .Xr ipf 8
  444: program.
  445: .\" ----- ipnat_enable setting ----------------------------------
  446: .It Va ipnat_enable
  447: .Pq Vt bool
  448: Set to
  449: .Dq Li NO
  450: by default.
  451: Set it to
  452: .Dq Li YES
  453: to enable
  454: .Xr ipnat 1
  455: network address translation.
  456: See
  457: .Va ipfilter_enable
  458: for a detailed discussion.
  459: .\" ----- ipnat_program setting ---------------------------------
  460: .It Va ipnat_program
  461: .Pq Vt str
  462: Path to
  463: .Xr ipnat 1
  464: (default
  465: .Pa /sbin/ipnat ) .
  466: .\" ----- ipnat_rules setting -----------------------------------
  467: .It Va ipnat_rules
  468: .Pq Vt str
  469: Set to
  470: .Pa /etc/ipnat.rules
  471: by default.
  472: This variable contains the name of the file
  473: holding the network address translation definition.
  474: This file is expected to be readable for the
  475: .Xr ipnat 1
  476: command to execute.
  477: .\" ----- ipnat_flags setting -----------------------------------
  478: .It Va ipnat_flags
  479: .Pq Vt str
  480: Empty by default.
  481: This variable contains flags passed to the
  482: .Xr ipnat 1
  483: program.
  484: .\" ----- ipmon_enable setting ----------------------------------
  485: .It Va ipmon_enable
  486: .Pq Vt bool
  487: Set to
  488: .Dq Li NO
  489: by default.
  490: Set it to
  491: .Dq Li YES
  492: to enable
  493: .Xr ipmon 8
  494: monitoring (logging
  495: .Xr ipf 8
  496: and
  497: .Xr ipnat 1
  498: events).
  499: Setting this variable needs setting
  500: .Va ipfilter_enable
  501: or
  502: .Va ipnat_enable
  503: too.
  504: See
  505: .Va ipfilter_enable
  506: for a detailed discussion.
  507: .\" ----- ipmon_program setting ---------------------------------
  508: .It Va ipmon_program
  509: .Pq Vt str
  510: Path to
  511: .Xr ipmon 8
  512: (default
  513: .Pa /sbin/ipmon ) .
  514: .\" ----- ipmon_flags setting -----------------------------------
  515: .It Va ipmon_flags
  516: .Pq Vt str
  517: Set to
  518: .Dq Li -Ds
  519: by default.
  520: This variable contains flags passed to the
  521: .Xr ipmon 8
  522: program.
  523: Another typical example would be
  524: .Dq Fl D Pa /var/log/ipflog
  525: to have
  526: .Xr ipmon 8
  527: log directly to a file bypassing
  528: .Xr syslogd 8 .
  529: Make sure to adjust
  530: .Pa /etc/newsyslog.conf
  531: in such case like this:
  532: .Bd -literal
  533: /var/log/ipflog  640  10  100  *  Z  /var/run/ipmon.pid
  534: .Ed
  535: .\" ----- ipfs_enable setting -----------------------------------
  536: .It Va ipfs_enable
  537: .Pq Vt bool
  538: Set to
  539: .Dq Li NO
  540: by default.
  541: Set it to
  542: .Dq Li YES
  543: to enable
  544: .Xr ipfs 8
  545: saving the filter and NAT state tables during shutdown
  546: and reloading them during startup again.
  547: Setting this variable needs setting
  548: .Va ipfilter_enable
  549: or
  550: .Va ipnat_enable
  551: to
  552: .Dq Li YES
  553: too.
  554: See
  555: .Va ipfilter_enable
  556: for a detailed discussion.
  557: Note that if
  558: .Va kern_securelevel
  559: is set to 3,
  560: .Va ipfs_enable
  561: cannot be used
  562: because the raised securelevel will prevent
  563: .Xr ipfs 8
  564: from saving the state tables at shutdown time.
  565: .\" ----- ipfs_program setting ----------------------------------
  566: .It Va ipfs_program
  567: .Pq Vt str
  568: Path to
  569: .Xr ipfs 8
  570: (default
  571: .Pa /sbin/ipfs ) .
  572: .\" ----- ipfs_flags setting ------------------------------------
  573: .It Va ipfs_flags
  574: .Pq Vt str
  575: Empty by default.
  576: This variable contains flags passed to the
  577: .Xr ipfs 8
  578: program.
  579: .\" ----- end of added ipf hook ---------------------------------
  580: .It Va tcp_extensions
  581: .Pq Vt bool
  582: Set to
  583: .Dq Li YES
  584: by default.
  585: Setting this to
  586: .Dq Li NO
  587: disables certain TCP options as described by
  588: .Rs
  589: .%T "RFC 1323"
  590: .Re
  591: Setting this to
  592: .Dq Li NO
  593: might help remedy such problems with connections as randomly hanging
  594: or other weird behavior.
  595: Some network devices are known
  596: to be broken with respect to these options.
  597: .It Va log_in_vain
  598: .Pq Vt int
  599: Set to 0 by default.
  600: The
  601: .Xr sysctl 8
  602: variables,
  603: .Va net.inet.tcp.log_in_vain
  604: and
  605: .Va net.inet.udp.log_in_vain ,
  606: as described in
  607: .Xr tcp 4
  608: and
  609: .Xr udp 4 ,
  610: are set to the given value.
  611: .It Va tcp_keepalive
  612: .Pq Vt bool
  613: Set to
  614: .Dq Li YES
  615: by default.
  616: Setting to
  617: .Dq Li NO
  618: will disable probing idle TCP connections to verify that the
  619: peer is still up and reachable.
  620: .It Va tcp_drop_synfin
  621: .Pq Vt bool
  622: Set to
  623: .Dq Li NO
  624: by default.
  625: Setting to
  626: .Dq Li YES
  627: will cause the kernel to ignore TCP frames that have both
  628: the SYN and FIN flags set.
  629: This prevents OS fingerprinting, but may
  630: break some legitimate applications.
  631: This option is only available if the
  632: kernel was built with the
  633: .Dv TCP_DROP_SYNFIN
  634: option.
  635: .It Va icmp_drop_redirect
  636: .Pq Vt bool
  637: Set to
  638: .Dq Li NO
  639: by default.
  640: Setting to
  641: .Dq Li YES
  642: will cause the kernel to ignore ICMP REDIRECT packets.
  643: Refer to
  644: .Xr icmp 4
  645: for more information.
  646: .It Va icmp_log_redirect
  647: .Pq Vt bool
  648: Set to
  649: .Dq Li NO
  650: by default.
  651: Setting to
  652: .Dq Li YES
  653: will cause the kernel to log ICMP REDIRECT packets.
  654: Note that
  655: the log messages are not rate-limited, so this option should only be used
  656: for troubleshooting networks.
  657: Refer to
  658: .Xr icmp 4
  659: for more information.
  660: .It Va icmp_bmcastecho
  661: .Pq Vt bool
  662: Set to
  663: .Dq Li YES
  664: to respond to broadcast or multicast ICMP ping packets.
  665: Refer to
  666: .Xr icmp 4
  667: for more information.
  668: .It Va ip_portrange_first
  669: .Pq Vt int
  670: If not set to
  671: .Dq Li NO ,
  672: this is the first port in the default portrange.
  673: Refer to
  674: .Xr ip 4
  675: for more information.
  676: .It Va ip_portrange_last
  677: .Pq Vt int
  678: If not set to
  679: .Dq Li NO ,
  680: this is the last port in the default portrange.
  681: Refer to
  682: .Xr ip 4
  683: for more information.
  684: .It Va network_interfaces
  685: .Pq Vt str
  686: Set to the list of network interfaces to configure on this host.
  687: For example, if the only network devices in the system are the loopback
  688: device
  689: .Pq Li lo0
  690: and a NIC using the
  691: .Xr ed 4
  692: driver,
  693: this could be set to
  694: .Dq Li "lo0 ed0" .
  695: An
  696: .Va ifconfig_ Ns Aq Ar interface
  697: variable is also assumed to exist for each value of
  698: .Ar interface .
  699: It is also possible to add IP alias entries here in cases where
  700: multiple IP addresses registered against a single interface
  701: are desired.
  702: Assuming that the interface in question was
  703: .Li ed0 ,
  704: it might look
  705: something like this:
  706: .Bd -literal
  707: ifconfig_ed0_alias0="inet 127.0.0.253 netmask 0xffffffff"
  708: ifconfig_ed0_alias1="inet 127.0.0.254 netmask 0xffffffff"
  709: .Ed
  710: .Pp
  711: And so on.
  712: For each
  713: .Va ifconfig_ Ns Ao Ar interface Ac Ns Va _alias Ns Aq Ar n
  714: entry that is found,
  715: its contents are passed to
  716: .Xr ifconfig 8 .
  717: Execution stops at the first unsuccessful access, so if
  718: something like this is present:
  719: .Bd -literal
  720: ifconfig_ed0_alias0="inet 127.0.0.251 netmask 0xffffffff"
  721: ifconfig_ed0_alias1="inet 127.0.0.252 netmask 0xffffffff"
  722: ifconfig_ed0_alias2="inet 127.0.0.253 netmask 0xffffffff"
  723: ifconfig_ed0_alias4="inet 127.0.0.254 netmask 0xffffffff"
  724: .Ed
  725: .Pp
  726: Then note that alias4 would
  727: .Em not
  728: be added since the search would
  729: stop with the missing alias3 entry.
  730: .Pp
  731: If the
  732: .Pa /etc/start_if. Ns Aq Ar interface
  733: file is present, it is read and executed by the
  734: .Xr sh 1
  735: interpreter
  736: before configuring the interface as specified in the
  737: .Va ifconfig_ Ns Aq Ar interface
  738: and
  739: .Va ifconfig_ Ns Ao Ar interface Ac Ns Va _alias Ns Aq Ar n
  740: variables.
  741: .Pp
  742: It is possible to bring up an interface with DHCP by setting the
  743: .Va ifconfig_ Ns Aq Ar interface
  744: variable to
  745: .Dq Li DHCP .
  746: For instance, to initialize the
  747: .Li ed0
  748: device via DHCP,
  749: it is possible to use something like:
  750: .Bd -literal
  751: ifconfig_ed0="DHCP"
  752: .Ed
  753: .It Va ipv6_network_interfaces
  754: .Pq Vt str
  755: This is the IPv6 equivalent of
  756: .Va network_interfaces .
  757: Instead of setting the ifconfig variables as
  758: .Va ifconfig_ Ns Aq Ar interface
  759: they should be set as
  760: .Va ipv6_ifconfig_ Ns Aq Ar interface .
  761: Aliases should be set as
  762: .Va ipv6_ifconfig_ Ns Ao Ar interface Ac Ns Va _alias Ns Aq Ar n .
  763: .Va ipv6_prefix_ Ns Aq Ar interface
  764: does something.
  765: Interfaces that do not have a
  766: .Va ipv6_ifconfig_ Ns Aq Ar interface
  767: setting will be auto configured by
  768: .Xr rtsol 8
  769: if the
  770: .Va ipv6_gateway_enable
  771: is set to
  772: .Dq Li NO .
  773: Note that the IPv6 networking code does not support the
  774: .Pa /etc/start_if. Ns Aq Ar interface
  775: files.
  776: .It Va ipv6_default_interface
  777: .Pq Vt str
  778: If not set to
  779: .Dq Li NO ,
  780: this is the default output interface for scoped addresses.
  781: Now this works only for IPv6 link local multicast addresses.
  782: .It Va cloned_interfaces
  783: .Pq Vt str
  784: Set to the list of clonable network interfaces to create on this host.
  785: Entries in
  786: .Va cloned_interfaces
  787: are automatically appended to
  788: .Va network_interfaces
  789: for configuration.
  790: .It Va gif_interfaces
  791: .Pq Vt str
  792: Set to the list of
  793: .Xr gif 4
  794: tunnel interfaces to configure on this host.
  795: A
  796: .Va gifconfig_ Ns Aq Ar interface
  797: variable is assumed to exist for each value of
  798: .Ar interface .
  799: The value of this variable is used to configure the link layer of the
  800: tunnel according to the syntax of the
  801: .Cm tunnel
  802: option to
  803: .Xr ifconfig 8 .
  804: Additionally, this option ensures that each listed interface is created
  805: via the
  806: .Cm create
  807: option to
  808: .Xr ifconfig 8
  809: before attempting to configure it.
  810: .It Va sppp_interfaces
  811: .Pq Vt str
  812: Set to the list of
  813: .Xr sppp 4
  814: interfaces to configure on this host.
  815: A
  816: .Va spppconfig_ Ns Aq Ar interface
  817: variable is assumed to exist for each value of
  818: .Ar interface .
  819: Each interface should also be configured by a general
  820: .Va ifconfig_ Ns Aq Ar interface
  821: setting.
  822: Refer to
  823: .Xr spppcontrol 8
  824: for more information about available options.
  825: .It Va ppp_enable
  826: .Pq Vt bool
  827: If set to
  828: .Dq Li YES ,
  829: run the
  830: .Xr ppp 8
  831: daemon.
  832: .It Va ppp_mode
  833: .Pq Vt str
  834: Mode in which to run the
  835: .Xr ppp 8
  836: daemon.
  837: Accepted modes are
  838: .Dq Li auto ,
  839: .Dq Li ddial ,
  840: .Dq Li direct
  841: and
  842: .Dq Li dedicated .
  843: See the manual for a full description.
  844: .It Va ppp_nat
  845: .Pq Vt bool
  846: If set to
  847: .Dq Li YES ,
  848: enables network address translation.
  849: Used in conjunction with
  850: .Va gateway_enable
  851: allows hosts on private network addresses access to the Internet using
  852: this host as a network address translating router.
  853: .It Va ppp_profile
  854: .Pq Vt str
  855: The name of the profile to use from
  856: .Pa /etc/ppp/ppp.conf .
  857: .It Va ppp_user
  858: .Pq Vt str
  859: The name of the user under which
  860: .Xr ppp 8
  861: should be started.
  862: By
  863: default,
  864: .Xr ppp 8
  865: is started as
  866: .Dq Li root .
  867: .It Va rc_conf_files
  868: .Pq Vt str
  869: This option is used to specify a list of files that will override
  870: the settings in
  871: .Pa /etc/defaults/rc.conf .
  872: The files will be read in the order in which they are specified and should
  873: include the full path to the file.
  874: By default, the files specified are
  875: .Pa /etc/rc.conf
  876: and
  877: .Pa /etc/rc.conf.local
  878: .It Va fsck_y_enable
  879: .Pq Vt bool
  880: If set to
  881: .Dq Li YES ,
  882: .Xr fsck 8
  883: will be run with the
  884: .Fl y
  885: flag if the initial preen
  886: of the file systems fails.
  887: .It Va netfs_types
  888: .Pq Vt str
  889: List of file system types that are network-based.
  890: This list should generally not be modified by end users.
  891: Use
  892: .Va extra_netfs_types
  893: instead.
  894: .It Va extra_netfs_types
  895: .Pq Vt str
  896: If set to something other than
  897: .Dq Li NO
  898: (the default),
  899: this variable extends the list of file system types
  900: for which automatic mounting at startup by
  901: .Xr rc 8
  902: should be delayed until the network is initialized.
  903: It should contain
  904: a whitespace-separated list of network file system descriptor pairs,
  905: each consisting of a file system type as passed to
  906: .Xr mount 8
  907: and a human-readable, one-word description,
  908: joined with a colon
  909: .Pq Ql \&: .
  910: Extending the default list in this way is only necessary
  911: when third party file system types are used.
  912: .It Va syslogd_enable
  913: .Pq Vt bool
  914: If set to
  915: .Dq Li YES ,
  916: run the
  917: .Xr syslogd 8
  918: daemon.
  919: .It Va syslogd_program
  920: .Pq Vt str
  921: Path to
  922: .Xr syslogd 8
  923: (default
  924: .Pa /usr/sbin/syslogd ) .
  925: .It Va syslogd_flags
  926: .Pq Vt str
  927: If
  928: .Va syslogd_enable
  929: is set to
  930: .Dq Li YES ,
  931: these are the flags to pass to
  932: .Xr syslogd 8 .
  933: .It Va inetd_enable
  934: .Pq Vt bool
  935: If set to
  936: .Dq Li YES ,
  937: run the
  938: .Xr inetd 8
  939: daemon.
  940: .It Va inetd_program
  941: .Pq Vt str
  942: Path to
  943: .Xr inetd 8
  944: (default
  945: .Pa /usr/sbin/inetd ) .
  946: .It Va inetd_flags
  947: .Pq Vt str
  948: If
  949: .Va inetd_enable
  950: is set to
  951: .Dq Li YES ,
  952: these are the flags to pass to
  953: .Xr inetd 8 .
  954: .It Va named_rcng
  955: .Pq Vt bool
  956: If set to
  957: .Dq Li YES
  958: use new functionality provided in the
  959: .Pa /etc/rc.d/named
  960: script to facilitate a
  961: .Xr chroot 8
  962: instance of
  963: .Xr named 8 .
  964: This variable is experimental.
  965: It may be removed or changed in the near future.
  966: .It Va named_enable
  967: .Pq Vt bool
  968: If set to
  969: .Dq Li YES ,
  970: run the
  971: .Xr named 8
  972: daemon.
  973: .It Va named_program
  974: .Pq Vt str
  975: Path to
  976: .Xr named 8
  977: (default
  978: .Pa /usr/sbin/named ) .
  979: .It Va named_flags
  980: .Pq Vt str
  981: If
  982: .Va named_enable
  983: is set to
  984: .Dq Li YES ,
  985: these are the flags to pass to
  986: .Xr named 8 .
  987: .It Va named_pidfile
  988: .Pq Vt str
  989: This is the default path to the
  990: .Xr named 8
  991: daemon's PID file.
  992: Change it if you change the location in
  993: .Xr named.conf 5 .
  994: .It Va named_chrootdir
  995: .Pq Vt str
  996: The root directory for a name server run in a
  997: .Xr chroot 8
  998: environment.
  999: If left empty
 1000: .Xr named 8
 1001: will not be run in a
 1002: .Xr chroot 8
 1003: environment.
 1004: This variable has no effect if
 1005: .Va named_rcng
 1006: is not enabled.
 1007: This variable is experimental.
 1008: It may be removed or changed in the near future.
 1009: .It Va named_chroot_autoupdate
 1010: .Pq Vt bool
 1011: Set to
 1012: .Dq Li NO
 1013: to disable automatic syncing of libraries and
 1014: other system files between the root file system and the
 1015: .Xr chroot 8 .
 1016: This variable has no effect if
 1017: .Va named_rcng
 1018: is not enabled.
 1019: This variable is experimental.
 1020: It may be removed or changed in the near future.
 1021: .It Va named_symlink_enable
 1022: .Pq Vt bool
 1023: Set to
 1024: .Dq Li NO
 1025: to disable symlinking of
 1026: .Va named_pidfile
 1027: and
 1028: .Pa /var/run/ndc
 1029: into the
 1030: .Xr chroot 8
 1031: environment in which
 1032: .Xr named 8
 1033: is running.
 1034: This variable has no effect if
 1035: .Va named_rcng
 1036: is not enabled.
 1037: This variable is experimental.
 1038: It may be removed or changed in the near future.
 1039: .It Va kerberos5_server_enable
 1040: .Pq Vt bool
 1041: Set to
 1042: .Dq Li YES
 1043: to start a Kerberos 5 authentication server
 1044: at boot time.
 1045: .It Va kerberos5_server
 1046: .Pq Vt str
 1047: If
 1048: .Va kerberos5_server_enable
 1049: is set to
 1050: .Dq Li YES
 1051: this is the path to Kerberos 5 Authentication Server.
 1052: .It Va kadmind5_server_enable
 1053: .Pq Vt bool
 1054: Set to
 1055: .Dq Li YES
 1056: to start
 1057: .Xr kadmind 8 ,
 1058: the Kerberos 5 Administration Daemon; set to
 1059: .Dq Li NO
 1060: on a slave server.
 1061: .It Va kadmind5_server
 1062: .Pq Vt str
 1063: If
 1064: .Va kadmind5_server_enable
 1065: is set to
 1066: .Dq Li YES
 1067: this is the path to Kerberos 5 Administration Daemon.
 1068: .It Va kpasswdd_server_enable
 1069: .Pq Vt bool
 1070: Set to
 1071: .Dq Li YES
 1072: to start
 1073: .Xr kpasswdd 8 ,
 1074: the Kerberos 5 Password-Changing Daemon; set to
 1075: .Dq Li NO
 1076: on a slave server.
 1077: .It Va kpasswdd_server
 1078: .Pq Vt str
 1079: If
 1080: .Va kpasswdd_server_enable
 1081: is set to
 1082: .Dq Li YES
 1083: this is the path to Kerberos 5 Password-Changing Daemon.
 1084: .It Va rwhod_enable
 1085: .Pq Vt bool
 1086: If set to
 1087: .Dq Li YES ,
 1088: run the
 1089: .Xr rwhod 8
 1090: daemon at boot time.
 1091: .It Va rwhod_flags
 1092: .Pq Vt str
 1093: If
 1094: .Va rwhod_enable
 1095: is set to
 1096: .Dq Li YES ,
 1097: these are the flags to pass to it.
 1098: .It Va amd_enable
 1099: .Pq Vt bool
 1100: If set to
 1101: .Dq Li YES ,
 1102: run the
 1103: .Xr amd 8
 1104: daemon at boot time.
 1105: .It Va amd_flags
 1106: .Pq Vt str
 1107: If
 1108: .Va amd_enable
 1109: is set to
 1110: .Dq Li YES ,
 1111: these are the flags to pass to it.
 1112: See the
 1113: .Xr amd 8
 1114: manpage for more information.
 1115: .It Va amd_map_program
 1116: .Pq Vt str
 1117: If set,
 1118: the specified program is run to get the list of
 1119: .Xr amd 8
 1120: maps.
 1121: For example, if the
 1122: .Xr amd 8
 1123: maps are stored in NIS, one can set this to
 1124: run
 1125: .Xr ypcat 1
 1126: to get a list of
 1127: .Xr amd 8
 1128: maps from the
 1129: .Pa amd.master
 1130: NIS map.
 1131: .It Va update_motd
 1132: .Pq Vt bool
 1133: If set to
 1134: .Dq Li YES ,
 1135: .Pa /etc/motd
 1136: will be updated at boot time to reflect the kernel release
 1137: being run.
 1138: If set to
 1139: .Dq Li NO ,
 1140: .Pa /etc/motd
 1141: will not be updated.
 1142: .It Va nfs_client_enable
 1143: .Pq Vt bool
 1144: If set to
 1145: .Dq Li YES ,
 1146: run the NFS client daemons at boot time.
 1147: .It Va nfs_access_cache
 1148: .Pq Vt int
 1149: If
 1150: .Va nfs_client_enable
 1151: is set to
 1152: .Dq Li YES ,
 1153: this can be set to
 1154: .Dq Li 0
 1155: to disable NFS ACCESS RPC caching, or to the number of seconds for which
 1156: NFS ACCESS
 1157: results should be cached.
 1158: A value of 2-10 seconds will substantially reduce network
 1159: traffic for many NFS operations.
 1160: .It Va nfs_server_enable
 1161: .Pq Vt bool
 1162: If set to
 1163: .Dq Li YES ,
 1164: run the NFS server daemons at boot time.
 1165: .It Va nfs_server_flags
 1166: .Pq Vt str
 1167: If
 1168: .Va nfs_server_enable
 1169: is set to
 1170: .Dq Li YES ,
 1171: these are the flags to pass to the
 1172: .Xr nfsd 8
 1173: daemon.
 1174: .It Va mountd_enable
 1175: .Pq Vt bool
 1176: If set to
 1177: .Dq Li YES ,
 1178: and no
 1179: .Va nfs_server_enable
 1180: is set, start
 1181: .Xr mountd 8 ,
 1182: but not
 1183: .Xr nfsd 8
 1184: daemon.
 1185: It is commonly needed to run CFS without real NFS used.
 1186: .It Va mountd_flags
 1187: .Pq Vt str
 1188: If
 1189: .Va mountd_enable
 1190: is set to
 1191: .Dq Li YES ,
 1192: these are the flags to pass to the
 1193: .Xr mountd 8
 1194: daemon.
 1195: .It Va weak_mountd_authentication
 1196: .Pq Vt bool
 1197: If set to
 1198: .Dq Li YES ,
 1199: allow services like PCNFSD to make non-privileged mount
 1200: requests.
 1201: .It Va nfs_reserved_port_only
 1202: .Pq Vt bool
 1203: If set to
 1204: .Dq Li YES ,
 1205: provide NFS services only on a secure port.
 1206: .It Va nfs_bufpackets
 1207: .Pq Vt int
 1208: If set to a number, indicates the number of packets worth of
 1209: socket buffer space to reserve on an NFS client.
 1210: The kernel default is typically 4.
 1211: Using a higher number may be
 1212: useful on gigabit networks to improve performance.
 1213: The minimum value is
 1214: 2 and the maximum is 64.
 1215: .It Va rpc_umntall_enable
 1216: .Pq Vt bool
 1217: If set to
 1218: .Dq Li YES
 1219: (default) and we are also an NFS client, run
 1220: .Xr rpc.umntall 8
 1221: at boot time to clear out old mounts on remote servers.
 1222: If set to
 1223: .Dq Li NO
 1224: then
 1225: .Xr rpc.umntall 8
 1226: will not be run at boot time.
 1227: .It Va rpc_lockd_enable
 1228: .Pq Vt bool
 1229: If set to
 1230: .Dq Li YES
 1231: and also an NFS server, run
 1232: .Xr rpc.lockd 8
 1233: at boot time.
 1234: .It Va rpc_statd_enable
 1235: .Pq Vt bool
 1236: If set to
 1237: .Dq Li YES
 1238: and also an NFS server, run
 1239: .Xr rpc.statd 8
 1240: at boot time.
 1241: .It Va rpcbind_program
 1242: .Pq Vt str
 1243: Path to
 1244: .Xr rpcbind 8
 1245: (default
 1246: .Pa /usr/sbin/rpcbind ) .
 1247: .It Va rpcbind_enable
 1248: .Pq Vt bool
 1249: If set to
 1250: .Dq Li YES ,
 1251: run the
 1252: .Xr rpcbind 8
 1253: service at boot time.
 1254: .It Va rpcbind_flags
 1255: .Pq Vt str
 1256: If
 1257: .Va rpcbind_enable
 1258: is set to
 1259: .Dq Li YES ,
 1260: these are the flags to pass to the
 1261: .Xr rpcbind 8
 1262: daemon.
 1263: .It Va keyserv_enable
 1264: .Pq Vt bool
 1265: If set to
 1266: .Dq Li YES ,
 1267: run the
 1268: .Xr keyserv 8
 1269: daemon on boot for running Secure RPC.
 1270: .It Va keyserv_flags
 1271: .Pq Vt str
 1272: If
 1273: .Va keyserv_enable
 1274: is set to
 1275: .Dq Li YES ,
 1276: these are the flags to pass to
 1277: .Xr keyserv 8
 1278: daemon.
 1279: .It Va pppoed_enable
 1280: .Pq Vt bool
 1281: If set to
 1282: .Dq Li YES ,
 1283: run the
 1284: .Xr pppoed 8
 1285: daemon at boot time to provide PPP over Ethernet services.
 1286: .It Va pppoed_ Ns Ar provider
 1287: .Pq Vt str
 1288: .Xr pppoed 8
 1289: listens to requests to this
 1290: .Ar provider
 1291: and ultimately runs
 1292: .Xr ppp 8
 1293: with a
 1294: .Ar system
 1295: argument of the same name.
 1296: .It Va pppoed_flags
 1297: .Pq Vt str
 1298: Additional flags to pass to
 1299: .Xr pppoed 8 .
 1300: .It Va pppoed_interface
 1301: .Pq Vt str
 1302: The network interface to run
 1303: .Xr pppoed 8
 1304: on.
 1305: This is mandatory when
 1306: .Va pppoed_enable
 1307: is set to
 1308: .Dq Li YES .
 1309: .It Va timed_enable
 1310: .Pq Vt bool
 1311: If set to
 1312: .Dq Li YES ,
 1313: run the
 1314: .Xr timed 8
 1315: service at boot time.
 1316: This command is intended for networks of
 1317: machines where a consistent
 1318: .Dq "network time"
 1319: for all hosts must be established.
 1320: This is often useful in large NFS
 1321: environments where time stamps on files are expected to be consistent
 1322: network-wide.
 1323: .It Va timed_flags
 1324: .Pq Vt str
 1325: If
 1326: .Va timed_enable
 1327: is set to
 1328: .Dq Li YES ,
 1329: these are the flags to pass to the
 1330: .Xr timed 8
 1331: service.
 1332: .It Va ntpdate_enable
 1333: .Pq Vt bool
 1334: If set to
 1335: .Dq Li YES ,
 1336: run
 1337: .Xr ntpdate 8
 1338: at system startup.
 1339: This command is intended to
 1340: synchronize the system clock only
 1341: .Em once
 1342: from some standard reference.
 1343: An option to set this up initially
 1344: (from a list of known servers) is also provided by the
 1345: .Xr sysinstall 8
 1346: program when the system is first installed.
 1347: .It Va ntpdate_program
 1348: .Pq Vt str
 1349: Path to
 1350: .Xr ntpdate 8
 1351: (default
 1352: .Pa /usr/sbin/ntpdate ) .
 1353: .It Va ntpdate_flags
 1354: .Pq Vt str
 1355: If
 1356: .Va ntpdate_enable
 1357: is set to
 1358: .Dq Li YES ,
 1359: these are the flags to pass to the
 1360: .Xr ntpdate 8
 1361: command (typically a hostname).
 1362: .It Va ntpd_enable
 1363: .Pq Vt bool
 1364: If set to
 1365: .Dq Li YES ,
 1366: run the
 1367: .Xr ntpd 8
 1368: command at boot time.
 1369: .It Va ntpd_program
 1370: .Pq Vt str
 1371: Path to
 1372: .Xr ntpd 8
 1373: (default
 1374: .Pa /usr/sbin/ntpd ) .
 1375: .It Va ntpd_flags
 1376: .Pq Vt str
 1377: If
 1378: .Va ntpd_enable
 1379: is set to
 1380: .Dq Li YES ,
 1381: these are the flags to pass to the
 1382: .Xr ntpd 8
 1383: daemon.
 1384: .It Va nis_client_enable
 1385: .Pq Vt bool
 1386: If set to
 1387: .Dq Li YES ,
 1388: run the
 1389: .Xr ypbind 8
 1390: service at system boot time.
 1391: .It Va nis_client_flags
 1392: .Pq Vt str
 1393: If
 1394: .Va nis_client_enable
 1395: is set to
 1396: .Dq Li YES ,
 1397: these are the flags to pass to the
 1398: .Xr ypbind 8
 1399: service.
 1400: .It Va nis_ypset_enable
 1401: .Pq Vt bool
 1402: If set to
 1403: .Dq Li YES ,
 1404: run the
 1405: .Xr ypset 8
 1406: daemon at system boot time.
 1407: .It Va nis_ypset_flags
 1408: .Pq Vt str
 1409: If
 1410: .Va nis_ypset_enable
 1411: is set to
 1412: .Dq Li YES ,
 1413: these are the flags to pass to the
 1414: .Xr ypset 8
 1415: daemon.
 1416: .It Va nis_server_enable
 1417: .Pq Vt bool
 1418: If set to
 1419: .Dq Li YES ,
 1420: run the
 1421: .Xr ypserv 8
 1422: daemon at system boot time.
 1423: .It Va nis_server_flags
 1424: .Pq Vt str
 1425: If
 1426: .Va nis_server_enable
 1427: is set to
 1428: .Dq Li YES ,
 1429: these are the flags to pass to the
 1430: .Xr ypserv 8
 1431: daemon.
 1432: .It Va nis_ypxfrd_enable
 1433: .Pq Vt bool
 1434: If set to
 1435: .Dq Li YES ,
 1436: run the
 1437: .Xr rpc.ypxfrd 8
 1438: daemon at system boot time.
 1439: .It Va nis_ypxfrd_flags
 1440: .Pq Vt str
 1441: If
 1442: .Va nis_ypxfrd_enable
 1443: is set to
 1444: .Dq Li YES ,
 1445: these are the flags to pass to the
 1446: .Xr rpc.ypxfrd 8
 1447: daemon.
 1448: .It Va nis_yppasswdd_enable
 1449: .Pq Vt bool
 1450: If set to
 1451: .Dq Li YES ,
 1452: run the
 1453: .Xr rpc.yppasswdd 8
 1454: daemon at system boot time.
 1455: .It Va nis_yppasswdd_flags
 1456: .Pq Vt str
 1457: If
 1458: .Va nis_yppasswdd_enable
 1459: is set to
 1460: .Dq Li YES ,
 1461: these are the flags to pass to the
 1462: .Xr rpc.yppasswdd 8
 1463: daemon.
 1464: .It Va rpc_ypupdated_enable
 1465: .Pq Vt bool
 1466: If set to
 1467: .Dq Li YES ,
 1468: run the
 1469: .Nm rpc.ypupdated
 1470: daemon at system boot time.
 1471: .It Va defaultrouter
 1472: .Pq Vt str
 1473: If not set to
 1474: .Dq Li NO ,
 1475: create a default route to this host name or IP address
 1476: (use an IP address if this router is also required to get to the
 1477: name server!).
 1478: .It Va ipv6_defaultrouter
 1479: .Pq Vt str
 1480: The IPv6 equivalent of
 1481: .Va defaultrouter .
 1482: .It Va static_routes
 1483: .Pq Vt str
 1484: Set to the list of static routes that are to be added at system
 1485: boot time.
 1486: If not set to
 1487: .Dq Li NO
 1488: then for each whitespace separated
 1489: .Ar element
 1490: in the value, a
 1491: .Va route_ Ns Aq Ar element
 1492: variable is assumed to exist
 1493: whose contents will later be passed to a
 1494: .Dq Nm route Cm add
 1495: operation.
 1496: .It Va ipv6_static_routes
 1497: .Pq Vt str
 1498: The IPv6 equivalent of
 1499: .Va static_routes .
 1500: If not set to
 1501: .Dq Li NO
 1502: then for each whitespace separated
 1503: .Ar element
 1504: in the value, a
 1505: .Va ipv6_route_ Ns Aq Ar element
 1506: variable is assumed to exist
 1507: whose contents will later be passed to a
 1508: .Dq Nm route Cm add Fl inet6
 1509: operation.
 1510: .It Va gateway_enable
 1511: .Pq Vt bool
 1512: If set to
 1513: .Dq Li YES ,
 1514: configure host to act as an IP router, e.g. to forward packets
 1515: between interfaces.
 1516: .It Va ipv6_gateway_enable
 1517: .Pq Vt bool
 1518: The IPv6 equivalent of
 1519: .Va gateway_enable .
 1520: .It Va router_enable
 1521: .Pq Vt bool
 1522: If set to
 1523: .Dq Li YES ,
 1524: run a routing daemon of some sort, based on the
 1525: settings of
 1526: .Va router
 1527: and
 1528: .Va router_flags .
 1529: .It Va ipv6_router_enable
 1530: .Pq Vt bool
 1531: The IPv6 equivalent of
 1532: .Va router_enable .
 1533: If set to
 1534: .Dq Li YES ,
 1535: run a routing daemon of some sort, based on the
 1536: settings of
 1537: .Va ipv6_router
 1538: and
 1539: .Va ipv6_router_flags .
 1540: .It Va router
 1541: .Pq Vt str
 1542: If
 1543: .Va router_enable
 1544: is set to
 1545: .Dq Li YES ,
 1546: this is the name of the routing daemon to use.
 1547: .It Va ipv6_router
 1548: .Pq Vt str
 1549: The IPv6 equivalent of
 1550: .Va router .
 1551: .It Va router_flags
 1552: .Pq Vt str
 1553: If
 1554: .Va router_enable
 1555: is set to
 1556: .Dq Li YES ,
 1557: these are the flags to pass to the routing daemon.
 1558: .It Va ipv6_router_flags
 1559: .Pq Vt str
 1560: The IPv6 equivalent of
 1561: .Va router_flags .
 1562: .It Va mrouted_enable
 1563: .Pq Vt bool
 1564: If set to
 1565: .Dq Li YES ,
 1566: run the multicast routing daemon,
 1567: .Xr mrouted 8 .
 1568: .It Va mroute6d_enable
 1569: .Pq Vt bool
 1570: The IPv6 equivalent of
 1571: .Va mrouted_enable .
 1572: If set to
 1573: .Dq Li YES ,
 1574: run the IPv6 multicast routing daemon.
 1575: Note that no IPv6 multicast routing daemon is included in the
 1576: .Dx
 1577: base system but
 1578: .Xr pim6dd 8
 1579: can be installed from the
 1580: .Fx
 1581: Ports Collection.
 1582: .It Va mrouted_flags
 1583: .Pq Vt str
 1584: If
 1585: .Va mrouted_enable
 1586: is set to
 1587: .Dq Li YES ,
 1588: these are the flags to pass to the
 1589: .Xr mrouted 8
 1590: daemon.
 1591: .It Va mroute6d_flags
 1592: .Pq Vt str
 1593: The IPv6 equivalent of
 1594: .Va mrouted_flags .
 1595: If
 1596: .Va mroute6d_enable
 1597: is set to
 1598: .Dq Li YES ,
 1599: these are the flags passed to the IPv6 multicast routing daemon.
 1600: .It Va mroute6d_program
 1601: .Pq Vt str
 1602: If
 1603: .Va mroute6d_enable
 1604: is set to
 1605: .Dq Li YES ,
 1606: this is the path to the IPv6 multicast routing daemon.
 1607: .It Va rtadvd_enable
 1608: .Pq Vt bool
 1609: If set to
 1610: .Dq Li YES ,
 1611: run the
 1612: .Xr rtadvd 8
 1613: daemon at boot time.
 1614: .Xr rtadvd 8
 1615: will only run if
 1616: .Va ipv6_gateway_enable
 1617: is also set to
 1618: .Dq Li YES .
 1619: The
 1620: .Xr rtadvd 8
 1621: utility sends router advertisement packets to the interfaces specified in
 1622: .Va rtadvd_interfaces .
 1623: .Xr rtadvd 8
 1624: and should only be enabled with great care.
 1625: You may want to fine-tune
 1626: .Xr rtadvd.conf 5 .
 1627: .It Va rtadvd_interfaces
 1628: .Pq Vt str
 1629: If
 1630: .Va rtadvd_enable
 1631: is set to
 1632: .Dq Li YES
 1633: this is the list of interfaces to use.
 1634: .It Va ipxgateway_enable
 1635: .Pq Vt bool
 1636: If set to
 1637: .Dq Li YES ,
 1638: enable the routing of IPX traffic.
 1639: .It Va ipxrouted_enable
 1640: .Pq Vt bool
 1641: If set to
 1642: .Dq Li YES ,
 1643: run the
 1644: .Xr IPXrouted 8
 1645: daemon at system boot time.
 1646: .It Va ipxrouted_flags
 1647: .Pq Vt str
 1648: If
 1649: .Va ipxrouted_enable
 1650: is set to
 1651: .Dq Li YES ,
 1652: these are the flags to pass to the
 1653: .Xr IPXrouted 8
 1654: daemon.
 1655: .It Va arpproxy_all
 1656: .Pq Vt bool
 1657: If set to
 1658: .Dq Li YES ,
 1659: enable global proxy ARP.
 1660: .It Va forward_sourceroute
 1661: .Pq Vt bool
 1662: If set to
 1663: .Dq Li YES
 1664: and
 1665: .Va gateway_enable
 1666: is also set to
 1667: .Dq Li YES ,
 1668: source-routed packets are forwarded.
 1669: .It Va accept_sourceroute
 1670: .Pq Vt bool
 1671: If set to
 1672: .Dq Li YES ,
 1673: the system will accept source-routed packets directed at it.
 1674: .It Va rarpd_enable
 1675: .Pq Vt bool
 1676: If set to
 1677: .Dq Li YES ,
 1678: run the
 1679: .Xr rarpd 8
 1680: daemon at system boot time.
 1681: .It Va rarpd_flags
 1682: .Pq Vt str
 1683: If
 1684: .Va rarpd_enable
 1685: is set to
 1686: .Dq Li YES ,
 1687: these are the flags to pass to the
 1688: .Xr rarpd 8
 1689: daemon.
 1690: .It Va bootparamd_enable
 1691: .Pq Vt bool
 1692: If set to
 1693: .Dq Li YES ,
 1694: run the
 1695: .Xr bootparamd 8
 1696: daemon at system boot time.
 1697: .It Va bootparamd_flags
 1698: .Pq Vt str
 1699: If
 1700: .Va bootparamd_enable
 1701: is set to
 1702: .Dq Li YES ,
 1703: these are the flags to pass to the
 1704: .Xr bootparamd 8
 1705: daemon.
 1706: .It Va stf_interface_ipv4addr
 1707: .Pq Vt str
 1708: If not set to
 1709: .Dq Li NO ,
 1710: this is the local IPv4 address for 6to4 (IPv6 over IPv4 tunneling
 1711: interface).
 1712: Specify this entry to enable the 6to4 interface.
 1713: .It Va stf_interface_ipv4plen
 1714: .Pq Vt int
 1715: Prefix length for 6to4 IPv4 addresses, to limit peer address range.
 1716: An effective value is 0-31.
 1717: .It Va stf_interface_ipv6_ifid
 1718: .Pq Vt str
 1719: IPv6 interface ID for
 1720: .Xr stf 4 .
 1721: This can be set to
 1722: .Dq Li AUTO .
 1723: .It Va stf_interface_ipv6_slaid
 1724: .Pq Vt str
 1725: IPv6 Site Level Aggregator for
 1726: .Xr stf 4 .
 1727: .It Va ipv6_faith_prefix
 1728: .Pq Vt str
 1729: If not set to
 1730: .Dq Li NO ,
 1731: this is the faith prefix to enable a FAITH IPv6-to-IPv4 TCP
 1732: translator.
 1733: You also need
 1734: .Xr faithd 8
 1735: setup.
 1736: .It Va ipv6_ipv4mapping
 1737: .Pq Vt bool
 1738: If set to
 1739: .Dq Li YES
 1740: this enables IPv4 mapped IPv6 address communication (like
 1741: .Li ::ffff:a.b.c.d ) .
 1742: .It Va atm_enable
 1743: .Pq Vt bool
 1744: Set to
 1745: .Dq Li YES
 1746: to enable the configuration of ATM interfaces at system boot time.
 1747: For all of the ATM variables described below, please refer to the
 1748: .Xr atm 8
 1749: man page for further details on the available command parameters.
 1750: Also refer to the files in
 1751: .Pa /usr/share/examples/atm
 1752: for more detailed configuration information.
 1753: .It Va atm_load
 1754: .Pq Vt str
 1755: This is a list of physical ATM interface drivers to load. Typical values are
 1756: .Dq Li hfa_pci
 1757: and/or
 1758: .Dq Li hea_pci .
 1759: .It Va atm_netif_ Ns Aq Ar intf
 1760: .Pq Vt str
 1761: For the ATM physical interface
 1762: .Ar intf ,
 1763: this variable defines the name prefix and count for the ATM network
 1764: interfaces to be created.
 1765: The value will be passed as the parameters of an
 1766: .Dq Nm atm Cm "set netif" Ar intf
 1767: command.
 1768: .It Va atm_sigmgr_ Ns Aq Ar intf
 1769: .Pq Vt str
 1770: For the ATM physical interface
 1771: .Ar intf ,
 1772: this variable defines the ATM signalling manager to be used.
 1773: The value will be passed as the parameters of an
 1774: .Dq Nm atm Cm attach Ar intf
 1775: command.
 1776: .It Va atm_prefix_ Ns Aq Ar intf
 1777: .Pq Vt str
 1778: For the ATM physical interface
 1779: .Ar intf ,
 1780: this variable defines the NSAP prefix for interfaces using a UNI signalling
 1781: manager.
 1782: If set to
 1783: .Dq Li ILMI ,
 1784: the prefix will automatically be set via the
 1785: .Xr ilmid 8
 1786: daemon.
 1787: Otherwise, the value will be passed as the parameters of an
 1788: .Dq Nm atm Cm "set prefix" Ar intf
 1789: command.
 1790: .It Va atm_macaddr_ Ns Aq Ar intf
 1791: .Pq Vt str
 1792: For the ATM physical interface
 1793: .Ar intf ,
 1794: this variable defines the MAC address for interfaces using a UNI signalling
 1795: manager.
 1796: If set to
 1797: .Dq Li NO ,
 1798: the hardware MAC address contained in the ATM interface card will be used.
 1799: Otherwise, the value will be passed as the parameters of an
 1800: .Dq Nm atm Cm "set mac" Ar intf
 1801: command.
 1802: .It Va atm_arpserver_ Ns Aq Ar netif
 1803: .Pq Vt str
 1804: For the ATM network interface
 1805: .Ar netif ,
 1806: this variable defines the ATM address for a host which is to provide ATMARP
 1807: service.
 1808: This variable is only applicable to interfaces using a UNI signalling
 1809: manager.
 1810: If set to
 1811: .Dq Li local ,
 1812: this host will become an ATMARP server.
 1813: The value will be passed as the parameters of an
 1814: .Dq Nm atm Cm "set arpserver" Ar netif
 1815: command.
 1816: .It Va atm_scsparp_ Ns Aq Ar netif
 1817: .Pq Vt bool
 1818: If set to
 1819: .Dq Li YES ,
 1820: SCSP/ATMARP service for the network interface
 1821: .Ar netif
 1822: will be initiated using the
 1823: .Xr scspd 8
 1824: and
 1825: .Xr atmarpd 8
 1826: daemons.
 1827: This variable is only applicable if
 1828: .Va atm_arpserver_ Ns Aq Ar netif
 1829: is set to
 1830: .Dq Li local .
 1831: .It Va atm_pvcs
 1832: .Pq Vt str
 1833: Set to the list of ATM PVCs to be added at system
 1834: boot time.
 1835: For each whitespace separated
 1836: .Ar element
 1837: in the value, an
 1838: .Va atm_pvc_ Ns Aq Ar element
 1839: variable is assumed to exist.
 1840: The value of each of these variables
 1841: will be passed as the parameters of an
 1842: .Dq Nm atm Cm "add pvc"
 1843: command.
 1844: .It Va atm_arps
 1845: .Pq Vt str
 1846: Set to the list of permanent ATM ARP entries to be added
 1847: at system boot time.
 1848: For each whitespace separated
 1849: .Ar element
 1850: in the value, an
 1851: .Va atm_arp_ Ns Aq Ar element
 1852: variable is assumed to exist.
 1853: The value of each of these variables
 1854: will be passed as the parameters of an
 1855: .Dq Nm atm Cm "add arp"
 1856: command.
 1857: .It Va natm_interfaces
 1858: .Pq Vt str
 1859: Set to the list of
 1860: .Xr natm 4
 1861: interfaces that will also be used for HARP through
 1862: .Xr harp 4 .
 1863: If this list is not empty all interfaces in the list will be brought up
 1864: with
 1865: .Xr ifconfig 9
 1866: and
 1867: .Xr harp 4
 1868: will be loaded.
 1869: For this to work the interface drivers must be either compiled into the
 1870: kernel or must reside on the root partition.
 1871: .It Va keybell
 1872: .Pq Vt str
 1873: The keyboard bell sound.
 1874: Set to
 1875: .Dq Li normal ,
 1876: .Dq Li visual ,
 1877: .Dq Li off ,
 1878: or
 1879: .Dq Li NO
 1880: if the default behavior is desired.
 1881: For details, refer to the
 1882: .Xr kbdcontrol 1
 1883: manpage.
 1884: .It Va keymap
 1885: .Pq Vt str
 1886: If set to
 1887: .Dq Li NO ,
 1888: no keymap is installed, otherwise the value is used to install
 1889: the keymap file in
 1890: .Pa /usr/share/syscons/keymaps/ Ns Ao Ar value Ac Ns Pa .kbd .
 1891: .It Va keyrate
 1892: .Pq Vt str
 1893: The keyboard repeat speed.
 1894: Set to
 1895: .Dq Li slow ,
 1896: .Dq Li normal ,
 1897: .Dq Li fast ,
 1898: or
 1899: .Dq Li NO
 1900: if the default behavior is desired.
 1901: .It Va keychange
 1902: .Pq Vt str
 1903: If not set to
 1904: .Dq Li NO ,
 1905: attempt to program the function keys with the value.
 1906: The value should
 1907: be a single string of the form:
 1908: .Dq Ar funkey_number new_value Op Ar funkey_number new_value ... .
 1909: .It Va cursor
 1910: .Pq Vt str
 1911: Can be set to the value of
 1912: .Dq Li normal ,
 1913: .Dq Li blink ,
 1914: .Dq Li destructive ,
 1915: or
 1916: .Dq Li NO
 1917: to set the cursor behavior explicitly or choose the default behavior.
 1918: .It Va scrnmap
 1919: .Pq Vt str
 1920: If set to
 1921: .Dq Li NO ,
 1922: no screen map is installed, otherwise the value is used to install
 1923: the screen map file in
 1924: .Pa /usr/share/syscons/scrnmaps/ Ns Aq Ar value .
 1925: .It Va font8x16
 1926: .Pq Vt str
 1927: If set to
 1928: .Dq Li NO ,
 1929: the default 8x16 font value is used for screen size requests, otherwise
 1930: the value in
 1931: .Pa /usr/share/syscons/fonts/ Ns Aq Ar value
 1932: is used.
 1933: .It Va font8x14
 1934: .Pq Vt str
 1935: If set to
 1936: .Dq Li NO ,
 1937: the default 8x14 font value is used for screen size requests, otherwise
 1938: the value in
 1939: .Pa /usr/share/syscons/fonts/ Ns Aq Ar value
 1940: is used.
 1941: .It Va font8x8
 1942: .Pq Vt str
 1943: If set to
 1944: .Dq Li NO ,
 1945: the default 8x8 font value is used for screen size requests, otherwise
 1946: the value in
 1947: .Pa /usr/share/syscons/fonts/ Ns Aq Ar value
 1948: is used.
 1949: .It Va blanktime
 1950: .Pq Vt int
 1951: If set to
 1952: .Dq Li NO ,
 1953: the default screen blanking interval is used, otherwise it is set
 1954: to
 1955: .Ar value
 1956: seconds.
 1957: .It Va saver
 1958: .Pq Vt str
 1959: If not set to
 1960: .Dq Li NO ,
 1961: this is the actual screen saver to use
 1962: .Li ( blank , snake , daemon ,
 1963: etc).
 1964: .It Va moused_enable
 1965: .Pq Vt str
 1966: If set to
 1967: .Dq Li YES ,
 1968: the
 1969: .Xr moused 8
 1970: daemon is started for doing cut/paste selection on the console.
 1971: .It Va moused_type
 1972: .Pq Vt str
 1973: This is the protocol type of the mouse connected to this host.
 1974: This variable must be set if
 1975: .Va moused_enable
 1976: is set to
 1977: .Dq Li YES .
 1978: The
 1979: .Xr moused 8
 1980: daemon
 1981: is able to detect the appropriate mouse type automatically in many cases.
 1982: Set this variable to
 1983: .Dq Li auto
 1984: to let the daemon detect it, or
 1985: select one from the following list if the automatic detection fails.
 1986: .Pp
 1987: If the mouse is attached to the PS/2 mouse port, choose
 1988: .Dq Li auto
 1989: or
 1990: .Dq Li ps/2 ,
 1991: regardless of the brand and model of the mouse.
 1992: Likewise, if the
 1993: mouse is attached to the bus mouse port, choose
 1994: .Dq Li auto
 1995: or
 1996: .Dq Li busmouse .
 1997: All other protocols are for serial mice and will not work with
 1998: the PS/2 and bus mice.
 1999: If this is a USB mouse,
 2000: .Dq Li auto
 2001: is the only protocol type which will work.
 2002: .Pp
 2003: .Bl -tag -width ".Li x10mouseremote" -compact
 2004: .It Li microsoft
 2005: Microsoft mouse (serial)
 2006: .It Li intellimouse
 2007: Microsoft IntelliMouse (serial)
 2008: .It Li mousesystems
 2009: Mouse systems Corp. mouse (serial)
 2010: .It Li mmseries
 2011: MM Series mouse (serial)
 2012: .It Li logitech
 2013: Logitech mouse (serial)
 2014: .It Li busmouse
 2015: A bus mouse
 2016: .It Li mouseman
 2017: Logitech MouseMan and TrackMan (serial)
 2018: .It Li glidepoint
 2019: ALPS GlidePoint (serial)
 2020: .It Li thinkingmouse
 2021: Kensington ThinkingMouse (serial)
 2022: .It Li ps/2
 2023: PS/2 mouse
 2024: .It Li mmhittab
 2025: MM HitTablet (serial)
 2026: .It Li x10mouseremote
 2027: X10 MouseRemote (serial)
 2028: .It Li versapad
 2029: Interlink VersaPad (serial)
 2030: .El
 2031: .Pp
 2032: Even if the mouse is not in the above list, it may be compatible
 2033: with one in the list.
 2034: Refer to the man page for
 2035: .Xr moused 8
 2036: for compatibility information.
 2037: .Pp
 2038: It should also be noted that while this is enabled, any
 2039: other client of the mouse (such as an X server) should access
 2040: the mouse through the virtual mouse device,
 2041: .Pa /dev/sysmouse ,
 2042: and configure it as a
 2043: .Dq Li sysmouse
 2044: type mouse, since all
 2045: mouse data is converted to this single canonical format when
 2046: using
 2047: .Xr moused 8 .
 2048: If the client program does not support the
 2049: .Dq Li sysmouse
 2050: type,
 2051: specify the
 2052: .Dq Li mousesystems
 2053: type.
 2054: It is the second preferred type.
 2055: .It Va moused_port
 2056: .Pq Vt str
 2057: If
 2058: .Va moused_enable
 2059: is set to
 2060: .Dq Li YES ,
 2061: this is the actual port the mouse is on.
 2062: It might be
 2063: .Pa /dev/cuaa0
 2064: for a COM1 serial mouse,
 2065: .Pa /dev/psm0
 2066: for a PS/2 mouse or
 2067: .Pa /dev/mse0
 2068: for a bus mouse, for example.
 2069: .It Va moused_flags
 2070: .Pq Vt str
 2071: If
 2072: .Va moused_type
 2073: is set, these are the additional flags to pass to the
 2074: .Xr moused 8
 2075: daemon.
 2076: .It Va mousechar_start
 2077: .Pq Vt int
 2078: If set to
 2079: .Dq Li NO ,
 2080: the default mouse cursor character range
 2081: .Li 0xd0 Ns - Ns Li 0xd3
 2082: is used,
 2083: otherwise the range start is set
 2084: to
 2085: .Ar value
 2086: character, see
 2087: .Xr vidcontrol 1 .
 2088: Use if the default range is occupied in the language code table.
 2089: .It Va allscreens_flags
 2090: .Pq Vt str
 2091: If set,
 2092: .Xr vidcontrol 1
 2093: is run with these options for each of the virtual terminals
 2094: .Pq Pa /dev/ttyv* .
 2095: For example,
 2096: .Dq Fl m Cm on
 2097: will enable the mouse pointer on all virtual terminals
 2098: if
 2099: .Va moused_enable
 2100: is set to
 2101: .Dq Li YES .
 2102: .It Va allscreens_kbdflags
 2103: .Pq Vt str
 2104: If set,
 2105: .Xr kbdcontrol 1
 2106: is run with these options for each of the virtual terminals
 2107: .Pq Pa /dev/ttyv* .
 2108: For example,
 2109: .Dq Fl h Li 200
 2110: will set the
 2111: .Xr syscons 4
 2112: scrollback (history) buffer to 200 lines.
 2113: .It Va cron_enable
 2114: .Pq Vt bool
 2115: If set to
 2116: .Dq Li YES ,
 2117: run the
 2118: .Xr cron 8
 2119: daemon at system boot time.
 2120: .It Va cron_program
 2121: .Pq Vt str
 2122: Path to
 2123: .Xr cron 8
 2124: (default
 2125: .Pa /usr/sbin/cron ) .
 2126: .It Va cron_flags
 2127: .Pq Vt str
 2128: If
 2129: .Va cron_enable
 2130: is set to
 2131: .Dq Li YES ,
 2132: these are the flags to pass to
 2133: .Xr cron 8 .
 2134: .It Va lpd_program
 2135: .Pq Vt str
 2136: Path to
 2137: .Xr lpd 8
 2138: (default
 2139: .Pa /usr/sbin/lpd ) .
 2140: .It Va lpd_enable
 2141: .Pq Vt bool
 2142: If set to
 2143: .Dq Li YES ,
 2144: run the
 2145: .Xr lpd 8
 2146: daemon at system boot time.
 2147: .It Va lpd_flags
 2148: .Pq Vt str
 2149: If
 2150: .Va lpd_enable
 2151: is set to
 2152: .Dq Li YES ,
 2153: these are the flags to pass to the
 2154: .Xr lpd 8
 2155: daemon.
 2156: .It Va mta_start_script
 2157: .Pq Vt str
 2158: This variable specifies the full path to the script to run to start
 2159: a mail transfer agent.
 2160: The default is
 2161: .Pa /etc/rc.sendmail .
 2162: The
 2163: .Va sendmail_*
 2164: variables which
 2165: .Pa /etc/rc.sendmail
 2166: uses are documented in the
 2167: .Xr rc.sendmail 8
 2168: man page.
 2169: .It Va dumpdev
 2170: .Pq Vt str
 2171: Indicates the device (usually a swap partition) to which a crash dump
 2172: should be written in the event of a system crash.
 2173: The value of this variable is passed as the argument to
 2174: .Xr dumpon 8 .
 2175: To disable crash dumps, set this variable to
 2176: .Dq Li NO .
 2177: .It Va dumpdir
 2178: .Pq Vt str
 2179: When the system reboots after a crash and a crash dump is found on the
 2180: device specified by the
 2181: .Va dumpdev
 2182: variable,
 2183: .Xr savecore 8
 2184: will save that crash dump and a copy of the kernel to the directory
 2185: specified by the
 2186: .Va dumpdir
 2187: variable.
 2188: The default value is
 2189: .Pa /var/crash .
 2190: Set to
 2191: .Dq Li NO
 2192: to not run
 2193: .Xr savecore 8
 2194: at boot time when
 2195: .Va dumpdir
 2196: is set.
 2197: .It Va savecore_flags
 2198: .Pq Vt str
 2199: If crash dumps are enabled, these are the flags to pass to the
 2200: .Xr savecore 8
 2201: utility.
 2202: .It Va enable_quotas
 2203: .Pq Vt bool
 2204: Set to
 2205: .Dq Li YES
 2206: to turn on user disk quotas on system startup via the
 2207: .Xr quotaon 8
 2208: command.
 2209: .It Va check_quotas
 2210: .Pq Vt bool
 2211: Set to
 2212: .Dq Li YES
 2213: to enable user disk quota checking via the
 2214: .Xr quotacheck 8
 2215: command.
 2216: .It Va accounting_enable
 2217: .Pq Vt bool
 2218: Set to
 2219: .Dq Li YES
 2220: to enable system accounting through the
 2221: .Xr accton 8
 2222: facility.
 2223: .It Va ibcs2_enable
 2224: .Pq Vt bool
 2225: Set to
 2226: .Dq Li YES
 2227: to enable iBCS2 (SCO) binary emulation at system initial boot
 2228: time.
 2229: .It Va ibcs2_loaders
 2230: .Pq Vt str
 2231: If not set to
 2232: .Dq Li NO
 2233: and if
 2234: .Va ibcs2_enable
 2235: is set to
 2236: .Dq Li YES ,
 2237: this specifies a list of additional iBCS2 loaders to enable.
 2238: .It Va linux_enable
 2239: .Pq Vt bool
 2240: Set to
 2241: .Dq Li YES
 2242: to enable Linux/ELF binary emulation at system initial
 2243: boot time.
 2244: .It Va osf1_enable
 2245: .Pq Vt bool
 2246: Set to
 2247: .Dq Li YES
 2248: to enable OSF/1 (Digital UNIX) binary emulation at system
 2249: initial boot time.
 2250: (alpha)
 2251: .It Va svr4_enable
 2252: .Pq Vt bool
 2253: If set to
 2254: .Dq Li YES ,
 2255: enable SysVR4 emulation at boot time.
 2256: .It Va sysvipc_enable
 2257: .Pq Vt bool
 2258: If set to
 2259: .Dq Li YES ,
 2260: load System V IPC primitives at boot time.
 2261: .It Va clear_tmp_enable
 2262: .Pq Vt bool
 2263: Set to
 2264: .Dq Li YES
 2265: to have
 2266: .Pa /tmp
 2267: cleaned at startup.
 2268: .It Va ldconfig_paths
 2269: .Pq Vt str
 2270: Set to the list of shared library paths to use with
 2271: .Xr ldconfig 8 .
 2272: NOTE:
 2273: .Pa /usr/lib
 2274: will always be added first, so it need not appear in this list.
 2275: .It Va ldconfig_paths_aout
 2276: .Pq Vt str
 2277: Set to the list of shared library paths to use with
 2278: .Xr ldconfig 8
 2279: legacy
 2280: .Xr a.out 5
 2281: support.
 2282: .It Va ldconfig_insecure
 2283: .Pq Vt bool
 2284: The
 2285: .Xr ldconfig 8
 2286: utility normally refuses to use directories
 2287: which are writable by anyone except root.
 2288: Set this variable to
 2289: .Dq Li YES
 2290: to disable that security check during system startup.
 2291: .It Va kern_securelevel_enable
 2292: .Pq Vt bool
 2293: Set to
 2294: .Dq Li YES
 2295: to set the kernel security level at system startup.
 2296: .It Va kern_securelevel
 2297: .Pq Vt int
 2298: The kernel security level to set at startup.
 2299: The allowed range of
 2300: .Ar value
 2301: ranges from \-1 (the compile time default) to 3 (the
 2302: most secure).
 2303: See
 2304: .Xr init 8
 2305: for the list of possible security levels and their effect
 2306: on system operation.
 2307: .It Va lomac_enable
 2308: .Pq Vt bool
 2309: Set to
 2310: .Dq Li YES
 2311: to enable Low Watermark Mandatory Access Control (LOMAC) at boot time.
 2312: This security model enforces integrity constraints for system processes;
 2313: see
 2314: .Xr lomac 4
 2315: for a complete description of the LOMAC model, as well as its impact
 2316: on system operation.
 2317: .It Va start_vinum
 2318: .Pq Vt bool
 2319: Set to
 2320: .Dq Li YES
 2321: to start
 2322: .Xr vinum 8
 2323: at system boot time.
 2324: .It Va sshd_program
 2325: .Pq Vt str
 2326: Path to the SSH server program
 2327: .Pa ( /usr/sbin/sshd
 2328: is the default).
 2329: .It Va sshd_enable
 2330: .Pq Vt bool
 2331: Set to
 2332: .Dq Li YES
 2333: to start
 2334: .Xr sshd 8
 2335: at system boot time.
 2336: .It Va sshd_flags
 2337: .Pq Vt str
 2338: If
 2339: .Va sshd_enable
 2340: is set to
 2341: .Dq Li YES ,
 2342: these are the flags to pass to the
 2343: .Xr sshd 8
 2344: daemon.
 2345: .It Va usbd_enable
 2346: .Pq Vt bool
 2347: If set to
 2348: .Dq Li YES ,
 2349: run the
 2350: .Xr usbd 8
 2351: daemon at boot time.
 2352: .It Va usbd_flags
 2353: .Pq Vt str
 2354: If
 2355: .Va usbd_enable
 2356: is set to
 2357: .Dq Li YES ,
 2358: these are the flags passed to
 2359: .Xr usbd 8
 2360: daemon.
 2361: .It Va watchdogd_enable
 2362: .Pq Vt bool
 2363: If set to
 2364: .Dq Li YES ,
 2365: start the
 2366: .Xr watchdogd 8
 2367: daemon at boot time.
 2368: This requires that the kernel have been compiled with
 2369: .Cd "options WATCHDOG" .
 2370: .It Va jail_enable
 2371: .Pq Vt bool
 2372: If set to
 2373: .Dq Li NO ,
 2374: any configured jails will not be started.
 2375: .It Va jail_list
 2376: .Pq Vt str
 2377: A space separated list of names for jails.
 2378: This is purely a configuration aid to help identify and
 2379: configure multiple jails.
 2380: The names specified in this list will be used to
 2381: identify settings common to an instance of a jail.
 2382: Assuming that the jail in question was named
 2383: .Li vjail ,
 2384: you would have the following dependant variables:
 2385: .Bd -literal
 2386: jail_vjail_hostname="jail.example.com"
 2387: jail_vjail_ip="192.168.1.100"
 2388: jail_vjail_rootdir="/var/jails/vjail/root"
 2389: jail_vjail_exec="/bin/sh /etc/rc"
 2390: .Ed
 2391: .Pp
 2392: The last one is optional.
 2393: It defaults to
 2394: .Pa /etc/rc
 2395: if it is not set.
 2396: .It Va jail_set_hostname_allow
 2397: .Pq Vt bool
 2398: If set to
 2399: .Dq Li NO ,
 2400: do not allow the root user in a jail to set its hostname.
 2401: .It Va jail_socket_unixiproute_only
 2402: .Pq Vt bool
 2403: If set to
 2404: .Dq Li NO ,
 2405: do not allow any protocol,
 2406: besides TCP/IP,
 2407: to be used within a jail.
 2408: .It Va jail_sysvipc_allow
 2409: .Pq Vt bool
 2410: If set to
 2411: .Dq Li YES ,
 2412: allow applications within a jail to use System V IPC.
 2413: .It Va unaligned_print
 2414: .Pq Vt bool
 2415: If set to
 2416: .Dq Li NO ,
 2417: unaligned access warnings will not be printed.
 2418: (alpha)
 2419: .\" ----- isdn settings ---------------------------------
 2420: .It Va isdn_enable
 2421: .Pq Vt bool
 2422: Set to
 2423: .Dq Li NO
 2424: by default.
 2425: When set to
 2426: .Dq Li YES ,
 2427: starts the
 2428: .Xr isdnd 8
 2429: daemon
 2430: at system boot time.
 2431: .It Va isdn_flags
 2432: .Pq Vt str
 2433: Set to
 2434: .Dq Fl d Ns Cm n Fl d Ns Li 0x1f9
 2435: by default.
 2436: Additional flags to pass to
 2437: .Xr isdnd 8
 2438: (but see
 2439: .Va isdn_fsdev
 2440: and
 2441: .Va isdn_ttype
 2442: for certain tunable parameters).
 2443: .It Va isdn_ttype
 2444: .Pq Vt str
 2445: Set to
 2446: .Dq Li cons25
 2447: by default.
 2448: The terminal type of the output device when
 2449: .Xr isdnd 8
 2450: operates in full-screen mode.
 2451: .It Va isdn_screenflags
 2452: .Pq Vt str
 2453: Set to
 2454: .Dq Li NO
 2455: by default.
 2456: The video mode for full-screen mode (only for
 2457: .Xr syscons 4
 2458: console driver, see
 2459: .Xr vidcontrol 1
 2460: for valid modes).
 2461: .It Va isdn_fsdev
 2462: .Pq Vt str
 2463: Set to
 2464: .Dq Li NO
 2465: by default.
 2466: The output device for
 2467: .Xr isdnd 8
 2468: in full-screen mode (or
 2469: .Dq Li NO
 2470: for daemon mode).
 2471: .It Va isdn_trace
 2472: .Pq Vt bool
 2473: Set to
 2474: .Dq Li NO
 2475: by default.
 2476: When set to
 2477: .Dq Li YES ,
 2478: enables the ISDN protocol trace utility
 2479: .Xr isdntrace 8
 2480: at system boot time.
 2481: .It Va isdn_traceflags
 2482: .Pq Vt str
 2483: Set to
 2484: .Dq Fl f Pa /var/tmp/isdntrace0
 2485: by default.
 2486: Flags for
 2487: .Xr isdntrace 8 .
 2488: .\" -----------------------------------------------------
 2489: .It Va pcvt_verbose
 2490: .Pq Vt bool
 2491: Set to
 2492: .Dq Li NO
 2493: by default.
 2494: When set to
 2495: .Dq Li YES ,
 2496: verbose messages about the actions done by the start script are displayed.
 2497: .Em Note :
 2498: the
 2499: .Xr pcvt 4
 2500: driver must be compiled into the kernel before the
 2501: .Xr pcvt 4
 2502: related
 2503: options described here take any effect.
 2504: .It Va pcvt_keymap
 2505: .Pq Vt str
 2506: Set to
 2507: .Dq Li NO
 2508: by default.
 2509: Use this to configure a national keyboard mapping found in the
 2510: .Pa /usr/share/misc/keycap.pcvt
 2511: file of keyboard mappings.
 2512: (See also the manual pages
 2513: .Xr keycap 5
 2514: and
 2515: .Xr keycap 3
 2516: for usage of
 2517: .Xr pcvt 4 Ns 's
 2518: keycap database and the manual page
 2519: .Xr kcon 1
 2520: option
 2521: .Fl m
 2522: for national keyboard mapping configuration.)
 2523: .It Va pcvt_keydel
 2524: .Pq Vt int
 2525: Set to
 2526: .Dq Li NO
 2527: by default.
 2528: Used to set the keyboard key repeat delay value.
 2529: Valid values are
 2530: in the range 0..3 for delay values of 250, 500, 750 and 1000 msec.
 2531: (See also the
 2532: .Xr kcon 1
 2533: manual page.)
 2534: .It Va pcvt_keyrate
 2535: .Pq Vt int
 2536: Set to
 2537: .Dq Li NO
 2538: by default.
 2539: Used to set the keyboard key repetition rate value.
 2540: Valid values are
 2541: in the range 0..31 for repetition values of 2..30 characters per second.
 2542: .It Va pcvt_keyrepeat
 2543: .Pq Vt bool
 2544: Set to
 2545: .Dq Li NO
 2546: by default.
 2547: Set to
 2548: .Dq Li YES
 2549: to enable automatic keyboard key repeating.
 2550: .It Va pcvt_force24
 2551: .Pq Vt bool
 2552: Set to
 2553: .Dq Li NO
 2554: by default.
 2555: Set to
 2556: .Dq Li YES
 2557: to force
 2558: .Xr pcvt 4
 2559: to use 24 lines only (in 25 lines mode) for compatibility
 2560: with the original
 2561: .Tn VT220
 2562: terminal.
 2563: .It Va pcvt_hpext
 2564: .Pq Vt bool
 2565: Set to
 2566: .Dq Li NO
 2567: by default.
 2568: Set to
 2569: .Dq Li YES
 2570: to enable the display and functionality of function key labels (as found
 2571: on
 2572: .Tn Hewlett-Packard
 2573: terminals such as the
 2574: .Tn HP2392A
 2575: and the
 2576: .Tn HP700/92
 2577: in
 2578: .Tn ANSI
 2579: mode).
 2580: .It Va pcvt_lines
 2581: .Pq Vt int
 2582: Set to
 2583: .Dq Li NO
 2584: by default resulting in a value of 25.
 2585: Used to set the number of lines on the screen.
 2586: For VGA displays, valid
 2587: values are 25, 28, 40 and 50 lines.
 2588: (See also the
 2589: .Xr scon 1
 2590: manual page.)
 2591: .It Va pcvt_blanktime
 2592: .Pq Vt int
 2593: Set to
 2594: .Dq Li NO
 2595: by default.
 2596: Used to set the screen saver timeout in seconds for values greater than
 2597: zero.
 2598: .It Va pcvt_cursorh
 2599: .Pq Vt int
 2600: Set to
 2601: .Dq Li NO
 2602: by default.
 2603: Used to set the cursor top scanline.
 2604: (See also the
 2605: .Xr cursor 1
 2606: manual page.)
 2607: .It Va pcvt_cursorl
 2608: .Pq Vt int
 2609: Set to
 2610: .Dq Li NO
 2611: by default.
 2612: Used to set the cursor bottom scanline.
 2613: .It Va pcvt_monohigh
 2614: .Pq Vt bool
 2615: Set to
 2616: .Dq Li NO
 2617: by default.
 2618: Set to
 2619: .Dq Li YES
 2620: to set intensity to high on monochrome monitors.
 2621: (See also the
 2622: .Xr scon 1
 2623: manual page, option
 2624: .Fl p ,
 2625: for more information on changing VGA palette
 2626: values.)
 2627: .It Va harvest_interrupt
 2628: .Pq Vt bool
 2629: Set to
 2630: .Dq Li YES
 2631: to use hardware interrupts as an entropy source.
 2632: Refer to
 2633: .Xr random 4
 2634: for more information.
 2635: .It Va harvest_ethernet
 2636: .Pq Vt bool
 2637: Set to
 2638: .Dq Li YES
 2639: to use LAN traffic as an entropy source.
 2640: Refer to
 2641: .Xr random 4
 2642: for more information.
 2643: .It Va harvest_p_to_p
 2644: .Pq Vt bool
 2645: Set to
 2646: .Dq Li YES
 2647: to use serial line traffic as an entropy source.
 2648: Refer to
 2649: .Xr random 4
 2650: for more information.
 2651: .It Va entropy_dir
 2652: .Pq Vt str
 2653: Set to
 2654: .Dq Li NO
 2655: to disable caching entropy via
 2656: .Xr cron 8 .
 2657: Otherwise set to the directory used to store entropy files in.
 2658: .It Va entropy_file
 2659: .Pq Vt str
 2660: Set to
 2661: .Dq Li NO
 2662: to disable caching entropy through reboots.
 2663: Otherwise set to the filename used to store cached entropy through
 2664: reboots.
 2665: This file should be located on the root file system to seed the
 2666: .Xr random 4
 2667: device as early as possible in the boot process.
 2668: .It Va entropy_save_sz
 2669: .Pq Vt int
 2670: Size of the entropy cache files saved by
 2671: .Nm save-entropy
 2672: periodically.
 2673: .It Va entropy_save_num
 2674: .Pq Vt int
 2675: Number of entropy cache files to save by
 2676: .Nm save-entropy
 2677: periodically.
 2678: .It Va ipsec_enable
 2679: .Pq Vt bool
 2680: Set to
 2681: .Dq Li YES
 2682: to run
 2683: .Xr setkey 8
 2684: on
 2685: .Va ipsec_file
 2686: at boot time.
 2687: .It Va ipsec_file
 2688: .Pq Vt str
 2689: Configuration file for
 2690: .Xr setkey 8 .
 2691: .It Va dmesg_enable
 2692: .Pq Vt bool
 2693: Set to
 2694: .Dq Li YES
 2695: to save
 2696: .Xr dmesg 8
 2697: to
 2698: .Pa /var/run/dmesg.boot
 2699: on boot.
 2700: .It Va rcshutdown_timeout
 2701: .Pq Vt int
 2702: If set, start a watchdog timer in the background which will terminate
 2703: .Pa rc.shutdown
 2704: if
 2705: .Xr shutdown 8
 2706: has not completed within the specified time (in seconds).
 2707: .El
 2708: .Sh FILES
 2709: .Bl -tag -width ".Pa /etc/defaults/rc.conf" -compact
 2710: .It Pa /etc/defaults/rc.conf
 2711: .It Pa /etc/rc.conf
 2712: .It Pa /etc/rc.conf.local
 2713: .El
 2714: .Sh SEE ALSO
 2715: .Xr catman 1 ,
 2716: .Xr gdb 1 ,
 2717: .Xr info 1 ,
 2718: .Xr kbdcontrol 1 ,
 2719: .Xr makewhatis 1 ,
 2720: .Xr vidcontrol 1 ,
 2721: .Xr ip 4 ,
 2722: .Xr kld 4 ,
 2723: .Xr tcp 4 ,
 2724: .Xr udp 4 ,
 2725: .Xr exports 5 ,
 2726: .Xr motd 5 ,
 2727: .Xr accton 8 ,
 2728: .Xr amd 8 ,
 2729: .Xr apm 8 ,
 2730: .Xr atm 8 ,
 2731: .Xr cron 8 ,
 2732: .Xr dhclient 8 ,
 2733: .Xr ifconfig 8 ,
 2734: .Xr inetd 8 ,
 2735: .Xr isdnd 8 ,
 2736: .Xr isdntrace 8 ,
 2737: .Xr kldxref 8 ,
 2738: .Xr lpd 8 ,
 2739: .Xr mdconfig 8 ,
 2740: .Xr mountd 8 ,
 2741: .Xr moused 8 ,
 2742: .Xr mrouted 8 ,
 2743: .Xr named 8 ,
 2744: .Xr nfsd 8 ,
 2745: .Xr ntpd 8 ,
 2746: .Xr ntpdate 8 ,
 2747: .Xr pcnfsd 8 ,
 2748: .Xr quotacheck 8 ,
 2749: .Xr quotaon 8 ,
 2750: .Xr rc 8 ,
 2751: .Xr rc.sendmail 8 ,
 2752: .Xr route 8 ,
 2753: .Xr routed 8 ,
 2754: .Xr rpc.lockd 8 ,
 2755: .Xr rpc.statd 8 ,
 2756: .Xr rpcbind 8 ,
 2757: .Xr rwhod 8 ,
 2758: .Xr savecore 8 ,
 2759: .Xr sshd 8 ,
 2760: .Xr swapon 8 ,
 2761: .Xr sysctl 8 ,
 2762: .Xr syslogd 8 ,
 2763: .Xr timed 8 ,
 2764: .Xr usbd 8 ,
 2765: .Xr vinum 8 ,
 2766: .Xr yp 8 ,
 2767: .Xr ypbind 8 ,
 2768: .Xr ypserv 8 ,
 2769: .Xr ypset 8
 2770: .Sh HISTORY
 2771: The
 2772: .Nm
 2773: file appeared in
 2774: .Fx 2.2.2 .
 2775: .Sh AUTHORS
 2776: .An Jordan K. Hubbard .