26.\" 27.Dd March 3, 2002 28.Dt RC.CONF 5 29.Os 30.Sh NAME 31.Nm rc.conf 32.Nd system configuration information 33.Sh DESCRIPTION 34The file 35.Nm 36contains descriptive information about the local host name, configuration 37details for any potential network interfaces and which services should be 38started up at system initial boot time. 39In new installations, the 40.Nm 41file is generally initialized by the system installation utility, 42.Xr sysinstall 8 . 43.Pp 44The purpose of 45.Nm 46is not to run commands or perform system startup actions 47directly. 48Instead, it is included by the 49various generic startup scripts in 50.Pa /etc 51which conditionalize their 52internal actions according to the settings found there. 53.Pp 54The 55.Pa /etc/rc.conf 56file is included from the file 57.Pa /etc/defaults/rc.conf , 58which specifies the default settings for all the available options. 59Options need only be specified in 60.Pa /etc/rc.conf 61when the system administrator wishes to override these defaults. 62The file 63.Pa /etc/rc.conf.local 64is used to override settings in 65.Pa /etc/rc.conf 66for historical reasons. 67See the 68.Va rc_conf_files 69variable below. 70.Pp 71The following list provides a name and short description for each 72variable that can be set in the 73.Nm 74file: 75.Bl -tag -width indent-two 76.It Va swapfile 77.Pq Vt str 78If set to 79.Dq Li NO , 80no swapfile is installed, otherwise the value is used as the full 81pathname to a file to use for additional swap space. 82.It Va apm_enable 83.Pq Vt bool 84If set to 85.Dq Li YES , 86enable support for Automatic Power Management with 87the 88.Xr apm 8 89command. 90.It Va apmd_enable 91.Pq Vt bool 92Run 93.Xr apmd 8 94to handle APM event from userland. 95This also enables support for APM. 96.It Va apmd_flags 97.Pq Vt str 98If 99.Va apmd_enable 100is set to 101.Dq Li YES , 102these are the flags to pass to the 103.Xr apmd 8 104daemon. 105.It Va devd_enable 106.Pq Vt bool 107Run 108.Xr devd 8 109to handle device added, removed or unknown events from the kernel. 110.It Va pccard_enable 111.Pq Vt bool 112If set to 113.Dq Li YES , 114enable PCCARD support at boot time. 115.It Va pccard_mem 116.Pq Vt str 117Set to PCCARD controller memory address or 118.Dq Li DEFAULT 119for the default value. 120.It Va pccard_ifconfig 121.Pq Vt str 122List of arguments to be passed to 123.Xr ifconfig 8 124at boot time or on 125insertion of the card (e.g.\& 126.Dq Cm inet Li 192.168.1.1 Cm netmask Li 255.255.255.0 127for a fixed address or 128.Dq Li DHCP 129for a DHCP client). 130.It Va pccard_beep 131.Pq Vt int 132If 0, 133set the PCCARD controller to silent mode. 134If 1, 135set it to beep mode. 136If 2, 137set it to melody mode. 138.It Va pccard_conf 139.Pq Vt str 140Path to the configuration file for the 141.Xr pccardd 8 142daemon (e.g.\& 143.Pa /etc/pccard.conf.sample ) . 144.It Va pccardd_flags 145.Pq Vt str 146If 147.Va pccard_enable 148is set to 149.Dq Li YES , 150these are the flags to pass to the 151.Xr pccardd 8 152daemon. 153.It Va pccard_ether_delay 154.Pq Vt str 155Set the delay before starting 156.Xr dhclient 8 157in 158.Xr pccard_ether 8 159script. 160This defaults to 5 seconds to work around a bug in the 161.Xr ed 4 162driver which can lead to system hangs when using some newer 163.Xr ed 4 164based cards. 165.It Va removable_interfaces 166.Pq Vt str 167List of removable network interfaces to be supported by 168.Pa /etc/pccard_ether . 169.It Va local_startup 170.Pq Vt str 171List of directories to search for startup script files. 172.It Va script_name_sep 173.Pq Vt str 174The field separator to use for breaking down the list of startup script files 175into individual filenames. 176The default is a space. 177It is not necessary to change this unless there are startup scripts with names 178containing spaces. 179.It Va hostname 180.Pq Vt str 181The fully qualified domain name (FQDN) of this host on the network. 182This should almost certainly be set to something meaningful, even if 183there is no network connection. 184If 185.Xr dhclient 8 186is used to set the hostname via DHCP, 187this variable should be set to an empty string. 188.It Va nisdomainname 189.Pq Vt str 190The NIS domain name of this host, or 191.Dq Li NO 192if NIS is not used. 193.It Va dhcp_program 194.Pq Vt str 195Path to the DHCP client program 196.Pa ( /sbin/dhclient , 197the ISC DHCP client, 198is the default). 199.It Va dhcp_flags 200.Pq Vt str 201Additional flags to pass to the DHCP client program. 202For the ISC DHCP client, see the 203.Xr dhclient 8 204manpage for a description of the command line options available. 205.It Va firewall_enable 206.Pq Vt bool 207Set to 208.Dq Li YES 209to load firewall rules at startup. 210If the kernel was not built with 211.Cd "options IPFIREWALL" , 212the 213.Pa ipfw.ko 214kernel module will be loaded. 215See also 216.Va ipfilter_enable . 217.It Va firewall_script 218.Pq Vt str 219This variable specifies the full path to the firewall script to run. 220The default is 221.Pa /etc/rc.firewall . 222.It Va firewall_type 223.Pq Vt str 224Names the firewall type from the selection in 225.Pa /etc/rc.firewall , 226or the file which contains the local firewall ruleset. 227Valid selections from 228.Pa /etc/rc.firewall 229are: 230.Pp 231.Bl -tag -width ".Li simple" -compact 232.It Li open 233unrestricted IP access 234.It Li closed 235all IP services disabled, except via 236.Dq Li lo0 237.It Li client 238basic protection for a workstation 239.It Li simple 240basic protection for a LAN. 241.El 242.Pp 243If a filename is specified, the full path 244must be given. 245.It Va firewall_quiet 246.Pq Vt bool 247Set to 248.Dq Li YES 249to disable the display of firewall rules on the console during boot. 250.It Va firewall_logging 251.Pq Vt bool 252Set to 253.Dq Li YES 254to enable firewall event logging. 255This is equivalent to the 256.Dv IPFIREWALL_VERBOSE 257kernel option. 258.It Va firewall_flags 259.Pq Vt str 260Flags passed to 261.Xr ipfw 8 262if 263.Va firewall_type 264specifies a filename. 265.It Va natd_program 266.Pq Vt str 267Path to 268.Xr natd 8 . 269.It Va natd_enable 270.Pq Vt bool 271Set to 272.Dq Li YES 273to enable 274.Xr natd 8 . 275.Va firewall_enable 276must also be set to 277.Dq Li YES , 278and 279.Xr divert 4 280sockets must be enabled in the kernel. 281.It Va natd_interface 282.Pq Vt str 283This is the name of the public interface on which 284.Xr natd 8 285should run. 286The interface may be given as an interface name or as an IP address. 287.It Va natd_flags 288.Pq Vt str 289Additional 290.Xr natd 8 291flags should be placed here. 292The 293.Fl n 294or 295.Fl a 296flag is automatically added with the above 297.Va natd_interface 298as an argument. 299.\" ----- ipfilter_enable setting -------------------------------- 300.It Va ipfilter_enable 301.Pq Vt bool 302Set to 303.Dq Li NO 304by default. 305Setting this to 306.Dq Li YES 307enables 308.Xr ipf 8 309packet filtering. 310.Pp 311Typical usage will require putting 312.Bd -literal 313ipfilter_enable="YES" 314ipnat_enable="YES" 315ipmon_enable="YES" 316ipfs_enable="YES" 317.Ed 318.Pp 319into 320.Pa /etc/rc.conf 321and editing 322.Pa /etc/ipf.rules 323and 324.Pa /etc/ipnat.rules 325appropriately. 326.Pp 327Note that 328.Va ipfilter_enable 329and 330.Va ipnat_enable 331can be enabled independently. 332.Va ipmon_enable 333and 334.Va ipfs_enable 335both require at least one of 336.Va ipfilter_enable 337and 338.Va ipnat_enable 339to be enabled. 340.Pp 341Having 342.Bd -literal 343options IPFILTER 344options IPFILTER_LOG 345options IPFILTER_DEFAULT_BLOCK 346.Ed 347.Pp 348in the kernel configuration file is a good idea, too. 349.\" ----- ipfilter_program setting ------------------------------ 350.It Va ipfilter_program 351.Pq Vt str 352Path to 353.Xr ipf 8 354(default 355.Pa /sbin/ipf ) . 356.\" ----- ipfilter_rules setting -------------------------------- 357.It Va ipfilter_rules 358.Pq Vt str 359Set to 360.Pa /etc/ipf.rules 361by default. 362This variable contains the name of the filter rule definition file. 363The file is expected to be readable for the 364.Xr ipf 8 365command to execute. 366.\" ----- ipfilter_flags setting -------------------------------- 367.It Va ipfilter_flags 368.Pq Vt str 369Empty by default. 370This variable contains flags passed to the 371.Xr ipf 8 372program. 373.\" ----- ipnat_enable setting ---------------------------------- 374.It Va ipnat_enable 375.Pq Vt bool 376Set to 377.Dq Li NO 378by default. 379Set it to 380.Dq Li YES 381to enable 382.Xr ipnat 1 383network address translation. 384See 385.Va ipfilter_enable 386for a detailed discussion. 387.\" ----- ipnat_program setting --------------------------------- 388.It Va ipnat_program 389.Pq Vt str 390Path to 391.Xr ipnat 1 392(default 393.Pa /sbin/ipnat ) . 394.\" ----- ipnat_rules setting ----------------------------------- 395.It Va ipnat_rules 396.Pq Vt str 397Set to 398.Pa /etc/ipnat.rules 399by default. 400This variable contains the name of the file 401holding the network address translation definition. 402This file is expected to be readable for the 403.Xr ipnat 1 404command to execute. 405.\" ----- ipnat_flags setting ----------------------------------- 406.It Va ipnat_flags 407.Pq Vt str 408Empty by default. 409This variable contains flags passed to the 410.Xr ipnat 1 411program. 412.\" ----- ipmon_enable setting ---------------------------------- 413.It Va ipmon_enable 414.Pq Vt bool 415Set to 416.Dq Li NO 417by default. 418Set it to 419.Dq Li YES 420to enable 421.Xr ipmon 8 422monitoring (logging 423.Xr ipf 8 424and 425.Xr ipnat 1 426events). 427Setting this variable needs setting 428.Va ipfilter_enable 429or 430.Va ipnat_enable 431too. 432See 433.Va ipfilter_enable 434for a detailed discussion. 435.\" ----- ipmon_program setting --------------------------------- 436.It Va ipmon_program 437.Pq Vt str 438Path to 439.Xr ipmon 8 440(default 441.Pa /sbin/ipmon ) . 442.\" ----- ipmon_flags setting ----------------------------------- 443.It Va ipmon_flags 444.Pq Vt str 445Set to 446.Dq Li -Ds 447by default. 448This variable contains flags passed to the 449.Xr ipmon 8 450program. 451Another typical example would be 452.Dq Fl D Pa /var/log/ipflog 453to have 454.Xr ipmon 8 455log directly to a file bypassing 456.Xr syslogd 8 . 457Make sure to adjust 458.Pa /etc/newsyslog.conf 459in such case like this: 460.Bd -literal 461/var/log/ipflog 640 10 100 * Z /var/run/ipmon.pid 462.Ed 463.\" ----- ipfs_enable setting ----------------------------------- 464.It Va ipfs_enable 465.Pq Vt bool 466Set to 467.Dq Li NO 468by default. 469Set it to 470.Dq Li YES 471to enable 472.Xr ipfs 8 473saving the filter and NAT state tables during shutdown 474and reloading them during startup again. 475Setting this variable needs setting 476.Va ipfilter_enable 477or 478.Va ipnat_enable 479to 480.Dq Li YES 481too. 482See 483.Va ipfilter_enable 484for a detailed discussion. 485Note that if 486.Va kern_securelevel 487is set to 3, 488.Va ipfs_enable 489cannot be used 490because the raised securelevel will prevent 491.Xr ipfs 8 492from saving the state tables at shutdown time. 493.\" ----- ipfs_program setting ---------------------------------- 494.It Va ipfs_program 495.Pq Vt str 496Path to 497.Xr ipfs 8 498(default 499.Pa /sbin/ipfs ) . 500.\" ----- ipfs_flags setting ------------------------------------ 501.It Va ipfs_flags 502.Pq Vt str 503Empty by default. 504This variable contains flags passed to the 505.Xr ipfs 8 506program. 507.\" ----- end of added ipf hook --------------------------------- 508.It Va tcp_extensions 509.Pq Vt bool 510Set to 511.Dq Li YES 512by default. 513Setting this to 514.Dq Li NO 515disables certain TCP options as described by 516.Rs 517.%T "RFC 1323" 518.Re 519Setting this to 520.Dq Li NO 521might help remedy such problems with connections as randomly hanging 522or other weird behavior. 523Some network devices are known 524to be broken with respect to these options. 525.It Va log_in_vain 526.Pq Vt int 527Set to 0 by default. 528The 529.Xr sysctl 8 530variables, 531.Va net.inet.tcp.log_in_vain 532and 533.Va net.inet.udp.log_in_vain , 534as described in 535.Xr tcp 4 536and 537.Xr udp 4 , 538are set to the given value. 539.It Va tcp_keepalive 540.Pq Vt bool 541Set to 542.Dq Li YES 543by default. 544Setting to 545.Dq Li NO 546will disable probing idle TCP connections to verify that the 547peer is still up and reachable. 548.It Va tcp_drop_synfin 549.Pq Vt bool 550Set to 551.Dq Li NO 552by default. 553Setting to 554.Dq Li YES 555will cause the kernel to ignore TCP frames that have both 556the SYN and FIN flags set. 557This prevents OS fingerprinting, but may 558break some legitimate applications. 559This option is only available if the 560kernel was built with the 561.Dv TCP_DROP_SYNFIN 562option. 563.It Va icmp_drop_redirect 564.Pq Vt bool 565Set to 566.Dq Li NO 567by default. 568Setting to 569.Dq Li YES 570will cause the kernel to ignore ICMP REDIRECT packets. 571.It Va icmp_log_redirect 572.Pq Vt bool 573Set to 574.Dq Li NO 575by default. 576Setting to 577.Dq Li YES 578will cause the kernel to log ICMP REDIRECT packets. 579Note that 580the log messages are not rate-limited, so this option should only be used 581for troubleshooting networks. 582.It Va network_interfaces 583.Pq Vt str 584Set to the list of network interfaces to configure on this host. 585For example, if the only network devices in the system are the loopback 586device 587.Pq Li lo0 588and a NIC using the 589.Xr ed 4 590driver, 591this could be set to 592.Dq Li "lo0 ed0" . 593An 594.Va ifconfig_ Ns Aq Ar interface 595variable is also assumed to exist for each value of 596.Ar interface . 597It is also possible to add IP alias entries here in cases where 598multiple IP addresses registered against a single interface 599are desired. 600Assuming that the interface in question was 601.Li ed0 , 602it might look 603something like this: 604.Bd -literal 605ifconfig_ed0_alias0="inet 127.0.0.253 netmask 0xffffffff" 606ifconfig_ed0_alias1="inet 127.0.0.254 netmask 0xffffffff" 607.Ed 608.Pp 609And so on. 610For each 611.Va ifconfig_ Ns Ao Ar interface Ac Ns Va _alias Ns Aq Ar n 612entry that is found, 613its contents are passed to 614.Xr ifconfig 8 . 615Execution stops at the first unsuccessful access, so if 616something like this is present: 617.Bd -literal 618ifconfig_ed0_alias0="inet 127.0.0.251 netmask 0xffffffff" 619ifconfig_ed0_alias1="inet 127.0.0.252 netmask 0xffffffff" 620ifconfig_ed0_alias2="inet 127.0.0.253 netmask 0xffffffff" 621ifconfig_ed0_alias4="inet 127.0.0.254 netmask 0xffffffff" 622.Ed 623.Pp 624Then note that alias4 would 625.Em not 626be added since the search would 627stop with the missing alias3 entry. 628.Pp 629It is possible to bring up an interface with DHCP by setting the 630.Va ifconfig_ Ns Aq Ar interface 631variable to 632.Dq Li DHCP . 633For instance, to initialize the 634.Li ed0 635device via DHCP, 636it is possible to use something like: 637.Bd -literal 638ifconfig_ed0="DHCP" 639.Ed 640.It Va cloned_interfaces 641.Pq Vt str 642Set to the list of clonable network interfaces to create on this host. 643Entries in 644.Va cloned_interfaces 645are automatically appended to 646.Va network_interfaces 647for configuration. 648.It Va gif_interfaces 649.Pq Vt str 650Set to the list of 651.Xr gif 4 652tunnel interfaces to configure on this host. 653A 654.Va gifconfig_ Ns Aq Ar interface 655variable is assumed to exist for each value of 656.Ar interface . 657The value of this variable is used to configure the link layer of the 658tunnel according to the syntax of the 659.Cm tunnel 660option to 661.Xr ifconfig 8 . 662Additionally, this option ensures that each listed interface is created 663via the 664.Cm create 665option to 666.Xr ifconfig 8 667before attempting to configure it. 668.It Va ppp_enable 669.Pq Vt bool 670If set to 671.Dq Li YES , 672run the 673.Xr ppp 8 674daemon. 675.It Va ppp_mode 676.Pq Vt str 677Mode in which to run the 678.Xr ppp 8 679daemon. 680Accepted modes are 681.Dq Li auto , 682.Dq Li ddial , 683.Dq Li direct 684and 685.Dq Li dedicated . 686See the manual for a full description. 687.It Va ppp_nat 688.Pq Vt bool 689If set to 690.Dq Li YES , 691enables network address translation. 692Used in conjunction with 693.Va gateway_enable 694allows hosts on private network addresses access to the Internet using 695this host as a network address translating router. 696.It Va ppp_profile 697.Pq Vt str 698The name of the profile to use from 699.Pa /etc/ppp/ppp.conf . 700.It Va ppp_user 701.Pq Vt str 702The name of the user under which 703.Xr ppp 8 704should be started. 705By 706default, 707.Xr ppp 8 708is started as 709.Dq Li root . 710.It Va rc_conf_files 711.Pq Vt str 712This option is used to specify a list of files that will override 713the settings in 714.Pa /etc/defaults/rc.conf . 715The files will be read in the order in which they are specified and should 716include the full path to the file. 717By default, the files specified are 718.Pa /etc/rc.conf 719and 720.Pa /etc/rc.conf.local 721.It Va fsck_y_enable 722.Pq Vt bool 723If set to 724.Dq Li YES , 725.Xr fsck 8 726will be run with the 727.Fl y 728flag if the initial preen
| 26.\" 27.Dd March 3, 2002 28.Dt RC.CONF 5 29.Os 30.Sh NAME 31.Nm rc.conf 32.Nd system configuration information 33.Sh DESCRIPTION 34The file 35.Nm 36contains descriptive information about the local host name, configuration 37details for any potential network interfaces and which services should be 38started up at system initial boot time. 39In new installations, the 40.Nm 41file is generally initialized by the system installation utility, 42.Xr sysinstall 8 . 43.Pp 44The purpose of 45.Nm 46is not to run commands or perform system startup actions 47directly. 48Instead, it is included by the 49various generic startup scripts in 50.Pa /etc 51which conditionalize their 52internal actions according to the settings found there. 53.Pp 54The 55.Pa /etc/rc.conf 56file is included from the file 57.Pa /etc/defaults/rc.conf , 58which specifies the default settings for all the available options. 59Options need only be specified in 60.Pa /etc/rc.conf 61when the system administrator wishes to override these defaults. 62The file 63.Pa /etc/rc.conf.local 64is used to override settings in 65.Pa /etc/rc.conf 66for historical reasons. 67See the 68.Va rc_conf_files 69variable below. 70.Pp 71The following list provides a name and short description for each 72variable that can be set in the 73.Nm 74file: 75.Bl -tag -width indent-two 76.It Va swapfile 77.Pq Vt str 78If set to 79.Dq Li NO , 80no swapfile is installed, otherwise the value is used as the full 81pathname to a file to use for additional swap space. 82.It Va apm_enable 83.Pq Vt bool 84If set to 85.Dq Li YES , 86enable support for Automatic Power Management with 87the 88.Xr apm 8 89command. 90.It Va apmd_enable 91.Pq Vt bool 92Run 93.Xr apmd 8 94to handle APM event from userland. 95This also enables support for APM. 96.It Va apmd_flags 97.Pq Vt str 98If 99.Va apmd_enable 100is set to 101.Dq Li YES , 102these are the flags to pass to the 103.Xr apmd 8 104daemon. 105.It Va devd_enable 106.Pq Vt bool 107Run 108.Xr devd 8 109to handle device added, removed or unknown events from the kernel. 110.It Va pccard_enable 111.Pq Vt bool 112If set to 113.Dq Li YES , 114enable PCCARD support at boot time. 115.It Va pccard_mem 116.Pq Vt str 117Set to PCCARD controller memory address or 118.Dq Li DEFAULT 119for the default value. 120.It Va pccard_ifconfig 121.Pq Vt str 122List of arguments to be passed to 123.Xr ifconfig 8 124at boot time or on 125insertion of the card (e.g.\& 126.Dq Cm inet Li 192.168.1.1 Cm netmask Li 255.255.255.0 127for a fixed address or 128.Dq Li DHCP 129for a DHCP client). 130.It Va pccard_beep 131.Pq Vt int 132If 0, 133set the PCCARD controller to silent mode. 134If 1, 135set it to beep mode. 136If 2, 137set it to melody mode. 138.It Va pccard_conf 139.Pq Vt str 140Path to the configuration file for the 141.Xr pccardd 8 142daemon (e.g.\& 143.Pa /etc/pccard.conf.sample ) . 144.It Va pccardd_flags 145.Pq Vt str 146If 147.Va pccard_enable 148is set to 149.Dq Li YES , 150these are the flags to pass to the 151.Xr pccardd 8 152daemon. 153.It Va pccard_ether_delay 154.Pq Vt str 155Set the delay before starting 156.Xr dhclient 8 157in 158.Xr pccard_ether 8 159script. 160This defaults to 5 seconds to work around a bug in the 161.Xr ed 4 162driver which can lead to system hangs when using some newer 163.Xr ed 4 164based cards. 165.It Va removable_interfaces 166.Pq Vt str 167List of removable network interfaces to be supported by 168.Pa /etc/pccard_ether . 169.It Va local_startup 170.Pq Vt str 171List of directories to search for startup script files. 172.It Va script_name_sep 173.Pq Vt str 174The field separator to use for breaking down the list of startup script files 175into individual filenames. 176The default is a space. 177It is not necessary to change this unless there are startup scripts with names 178containing spaces. 179.It Va hostname 180.Pq Vt str 181The fully qualified domain name (FQDN) of this host on the network. 182This should almost certainly be set to something meaningful, even if 183there is no network connection. 184If 185.Xr dhclient 8 186is used to set the hostname via DHCP, 187this variable should be set to an empty string. 188.It Va nisdomainname 189.Pq Vt str 190The NIS domain name of this host, or 191.Dq Li NO 192if NIS is not used. 193.It Va dhcp_program 194.Pq Vt str 195Path to the DHCP client program 196.Pa ( /sbin/dhclient , 197the ISC DHCP client, 198is the default). 199.It Va dhcp_flags 200.Pq Vt str 201Additional flags to pass to the DHCP client program. 202For the ISC DHCP client, see the 203.Xr dhclient 8 204manpage for a description of the command line options available. 205.It Va firewall_enable 206.Pq Vt bool 207Set to 208.Dq Li YES 209to load firewall rules at startup. 210If the kernel was not built with 211.Cd "options IPFIREWALL" , 212the 213.Pa ipfw.ko 214kernel module will be loaded. 215See also 216.Va ipfilter_enable . 217.It Va firewall_script 218.Pq Vt str 219This variable specifies the full path to the firewall script to run. 220The default is 221.Pa /etc/rc.firewall . 222.It Va firewall_type 223.Pq Vt str 224Names the firewall type from the selection in 225.Pa /etc/rc.firewall , 226or the file which contains the local firewall ruleset. 227Valid selections from 228.Pa /etc/rc.firewall 229are: 230.Pp 231.Bl -tag -width ".Li simple" -compact 232.It Li open 233unrestricted IP access 234.It Li closed 235all IP services disabled, except via 236.Dq Li lo0 237.It Li client 238basic protection for a workstation 239.It Li simple 240basic protection for a LAN. 241.El 242.Pp 243If a filename is specified, the full path 244must be given. 245.It Va firewall_quiet 246.Pq Vt bool 247Set to 248.Dq Li YES 249to disable the display of firewall rules on the console during boot. 250.It Va firewall_logging 251.Pq Vt bool 252Set to 253.Dq Li YES 254to enable firewall event logging. 255This is equivalent to the 256.Dv IPFIREWALL_VERBOSE 257kernel option. 258.It Va firewall_flags 259.Pq Vt str 260Flags passed to 261.Xr ipfw 8 262if 263.Va firewall_type 264specifies a filename. 265.It Va natd_program 266.Pq Vt str 267Path to 268.Xr natd 8 . 269.It Va natd_enable 270.Pq Vt bool 271Set to 272.Dq Li YES 273to enable 274.Xr natd 8 . 275.Va firewall_enable 276must also be set to 277.Dq Li YES , 278and 279.Xr divert 4 280sockets must be enabled in the kernel. 281.It Va natd_interface 282.Pq Vt str 283This is the name of the public interface on which 284.Xr natd 8 285should run. 286The interface may be given as an interface name or as an IP address. 287.It Va natd_flags 288.Pq Vt str 289Additional 290.Xr natd 8 291flags should be placed here. 292The 293.Fl n 294or 295.Fl a 296flag is automatically added with the above 297.Va natd_interface 298as an argument. 299.\" ----- ipfilter_enable setting -------------------------------- 300.It Va ipfilter_enable 301.Pq Vt bool 302Set to 303.Dq Li NO 304by default. 305Setting this to 306.Dq Li YES 307enables 308.Xr ipf 8 309packet filtering. 310.Pp 311Typical usage will require putting 312.Bd -literal 313ipfilter_enable="YES" 314ipnat_enable="YES" 315ipmon_enable="YES" 316ipfs_enable="YES" 317.Ed 318.Pp 319into 320.Pa /etc/rc.conf 321and editing 322.Pa /etc/ipf.rules 323and 324.Pa /etc/ipnat.rules 325appropriately. 326.Pp 327Note that 328.Va ipfilter_enable 329and 330.Va ipnat_enable 331can be enabled independently. 332.Va ipmon_enable 333and 334.Va ipfs_enable 335both require at least one of 336.Va ipfilter_enable 337and 338.Va ipnat_enable 339to be enabled. 340.Pp 341Having 342.Bd -literal 343options IPFILTER 344options IPFILTER_LOG 345options IPFILTER_DEFAULT_BLOCK 346.Ed 347.Pp 348in the kernel configuration file is a good idea, too. 349.\" ----- ipfilter_program setting ------------------------------ 350.It Va ipfilter_program 351.Pq Vt str 352Path to 353.Xr ipf 8 354(default 355.Pa /sbin/ipf ) . 356.\" ----- ipfilter_rules setting -------------------------------- 357.It Va ipfilter_rules 358.Pq Vt str 359Set to 360.Pa /etc/ipf.rules 361by default. 362This variable contains the name of the filter rule definition file. 363The file is expected to be readable for the 364.Xr ipf 8 365command to execute. 366.\" ----- ipfilter_flags setting -------------------------------- 367.It Va ipfilter_flags 368.Pq Vt str 369Empty by default. 370This variable contains flags passed to the 371.Xr ipf 8 372program. 373.\" ----- ipnat_enable setting ---------------------------------- 374.It Va ipnat_enable 375.Pq Vt bool 376Set to 377.Dq Li NO 378by default. 379Set it to 380.Dq Li YES 381to enable 382.Xr ipnat 1 383network address translation. 384See 385.Va ipfilter_enable 386for a detailed discussion. 387.\" ----- ipnat_program setting --------------------------------- 388.It Va ipnat_program 389.Pq Vt str 390Path to 391.Xr ipnat 1 392(default 393.Pa /sbin/ipnat ) . 394.\" ----- ipnat_rules setting ----------------------------------- 395.It Va ipnat_rules 396.Pq Vt str 397Set to 398.Pa /etc/ipnat.rules 399by default. 400This variable contains the name of the file 401holding the network address translation definition. 402This file is expected to be readable for the 403.Xr ipnat 1 404command to execute. 405.\" ----- ipnat_flags setting ----------------------------------- 406.It Va ipnat_flags 407.Pq Vt str 408Empty by default. 409This variable contains flags passed to the 410.Xr ipnat 1 411program. 412.\" ----- ipmon_enable setting ---------------------------------- 413.It Va ipmon_enable 414.Pq Vt bool 415Set to 416.Dq Li NO 417by default. 418Set it to 419.Dq Li YES 420to enable 421.Xr ipmon 8 422monitoring (logging 423.Xr ipf 8 424and 425.Xr ipnat 1 426events). 427Setting this variable needs setting 428.Va ipfilter_enable 429or 430.Va ipnat_enable 431too. 432See 433.Va ipfilter_enable 434for a detailed discussion. 435.\" ----- ipmon_program setting --------------------------------- 436.It Va ipmon_program 437.Pq Vt str 438Path to 439.Xr ipmon 8 440(default 441.Pa /sbin/ipmon ) . 442.\" ----- ipmon_flags setting ----------------------------------- 443.It Va ipmon_flags 444.Pq Vt str 445Set to 446.Dq Li -Ds 447by default. 448This variable contains flags passed to the 449.Xr ipmon 8 450program. 451Another typical example would be 452.Dq Fl D Pa /var/log/ipflog 453to have 454.Xr ipmon 8 455log directly to a file bypassing 456.Xr syslogd 8 . 457Make sure to adjust 458.Pa /etc/newsyslog.conf 459in such case like this: 460.Bd -literal 461/var/log/ipflog 640 10 100 * Z /var/run/ipmon.pid 462.Ed 463.\" ----- ipfs_enable setting ----------------------------------- 464.It Va ipfs_enable 465.Pq Vt bool 466Set to 467.Dq Li NO 468by default. 469Set it to 470.Dq Li YES 471to enable 472.Xr ipfs 8 473saving the filter and NAT state tables during shutdown 474and reloading them during startup again. 475Setting this variable needs setting 476.Va ipfilter_enable 477or 478.Va ipnat_enable 479to 480.Dq Li YES 481too. 482See 483.Va ipfilter_enable 484for a detailed discussion. 485Note that if 486.Va kern_securelevel 487is set to 3, 488.Va ipfs_enable 489cannot be used 490because the raised securelevel will prevent 491.Xr ipfs 8 492from saving the state tables at shutdown time. 493.\" ----- ipfs_program setting ---------------------------------- 494.It Va ipfs_program 495.Pq Vt str 496Path to 497.Xr ipfs 8 498(default 499.Pa /sbin/ipfs ) . 500.\" ----- ipfs_flags setting ------------------------------------ 501.It Va ipfs_flags 502.Pq Vt str 503Empty by default. 504This variable contains flags passed to the 505.Xr ipfs 8 506program. 507.\" ----- end of added ipf hook --------------------------------- 508.It Va tcp_extensions 509.Pq Vt bool 510Set to 511.Dq Li YES 512by default. 513Setting this to 514.Dq Li NO 515disables certain TCP options as described by 516.Rs 517.%T "RFC 1323" 518.Re 519Setting this to 520.Dq Li NO 521might help remedy such problems with connections as randomly hanging 522or other weird behavior. 523Some network devices are known 524to be broken with respect to these options. 525.It Va log_in_vain 526.Pq Vt int 527Set to 0 by default. 528The 529.Xr sysctl 8 530variables, 531.Va net.inet.tcp.log_in_vain 532and 533.Va net.inet.udp.log_in_vain , 534as described in 535.Xr tcp 4 536and 537.Xr udp 4 , 538are set to the given value. 539.It Va tcp_keepalive 540.Pq Vt bool 541Set to 542.Dq Li YES 543by default. 544Setting to 545.Dq Li NO 546will disable probing idle TCP connections to verify that the 547peer is still up and reachable. 548.It Va tcp_drop_synfin 549.Pq Vt bool 550Set to 551.Dq Li NO 552by default. 553Setting to 554.Dq Li YES 555will cause the kernel to ignore TCP frames that have both 556the SYN and FIN flags set. 557This prevents OS fingerprinting, but may 558break some legitimate applications. 559This option is only available if the 560kernel was built with the 561.Dv TCP_DROP_SYNFIN 562option. 563.It Va icmp_drop_redirect 564.Pq Vt bool 565Set to 566.Dq Li NO 567by default. 568Setting to 569.Dq Li YES 570will cause the kernel to ignore ICMP REDIRECT packets. 571.It Va icmp_log_redirect 572.Pq Vt bool 573Set to 574.Dq Li NO 575by default. 576Setting to 577.Dq Li YES 578will cause the kernel to log ICMP REDIRECT packets. 579Note that 580the log messages are not rate-limited, so this option should only be used 581for troubleshooting networks. 582.It Va network_interfaces 583.Pq Vt str 584Set to the list of network interfaces to configure on this host. 585For example, if the only network devices in the system are the loopback 586device 587.Pq Li lo0 588and a NIC using the 589.Xr ed 4 590driver, 591this could be set to 592.Dq Li "lo0 ed0" . 593An 594.Va ifconfig_ Ns Aq Ar interface 595variable is also assumed to exist for each value of 596.Ar interface . 597It is also possible to add IP alias entries here in cases where 598multiple IP addresses registered against a single interface 599are desired. 600Assuming that the interface in question was 601.Li ed0 , 602it might look 603something like this: 604.Bd -literal 605ifconfig_ed0_alias0="inet 127.0.0.253 netmask 0xffffffff" 606ifconfig_ed0_alias1="inet 127.0.0.254 netmask 0xffffffff" 607.Ed 608.Pp 609And so on. 610For each 611.Va ifconfig_ Ns Ao Ar interface Ac Ns Va _alias Ns Aq Ar n 612entry that is found, 613its contents are passed to 614.Xr ifconfig 8 . 615Execution stops at the first unsuccessful access, so if 616something like this is present: 617.Bd -literal 618ifconfig_ed0_alias0="inet 127.0.0.251 netmask 0xffffffff" 619ifconfig_ed0_alias1="inet 127.0.0.252 netmask 0xffffffff" 620ifconfig_ed0_alias2="inet 127.0.0.253 netmask 0xffffffff" 621ifconfig_ed0_alias4="inet 127.0.0.254 netmask 0xffffffff" 622.Ed 623.Pp 624Then note that alias4 would 625.Em not 626be added since the search would 627stop with the missing alias3 entry. 628.Pp 629It is possible to bring up an interface with DHCP by setting the 630.Va ifconfig_ Ns Aq Ar interface 631variable to 632.Dq Li DHCP . 633For instance, to initialize the 634.Li ed0 635device via DHCP, 636it is possible to use something like: 637.Bd -literal 638ifconfig_ed0="DHCP" 639.Ed 640.It Va cloned_interfaces 641.Pq Vt str 642Set to the list of clonable network interfaces to create on this host. 643Entries in 644.Va cloned_interfaces 645are automatically appended to 646.Va network_interfaces 647for configuration. 648.It Va gif_interfaces 649.Pq Vt str 650Set to the list of 651.Xr gif 4 652tunnel interfaces to configure on this host. 653A 654.Va gifconfig_ Ns Aq Ar interface 655variable is assumed to exist for each value of 656.Ar interface . 657The value of this variable is used to configure the link layer of the 658tunnel according to the syntax of the 659.Cm tunnel 660option to 661.Xr ifconfig 8 . 662Additionally, this option ensures that each listed interface is created 663via the 664.Cm create 665option to 666.Xr ifconfig 8 667before attempting to configure it. 668.It Va ppp_enable 669.Pq Vt bool 670If set to 671.Dq Li YES , 672run the 673.Xr ppp 8 674daemon. 675.It Va ppp_mode 676.Pq Vt str 677Mode in which to run the 678.Xr ppp 8 679daemon. 680Accepted modes are 681.Dq Li auto , 682.Dq Li ddial , 683.Dq Li direct 684and 685.Dq Li dedicated . 686See the manual for a full description. 687.It Va ppp_nat 688.Pq Vt bool 689If set to 690.Dq Li YES , 691enables network address translation. 692Used in conjunction with 693.Va gateway_enable 694allows hosts on private network addresses access to the Internet using 695this host as a network address translating router. 696.It Va ppp_profile 697.Pq Vt str 698The name of the profile to use from 699.Pa /etc/ppp/ppp.conf . 700.It Va ppp_user 701.Pq Vt str 702The name of the user under which 703.Xr ppp 8 704should be started. 705By 706default, 707.Xr ppp 8 708is started as 709.Dq Li root . 710.It Va rc_conf_files 711.Pq Vt str 712This option is used to specify a list of files that will override 713the settings in 714.Pa /etc/defaults/rc.conf . 715The files will be read in the order in which they are specified and should 716include the full path to the file. 717By default, the files specified are 718.Pa /etc/rc.conf 719and 720.Pa /etc/rc.conf.local 721.It Va fsck_y_enable 722.Pq Vt bool 723If set to 724.Dq Li YES , 725.Xr fsck 8 726will be run with the 727.Fl y 728flag if the initial preen
|
755.It Va syslogd_enable 756.Pq Vt bool 757If set to 758.Dq Li YES , 759run the 760.Xr syslogd 8 761daemon. 762.It Va syslogd_program 763.Pq Vt str 764Path to 765.Xr syslogd 8 766(default 767.Pa /usr/sbin/syslogd ) . 768.It Va syslogd_flags 769.Pq Vt str 770If 771.Va syslogd_enable 772is set to 773.Dq Li YES , 774these are the flags to pass to 775.Xr syslogd 8 . 776.It Va inetd_enable 777.Pq Vt bool 778If set to 779.Dq Li YES , 780run the 781.Xr inetd 8 782daemon. 783.It Va inetd_program 784.Pq Vt str 785Path to 786.Xr inetd 8 787(default 788.Pa /usr/sbin/inetd ) . 789.It Va inetd_flags 790.Pq Vt str 791If 792.Va inetd_enable 793is set to 794.Dq Li YES , 795these are the flags to pass to 796.Xr inetd 8 . 797.It Va named_enable 798.Pq Vt bool 799If set to 800.Dq Li YES , 801run the 802.Xr named 8 803daemon. 804.It Va named_program 805.Pq Vt str 806Path to 807.Xr named 8 808(default 809.Pa /usr/sbin/named ) . 810.It Va named_flags 811.Pq Vt str 812If 813.Va named_enable 814is set to 815.Dq Li YES , 816these are the flags to pass to 817.Xr named 8 . 818.It Va kerberos4_server_enable 819.Pq Vt bool 820Set to 821.Dq Li YES 822to start a Kerberos IV authentication server 823at boot time. 824.It Va kadmind4_server_enable 825.Pq Vt bool 826Set to 827.Dq Li YES 828to start 829.Xr kadmind 8 , 830the Kerberos IV Administration Daemon; set to 831.Dq Li NO 832on a slave server. 833.It Va kerberos_stash 834.Pq Vt str 835If 836.Dq Li YES , 837instruct the Kerberos servers to use the stashed master key instead of 838prompting for it (only if 839.Va kerberos_server_enable 840is set to 841.Dq Li YES , 842and is used for both 843.Xr kerberos 1 844and 845.Xr kadmind 8 ) . 846.It Va kerberos5_server_enable 847.Pq Vt bool 848Set to 849.Dq Li YES 850to start a Kerberos 5 authentication server 851at boot time. 852.It Va kadmind5_server_enable 853.Pq Vt bool 854Set to 855.Dq Li YES 856to start 857.Xr k5admind 8 , 858the Kerberos 5 Administration Daemon; set to 859.Dq Li NO 860on a slave server. 861.It Va rwhod_enable 862.Pq Vt bool 863If set to 864.Dq Li YES , 865run the 866.Xr rwhod 8 867daemon at boot time. 868.It Va rwhod_flags 869.Pq Vt str 870If 871.Va rwhod_enable 872is set to 873.Dq Li YES , 874these are the flags to pass to it. 875.It Va amd_enable 876.Pq Vt bool 877If set to 878.Dq Li YES , 879run the 880.Xr amd 8 881daemon at boot time. 882.It Va amd_flags 883.Pq Vt str 884If 885.Va amd_enable 886is set to 887.Dq Li YES , 888these are the flags to pass to it. 889See the 890.Xr amd 8 891manpage for more information. 892.It Va amd_map_program 893.Pq Vt str 894If set, 895the specified program is run to get the list of 896.Xr amd 8 897maps. 898For example, if the 899.Xr amd 8 900maps are stored in NIS, one can set this to 901run 902.Xr ypcat 1 903to get a list of 904.Xr amd 8 905maps from the 906.Pa amd.master 907NIS map. 908.It Va update_motd 909.Pq Vt bool 910If set to 911.Dq Li YES , 912.Pa /etc/motd 913will be updated at boot time to reflect the kernel release 914being run. 915If set to 916.Dq Li NO , 917.Pa /etc/motd 918will not be updated. 919.It Va nfs_client_enable 920.Pq Vt bool 921If set to 922.Dq Li YES , 923run the NFS client daemons at boot time. 924.It Va nfs_access_cache 925.Pq Vt int 926If 927.Va nfs_client_enable 928is set to 929.Dq Li YES , 930this can be set to 931.Dq Li 0 932to disable NFS ACCESS RPC caching, or to the number of seconds for which 933NFS ACCESS 934results should be cached. 935A value of 2-10 seconds will substantially reduce network 936traffic for many NFS operations. 937.It Va nfs_server_enable 938.Pq Vt bool 939If set to 940.Dq Li YES , 941run the NFS server daemons at boot time. 942.It Va nfs_server_flags 943.Pq Vt str 944If 945.Va nfs_server_enable 946is set to 947.Dq Li YES , 948these are the flags to pass to the 949.Xr nfsd 8 950daemon. 951.It Va mountd_enable 952.Pq Vt bool 953If set to 954.Dq Li YES , 955and no 956.Va nfs_server_enable 957is set, start 958.Xr mountd 8 , 959but not 960.Xr nfsd 8 961daemon. 962It is commonly needed to run CFS without real NFS used. 963.It Va weak_mountd_authentication 964.Pq Vt bool 965If set to 966.Dq Li YES , 967allow services like PCNFSD to make non-privileged mount 968requests. 969.It Va nfs_privport 970.Pq Vt bool 971If set to 972.Dq Li YES , 973provide NFS services only on a secure port. 974.It Va nfs_bufpackets 975.Pq Vt int 976If set to a number, indicates the number of packets worth of 977socket buffer space to reserve on an NFS client. 978If set to 979.Dq Li DEFAULT , 980the kernel default is used (typically 4). 981Using a higher number may be 982useful on gigabit networks to improve performance. 983The minimum value is 9842 and the maximum is 64. 985.It Va rpc_lockd_enable 986.Pq Vt bool 987If set to 988.Dq Li YES 989and also an NFS server, run 990.Xr rpc.lockd 8 991at boot time. 992.It Va rpc_statd_enable 993.Pq Vt bool 994If set to 995.Dq Li YES 996and also an NFS server, run 997.Xr rpc.statd 8 998at boot time. 999.It Va rpcbind_program 1000.Pq Vt str 1001Path to 1002.Xr rpcbind 8 1003(default 1004.Pa /usr/sbin/rpcbind ) . 1005.It Va rpcbind_enable 1006.Pq Vt bool 1007If set to 1008.Dq Li YES , 1009run the 1010.Xr rpcbind 8 1011service at boot time. 1012.It Va rpcbind_flags 1013.Pq Vt str 1014If 1015.Va rpcbind_enable 1016is set to 1017.Dq Li YES , 1018these are the flags to pass to the 1019.Xr rpcbind 8 1020daemon. 1021.It Va xtend_enable 1022.Pq Vt bool 1023If set to 1024.Dq Li YES , 1025run the 1026.Xr xtend 8 1027daemon at boot time. 1028.It Va xtend_flags 1029.Pq Vt str 1030If 1031.Va xtend_enable 1032is set to 1033.Dq Li YES , 1034these are the flags to pass to the 1035.Xr xtend 8 1036daemon. 1037.It Va pppoed_enable 1038.Pq Vt bool 1039If set to 1040.Dq Li YES , 1041run the 1042.Xr pppoed 8 1043daemon at boot time to provide PPP over Ethernet services. 1044.It Va pppoed_ Ns Ar provider 1045.Pq Vt str 1046.Xr pppoed 8 1047listens to requests to this 1048.Ar provider 1049and ultimately runs 1050.Xr ppp 8 1051with a 1052.Ar system 1053argument of the same name. 1054.It Va pppoed_flags 1055.Pq Vt str 1056Additional flags to pass to 1057.Xr pppoed 8 . 1058.It Va pppoed_interface 1059.Pq Vt str 1060The network interface to run 1061.Xr pppoed 8 1062on. 1063This is mandatory when 1064.Va pppoed_enable 1065is set to 1066.Dq Li YES . 1067.It Va timed_enable 1068.Pq Vt boot 1069If set to 1070.Dq Li YES , 1071run the 1072.Xr timed 8 1073service at boot time. 1074This command is intended for networks of 1075machines where a consistent 1076.Dq "network time" 1077for all hosts must be established. 1078This is often useful in large NFS 1079environments where time stamps on files are expected to be consistent 1080network-wide. 1081.It Va timed_flags 1082.Pq Vt str 1083If 1084.Va timed_enable 1085is set to 1086.Dq Li YES , 1087these are the flags to pass to the 1088.Xr timed 8 1089service. 1090.It Va ntpdate_enable 1091.Pq Vt bool 1092If set to 1093.Dq Li YES , 1094run 1095.Xr ntpdate 8 1096at system startup. 1097This command is intended to 1098synchronize the system clock only 1099.Em once 1100from some standard reference. 1101An option to set this up initially 1102(from a list of known servers) is also provided by the 1103.Xr sysinstall 8 1104program when the system is first installed. 1105.It Va ntpdate_program 1106.Pq Vt str 1107Path to 1108.Xr ntpdate 8 1109(default 1110.Pa /usr/sbin/ntpdate ) . 1111.It Va ntpdate_flags 1112.Pq Vt str 1113If 1114.Va ntpdate_enable 1115is set to 1116.Dq Li YES , 1117these are the flags to pass to the 1118.Xr ntpdate 8 1119command (typically a hostname). 1120.It Va ntpd_enable 1121.Pq Vt bool 1122If set to 1123.Dq Li YES , 1124run the 1125.Xr ntpd 8 1126command at boot time. 1127.It Va ntpd_program 1128.Pq Vt str 1129Path to 1130.Xr ntpd 8 1131(default 1132.Pa /usr/sbin/ntpd ) . 1133.It Va ntpd_flags 1134.Pq Vt str 1135If 1136.Va ntpd_enable 1137is set to 1138.Dq Li YES , 1139these are the flags to pass to the 1140.Xr ntpd 8 1141daemon. 1142.It Va nis_client_enable 1143.Pq Vt bool 1144If set to 1145.Dq Li YES , 1146run the 1147.Xr ypbind 8 1148service at system boot time. 1149.It Va nis_client_flags 1150.Pq Vt str 1151If 1152.Va nis_client_enable 1153is set to 1154.Dq Li YES , 1155these are the flags to pass to the 1156.Xr ypbind 8 1157service. 1158.It Va nis_ypset_enable 1159.Pq Vt bool 1160If set to 1161.Dq Li YES , 1162run the 1163.Xr ypset 8 1164daemon at system boot time. 1165.It Va nis_ypset_flags 1166.Pq Vt str 1167If 1168.Va nis_ypset_enable 1169is set to 1170.Dq Li YES , 1171these are the flags to pass to the 1172.Xr ypset 8 1173daemon. 1174.It Va nis_server_enable 1175.Pq Vt bool 1176If set to 1177.Dq Li YES , 1178run the 1179.Xr ypserv 8 1180daemon at system boot time. 1181.It Va nis_server_flags 1182.Pq Vt str 1183If 1184.Va nis_server_enable 1185is set to 1186.Dq Li YES , 1187these are the flags to pass to the 1188.Xr ypserv 8 1189daemon. 1190.It Va nis_ypxfrd_enable 1191.Pq Vt bool 1192If set to 1193.Dq Li YES , 1194run the 1195.Xr rpc.ypxfrd 8 1196daemon at system boot time. 1197.It Va nis_ypxfrd_flags 1198.Pq Vt str 1199If 1200.Va nis_ypxfrd_enable 1201is set to 1202.Dq Li YES , 1203these are the flags to pass to the 1204.Xr rpc.ypxfrd 8 1205daemon. 1206.It Va nis_yppasswdd_enable 1207.Pq Vt bool 1208If set to 1209.Dq Li YES , 1210run the 1211.Xr rpc.yppasswdd 8 1212daemon at system boot time. 1213.It Va nis_yppasswdd_flags 1214.Pq Vt str 1215If 1216.Va nis_yppasswdd_enable 1217is set to 1218.Dq Li YES , 1219these are the flags to pass to the 1220.Xr rpc.yppasswdd 8 1221daemon. 1222.It Va defaultrouter 1223.Pq Vt str 1224If not set to 1225.Dq Li NO , 1226create a default route to this host name or IP address 1227(use an IP address if this router is also required to get to the 1228name server!). 1229.It Va static_routes 1230.Pq Vt str 1231Set to the list of static routes that are to be added at system 1232boot time. 1233If not set to 1234.Dq Li NO 1235then for each whitespace separated 1236.Ar element 1237in the value, a 1238.Va route_ Ns Aq Ar element 1239variable is assumed to exist 1240whose contents will later be passed to a 1241.Dq Nm route Cm add 1242operation. 1243.It Va gateway_enable 1244.Pq Vt bool 1245If set to 1246.Dq Li YES , 1247configure host to act as an IP router, e.g. to forward packets 1248between interfaces. 1249.It Va router_enable 1250.Pq Vt bool 1251If set to 1252.Dq Li YES , 1253run a routing daemon of some sort, based on the 1254settings of 1255.Va router 1256and 1257.Va router_flags . 1258.It Va router 1259.Pq Vt str 1260If 1261.Va router_enable 1262is set to 1263.Dq Li YES , 1264this is the name of the routing daemon to use. 1265.It Va router_flags 1266.Pq Vt str 1267If 1268.Va router_enable 1269is set to 1270.Dq Li YES , 1271these are the flags to pass to the routing daemon. 1272.It Va mrouted_enable 1273.Pq Vt bool 1274If set to 1275.Dq Li YES , 1276run the multicast routing daemon, 1277.Xr mrouted 8 . 1278.It Va mrouted_flags 1279.Pq Vt str 1280If 1281.Va mrouted_enable 1282is set to 1283.Dq Li YES , 1284these are the flags to pass to the 1285.Xr mrouted 8 1286daemon. 1287.It Va ipxgateway_enable 1288.Pq Vt bool 1289If set to 1290.Dq Li YES , 1291enable the routing of IPX traffic. 1292.It Va ipxrouted_enable 1293.Pq Vt bool 1294If set to 1295.Dq Li YES , 1296run the 1297.Xr IPXrouted 8 1298daemon at system boot time. 1299.It Va ipxrouted_flags 1300.Pq Vt str 1301If 1302.Va ipxrouted_enable 1303is set to 1304.Dq Li YES , 1305these are the flags to pass to the 1306.Xr IPXrouted 8 1307daemon. 1308.It Va arpproxy_all 1309.Pq Vt bool 1310If set to 1311.Dq Li YES , 1312enable global proxy ARP. 1313.It Va forward_sourceroute 1314.Pq Vt bool 1315If set to 1316.Dq Li YES 1317and 1318.Va gateway_enable 1319is also set to 1320.Dq Li YES , 1321source-routed packets are forwarded. 1322.It Va accept_sourceroute 1323.Pq Vt bool 1324If set to 1325.Dq Li YES , 1326the system will accept source-routed packets directed at it. 1327.It Va rarpd_enable 1328.Pq Vt bool 1329If set to 1330.Dq Li YES , 1331run the 1332.Xr rarpd 8 1333daemon at system boot time. 1334.It Va rarpd_flags 1335.Pq Vt str 1336If 1337.Va rarpd_enable 1338is set to 1339.Dq Li YES , 1340these are the flags to pass to the 1341.Xr rarpd 8 1342daemon. 1343.It Va bootparamd_enable 1344.Pq Vt bool 1345If set to 1346.Dq Li YES , 1347run the 1348.Xr bootparamd 8 1349daemon at system boot time. 1350.It Va bootparamd_flags 1351.Pq Vt str 1352If 1353.Va bootparamd_enable 1354is set to 1355.Dq Li YES , 1356these are the flags to pass to the 1357.Xr bootparamd 8 1358daemon. 1359.It Va atm_enable 1360.Pq Vt bool 1361Set to 1362.Dq Li YES 1363to enable the configuration of ATM interfaces at system boot time. 1364For all of the ATM variables described below, please refer to the 1365.Xr atm 8 1366man page for further details on the available command parameters. 1367Also refer to the files in 1368.Pa /usr/share/examples/atm 1369for more detailed configuration information. 1370.It Va atm_netif_ Ns Aq Ar intf 1371.Pq Vt str 1372For the ATM physical interface 1373.Ar intf , 1374this variable defines the name prefix and count for the ATM network 1375interfaces to be created. 1376The value will be passed as the parameters of an 1377.Dq Nm atm Cm "set netif" Ar intf 1378command. 1379.It Va atm_sigmgr_ Ns Aq Ar intf 1380.Pq Vt str 1381For the ATM physical interface 1382.Ar intf , 1383this variable defines the ATM signalling manager to be used. 1384The value will be passed as the parameters of an 1385.Dq Nm atm Cm attach Ar intf 1386command. 1387.It Va atm_prefix_ Ns Aq Ar intf 1388.Pq Vt str 1389For the ATM physical interface 1390.Ar intf , 1391this variable defines the NSAP prefix for interfaces using a UNI signalling 1392manager. 1393If set to 1394.Dq Li ILMI , 1395the prefix will automatically be set via the 1396.Xr ilmid 8 1397daemon. 1398Otherwise, the value will be passed as the parameters of an 1399.Dq Nm atm Cm "set prefix" Ar intf 1400command. 1401.It Va atm_macaddr_ Ns Aq Ar intf 1402.Pq Vt str 1403For the ATM physical interface 1404.Ar intf , 1405this variable defines the MAC address for interfaces using a UNI signalling 1406manager. 1407If set to 1408.Dq Li NO , 1409the hardware MAC address contained in the ATM interface card will be used. 1410Otherwise, the value will be passed as the parameters of an 1411.Dq Nm atm Cm "set mac" Ar intf 1412command. 1413.It Va atm_arpserver_ Ns Aq Ar netif 1414.Pq Vt str 1415For the ATM network interface 1416.Ar netif , 1417this variable defines the ATM address for a host which is to provide ATMARP 1418service. 1419This variable is only applicable to interfaces using a UNI signalling 1420manager. 1421If set to 1422.Dq Li local , 1423this host will become an ATMARP server. 1424The value will be passed as the parameters of an 1425.Dq Nm atm Cm "set arpserver" Ar netif 1426command. 1427.It Va atm_scsparp_ Ns Aq Ar netif 1428.Pq Vt bool 1429If set to 1430.Dq Li YES , 1431SCSP/ATMARP service for the network interface 1432.Ar netif 1433will be initiated using the 1434.Xr scspd 8 1435and 1436.Xr atmarpd 8 1437daemons. 1438This variable is only applicable if 1439.Va atm_arpserver_ Ns Aq Ar netif 1440is set to 1441.Dq Li local . 1442.It Va atm_pvcs 1443.Pq Vt str 1444Set to the list of ATM PVCs to be added at system 1445boot time. 1446For each whitespace separated 1447.Ar element 1448in the value, an 1449.Va atm_pvc_ Ns Aq Ar element 1450variable is assumed to exist. 1451The value of each of these variables 1452will be passed as the parameters of an 1453.Dq Nm atm Cm "add pvc" 1454command. 1455.It Va atm_arps 1456.Pq Vt str 1457Set to the list of permanent ATM ARP entries to be added 1458at system boot time. 1459For each whitespace separated 1460.Ar element 1461in the value, an 1462.Va atm_arp_ Ns Aq Ar element 1463variable is assumed to exist. 1464The value of each of these variables 1465will be passed as the parameters of an 1466.Dq Nm atm Cm "add arp" 1467command. 1468.It Va keymap 1469.Pq Vt str 1470If set to 1471.Dq Li NO , 1472no keymap is installed, otherwise the value is used to install 1473the keymap file in 1474.Pa /usr/share/syscons/keymaps/ Ns Ao Ar value Ac Ns Pa .kbd . 1475.It Va keyrate 1476.Pq Vt str 1477The keyboard repeat speed. 1478Set to 1479.Dq Li slow , 1480.Dq Li normal , 1481.Dq Li fast , 1482or 1483.Dq Li NO 1484if the default behavior is desired. 1485.It Va keychange 1486.Pq Vt str 1487If not set to 1488.Dq Li NO , 1489attempt to program the function keys with the value. 1490The value should 1491be a single string of the form: 1492.Dq Ar funkey_number new_value Op Ar funkey_number new_value ... . 1493.It Va cursor 1494.Pq Vt str 1495Can be set to the value of 1496.Dq Li normal , 1497.Dq Li blink , 1498.Dq Li destructive , 1499or 1500.Dq Li NO 1501to set the cursor behavior explicitly or choose the default behavior. 1502.It Va scrnmap 1503.Pq Vt str 1504If set to 1505.Dq Li NO , 1506no screen map is installed, otherwise the value is used to install 1507the screen map file in 1508.Pa /usr/share/syscons/scrnmaps/ Ns Aq Ar value . 1509.It Va font8x16 1510.Pq Vt str 1511If set to 1512.Dq Li NO , 1513the default 8x16 font value is used for screen size requests, otherwise 1514the value in 1515.Pa /usr/share/syscons/fonts/ Ns Aq Ar value 1516is used. 1517.It Va font8x14 1518.Pq Vt str 1519If set to 1520.Dq Li NO , 1521the default 8x14 font value is used for screen size requests, otherwise 1522the value in 1523.Pa /usr/share/syscons/fonts/ Ns Aq Ar value 1524is used. 1525.It Va font8x8 1526.Pq Vt str 1527If set to 1528.Dq Li NO , 1529the default 8x8 font value is used for screen size requests, otherwise 1530the value in 1531.Pa /usr/share/syscons/fonts/ Ns Aq Ar value 1532is used. 1533.It Va blanktime 1534.Pq Vt int 1535If set to 1536.Dq Li NO , 1537the default screen blanking interval is used, otherwise it is set 1538to 1539.Ar value 1540seconds. 1541.It Va saver 1542.Pq Vt str 1543If not set to 1544.Dq Li NO , 1545this is the actual screen saver to use 1546.Li ( blank , snake , daemon , 1547etc). 1548.It Va moused_enable 1549.Pq Vt str 1550If set to 1551.Dq Li YES , 1552the 1553.Xr moused 8 1554daemon is started for doing cut/paste selection on the console. 1555.It Va moused_type 1556.Pq Vt str 1557This is the protocol type of the mouse connected to this host. 1558This variable must be set if 1559.Va moused_enable 1560is set to 1561.Dq Li YES . 1562The 1563.Xr moused 8 1564daemon 1565is able to detect the appropriate mouse type automatically in many cases. 1566Set this variable to 1567.Dq Li auto 1568to let the daemon detect it, or 1569select one from the following list if the automatic detection fails. 1570.Pp 1571If the mouse is attached to the PS/2 mouse port, choose 1572.Dq Li auto 1573or 1574.Dq Li ps/2 , 1575regardless of the brand and model of the mouse. 1576Likewise, if the 1577mouse is attached to the bus mouse port, choose 1578.Dq Li auto 1579or 1580.Dq Li busmouse . 1581All other protocols are for serial mice and will not work with 1582the PS/2 and bus mice. 1583If this is a USB mouse, 1584.Dq Li auto 1585is the only protocol type which will work. 1586.Pp 1587.Bl -tag -width ".Li x10mouseremote" -compact 1588.It Li microsoft 1589Microsoft mouse (serial) 1590.It Li intellimouse 1591Microsoft IntelliMouse (serial) 1592.It Li mousesystems 1593Mouse systems Corp. mouse (serial) 1594.It Li mmseries 1595MM Series mouse (serial) 1596.It Li logitech 1597Logitech mouse (serial) 1598.It Li busmouse 1599A bus mouse 1600.It Li mouseman 1601Logitech MouseMan and TrackMan (serial) 1602.It Li glidepoint 1603ALPS GlidePoint (serial) 1604.It Li thinkingmouse 1605Kensington ThinkingMouse (serial) 1606.It Li ps/2 1607PS/2 mouse 1608.It Li mmhittab 1609MM HitTablet (serial) 1610.It Li x10mouseremote 1611X10 MouseRemote (serial) 1612.It Li versapad 1613Interlink VersaPad (serial) 1614.El 1615.Pp 1616Even if the mouse is not in the above list, it may be compatible 1617with one in the list. 1618Refer to the man page for 1619.Xr moused 8 1620for compatibility information. 1621.Pp 1622It should also be noted that while this is enabled, any 1623other client of the mouse (such as an X server) should access 1624the mouse through the virtual mouse device, 1625.Pa /dev/sysmouse , 1626and configure it as a 1627.Dq Li sysmouse 1628type mouse, since all 1629mouse data is converted to this single canonical format when 1630using 1631.Xr moused 8 . 1632If the client program does not support the 1633.Dq Li sysmouse 1634type, 1635specify the 1636.Dq Li mousesystems 1637type. 1638It is the second preferred type. 1639.It Va moused_port 1640.Pq Vt str 1641If 1642.Va moused_enable 1643is set to 1644.Dq Li YES , 1645this is the actual port the mouse is on. 1646It might be 1647.Pa /dev/cuaa0 1648for a COM1 serial mouse, 1649.Pa /dev/psm0 1650for a PS/2 mouse or 1651.Pa /dev/mse0 1652for a bus mouse, for example. 1653.It Va moused_flags 1654.Pq Vt str 1655If 1656.Va moused_type 1657is set, these are the additional flags to pass to the 1658.Xr moused 8 1659daemon. 1660.It Va mousechar_start 1661.Pq Vt int 1662If set to 1663.Dq Li NO , 1664the default mouse cursor character range 1665.Li 0xd0 Ns - Ns Li 0xd3 1666is used, 1667otherwise the range start is set 1668to 1669.Ar value 1670character, see 1671.Xr vidcontrol 1 . 1672Use if the default range is occupied in the language code table. 1673.It Va allscreens_flags 1674.Pq Vt str 1675If set, 1676.Xr vidcontrol 1 1677is run with these options for each of the virtual terminals 1678.Pq Pa /dev/ttyv* . 1679For example, 1680.Dq Fl m Cm on 1681will enable the mouse pointer on all virtual terminals 1682if 1683.Va moused_enable 1684is set to 1685.Dq Li YES . 1686.It Va allscreens_kbdflags 1687.Pq Vt str 1688If set, 1689.Xr kbdcontrol 1 1690is run with these options for each of the virtual terminals 1691.Pq Pa /dev/ttyv* . 1692For example, 1693.Dq Fl h Li 200 1694will set the 1695.Xr syscons 4 1696scrollback (history) buffer to 200 lines. 1697.It Va cron_enable 1698.Pq Vt bool 1699If set to 1700.Dq Li YES , 1701run the 1702.Xr cron 8 1703daemon at system boot time. 1704.It Va cron_program 1705.Pq Vt str 1706Path to 1707.Xr cron 8 1708(default 1709.Pa /usr/sbin/cron ) . 1710.It Va cron_flags 1711.Pq Vt str 1712If 1713.Va cron_enable 1714is set to 1715.Dq Li YES , 1716these are the flags to pass to 1717.Xr cron 8 . 1718.It Va lpd_program 1719.Pq Vt str 1720Path to 1721.Xr lpd 8 1722(default 1723.Pa /usr/sbin/lpd ) . 1724.It Va lpd_enable 1725.Pq Vt bool 1726If set to 1727.Dq Li YES , 1728run the 1729.Xr lpd 8 1730daemon at system boot time. 1731.It Va lpd_flags 1732.Pq Vt str 1733If 1734.Va lpd_enable 1735is set to 1736.Dq Li YES , 1737these are the flags to pass to the 1738.Xr lpd 8 1739daemon. 1740.It Va mta_start_script 1741.Pq Vt str 1742This variable specifies the full path to the script to run to start 1743a mail transfer agent. 1744The default is 1745.Pa /etc/rc.sendmail . 1746The 1747.Va sendmail_* 1748variables which 1749.Pa /etc/rc.sendmail 1750uses are documented in the 1751.Xr rc.sendmail 8 1752man page. 1753.It Va dumpdev 1754.Pq Vt str 1755Indicates the device (usually a swap partition) to which a crash dump 1756should be written in the event of a system crash. 1757The value of this variable is passed as the argument to 1758.Xr dumpon 8 . 1759To disable crash dumps, set this variable to 1760.Dq Li NO . 1761.It Va dumpdir 1762.Pq Vt str 1763When the system reboots after a crash and a crash dump is found on the 1764device specified by the 1765.Va dumpdev 1766variable, 1767.Xr savecore 8 1768will save that crash dump and a copy of the kernel to the directory 1769specified by the 1770.Va dumpdir 1771variable. 1772The default value is 1773.Pa /var/crash . 1774Set to 1775.Dq Li NO 1776to not run 1777.Xr savecore 8 1778at boot time when 1779.Va dumpdir 1780is set. 1781.It Va savecore_flags 1782.Pq Vt str 1783If crash dumps are enabled, these are the flags to pass to the 1784.Xr savecore 8 1785utility. 1786.It Va enable_quotas 1787.Pq Vt bool 1788Set to 1789.Dq Li YES 1790to turn on user disk quotas on system startup via the 1791.Xr quotaon 8 1792command. 1793.It Va check_quotas 1794.Pq Vt bool 1795Set to 1796.Dq Li YES 1797to enable user disk quota checking via the 1798.Xr quotacheck 8 1799command. 1800.It Va accounting_enable 1801.Pq Vt bool 1802Set to 1803.Dq Li YES 1804to enable system accounting through the 1805.Xr accton 8 1806facility. 1807.It Va ibcs2_enable 1808.Pq Vt bool 1809Set to 1810.Dq Li YES 1811to enable iBCS2 (SCO) binary emulation at system initial boot 1812time. 1813.It Va ibcs2_loaders 1814.Pq Vt str 1815If not set to 1816.Dq Li NO 1817and if 1818.Va ibcs2_enable 1819is set to 1820.Dq Li YES , 1821this specifies a list of additional iBCS2 loaders to enable. 1822.It Va linux_enable 1823.Pq Vt bool 1824Set to 1825.Dq Li YES 1826to enable Linux/ELF binary emulation at system initial 1827boot time. 1828.It Va osf1_enable 1829.Pq Vt bool 1830Set to 1831.Dq Li YES 1832to enable OSF/1 (Digital UNIX) binary emulation at system 1833initial boot time. 1834(alpha) 1835.It Va clear_tmp_enable 1836.Pq Vt bool 1837Set to 1838.Dq Li YES 1839to have 1840.Pa /tmp 1841cleaned at startup. 1842.It Va ldconfig_paths 1843.Pq Vt str 1844Set to the list of shared library paths to use with 1845.Xr ldconfig 8 . 1846NOTE: 1847.Pa /usr/lib 1848will always be added first, so it need not appear in this list. 1849.It Va ldconfig_insecure 1850.Pq Vt bool 1851The 1852.Xr ldconfig 8 1853utility normally refuses to use directories 1854which are writable by anyone except root. 1855Set this variable to 1856.Dq Li YES 1857to disable that security check during system startup. 1858.It Va kern_securelevel_enable 1859.Pq Vt bool 1860Set to 1861.Dq Li YES 1862to set the kernel security level at system startup. 1863.It Va kern_securelevel 1864.Pq Vt int 1865The kernel security level to set at startup. 1866The allowed range of 1867.Ar value 1868ranges from \-1 (the compile time default) to 3 (the 1869most secure). 1870See 1871.Xr init 8 1872for the list of possible security levels and their effect 1873on system operation. 1874.It Va lomac_enable 1875.Pq Vt bool 1876Set to 1877.Dq Li YES 1878to enable Low Watermark Mandatory Access Control (LOMAC) at boot time. 1879This security model enforces integrity constraints for system processes; 1880see 1881.Xr lomac 4 1882for a complete description of the LOMAC model, as well as its impact 1883on system operation. 1884.It Va start_vinum 1885.Pq Vt bool 1886Set to 1887.Dq Li YES 1888to start 1889.Xr vinum 8 1890at system boot time. 1891.It Va sshd_program 1892.Pq Vt str 1893Path to the SSH server program 1894.Pa ( /usr/sbin/sshd 1895is the default). 1896.It Va sshd_enable 1897.Pq Vt bool 1898Set to 1899.Dq Li YES 1900to start 1901.Xr sshd 8 1902at system boot time. 1903.It Va sshd_flags 1904.Pq Vt str 1905If 1906.Va sshd_enable 1907is set to 1908.Dq Li YES , 1909these are the flags to pass to the 1910.Xr sshd 8 1911daemon. 1912.It Va unaligned_print 1913.Pq Vt bool 1914If set to 1915.Dq Li NO , 1916unaligned access warnings will not be printed. 1917(alpha) 1918.\" ----- isdn settings --------------------------------- 1919.It Va isdn_enable 1920.Pq Vt bool 1921Set to 1922.Dq Li NO 1923by default. 1924When set to 1925.Dq Li YES , 1926starts the 1927.Xr isdnd 8 1928daemon 1929at system boot time. 1930.It Va isdn_flags 1931.Pq Vt str 1932Set to 1933.Dq Fl d Ns Cm n Fl d Ns Li 0x1f9 1934by default. 1935Additional flags to pass to 1936.Xr isdnd 8 1937(but see 1938.Va isdn_fsdev 1939and 1940.Va isdn_ttype 1941for certain tunable parameters). 1942.It Va isdn_ttype 1943.Pq Vt str 1944Set to 1945.Dq Li cons25 1946by default. 1947The terminal type of the output device when 1948.Xr isdnd 8 1949operates in full-screen mode. 1950.It Va isdn_screenflags 1951.Pq Vt str 1952Set to 1953.Dq Li NO 1954by default. 1955The video mode for full-screen mode (only for 1956.Xr syscons 4 1957console driver, see 1958.Xr vidcontrol 1 1959for valid modes). 1960.It Va isdn_fsdev 1961.Pq Vt str 1962Set to 1963.Dq Li NO 1964by default. 1965The output device for 1966.Xr isdnd 8 1967in full-screen mode (or 1968.Dq Li NO 1969for daemon mode). 1970.It Va isdn_trace 1971.Pq Vt bool 1972Set to 1973.Dq Li NO 1974by default. 1975When set to 1976.Dq Li YES , 1977enables the ISDN protocol trace utility 1978.Xr isdntrace 8 1979at system boot time. 1980.It Va isdn_traceflags 1981.Pq Vt str 1982Set to 1983.Dq Fl f Pa /var/tmp/isdntrace0 1984by default. 1985Flags for 1986.Xr isdntrace 8 . 1987.\" ----------------------------------------------------- 1988.It Va pcvt_verbose 1989.Pq Vt bool 1990Set to 1991.Dq Li NO 1992by default. 1993When set to 1994.Dq Li YES , 1995verbose messages about the actions done by the start script are displayed. 1996.Em Note : 1997the 1998.Xr pcvt 4 1999driver must be compiled into the kernel before the 2000.Xr pcvt 4 2001related 2002options described here take any effect. 2003.It Va pcvt_keymap 2004.Pq Vt str 2005Set to 2006.Dq Li NO 2007by default. 2008Use this to configure a national keyboard mapping found in the 2009.Pa /usr/share/misc/keycap.pcvt 2010file of keyboard mappings. 2011(See also the manual pages 2012.Xr keycap 5 2013and 2014.Xr keycap 3 2015for usage of 2016.Xr pcvt 4 Ns 's 2017keycap database and the manual page 2018.Xr kcon 1 2019option 2020.Fl m 2021for national keyboard mapping configuration.) 2022.It Va pcvt_keydel 2023.Pq Vt int 2024Set to 2025.Dq Li NO 2026by default. 2027Used to set the keyboard key repeat delay value. 2028Valid values are 2029in the range 0..3 for delay values of 250, 500, 750 and 1000 msec. 2030(See also the 2031.Xr kcon 1 2032manual page.) 2033.It Va pcvt_keyrate 2034.Pq Vt int 2035Set to 2036.Dq Li NO 2037by default. 2038Used to set the keyboard key repetition rate value. 2039Valid values are 2040in the range 0..31 for repetition values of 2..30 characters per second. 2041.It Va pcvt_keyrepeat 2042.Pq Vt bool 2043Set to 2044.Dq Li NO 2045by default. 2046Set to 2047.Dq Li YES 2048to enable automatic keyboard key repeating. 2049.It Va pcvt_force24 2050.Pq Vt bool 2051Set to 2052.Dq Li NO 2053by default. 2054Set to 2055.Dq Li YES 2056to force 2057.Xr pcvt 4 2058to use 24 lines only (in 25 lines mode) for compatibility 2059with the original 2060.Tn VT220 2061terminal. 2062.It Va pcvt_hpext 2063.Pq Vt bool 2064Set to 2065.Dq Li NO 2066by default. 2067Set to 2068.Dq Li YES 2069to enable the display and funtionality of function key labels (as found 2070on 2071.Tn Hewlett-Packard 2072terminals such as the 2073.Tn HP2392A 2074and the 2075.Tn HP700/92 2076in 2077.Tn ANSI 2078mode). 2079.It Va pcvt_lines 2080.Pq Vt int 2081Set to 2082.Dq Li NO 2083by default resulting in a value of 25. 2084Used to set the number of lines on the screen. 2085For VGA displays, valid 2086values are 25, 28, 40 and 50 lines. 2087(See also the 2088.Xr scon 1 2089manual page.) 2090.It Va pcvt_blanktime 2091.Pq Vt int 2092Set to 2093.Dq Li NO 2094by default. 2095Used to set the screen saver timeout in seconds for values greater than 2096zero. 2097.It Va pcvt_cursorh 2098.Pq Vt int 2099Set to 2100.Dq Li NO 2101by default. 2102Used to set the cursor top scanline. 2103(See also the 2104.Xr cursor 1 2105manual page.) 2106.It Va pcvt_cursorl 2107.Pq Vt int 2108Set to 2109.Dq Li NO 2110by default. 2111Used to set the cursor bottom scanline. 2112.It Va pcvt_monohigh 2113.Pq Vt bool 2114Set to 2115.Dq Li NO 2116by default. 2117Set to 2118.Dq Li YES 2119to set intensity to high on monochrome monitors. 2120(See also the 2121.Xr scon 1 2122manual page, option 2123.Fl p , 2124for more information on changing VGA palette 2125values.) 2126.El 2127.Sh FILES 2128.Bl -tag -width ".Pa /etc/defaults/rc.conf" -compact 2129.It Pa /etc/defaults/rc.conf 2130.It Pa /etc/rc.conf 2131.It Pa /etc/rc.conf.local 2132.El 2133.Sh SEE ALSO 2134.Xr catman 1 , 2135.Xr gdb 1 , 2136.Xr info 1 , 2137.Xr makewhatis 1 , 2138.Xr vidcontrol 1 , 2139.Xr tcp 4 , 2140.Xr udp 4 , 2141.Xr exports 5 , 2142.Xr motd 5 , 2143.Xr accton 8 , 2144.Xr amd 8 , 2145.Xr apm 8 , 2146.Xr atm 8 , 2147.Xr cron 8 , 2148.Xr dhclient 8 , 2149.Xr gated 8 , 2150.Xr ifconfig 8 , 2151.Xr inetd 8 , 2152.Xr isdnd 8 , 2153.Xr isdntrace 8 , 2154.Xr lpd 8 , 2155.Xr mdconfig 8 , 2156.Xr moused 8 , 2157.Xr mrouted 8 , 2158.Xr named 8 , 2159.Xr nfsd 8 , 2160.Xr ntpd 8 , 2161.Xr ntpdate 8 , 2162.Xr pcnfsd 8 , 2163.Xr quotacheck 8 , 2164.Xr quotaon 8 , 2165.Xr rc 8 , 2166.Xr rc.sendmail 8 , 2167.Xr route 8 , 2168.Xr routed 8 , 2169.Xr rpc.lockd 8 , 2170.Xr rpc.statd 8 , 2171.Xr rpcbind 8 , 2172.Xr rwhod 8 , 2173.Xr savecore 8 , 2174.Xr sshd 8 , 2175.Xr swapon 8 , 2176.Xr sysctl 8 , 2177.Xr syslogd 8 , 2178.Xr timed 8 , 2179.Xr vinum 8 , 2180.Xr xtend 8 , 2181.Xr yp 8 , 2182.Xr ypbind 8 , 2183.Xr ypserv 8 , 2184.Xr ypset 8 2185.Sh HISTORY 2186The 2187.Nm 2188file appeared in 2189.Fx 2.2.2 . 2190.Sh AUTHORS 2191.An Jordan K. Hubbard .
| 755.It Va syslogd_enable 756.Pq Vt bool 757If set to 758.Dq Li YES , 759run the 760.Xr syslogd 8 761daemon. 762.It Va syslogd_program 763.Pq Vt str 764Path to 765.Xr syslogd 8 766(default 767.Pa /usr/sbin/syslogd ) . 768.It Va syslogd_flags 769.Pq Vt str 770If 771.Va syslogd_enable 772is set to 773.Dq Li YES , 774these are the flags to pass to 775.Xr syslogd 8 . 776.It Va inetd_enable 777.Pq Vt bool 778If set to 779.Dq Li YES , 780run the 781.Xr inetd 8 782daemon. 783.It Va inetd_program 784.Pq Vt str 785Path to 786.Xr inetd 8 787(default 788.Pa /usr/sbin/inetd ) . 789.It Va inetd_flags 790.Pq Vt str 791If 792.Va inetd_enable 793is set to 794.Dq Li YES , 795these are the flags to pass to 796.Xr inetd 8 . 797.It Va named_enable 798.Pq Vt bool 799If set to 800.Dq Li YES , 801run the 802.Xr named 8 803daemon. 804.It Va named_program 805.Pq Vt str 806Path to 807.Xr named 8 808(default 809.Pa /usr/sbin/named ) . 810.It Va named_flags 811.Pq Vt str 812If 813.Va named_enable 814is set to 815.Dq Li YES , 816these are the flags to pass to 817.Xr named 8 . 818.It Va kerberos4_server_enable 819.Pq Vt bool 820Set to 821.Dq Li YES 822to start a Kerberos IV authentication server 823at boot time. 824.It Va kadmind4_server_enable 825.Pq Vt bool 826Set to 827.Dq Li YES 828to start 829.Xr kadmind 8 , 830the Kerberos IV Administration Daemon; set to 831.Dq Li NO 832on a slave server. 833.It Va kerberos_stash 834.Pq Vt str 835If 836.Dq Li YES , 837instruct the Kerberos servers to use the stashed master key instead of 838prompting for it (only if 839.Va kerberos_server_enable 840is set to 841.Dq Li YES , 842and is used for both 843.Xr kerberos 1 844and 845.Xr kadmind 8 ) . 846.It Va kerberos5_server_enable 847.Pq Vt bool 848Set to 849.Dq Li YES 850to start a Kerberos 5 authentication server 851at boot time. 852.It Va kadmind5_server_enable 853.Pq Vt bool 854Set to 855.Dq Li YES 856to start 857.Xr k5admind 8 , 858the Kerberos 5 Administration Daemon; set to 859.Dq Li NO 860on a slave server. 861.It Va rwhod_enable 862.Pq Vt bool 863If set to 864.Dq Li YES , 865run the 866.Xr rwhod 8 867daemon at boot time. 868.It Va rwhod_flags 869.Pq Vt str 870If 871.Va rwhod_enable 872is set to 873.Dq Li YES , 874these are the flags to pass to it. 875.It Va amd_enable 876.Pq Vt bool 877If set to 878.Dq Li YES , 879run the 880.Xr amd 8 881daemon at boot time. 882.It Va amd_flags 883.Pq Vt str 884If 885.Va amd_enable 886is set to 887.Dq Li YES , 888these are the flags to pass to it. 889See the 890.Xr amd 8 891manpage for more information. 892.It Va amd_map_program 893.Pq Vt str 894If set, 895the specified program is run to get the list of 896.Xr amd 8 897maps. 898For example, if the 899.Xr amd 8 900maps are stored in NIS, one can set this to 901run 902.Xr ypcat 1 903to get a list of 904.Xr amd 8 905maps from the 906.Pa amd.master 907NIS map. 908.It Va update_motd 909.Pq Vt bool 910If set to 911.Dq Li YES , 912.Pa /etc/motd 913will be updated at boot time to reflect the kernel release 914being run. 915If set to 916.Dq Li NO , 917.Pa /etc/motd 918will not be updated. 919.It Va nfs_client_enable 920.Pq Vt bool 921If set to 922.Dq Li YES , 923run the NFS client daemons at boot time. 924.It Va nfs_access_cache 925.Pq Vt int 926If 927.Va nfs_client_enable 928is set to 929.Dq Li YES , 930this can be set to 931.Dq Li 0 932to disable NFS ACCESS RPC caching, or to the number of seconds for which 933NFS ACCESS 934results should be cached. 935A value of 2-10 seconds will substantially reduce network 936traffic for many NFS operations. 937.It Va nfs_server_enable 938.Pq Vt bool 939If set to 940.Dq Li YES , 941run the NFS server daemons at boot time. 942.It Va nfs_server_flags 943.Pq Vt str 944If 945.Va nfs_server_enable 946is set to 947.Dq Li YES , 948these are the flags to pass to the 949.Xr nfsd 8 950daemon. 951.It Va mountd_enable 952.Pq Vt bool 953If set to 954.Dq Li YES , 955and no 956.Va nfs_server_enable 957is set, start 958.Xr mountd 8 , 959but not 960.Xr nfsd 8 961daemon. 962It is commonly needed to run CFS without real NFS used. 963.It Va weak_mountd_authentication 964.Pq Vt bool 965If set to 966.Dq Li YES , 967allow services like PCNFSD to make non-privileged mount 968requests. 969.It Va nfs_privport 970.Pq Vt bool 971If set to 972.Dq Li YES , 973provide NFS services only on a secure port. 974.It Va nfs_bufpackets 975.Pq Vt int 976If set to a number, indicates the number of packets worth of 977socket buffer space to reserve on an NFS client. 978If set to 979.Dq Li DEFAULT , 980the kernel default is used (typically 4). 981Using a higher number may be 982useful on gigabit networks to improve performance. 983The minimum value is 9842 and the maximum is 64. 985.It Va rpc_lockd_enable 986.Pq Vt bool 987If set to 988.Dq Li YES 989and also an NFS server, run 990.Xr rpc.lockd 8 991at boot time. 992.It Va rpc_statd_enable 993.Pq Vt bool 994If set to 995.Dq Li YES 996and also an NFS server, run 997.Xr rpc.statd 8 998at boot time. 999.It Va rpcbind_program 1000.Pq Vt str 1001Path to 1002.Xr rpcbind 8 1003(default 1004.Pa /usr/sbin/rpcbind ) . 1005.It Va rpcbind_enable 1006.Pq Vt bool 1007If set to 1008.Dq Li YES , 1009run the 1010.Xr rpcbind 8 1011service at boot time. 1012.It Va rpcbind_flags 1013.Pq Vt str 1014If 1015.Va rpcbind_enable 1016is set to 1017.Dq Li YES , 1018these are the flags to pass to the 1019.Xr rpcbind 8 1020daemon. 1021.It Va xtend_enable 1022.Pq Vt bool 1023If set to 1024.Dq Li YES , 1025run the 1026.Xr xtend 8 1027daemon at boot time. 1028.It Va xtend_flags 1029.Pq Vt str 1030If 1031.Va xtend_enable 1032is set to 1033.Dq Li YES , 1034these are the flags to pass to the 1035.Xr xtend 8 1036daemon. 1037.It Va pppoed_enable 1038.Pq Vt bool 1039If set to 1040.Dq Li YES , 1041run the 1042.Xr pppoed 8 1043daemon at boot time to provide PPP over Ethernet services. 1044.It Va pppoed_ Ns Ar provider 1045.Pq Vt str 1046.Xr pppoed 8 1047listens to requests to this 1048.Ar provider 1049and ultimately runs 1050.Xr ppp 8 1051with a 1052.Ar system 1053argument of the same name. 1054.It Va pppoed_flags 1055.Pq Vt str 1056Additional flags to pass to 1057.Xr pppoed 8 . 1058.It Va pppoed_interface 1059.Pq Vt str 1060The network interface to run 1061.Xr pppoed 8 1062on. 1063This is mandatory when 1064.Va pppoed_enable 1065is set to 1066.Dq Li YES . 1067.It Va timed_enable 1068.Pq Vt boot 1069If set to 1070.Dq Li YES , 1071run the 1072.Xr timed 8 1073service at boot time. 1074This command is intended for networks of 1075machines where a consistent 1076.Dq "network time" 1077for all hosts must be established. 1078This is often useful in large NFS 1079environments where time stamps on files are expected to be consistent 1080network-wide. 1081.It Va timed_flags 1082.Pq Vt str 1083If 1084.Va timed_enable 1085is set to 1086.Dq Li YES , 1087these are the flags to pass to the 1088.Xr timed 8 1089service. 1090.It Va ntpdate_enable 1091.Pq Vt bool 1092If set to 1093.Dq Li YES , 1094run 1095.Xr ntpdate 8 1096at system startup. 1097This command is intended to 1098synchronize the system clock only 1099.Em once 1100from some standard reference. 1101An option to set this up initially 1102(from a list of known servers) is also provided by the 1103.Xr sysinstall 8 1104program when the system is first installed. 1105.It Va ntpdate_program 1106.Pq Vt str 1107Path to 1108.Xr ntpdate 8 1109(default 1110.Pa /usr/sbin/ntpdate ) . 1111.It Va ntpdate_flags 1112.Pq Vt str 1113If 1114.Va ntpdate_enable 1115is set to 1116.Dq Li YES , 1117these are the flags to pass to the 1118.Xr ntpdate 8 1119command (typically a hostname). 1120.It Va ntpd_enable 1121.Pq Vt bool 1122If set to 1123.Dq Li YES , 1124run the 1125.Xr ntpd 8 1126command at boot time. 1127.It Va ntpd_program 1128.Pq Vt str 1129Path to 1130.Xr ntpd 8 1131(default 1132.Pa /usr/sbin/ntpd ) . 1133.It Va ntpd_flags 1134.Pq Vt str 1135If 1136.Va ntpd_enable 1137is set to 1138.Dq Li YES , 1139these are the flags to pass to the 1140.Xr ntpd 8 1141daemon. 1142.It Va nis_client_enable 1143.Pq Vt bool 1144If set to 1145.Dq Li YES , 1146run the 1147.Xr ypbind 8 1148service at system boot time. 1149.It Va nis_client_flags 1150.Pq Vt str 1151If 1152.Va nis_client_enable 1153is set to 1154.Dq Li YES , 1155these are the flags to pass to the 1156.Xr ypbind 8 1157service. 1158.It Va nis_ypset_enable 1159.Pq Vt bool 1160If set to 1161.Dq Li YES , 1162run the 1163.Xr ypset 8 1164daemon at system boot time. 1165.It Va nis_ypset_flags 1166.Pq Vt str 1167If 1168.Va nis_ypset_enable 1169is set to 1170.Dq Li YES , 1171these are the flags to pass to the 1172.Xr ypset 8 1173daemon. 1174.It Va nis_server_enable 1175.Pq Vt bool 1176If set to 1177.Dq Li YES , 1178run the 1179.Xr ypserv 8 1180daemon at system boot time. 1181.It Va nis_server_flags 1182.Pq Vt str 1183If 1184.Va nis_server_enable 1185is set to 1186.Dq Li YES , 1187these are the flags to pass to the 1188.Xr ypserv 8 1189daemon. 1190.It Va nis_ypxfrd_enable 1191.Pq Vt bool 1192If set to 1193.Dq Li YES , 1194run the 1195.Xr rpc.ypxfrd 8 1196daemon at system boot time. 1197.It Va nis_ypxfrd_flags 1198.Pq Vt str 1199If 1200.Va nis_ypxfrd_enable 1201is set to 1202.Dq Li YES , 1203these are the flags to pass to the 1204.Xr rpc.ypxfrd 8 1205daemon. 1206.It Va nis_yppasswdd_enable 1207.Pq Vt bool 1208If set to 1209.Dq Li YES , 1210run the 1211.Xr rpc.yppasswdd 8 1212daemon at system boot time. 1213.It Va nis_yppasswdd_flags 1214.Pq Vt str 1215If 1216.Va nis_yppasswdd_enable 1217is set to 1218.Dq Li YES , 1219these are the flags to pass to the 1220.Xr rpc.yppasswdd 8 1221daemon. 1222.It Va defaultrouter 1223.Pq Vt str 1224If not set to 1225.Dq Li NO , 1226create a default route to this host name or IP address 1227(use an IP address if this router is also required to get to the 1228name server!). 1229.It Va static_routes 1230.Pq Vt str 1231Set to the list of static routes that are to be added at system 1232boot time. 1233If not set to 1234.Dq Li NO 1235then for each whitespace separated 1236.Ar element 1237in the value, a 1238.Va route_ Ns Aq Ar element 1239variable is assumed to exist 1240whose contents will later be passed to a 1241.Dq Nm route Cm add 1242operation. 1243.It Va gateway_enable 1244.Pq Vt bool 1245If set to 1246.Dq Li YES , 1247configure host to act as an IP router, e.g. to forward packets 1248between interfaces. 1249.It Va router_enable 1250.Pq Vt bool 1251If set to 1252.Dq Li YES , 1253run a routing daemon of some sort, based on the 1254settings of 1255.Va router 1256and 1257.Va router_flags . 1258.It Va router 1259.Pq Vt str 1260If 1261.Va router_enable 1262is set to 1263.Dq Li YES , 1264this is the name of the routing daemon to use. 1265.It Va router_flags 1266.Pq Vt str 1267If 1268.Va router_enable 1269is set to 1270.Dq Li YES , 1271these are the flags to pass to the routing daemon. 1272.It Va mrouted_enable 1273.Pq Vt bool 1274If set to 1275.Dq Li YES , 1276run the multicast routing daemon, 1277.Xr mrouted 8 . 1278.It Va mrouted_flags 1279.Pq Vt str 1280If 1281.Va mrouted_enable 1282is set to 1283.Dq Li YES , 1284these are the flags to pass to the 1285.Xr mrouted 8 1286daemon. 1287.It Va ipxgateway_enable 1288.Pq Vt bool 1289If set to 1290.Dq Li YES , 1291enable the routing of IPX traffic. 1292.It Va ipxrouted_enable 1293.Pq Vt bool 1294If set to 1295.Dq Li YES , 1296run the 1297.Xr IPXrouted 8 1298daemon at system boot time. 1299.It Va ipxrouted_flags 1300.Pq Vt str 1301If 1302.Va ipxrouted_enable 1303is set to 1304.Dq Li YES , 1305these are the flags to pass to the 1306.Xr IPXrouted 8 1307daemon. 1308.It Va arpproxy_all 1309.Pq Vt bool 1310If set to 1311.Dq Li YES , 1312enable global proxy ARP. 1313.It Va forward_sourceroute 1314.Pq Vt bool 1315If set to 1316.Dq Li YES 1317and 1318.Va gateway_enable 1319is also set to 1320.Dq Li YES , 1321source-routed packets are forwarded. 1322.It Va accept_sourceroute 1323.Pq Vt bool 1324If set to 1325.Dq Li YES , 1326the system will accept source-routed packets directed at it. 1327.It Va rarpd_enable 1328.Pq Vt bool 1329If set to 1330.Dq Li YES , 1331run the 1332.Xr rarpd 8 1333daemon at system boot time. 1334.It Va rarpd_flags 1335.Pq Vt str 1336If 1337.Va rarpd_enable 1338is set to 1339.Dq Li YES , 1340these are the flags to pass to the 1341.Xr rarpd 8 1342daemon. 1343.It Va bootparamd_enable 1344.Pq Vt bool 1345If set to 1346.Dq Li YES , 1347run the 1348.Xr bootparamd 8 1349daemon at system boot time. 1350.It Va bootparamd_flags 1351.Pq Vt str 1352If 1353.Va bootparamd_enable 1354is set to 1355.Dq Li YES , 1356these are the flags to pass to the 1357.Xr bootparamd 8 1358daemon. 1359.It Va atm_enable 1360.Pq Vt bool 1361Set to 1362.Dq Li YES 1363to enable the configuration of ATM interfaces at system boot time. 1364For all of the ATM variables described below, please refer to the 1365.Xr atm 8 1366man page for further details on the available command parameters. 1367Also refer to the files in 1368.Pa /usr/share/examples/atm 1369for more detailed configuration information. 1370.It Va atm_netif_ Ns Aq Ar intf 1371.Pq Vt str 1372For the ATM physical interface 1373.Ar intf , 1374this variable defines the name prefix and count for the ATM network 1375interfaces to be created. 1376The value will be passed as the parameters of an 1377.Dq Nm atm Cm "set netif" Ar intf 1378command. 1379.It Va atm_sigmgr_ Ns Aq Ar intf 1380.Pq Vt str 1381For the ATM physical interface 1382.Ar intf , 1383this variable defines the ATM signalling manager to be used. 1384The value will be passed as the parameters of an 1385.Dq Nm atm Cm attach Ar intf 1386command. 1387.It Va atm_prefix_ Ns Aq Ar intf 1388.Pq Vt str 1389For the ATM physical interface 1390.Ar intf , 1391this variable defines the NSAP prefix for interfaces using a UNI signalling 1392manager. 1393If set to 1394.Dq Li ILMI , 1395the prefix will automatically be set via the 1396.Xr ilmid 8 1397daemon. 1398Otherwise, the value will be passed as the parameters of an 1399.Dq Nm atm Cm "set prefix" Ar intf 1400command. 1401.It Va atm_macaddr_ Ns Aq Ar intf 1402.Pq Vt str 1403For the ATM physical interface 1404.Ar intf , 1405this variable defines the MAC address for interfaces using a UNI signalling 1406manager. 1407If set to 1408.Dq Li NO , 1409the hardware MAC address contained in the ATM interface card will be used. 1410Otherwise, the value will be passed as the parameters of an 1411.Dq Nm atm Cm "set mac" Ar intf 1412command. 1413.It Va atm_arpserver_ Ns Aq Ar netif 1414.Pq Vt str 1415For the ATM network interface 1416.Ar netif , 1417this variable defines the ATM address for a host which is to provide ATMARP 1418service. 1419This variable is only applicable to interfaces using a UNI signalling 1420manager. 1421If set to 1422.Dq Li local , 1423this host will become an ATMARP server. 1424The value will be passed as the parameters of an 1425.Dq Nm atm Cm "set arpserver" Ar netif 1426command. 1427.It Va atm_scsparp_ Ns Aq Ar netif 1428.Pq Vt bool 1429If set to 1430.Dq Li YES , 1431SCSP/ATMARP service for the network interface 1432.Ar netif 1433will be initiated using the 1434.Xr scspd 8 1435and 1436.Xr atmarpd 8 1437daemons. 1438This variable is only applicable if 1439.Va atm_arpserver_ Ns Aq Ar netif 1440is set to 1441.Dq Li local . 1442.It Va atm_pvcs 1443.Pq Vt str 1444Set to the list of ATM PVCs to be added at system 1445boot time. 1446For each whitespace separated 1447.Ar element 1448in the value, an 1449.Va atm_pvc_ Ns Aq Ar element 1450variable is assumed to exist. 1451The value of each of these variables 1452will be passed as the parameters of an 1453.Dq Nm atm Cm "add pvc" 1454command. 1455.It Va atm_arps 1456.Pq Vt str 1457Set to the list of permanent ATM ARP entries to be added 1458at system boot time. 1459For each whitespace separated 1460.Ar element 1461in the value, an 1462.Va atm_arp_ Ns Aq Ar element 1463variable is assumed to exist. 1464The value of each of these variables 1465will be passed as the parameters of an 1466.Dq Nm atm Cm "add arp" 1467command. 1468.It Va keymap 1469.Pq Vt str 1470If set to 1471.Dq Li NO , 1472no keymap is installed, otherwise the value is used to install 1473the keymap file in 1474.Pa /usr/share/syscons/keymaps/ Ns Ao Ar value Ac Ns Pa .kbd . 1475.It Va keyrate 1476.Pq Vt str 1477The keyboard repeat speed. 1478Set to 1479.Dq Li slow , 1480.Dq Li normal , 1481.Dq Li fast , 1482or 1483.Dq Li NO 1484if the default behavior is desired. 1485.It Va keychange 1486.Pq Vt str 1487If not set to 1488.Dq Li NO , 1489attempt to program the function keys with the value. 1490The value should 1491be a single string of the form: 1492.Dq Ar funkey_number new_value Op Ar funkey_number new_value ... . 1493.It Va cursor 1494.Pq Vt str 1495Can be set to the value of 1496.Dq Li normal , 1497.Dq Li blink , 1498.Dq Li destructive , 1499or 1500.Dq Li NO 1501to set the cursor behavior explicitly or choose the default behavior. 1502.It Va scrnmap 1503.Pq Vt str 1504If set to 1505.Dq Li NO , 1506no screen map is installed, otherwise the value is used to install 1507the screen map file in 1508.Pa /usr/share/syscons/scrnmaps/ Ns Aq Ar value . 1509.It Va font8x16 1510.Pq Vt str 1511If set to 1512.Dq Li NO , 1513the default 8x16 font value is used for screen size requests, otherwise 1514the value in 1515.Pa /usr/share/syscons/fonts/ Ns Aq Ar value 1516is used. 1517.It Va font8x14 1518.Pq Vt str 1519If set to 1520.Dq Li NO , 1521the default 8x14 font value is used for screen size requests, otherwise 1522the value in 1523.Pa /usr/share/syscons/fonts/ Ns Aq Ar value 1524is used. 1525.It Va font8x8 1526.Pq Vt str 1527If set to 1528.Dq Li NO , 1529the default 8x8 font value is used for screen size requests, otherwise 1530the value in 1531.Pa /usr/share/syscons/fonts/ Ns Aq Ar value 1532is used. 1533.It Va blanktime 1534.Pq Vt int 1535If set to 1536.Dq Li NO , 1537the default screen blanking interval is used, otherwise it is set 1538to 1539.Ar value 1540seconds. 1541.It Va saver 1542.Pq Vt str 1543If not set to 1544.Dq Li NO , 1545this is the actual screen saver to use 1546.Li ( blank , snake , daemon , 1547etc). 1548.It Va moused_enable 1549.Pq Vt str 1550If set to 1551.Dq Li YES , 1552the 1553.Xr moused 8 1554daemon is started for doing cut/paste selection on the console. 1555.It Va moused_type 1556.Pq Vt str 1557This is the protocol type of the mouse connected to this host. 1558This variable must be set if 1559.Va moused_enable 1560is set to 1561.Dq Li YES . 1562The 1563.Xr moused 8 1564daemon 1565is able to detect the appropriate mouse type automatically in many cases. 1566Set this variable to 1567.Dq Li auto 1568to let the daemon detect it, or 1569select one from the following list if the automatic detection fails. 1570.Pp 1571If the mouse is attached to the PS/2 mouse port, choose 1572.Dq Li auto 1573or 1574.Dq Li ps/2 , 1575regardless of the brand and model of the mouse. 1576Likewise, if the 1577mouse is attached to the bus mouse port, choose 1578.Dq Li auto 1579or 1580.Dq Li busmouse . 1581All other protocols are for serial mice and will not work with 1582the PS/2 and bus mice. 1583If this is a USB mouse, 1584.Dq Li auto 1585is the only protocol type which will work. 1586.Pp 1587.Bl -tag -width ".Li x10mouseremote" -compact 1588.It Li microsoft 1589Microsoft mouse (serial) 1590.It Li intellimouse 1591Microsoft IntelliMouse (serial) 1592.It Li mousesystems 1593Mouse systems Corp. mouse (serial) 1594.It Li mmseries 1595MM Series mouse (serial) 1596.It Li logitech 1597Logitech mouse (serial) 1598.It Li busmouse 1599A bus mouse 1600.It Li mouseman 1601Logitech MouseMan and TrackMan (serial) 1602.It Li glidepoint 1603ALPS GlidePoint (serial) 1604.It Li thinkingmouse 1605Kensington ThinkingMouse (serial) 1606.It Li ps/2 1607PS/2 mouse 1608.It Li mmhittab 1609MM HitTablet (serial) 1610.It Li x10mouseremote 1611X10 MouseRemote (serial) 1612.It Li versapad 1613Interlink VersaPad (serial) 1614.El 1615.Pp 1616Even if the mouse is not in the above list, it may be compatible 1617with one in the list. 1618Refer to the man page for 1619.Xr moused 8 1620for compatibility information. 1621.Pp 1622It should also be noted that while this is enabled, any 1623other client of the mouse (such as an X server) should access 1624the mouse through the virtual mouse device, 1625.Pa /dev/sysmouse , 1626and configure it as a 1627.Dq Li sysmouse 1628type mouse, since all 1629mouse data is converted to this single canonical format when 1630using 1631.Xr moused 8 . 1632If the client program does not support the 1633.Dq Li sysmouse 1634type, 1635specify the 1636.Dq Li mousesystems 1637type. 1638It is the second preferred type. 1639.It Va moused_port 1640.Pq Vt str 1641If 1642.Va moused_enable 1643is set to 1644.Dq Li YES , 1645this is the actual port the mouse is on. 1646It might be 1647.Pa /dev/cuaa0 1648for a COM1 serial mouse, 1649.Pa /dev/psm0 1650for a PS/2 mouse or 1651.Pa /dev/mse0 1652for a bus mouse, for example. 1653.It Va moused_flags 1654.Pq Vt str 1655If 1656.Va moused_type 1657is set, these are the additional flags to pass to the 1658.Xr moused 8 1659daemon. 1660.It Va mousechar_start 1661.Pq Vt int 1662If set to 1663.Dq Li NO , 1664the default mouse cursor character range 1665.Li 0xd0 Ns - Ns Li 0xd3 1666is used, 1667otherwise the range start is set 1668to 1669.Ar value 1670character, see 1671.Xr vidcontrol 1 . 1672Use if the default range is occupied in the language code table. 1673.It Va allscreens_flags 1674.Pq Vt str 1675If set, 1676.Xr vidcontrol 1 1677is run with these options for each of the virtual terminals 1678.Pq Pa /dev/ttyv* . 1679For example, 1680.Dq Fl m Cm on 1681will enable the mouse pointer on all virtual terminals 1682if 1683.Va moused_enable 1684is set to 1685.Dq Li YES . 1686.It Va allscreens_kbdflags 1687.Pq Vt str 1688If set, 1689.Xr kbdcontrol 1 1690is run with these options for each of the virtual terminals 1691.Pq Pa /dev/ttyv* . 1692For example, 1693.Dq Fl h Li 200 1694will set the 1695.Xr syscons 4 1696scrollback (history) buffer to 200 lines. 1697.It Va cron_enable 1698.Pq Vt bool 1699If set to 1700.Dq Li YES , 1701run the 1702.Xr cron 8 1703daemon at system boot time. 1704.It Va cron_program 1705.Pq Vt str 1706Path to 1707.Xr cron 8 1708(default 1709.Pa /usr/sbin/cron ) . 1710.It Va cron_flags 1711.Pq Vt str 1712If 1713.Va cron_enable 1714is set to 1715.Dq Li YES , 1716these are the flags to pass to 1717.Xr cron 8 . 1718.It Va lpd_program 1719.Pq Vt str 1720Path to 1721.Xr lpd 8 1722(default 1723.Pa /usr/sbin/lpd ) . 1724.It Va lpd_enable 1725.Pq Vt bool 1726If set to 1727.Dq Li YES , 1728run the 1729.Xr lpd 8 1730daemon at system boot time. 1731.It Va lpd_flags 1732.Pq Vt str 1733If 1734.Va lpd_enable 1735is set to 1736.Dq Li YES , 1737these are the flags to pass to the 1738.Xr lpd 8 1739daemon. 1740.It Va mta_start_script 1741.Pq Vt str 1742This variable specifies the full path to the script to run to start 1743a mail transfer agent. 1744The default is 1745.Pa /etc/rc.sendmail . 1746The 1747.Va sendmail_* 1748variables which 1749.Pa /etc/rc.sendmail 1750uses are documented in the 1751.Xr rc.sendmail 8 1752man page. 1753.It Va dumpdev 1754.Pq Vt str 1755Indicates the device (usually a swap partition) to which a crash dump 1756should be written in the event of a system crash. 1757The value of this variable is passed as the argument to 1758.Xr dumpon 8 . 1759To disable crash dumps, set this variable to 1760.Dq Li NO . 1761.It Va dumpdir 1762.Pq Vt str 1763When the system reboots after a crash and a crash dump is found on the 1764device specified by the 1765.Va dumpdev 1766variable, 1767.Xr savecore 8 1768will save that crash dump and a copy of the kernel to the directory 1769specified by the 1770.Va dumpdir 1771variable. 1772The default value is 1773.Pa /var/crash . 1774Set to 1775.Dq Li NO 1776to not run 1777.Xr savecore 8 1778at boot time when 1779.Va dumpdir 1780is set. 1781.It Va savecore_flags 1782.Pq Vt str 1783If crash dumps are enabled, these are the flags to pass to the 1784.Xr savecore 8 1785utility. 1786.It Va enable_quotas 1787.Pq Vt bool 1788Set to 1789.Dq Li YES 1790to turn on user disk quotas on system startup via the 1791.Xr quotaon 8 1792command. 1793.It Va check_quotas 1794.Pq Vt bool 1795Set to 1796.Dq Li YES 1797to enable user disk quota checking via the 1798.Xr quotacheck 8 1799command. 1800.It Va accounting_enable 1801.Pq Vt bool 1802Set to 1803.Dq Li YES 1804to enable system accounting through the 1805.Xr accton 8 1806facility. 1807.It Va ibcs2_enable 1808.Pq Vt bool 1809Set to 1810.Dq Li YES 1811to enable iBCS2 (SCO) binary emulation at system initial boot 1812time. 1813.It Va ibcs2_loaders 1814.Pq Vt str 1815If not set to 1816.Dq Li NO 1817and if 1818.Va ibcs2_enable 1819is set to 1820.Dq Li YES , 1821this specifies a list of additional iBCS2 loaders to enable. 1822.It Va linux_enable 1823.Pq Vt bool 1824Set to 1825.Dq Li YES 1826to enable Linux/ELF binary emulation at system initial 1827boot time. 1828.It Va osf1_enable 1829.Pq Vt bool 1830Set to 1831.Dq Li YES 1832to enable OSF/1 (Digital UNIX) binary emulation at system 1833initial boot time. 1834(alpha) 1835.It Va clear_tmp_enable 1836.Pq Vt bool 1837Set to 1838.Dq Li YES 1839to have 1840.Pa /tmp 1841cleaned at startup. 1842.It Va ldconfig_paths 1843.Pq Vt str 1844Set to the list of shared library paths to use with 1845.Xr ldconfig 8 . 1846NOTE: 1847.Pa /usr/lib 1848will always be added first, so it need not appear in this list. 1849.It Va ldconfig_insecure 1850.Pq Vt bool 1851The 1852.Xr ldconfig 8 1853utility normally refuses to use directories 1854which are writable by anyone except root. 1855Set this variable to 1856.Dq Li YES 1857to disable that security check during system startup. 1858.It Va kern_securelevel_enable 1859.Pq Vt bool 1860Set to 1861.Dq Li YES 1862to set the kernel security level at system startup. 1863.It Va kern_securelevel 1864.Pq Vt int 1865The kernel security level to set at startup. 1866The allowed range of 1867.Ar value 1868ranges from \-1 (the compile time default) to 3 (the 1869most secure). 1870See 1871.Xr init 8 1872for the list of possible security levels and their effect 1873on system operation. 1874.It Va lomac_enable 1875.Pq Vt bool 1876Set to 1877.Dq Li YES 1878to enable Low Watermark Mandatory Access Control (LOMAC) at boot time. 1879This security model enforces integrity constraints for system processes; 1880see 1881.Xr lomac 4 1882for a complete description of the LOMAC model, as well as its impact 1883on system operation. 1884.It Va start_vinum 1885.Pq Vt bool 1886Set to 1887.Dq Li YES 1888to start 1889.Xr vinum 8 1890at system boot time. 1891.It Va sshd_program 1892.Pq Vt str 1893Path to the SSH server program 1894.Pa ( /usr/sbin/sshd 1895is the default). 1896.It Va sshd_enable 1897.Pq Vt bool 1898Set to 1899.Dq Li YES 1900to start 1901.Xr sshd 8 1902at system boot time. 1903.It Va sshd_flags 1904.Pq Vt str 1905If 1906.Va sshd_enable 1907is set to 1908.Dq Li YES , 1909these are the flags to pass to the 1910.Xr sshd 8 1911daemon. 1912.It Va unaligned_print 1913.Pq Vt bool 1914If set to 1915.Dq Li NO , 1916unaligned access warnings will not be printed. 1917(alpha) 1918.\" ----- isdn settings --------------------------------- 1919.It Va isdn_enable 1920.Pq Vt bool 1921Set to 1922.Dq Li NO 1923by default. 1924When set to 1925.Dq Li YES , 1926starts the 1927.Xr isdnd 8 1928daemon 1929at system boot time. 1930.It Va isdn_flags 1931.Pq Vt str 1932Set to 1933.Dq Fl d Ns Cm n Fl d Ns Li 0x1f9 1934by default. 1935Additional flags to pass to 1936.Xr isdnd 8 1937(but see 1938.Va isdn_fsdev 1939and 1940.Va isdn_ttype 1941for certain tunable parameters). 1942.It Va isdn_ttype 1943.Pq Vt str 1944Set to 1945.Dq Li cons25 1946by default. 1947The terminal type of the output device when 1948.Xr isdnd 8 1949operates in full-screen mode. 1950.It Va isdn_screenflags 1951.Pq Vt str 1952Set to 1953.Dq Li NO 1954by default. 1955The video mode for full-screen mode (only for 1956.Xr syscons 4 1957console driver, see 1958.Xr vidcontrol 1 1959for valid modes). 1960.It Va isdn_fsdev 1961.Pq Vt str 1962Set to 1963.Dq Li NO 1964by default. 1965The output device for 1966.Xr isdnd 8 1967in full-screen mode (or 1968.Dq Li NO 1969for daemon mode). 1970.It Va isdn_trace 1971.Pq Vt bool 1972Set to 1973.Dq Li NO 1974by default. 1975When set to 1976.Dq Li YES , 1977enables the ISDN protocol trace utility 1978.Xr isdntrace 8 1979at system boot time. 1980.It Va isdn_traceflags 1981.Pq Vt str 1982Set to 1983.Dq Fl f Pa /var/tmp/isdntrace0 1984by default. 1985Flags for 1986.Xr isdntrace 8 . 1987.\" ----------------------------------------------------- 1988.It Va pcvt_verbose 1989.Pq Vt bool 1990Set to 1991.Dq Li NO 1992by default. 1993When set to 1994.Dq Li YES , 1995verbose messages about the actions done by the start script are displayed. 1996.Em Note : 1997the 1998.Xr pcvt 4 1999driver must be compiled into the kernel before the 2000.Xr pcvt 4 2001related 2002options described here take any effect. 2003.It Va pcvt_keymap 2004.Pq Vt str 2005Set to 2006.Dq Li NO 2007by default. 2008Use this to configure a national keyboard mapping found in the 2009.Pa /usr/share/misc/keycap.pcvt 2010file of keyboard mappings. 2011(See also the manual pages 2012.Xr keycap 5 2013and 2014.Xr keycap 3 2015for usage of 2016.Xr pcvt 4 Ns 's 2017keycap database and the manual page 2018.Xr kcon 1 2019option 2020.Fl m 2021for national keyboard mapping configuration.) 2022.It Va pcvt_keydel 2023.Pq Vt int 2024Set to 2025.Dq Li NO 2026by default. 2027Used to set the keyboard key repeat delay value. 2028Valid values are 2029in the range 0..3 for delay values of 250, 500, 750 and 1000 msec. 2030(See also the 2031.Xr kcon 1 2032manual page.) 2033.It Va pcvt_keyrate 2034.Pq Vt int 2035Set to 2036.Dq Li NO 2037by default. 2038Used to set the keyboard key repetition rate value. 2039Valid values are 2040in the range 0..31 for repetition values of 2..30 characters per second. 2041.It Va pcvt_keyrepeat 2042.Pq Vt bool 2043Set to 2044.Dq Li NO 2045by default. 2046Set to 2047.Dq Li YES 2048to enable automatic keyboard key repeating. 2049.It Va pcvt_force24 2050.Pq Vt bool 2051Set to 2052.Dq Li NO 2053by default. 2054Set to 2055.Dq Li YES 2056to force 2057.Xr pcvt 4 2058to use 24 lines only (in 25 lines mode) for compatibility 2059with the original 2060.Tn VT220 2061terminal. 2062.It Va pcvt_hpext 2063.Pq Vt bool 2064Set to 2065.Dq Li NO 2066by default. 2067Set to 2068.Dq Li YES 2069to enable the display and funtionality of function key labels (as found 2070on 2071.Tn Hewlett-Packard 2072terminals such as the 2073.Tn HP2392A 2074and the 2075.Tn HP700/92 2076in 2077.Tn ANSI 2078mode). 2079.It Va pcvt_lines 2080.Pq Vt int 2081Set to 2082.Dq Li NO 2083by default resulting in a value of 25. 2084Used to set the number of lines on the screen. 2085For VGA displays, valid 2086values are 25, 28, 40 and 50 lines. 2087(See also the 2088.Xr scon 1 2089manual page.) 2090.It Va pcvt_blanktime 2091.Pq Vt int 2092Set to 2093.Dq Li NO 2094by default. 2095Used to set the screen saver timeout in seconds for values greater than 2096zero. 2097.It Va pcvt_cursorh 2098.Pq Vt int 2099Set to 2100.Dq Li NO 2101by default. 2102Used to set the cursor top scanline. 2103(See also the 2104.Xr cursor 1 2105manual page.) 2106.It Va pcvt_cursorl 2107.Pq Vt int 2108Set to 2109.Dq Li NO 2110by default. 2111Used to set the cursor bottom scanline. 2112.It Va pcvt_monohigh 2113.Pq Vt bool 2114Set to 2115.Dq Li NO 2116by default. 2117Set to 2118.Dq Li YES 2119to set intensity to high on monochrome monitors. 2120(See also the 2121.Xr scon 1 2122manual page, option 2123.Fl p , 2124for more information on changing VGA palette 2125values.) 2126.El 2127.Sh FILES 2128.Bl -tag -width ".Pa /etc/defaults/rc.conf" -compact 2129.It Pa /etc/defaults/rc.conf 2130.It Pa /etc/rc.conf 2131.It Pa /etc/rc.conf.local 2132.El 2133.Sh SEE ALSO 2134.Xr catman 1 , 2135.Xr gdb 1 , 2136.Xr info 1 , 2137.Xr makewhatis 1 , 2138.Xr vidcontrol 1 , 2139.Xr tcp 4 , 2140.Xr udp 4 , 2141.Xr exports 5 , 2142.Xr motd 5 , 2143.Xr accton 8 , 2144.Xr amd 8 , 2145.Xr apm 8 , 2146.Xr atm 8 , 2147.Xr cron 8 , 2148.Xr dhclient 8 , 2149.Xr gated 8 , 2150.Xr ifconfig 8 , 2151.Xr inetd 8 , 2152.Xr isdnd 8 , 2153.Xr isdntrace 8 , 2154.Xr lpd 8 , 2155.Xr mdconfig 8 , 2156.Xr moused 8 , 2157.Xr mrouted 8 , 2158.Xr named 8 , 2159.Xr nfsd 8 , 2160.Xr ntpd 8 , 2161.Xr ntpdate 8 , 2162.Xr pcnfsd 8 , 2163.Xr quotacheck 8 , 2164.Xr quotaon 8 , 2165.Xr rc 8 , 2166.Xr rc.sendmail 8 , 2167.Xr route 8 , 2168.Xr routed 8 , 2169.Xr rpc.lockd 8 , 2170.Xr rpc.statd 8 , 2171.Xr rpcbind 8 , 2172.Xr rwhod 8 , 2173.Xr savecore 8 , 2174.Xr sshd 8 , 2175.Xr swapon 8 , 2176.Xr sysctl 8 , 2177.Xr syslogd 8 , 2178.Xr timed 8 , 2179.Xr vinum 8 , 2180.Xr xtend 8 , 2181.Xr yp 8 , 2182.Xr ypbind 8 , 2183.Xr ypserv 8 , 2184.Xr ypset 8 2185.Sh HISTORY 2186The 2187.Nm 2188file appeared in 2189.Fx 2.2.2 . 2190.Sh AUTHORS 2191.An Jordan K. Hubbard .
|