1.\" Copyright (c) 1995 2.\" Jordan K. Hubbard 3.\" 4.\" Redistribution and use in source and binary forms, with or without 5.\" modification, are permitted provided that the following conditions 6.\" are met: 7.\" 1. Redistributions of source code must retain the above copyright 8.\" notice, this list of conditions and the following disclaimer. 9.\" 2. Redistributions in binary form must reproduce the above copyright 10.\" notice, this list of conditions and the following disclaimer in the 11.\" documentation and/or other materials provided with the distribution. 12.\" 13.\" THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND 14.\" ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 15.\" IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 16.\" ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR BE LIABLE 17.\" FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 18.\" DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 19.\" OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 20.\" HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 21.\" LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 22.\" OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 23.\" SUCH DAMAGE. 24.\" 25.\" $FreeBSD: src/share/man/man5/rc.conf.5,v 1.197 2003/07/28 13:56:00 mbr Exp $ 26.\" 27.Dd December 14, 2018 28.Dt RC.CONF 5 29.Os 30.Sh NAME 31.Nm rc.conf 32.Nd system configuration information 33.Sh DESCRIPTION 34The file 35.Nm 36contains descriptive information about the local host name, configuration 37details for any potential network interfaces and which services should be 38started up at system initial boot time. 39In new installations, the 40.Nm 41file is generally initialized by the installer. 42.Pp 43The purpose of 44.Nm 45is not to run commands or perform system startup actions directly. 46Instead, it is included by the various generic startup scripts in 47.Pa /etc 48which conditionalize their 49internal actions according to the settings found there. 50.Pp 51The 52.Pa /etc/defaults/rc.conf 53file specifies the default settings for all the available options, 54the 55.Pa /etc/rc.conf 56file specifies override settings. 57Options need only be specified in 58.Pa /etc/rc.conf 59when the system administrator wishes to override the defaults. 60The file 61.Pa /etc/rc.conf.local 62is used to override settings in 63.Pa /etc/rc.conf 64for historical reasons. 65In addition to 66.Pa /etc/rc.conf.local 67you can also place smaller configuration files for each 68.Xr rc 8 69script in the 70.Pa /etc/rc.conf.d 71directory, which will be included by the 72.Va load_rc_config 73function. 74For jail configurations you could use the file 75.Pa /etc/rc.conf.d/jail 76to store jail specific configuration options. 77Also see the 78.Va rc_conf_files 79variable below. 80.Pp 81The following list provides a name and short description for each 82variable that can be set in the 83.Nm 84file. 85To set a variable of 86.Vt bool 87type, specify either 88.Dq Li YES , 89.Dq Li TRUE , 90.Dq Li ON , 91or 92.Dq Li 1 . 93To unset, specify 94.Dq Li NO , 95.Dq Li FALSE , 96.Dq Li OFF , 97or 98.Dq Li 0 . 99These values are case insensitive. 100The 101.Va _enable 102postfix in the name of a variable for starting a service can be 103omitted (as in 104.Nx ) . 105.Bl -tag -width indent-two 106.It Va rc_debug 107.Pq Vt bool 108If set to 109.Dq Li YES , 110enable output of debug messages from rc scripts. 111This variable can be helpful in diagnosing mistakes when 112editing or integrating new scripts. 113Beware that this produces copious output to the terminal and 114.Xr syslog 3 . 115.It Va rc_info 116.Pq Vt bool 117If set to 118.Dq Li NO , 119disable informational messages from the rc scripts. 120Informational messages are displayed when 121a condition that is not serious enough to warrant a warning or an error occurs. 122.It Va rc_startmsgs 123.Pq Vt bool 124If set to 125.Dq Li YES , 126show 127.Dq Starting foo: 128when faststart is used (e.g., at boot time). 129.It Va swapfile 130.Pq Vt str 131If set to 132.Dq Li NO , 133no swapfile is installed, otherwise the value is used as the full 134pathname to a file to use for additional swap space. 135The 136.Xr vn 4 137driver is needed for a swapfile and will be loaded if it is not 138already compiled into the kernel or loaded via 139.Xr loader.conf 5 . 140.It Ao Ar module Ac Ns Ar _load 141.Pq Vt bool 142If set to 143.Dq YES , 144that kernel module will be loaded. 145If no 146.Ao Ar module Ac Ns Ar _name 147is defined (see below), the 148module's name is taken to be 149.Aq Ar module . 150.It Ao Ar module Ac Ns Ar _name 151.Pq Vt str 152Defines the name of the module. 153.It Va devd_enable 154.Pq Vt bool 155Run 156.Xr devd 8 157to handle device added, removed or unknown events from the kernel. 158.It Va devd_flags 159.Pq Vt str 160If 161.Va devd_enable 162is set to 163.Dq Li YES , 164these are the flags to pass to the 165.Xr devd 8 166daemon. 167.It Va powerd_enable 168.Pq Vt bool 169Set to 170.Dq Li NO 171by default. 172Setting this to 173.Dq Li YES 174enables 175.Xr powerd 8 , 176a CPU speed control daemon. 177.It Va powerd_flags 178.Pq Vt str 179Empty by default. 180Additional flags passed to the 181.Xr powerd 8 182program. 183.It Va sensorsd_enable 184.Pq Vt bool 185Set to 186.Dq Li NO 187by default. 188Setting this to 189.Dq Li YES 190enables 191.Xr sensorsd 8 , 192a sensors monitoring and logging daemon. 193.It Va sensorsd_flags 194.Pq Vt str 195Empty by default. 196Additional flags passed to the 197.Xr sensorsd 8 198program. 199.It Va sysvipcd_enable 200.Pq Vt bool 201Set to 202.Dq Li NO 203by default. 204Setting this to 205.Dq Li YES 206enables 207.Xr sysvipcd 8 , 208a daemon needed for the userspace implementation of the XSI Interprocess 209Communication functions. 210.It Va sysvipcd_flags 211.Pq Vt str 212Empty by default. 213Additional flags passed to the 214.Xr sysvipcd 8 215program. 216.It Va hotplugd_enable 217.Pq Vt bool 218Set to 219.Dq Li NO 220by default. 221Setting this to 222.Dq Li YES 223enables 224.Xr hotplugd 8 , 225a devices hot plugging monitoring daemon. 226.It Va hotplugd_flags 227.Pq Vt str 228Empty by default. 229Additional flags passed to the 230.Xr hotplugd 8 231program. 232.It Va pccard_ifconfig 233.Pq Vt str 234List of arguments to be passed to 235.Xr ifconfig 8 236at boot time or on insertion of the card (e.g.\& 237.Dq Cm inet Li 192.168.1.1 Cm netmask Li 255.255.255.0 238for a fixed address or 239.Dq Li DHCP 240for a DHCP client). 241.It Va pccard_ether_delay 242.Pq Vt str 243Set the delay before starting the DHCP client (configured with 244.Va dhcp_client ) 245in the 246.Pa /etc/pccard_ether 247script. 248This defaults to 249.Dq Li 5 250seconds to work around a bug in the 251.Xr ed 4 252driver which can lead to system hangs when using some newer 253.Xr ed 4 254based cards. 255.It Va removable_interfaces 256.Pq Vt str 257List of removable network interfaces to be supported by 258.Pa /etc/pccard_ether . 259.It Va local_startup 260.Pq Vt str 261List of directories to search for startup script files. 262.It Va script_name_sep 263.Pq Vt str 264The field separator to use for breaking down the list of startup script files 265into individual filenames. 266The default is a space. 267It is not necessary to change this unless there are startup scripts with names 268containing spaces. 269.It Va hostname 270.Pq Vt str 271The fully qualified domain name (FQDN) of this host on the network. 272This should almost certainly be set to something meaningful, even if 273there is no network connection. 274If DHCP is used to set the hostname, 275this variable should be set to an empty string. 276.It Va ipv6_enable 277.Pq Vt bool 278Enable support for IPv6 networking. 279Note that this requires that the kernel have been compiled with 280.Cd "options INET6" . 281.It Va nisdomainname 282.Pq Vt str 283The NIS domain name of this host, or 284.Dq Li NO 285if NIS is not used. 286.It Va dhcp_client 287.Pq Vt str 288Set the rc script that is called to start the DHCP client. 289This can be set to 290.Dq Li dhclient 291(default) or 292.Dq Li dhcpcd . 293.It Va dhclient_program 294.Pq Vt str 295Path to the 296.Xr dhclient 8 297program (default 298.Pa /sbin/dhclient ) . 299.It Va dhclient_flags 300.Pq Vt str 301Additional flags to pass to the 302.Xr dhclient 8 303program. 304.It Va dhcpcd_enable 305.Pq Vt bool 306Set to 307.Dq Li YES 308to run 309.Xr dhcpcd 8 310in master mode (i.e., configure all available Ethernet interfaces) at startup. 311.It Va dhcpcd_program 312.Pq Vt str 313Path to the 314.Xr dhcpcd 8 315program (default 316.Pa /sbin/dhcpcd ) . 317.It Va dhcpcd_flags 318.Pq Vt str 319Additional flags to pass to the 320.Xr dhcpcd 8 321program. 322The default value is 323.Fl b , 324i.e., tell 325.Xr dhcpcd 8 326to go to background immediately. 327.It Va pf_enable 328.Pq Vt bool 329Set to 330.Dq Li YES 331to load 332.Xr pf 4 333at startup. 334If the kernel was not built with 335.Cd "device pf" , 336the 337.Pa pf.ko 338kernel module will be loaded. 339See also 340.Va firewall_enable . 341.It Va pf_rules 342.Pq Vt str 343Path to the 344.Xr pf 4 345ruleset definition file. 346.It Va pf_program 347.Pq Vt str 348Path to 349.Xr pfctl 8 . 350.It Va pf_flags 351.Pq Vt str 352If 353.Va pf_enable 354is set to 355.Dq Li YES , 356these are the flags to pass to 357.Xr pfctl 8 358when loading the ruleset. 359.It Va pflog_enable 360.Pq Vt bool 361Set this to 362.Dq Li YES 363to enable 364.Xr pflogd 8 365which logs packets from 366.Xr pf 4 . 367.It Va pflog_logfile 368.Pq Vt str 369If 370.Va pflog_enable 371is set to 372.Dq Li YES 373this specifies the path of the log file. 374.It Va pflog_program 375.Pq Vt str 376Path to 377.Xr pflogd 8 . 378.It Va pflog_flags 379.Pq Vt str 380If 381.Va pflog_enable 382is set to 383.Dq Li YES , 384these are the flags to pass to 385.Xr pflogd 8 . 386.It Va firewall_enable 387.Pq Vt bool 388Set to 389.Dq Li YES 390to load firewall rules at startup. 391If the kernel was not built with 392.Cd "options IPFIREWALL" , 393the 394.Pa ipfw.ko 395kernel module will be loaded. 396See also 397.Va pf_enable . 398.It Va ipv6_firewall_enable 399.Pq Vt bool 400The IPv6 equivalent of 401.Va firewall_enable . 402Set to 403.Dq Li YES 404to load IPv6 firewall rules at startup. 405If the kernel was not built with 406.Cd "options IPV6FIREWALL" , 407the 408.Pa ip6fw.ko 409kernel module will be loaded. 410.It Va firewall_script 411.Pq Vt str 412The full path to the firewall script to run 413(default 414.Pa /etc/rc.firewall ) . 415.It Va ipv6_firewall_script 416.Pq Vt str 417The IPv6 equivalent of 418.Va firewall_script . 419.It Va firewall_type 420.Pq Vt str 421Names the firewall type from the selection in 422.Pa /etc/rc.firewall , 423or the file which contains the local firewall ruleset. 424Valid selections from 425.Pa /etc/rc.firewall 426are: 427.Pp 428.Bl -tag -width ".Li simple" -compact 429.It Li open 430unrestricted IP access 431.It Li closed 432all IP services disabled, except via 433.Dq Li lo0 434.It Li client 435basic protection for a workstation on a LAN 436.It Li simple 437alias for 438.Li client . 439.El 440.Pp 441If a filename is specified, the full path must be given. 442.It Va firewall_trusted_nets 443.Pq Vt str 444List of trusted networks (if 445.Va firewall_type 446is set to 447.Li client ) . 448.It Va firewall_trusted_interfaces 449.Pq Vt str 450List of trusted network interfaces (if 451.Va firewall_type 452is set to 453.Li client ) . 454.It Va firewall_allowed_icmp_types 455.Pq Vt str 456List of allowed ICMP types (if 457.Va firewall_type 458is set to 459.Li client ) . 460.It Va firewall_open_tcp_ports 461.Pq Vt str 462List of TCP ports to open (if 463.Va firewall_type 464is set to 465.Li client ) . 466.It Va firewall_open_udp_ports 467.Pq Vt str 468List of UDP ports to open (if 469.Va firewall_type 470is set to 471.Li client ) . 472.It Va ipv6_firewall_type 473.Pq Vt str 474The IPv6 equivalent of 475.Va firewall_type . 476.It Va firewall_quiet 477.Pq Vt bool 478Set to 479.Dq Li YES 480to disable the display of firewall rules on the console during boot. 481.It Va ipv6_firewall_quiet 482.Pq Vt bool 483The IPv6 equivalent of 484.Va firewall_quiet . 485.It Va firewall_logging 486.Pq Vt bool 487Set to 488.Dq Li YES 489to enable firewall event logging. 490This is equivalent to the 491.Dv IPFIREWALL_VERBOSE 492kernel option. 493.It Va ipv6_firewall_logging 494.Pq Vt bool 495The IPv6 equivalent of 496.Va firewall_logging . 497.It Va firewall_flags 498.Pq Vt str 499Flags passed to 500.Xr ipfw 8 501if 502.Va firewall_type 503specifies a filename. 504.It Va ipv6_firewall_flags 505.Pq Vt str 506The IPv6 equivalent of 507.Va firewall_flags . 508.It Va ipfw3_enable 509.Pq Vt bool 510Set to 511.Dq Li YES 512to enable 513.Xr ipfw3 8 . 514.It Va ipfw3_program 515.Pq Vt str 516Path to 517.Xr ipfw3 8 . 518.It Va ipfw3_script 519.Pq Vt str 520The full path to the shell script to run to set up the ipfw3 521firewall rules (default 522.Pa /etc/ipfw3.rules ) . 523.It Va ipfw3_modules 524.Pq Vt str 525List of ipfw3 modules to be loaded before executing the above 526.Va ipfw3_script . 527(default 528.Dq Li ipfw3 ipfw3_basic ) . 529.It Va natd_program 530.Pq Vt str 531Path to 532.Xr natd 8 . 533.It Va natd_enable 534.Pq Vt bool 535Set to 536.Dq Li YES 537to enable 538.Xr natd 8 . 539.Va firewall_enable 540must also be set to 541.Dq Li YES , 542and 543.Xr divert 4 544sockets must be enabled in the kernel. 545.It Va natd_interface 546.Pq Vt str 547This is the name of the public interface on which 548.Xr natd 8 549should run. 550The interface may be given as an interface name or as an IP address. 551.It Va natd_flags 552.Pq Vt str 553Additional 554.Xr natd 8 555flags should be placed here. 556The 557.Fl n 558or 559.Fl a 560flag is automatically added with the above 561.Va natd_interface 562as an argument. 563.It Va tcp_extensions 564.Pq Vt bool 565Set to 566.Dq Li YES 567by default. 568Setting this to 569.Dq Li NO 570disables certain TCP options as described by 571.Rs 572.%T "RFC 1323" 573.Re 574Setting this to 575.Dq Li NO 576might help remedy such problems with connections as randomly hanging 577or other weird behavior. 578Some network devices are known to be broken with respect to these options. 579.It Va log_in_vain 580.Pq Vt int 581Set to 0 by default. 582The 583.Xr sysctl 8 584variables, 585.Va net.inet.tcp.log_in_vain 586and 587.Va net.inet.udp.log_in_vain , 588as described in 589.Xr tcp 4 590and 591.Xr udp 4 , 592are set to the given value. 593.It Va tcp_keepalive 594.Pq Vt bool 595Set to 596.Dq Li YES 597by default. 598Setting to 599.Dq Li NO 600will disable probing idle TCP connections to verify that the 601peer is still up and reachable. 602.It Va tcp_drop_synfin 603.Pq Vt bool 604Set to 605.Dq Li NO 606by default. 607Setting to 608.Dq Li YES 609will cause the kernel to ignore TCP frames that have both 610the SYN and FIN flags set. 611This prevents OS fingerprinting, but may break some legitimate applications. 612This option is only available if the kernel was built with the 613.Dv TCP_DROP_SYNFIN 614option. 615.It Va icmp_drop_redirect 616.Pq Vt bool 617Set to 618.Dq Li NO 619by default. 620Setting to 621.Dq Li YES 622will cause the kernel to ignore ICMP REDIRECT packets. 623Refer to 624.Xr icmp 4 625for more information. 626.It Va icmp_log_redirect 627.Pq Vt bool 628Set to 629.Dq Li NO 630by default. 631Setting to 632.Dq Li YES 633will cause the kernel to log ICMP REDIRECT packets. 634Note that 635the log messages are not rate-limited, so this option should only be used 636for troubleshooting networks. 637Refer to 638.Xr icmp 4 639for more information. 640.It Va icmp_bmcastecho 641.Pq Vt bool 642Set to 643.Dq Li YES 644to respond to broadcast or multicast ICMP ping packets. 645Refer to 646.Xr icmp 4 647for more information. 648.It Va ip_portrange_first 649.Pq Vt int 650If not set to 651.Dq Li NO , 652this is the first port in the default portrange. 653Refer to 654.Xr ip 4 655for more information. 656.It Va ip_portrange_last 657.Pq Vt int 658If not set to 659.Dq Li NO , 660this is the last port in the default portrange. 661Refer to 662.Xr ip 4 663for more information. 664.\" 665.It Va ifconfig_ Ns Aq Ar interface 666.Pq Vt str 667Configuration for 668.Dq interface . 669Typically includes IP address. 670Assuming that the interface in question was 671.Li ed0 , 672it might look something like this: 673.Bd -literal 674ifconfig_ed0="inet 10.0.0.1 netmask 0xffff0000" 675.Ed 676.Pp 677If the 678.Pa /etc/start_if. Ns Aq Ar interface 679file is present, it is read and executed by the 680.Xr sh 1 681interpreter before configuring the interface as specified in the 682.Va ifconfig_ Ns Aq Ar interface 683and 684.Va ifconfig_ Ns Ao Ar interface Ac Ns Va _alias Ns Aq Ar n 685variables. 686.Pp 687It is possible to bring up an interface with DHCP by adding 688.Dq Li DHCP 689to the 690.Va ifconfig_ Ns Aq Ar interface 691variable. 692For instance, to initialize the 693.Li ed0 694device via DHCP, it is possible to use something like: 695.Bd -literal 696ifconfig_ed0="DHCP" 697.Ed 698.Pp 699If a 700.Va vlans_ Ns Aq Ar interface 701variable is set, 702a 703.Xr vlan 4 704interface will be created for each item in the list with the 705.Ar vlandev 706argument set to 707.Ar interface . 708If a vlan interface's name is a number, 709then that number is used as the vlan tag and the new vlan interface is 710named 711.Ar interface . Ns Ar tag . 712Otherwise, 713the vlan tag must be specified via a 714.Va vlan 715parameter in the 716.Va create_args_ Ns Aq Ar interface 717variable. 718.Pp 719To create a vlan device named 720.Li em0.101 721on 722.Li em0 723with the vlan tag 101 and the optional the IPv4 address 192.0.2.1/24: 724.Bd -literal 725vlans_em0="101" 726ifconfig_em0_101="inet 192.0.2.1/24" 727.Ed 728.Pp 729To create a vlan device named 730.Li myvlan 731on 732.Li em0 733with the vlan tag 102: 734.Bd -literal 735vlans_em0="myvlan" 736create_args_myvlan="vlan 102" 737.Ed 738.Pp 739If a 740.Va wlans_ Ns Aq Ar interface 741variable is set, 742an 743.Xr wlan 4 744interface will be created for each item in the list with the 745.Ar wlandev 746argument set to 747.Ar interface . 748Further wlan cloning arguments may be passed to the 749.Xr ifconfig 8 750.Cm create 751command by setting the 752.Va create_args_ Ns Aq Ar interface 753variable. 754One or more 755.Xr wlan 4 756devices must be created for each wireless devices as of 757.Dx 2.5 . 758Debugging flags for 759.Xr wlan 4 760devices as set by 761.Xr wlandebug 8 762may be specified with an 763.Va wlandebug_ Ns Aq Ar interface 764variable. 765The contents of this variable will be passed directly to 766.Xr wlandebug 8 . 767.Pp 768Also, if your interface needs WPA authentication, it is possible to add 769.Dq Li WPA 770to the 771.Va ifconfig_ Ns Aq Ar interface 772variable. 773This will start 774.Xr wpa_supplicant 8 . 775See 776.Xr wpa_supplicant.conf 5 777for configuring authentication information. 778.Pp 779Finally, you can add 780.Xr ifconfig 8 781options in this variable, in addition to the 782.Pa /etc/start_if. Ns Aq Ar interface 783file. 784For instance, to initialize the 785.Li wi0 786device via DHCP, using WPA authentication and 802.11b mode, it is 787possible to use something like: 788.Bd -literal 789wlans_wi0="wlan0" 790ifconfig_wlan0="up DHCP WPA mode 11b" 791.Ed 792.It Va ifconfig_ Ns Ao Ar interface Ac Ns Va _alias Ns Aq Ar n 793.Pq Vt str 794Configuration to establish an additional network address for 795.Dq interface . 796Assuming that the interface in question was 797.Li ed0 , 798it might look something like this: 799.Bd -literal 800ifconfig_ed0_alias0="inet 127.0.0.253 netmask 0xffffffff" 801ifconfig_ed0_alias1="inet 127.0.0.254 netmask 0xffffffff" 802.Ed 803.Pp 804And so on. 805For each 806.Va ifconfig_ Ns Ao Ar interface Ac Ns Va _alias Ns Aq Ar n 807entry that is found, its contents are passed to 808.Xr ifconfig 8 . 809Execution stops at the first unsuccessful access, so if 810something like this is present: 811.Bd -literal 812ifconfig_ed0_alias0="inet 127.0.0.251 netmask 0xffffffff" 813ifconfig_ed0_alias1="inet 127.0.0.252 netmask 0xffffffff" 814ifconfig_ed0_alias2="inet 127.0.0.253 netmask 0xffffffff" 815ifconfig_ed0_alias4="inet 127.0.0.254 netmask 0xffffffff" 816.Ed 817.Pp 818Then note that alias4 would 819.Em not 820be added since the search would stop with the missing alias3 entry. 821.It Va ifconfig_ Ns Ao Ar interface Ac Ns Va _name 822.Pq Vt str 823New name for 824.Dq interface . 825It is possible to rename interface by doing: 826.Bd -literal 827ifconfig_ed0_name="net0" 828ifconfig_net0="inet 10.0.0.1 netmask 0xffff0000" 829.Ed 830.It Va netif_enable 831.Pq Vt bool 832Set to 833.Dq Li YES 834by default. 835Setting to 836.Dq Li NO 837will disable the configuration of network interfaces. 838.It Va network_interfaces 839.Pq Vt str 840The list of network interfaces to configure on this host, 841or 842.Dq Li auto 843to configure all network interfaces 844(default 845.Dq Li auto ) . 846For example, if the only network devices to be configured are the loopback device 847.Pq Li lo0 848and a NIC using the 849.Xr ed 4 850driver, this could be set to 851.Dq Li "lo0 ed0" . 852An 853.Va ifconfig_ Ns Aq Ar interface 854variable is assumed to exist for each value of 855.Ar interface . 856.It Va ipv6_network_interfaces 857.Pq Vt str 858This is the IPv6 equivalent of 859.Va network_interfaces . 860Instead of setting the ifconfig variables as 861.Va ifconfig_ Ns Aq Ar interface 862they should be set as 863.Va ipv6_ifconfig_ Ns Aq Ar interface . 864Aliases should be set as 865.Va ipv6_ifconfig_ Ns Ao Ar interface Ac Ns Va _alias Ns Aq Ar n . 866Interfaces that do not have a 867.Va ipv6_ifconfig_ Ns Aq Ar interface 868setting will be auto configured by 869.Xr rtsol 8 870if the 871.Va ipv6_gateway_enable 872is set to 873.Dq Li NO . 874Note that the IPv6 networking code does not support the 875.Pa /etc/start_if. Ns Aq Ar interface 876files. 877.It Va ipv6_prefix_ Ns Aq Ar interface 878.Pq Vt str 879Assign prefix to 880.Ar interface , 881prefixlen 64 is used. 882.It Va ipv6_default_interface 883.Pq Vt str 884If not set to 885.Dq Li NO , 886this is the default output interface for scoped addresses. 887Now this works only for IPv6 link local multicast addresses. 888.It Va ip6addrctl_enable 889.Pq Vt bool 890This variable is to enable configuring the default address selection policy table 891.Pq RFC 3484 . 892The default value is 893.Dq Li YES , 894and the policy table to be installed is specified by the 895.Va ip6addrctl_policy 896variable below. 897.It Va ip6addrctl_policy 898.Pq Vt str 899This variable specifies the policy table to be installed, 900and can be one of the following keywords: 901.Dq Li ipv4_prefer , 902.Dq Li ipv6_prefer , 903or 904.Dq Li AUTO 905(default). 906.Pp 907If 908.Dq Li ipv4_prefer 909or 910.Dq Li ipv6_prefer 911is specified, 912.Xr ip6addrctl 8 913installs a pre-defined policy table described in Section 2.1 914.Pq IPv6-preferred 915or 10.3 916.Pq IPv4-preferred 917of RFC 3484. 918.Pp 919If 920.Dq Li AUTO 921is specified, it attempts to read a file 922.Pa /etc/ip6addrctl.conf 923first. 924If this file is found, 925.Xr ip6addrctl 8 926reads and installs it. 927If not found, a policy is automatically set 928according to 929.Va ipv6_enable 930variable; if the variable is set to 931.Dq Li YES 932the IPv6-preferred one is used. 933Otherwise IPv4-preferred. 934.It Va ip6addrctl_verbose 935.Pq Vt bool 936If set to 937.Dq Li YES , 938print the installed policy table after configuring. 939The default value is 940.Dq Li NO . 941.It Va cloned_interfaces 942.Pq Vt str 943Set to the list of clonable network interfaces to create on this host. 944Entries in 945.Va cloned_interfaces 946are automatically appended to 947.Va network_interfaces 948for configuration. 949.It Va gif_interfaces 950.Pq Vt str 951Set to the list of 952.Xr gif 4 953tunnel interfaces to configure on this host. 954A 955.Va gifconfig_ Ns Aq Ar interface 956variable is assumed to exist for each value of 957.Ar interface . 958The value of this variable is used to configure the link layer of the 959tunnel according to the syntax of the 960.Cm tunnel 961option to 962.Xr ifconfig 8 . 963Additionally, this option ensures that each listed interface is created via the 964.Cm create 965option to 966.Xr ifconfig 8 967before attempting to configure it. 968.It Va sppp_interfaces 969.Pq Vt str 970Set to the list of 971.Xr sppp 4 972interfaces to configure on this host. 973A 974.Va spppconfig_ Ns Aq Ar interface 975variable is assumed to exist for each value of 976.Ar interface . 977Each interface should also be configured by a general 978.Va ifconfig_ Ns Aq Ar interface 979setting. 980Refer to 981.Xr spppcontrol 8 982for more information about available options. 983.It Va ppp_enable 984.Pq Vt bool 985If set to 986.Dq Li YES , 987run the 988.Xr ppp 8 989daemon. 990.It Va ppp_mode 991.Pq Vt str 992Mode in which to run the 993.Xr ppp 8 994daemon. 995Accepted modes are 996.Dq Li auto , 997.Dq Li ddial , 998.Dq Li direct 999and 1000.Dq Li dedicated . 1001See the manual for a full description. 1002.It Va ppp_nat 1003.Pq Vt bool 1004If set to 1005.Dq Li YES , 1006enables network address translation. 1007Used in conjunction with 1008.Va gateway_enable 1009allows hosts on private network addresses access to the Internet using 1010this host as a network address translating router. 1011.It Va ppp_profile 1012.Pq Vt str 1013The name of the profile to use from 1014.Pa /etc/ppp/ppp.conf . 1015Also used for per-profile overrides of 1016.Va ppp_ Ns Ao Ar profile Ac Ns _unit . 1017Where the profile contains any of the characters 1018.Dq Li .-/+ 1019they are translated to 1020.Dq Li _ 1021for the purposes of the override variable names. 1022.It Va ppp_ Ns Ao Ar profile Ac Ns _unit 1023.Pq Vt int 1024Set the unit number to be used for this profile. 1025See the manual description of 1026.Fl unit Ns Ar N 1027in 1028.Xr ppp 8 1029for details. 1030.It Va ppp_user 1031.Pq Vt str 1032The name of the user under which 1033.Xr ppp 8 1034should be started. 1035By default, 1036.Xr ppp 8 1037is started as 1038.Dq Li root . 1039.It Va rc_conf_files 1040.Pq Vt str 1041This option is used to specify a list of files that will override 1042the settings in 1043.Pa /etc/defaults/rc.conf . 1044The files will be read in the order in which they are specified and should 1045include the full path to the file. 1046By default, the files specified are 1047.Pa /etc/rc.conf 1048and 1049.Pa /etc/rc.conf.local 1050.It Va fsck_y_enable 1051.Pq Vt bool 1052If set to 1053.Dq Li YES , 1054.Xr fsck 8 1055will be run with the 1056.Fl y 1057flag if the initial preen of the file systems fails. 1058.It Va netfs_types 1059.Pq Vt str 1060List of file system types that are network-based. 1061This list should generally not be modified by end users. 1062Use 1063.Va extra_netfs_types 1064instead. 1065.It Va extra_netfs_types 1066.Pq Vt str 1067If set to something other than 1068.Dq Li NO 1069(the default), this variable extends the list of file system types 1070for which automatic mounting at startup by 1071.Xr rc 8 1072should be delayed until the network is initialized. 1073It should contain 1074a whitespace-separated list of network file system descriptor pairs, 1075each consisting of a file system type as passed to 1076.Xr mount 8 1077and a human-readable, one-word description, joined with a colon 1078.Pq Ql \&: . 1079Extending the default list in this way is only necessary 1080when third party file system types are used. 1081.It Va devfs_config_files 1082.Pq Vt str 1083This option is used to specify a list of configuration files containing 1084.Xr devfs 5 1085rules that will be applied by 1086.Xr devfsctl 8 1087in the order in which they are specified and must include the full path 1088to the file. 1089.It Va syslogd_enable 1090.Pq Vt bool 1091If set to 1092.Dq Li YES , 1093run the 1094.Xr syslogd 8 1095daemon. 1096.It Va syslogd_program 1097.Pq Vt str 1098Path to 1099.Xr syslogd 8 1100(default 1101.Pa /usr/sbin/syslogd ) . 1102.It Va syslogd_flags 1103.Pq Vt str 1104If 1105.Va syslogd_enable 1106is set to 1107.Dq Li YES , 1108these are the flags to pass to 1109.Xr syslogd 8 . 1110.It Va inetd_enable 1111.Pq Vt bool 1112If set to 1113.Dq Li YES , 1114run the 1115.Xr inetd 8 1116daemon. 1117.It Va inetd_program 1118.Pq Vt str 1119Path to 1120.Xr inetd 8 1121(default 1122.Pa /usr/sbin/inetd ) . 1123.It Va inetd_flags 1124.Pq Vt str 1125If 1126.Va inetd_enable 1127is set to 1128.Dq Li YES , 1129these are the flags to pass to 1130.Xr inetd 8 . 1131.It Va rwhod_enable 1132.Pq Vt bool 1133If set to 1134.Dq Li YES , 1135run the 1136.Xr rwhod 8 1137daemon at boot time. 1138.It Va rwhod_flags 1139.Pq Vt str 1140If 1141.Va rwhod_enable 1142is set to 1143.Dq Li YES , 1144these are the flags to pass to it. 1145.It Va update_motd 1146.Pq Vt bool 1147If set to 1148.Dq Li YES , 1149.Pa /etc/motd 1150will be updated at boot time to reflect the kernel release being run. 1151If set to 1152.Dq Li NO , 1153.Pa /etc/motd 1154will not be updated. 1155.It Va nfs_client_enable 1156.Pq Vt bool 1157If set to 1158.Dq Li YES , 1159setup NFS client parameters at boot time. 1160.It Va nfs_access_cache 1161.Pq Vt int 1162If 1163.Va nfs_client_enable 1164is set to 1165.Dq Li YES , 1166this can be set to 1167.Dq Li 0 1168to disable NFS ACCESS RPC caching, or to the number of seconds for which 1169NFS ACCESS results should be cached. 1170A value of 2-10 seconds will substantially reduce network traffic for 1171many NFS operations. 1172The default is 5 seconds. 1173Note that the attribute cache holds stat information only. 1174The NFS data cache is independent of the attribute cache and is only 1175invalidated when the client detects that the server has modified the 1176underlying file. 1177This value specifies a maximum timeout. 1178The NFS client will automatically use a shorter timeout for files which 1179have been recently modified. 1180.It Va nfs_neg_cache 1181.Pq Vt int 1182If 1183.Va nfs_client_enable 1184is set to 1185.Dq Li YES , 1186this can be set to 1187.Dq Li 0 1188to disable the caching of NEGATIVE LOOKUPS (lookups of non-existent 1189filenames), or to the number of seconds for which negative lookups should 1190be cached. 1191A value of 2-10 seconds will substantially reduce network 1192traffic for many NFS operations, especially source code builds. 1193The default is 3 seconds. 1194.It Va nfs_server_enable 1195.Pq Vt bool 1196If set to 1197.Dq Li YES , 1198run the NFS server daemons at boot time. 1199.It Va nfs_server_flags 1200.Pq Vt str 1201If 1202.Va nfs_server_enable 1203is set to 1204.Dq Li YES , 1205these are the flags to pass to the 1206.Xr nfsd 8 1207daemon. 1208.It Va mountd_enable 1209.Pq Vt bool 1210If set to 1211.Dq Li YES , 1212and no 1213.Va nfs_server_enable 1214is set, start 1215.Xr mountd 8 , 1216but not 1217.Xr nfsd 8 1218daemon. 1219It is commonly needed to run CFS without real NFS used. 1220.It Va mountd_flags 1221.Pq Vt str 1222If 1223.Va mountd_enable 1224is set to 1225.Dq Li YES , 1226these are the flags to pass to the 1227.Xr mountd 8 1228daemon. 1229.It Va weak_mountd_authentication 1230.Pq Vt bool 1231If set to 1232.Dq Li YES , 1233allow services like PCNFSD to make non-privileged mount requests. 1234.It Va nfs_reserved_port_only 1235.Pq Vt bool 1236If set to 1237.Dq Li YES , 1238provide NFS services only on a secure port. 1239.It Va nfs_bufpackets 1240.Pq Vt int 1241If set to a number, indicates the number of packets worth of 1242socket buffer space to reserve on an NFS client. 1243The kernel default is typically 4. 1244Using a higher number may be useful on gigabit networks to improve performance. 1245The minimum value is 2 and the maximum is 64. 1246.It Va rpc_umntall_enable 1247.Pq Vt bool 1248If set to 1249.Dq Li YES 1250(default) and we are also an NFS client, run 1251.Xr rpc.umntall 8 1252at boot time to clear out old mounts on remote servers. 1253If set to 1254.Dq Li NO 1255then 1256.Xr rpc.umntall 8 1257will not be run at boot time. 1258.It Va rpc_lockd_enable 1259.Pq Vt bool 1260If set to 1261.Dq Li YES 1262and also an NFS server, run 1263.Xr rpc.lockd 8 1264at boot time. 1265.It Va rpc_lockd_flags 1266.Pq Vt str 1267If 1268.Va rpc_lockd_enable 1269is set to 1270.Dq Li YES , 1271these are the flags to pass to 1272.Xr rpc.lockd 8 . 1273.It Va rpc_statd_enable 1274.Pq Vt bool 1275If set to 1276.Dq Li YES 1277and also an NFS server, run 1278.Xr rpc.statd 8 1279at boot time. 1280.It Va rpc_statd_flags 1281.Pq Vt str 1282If 1283.Va rpc_statd_enable 1284is set to 1285.Dq Li YES , 1286these are the flags to pass to 1287.Xr rpc.statd 8 . 1288.It Va rpcbind_program 1289.Pq Vt str 1290Path to program for rpcbind daemon 1291(default 1292.Pa /usr/sbin/rpcbind ) . 1293.It Va rpcbind_enable 1294.Pq Vt bool 1295If set to 1296.Dq Li YES , 1297run 1298.Va rpcbind_program 1299at boot time. 1300.It Va rpcbind_flags 1301.Pq Vt str 1302If 1303.Va rpcbind_enable 1304is set to 1305.Dq Li YES , 1306these are the flags to pass to 1307.Va rpcbind_program . 1308.It Va keyserv_enable 1309.Pq Vt bool 1310If set to 1311.Dq Li YES , 1312run the 1313.Xr keyserv 8 1314daemon on boot for running Secure RPC. 1315.It Va keyserv_flags 1316.Pq Vt str 1317If 1318.Va keyserv_enable 1319is set to 1320.Dq Li YES , 1321these are the flags to pass to 1322.Xr keyserv 8 1323daemon. 1324.It Va pppoed_enable 1325.Pq Vt bool 1326If set to 1327.Dq Li YES , 1328run the 1329.Xr pppoed 8 1330daemon at boot time to provide PPP over Ethernet services. 1331.It Va pppoed_provider 1332.Pq Vt str 1333.Xr pppoed 8 1334listens to requests to this provider and ultimately runs 1335.Xr ppp 8 1336with a 1337.Ar system 1338argument of the same name. 1339.It Va pppoed_flags 1340.Pq Vt str 1341Additional flags to pass to 1342.Xr pppoed 8 . 1343.It Va pppoed_interface 1344.Pq Vt str 1345The network interface to run 1346.Xr pppoed 8 1347on. 1348This is mandatory when 1349.Va pppoed_enable 1350is set to 1351.Dq Li YES . 1352.It Va timed_enable 1353.Pq Vt bool 1354If set to 1355.Dq Li YES , 1356run the 1357.Xr timed 8 1358service at boot time. 1359This command is intended for networks of machines where a consistent 1360.Dq "network time" 1361for all hosts must be established. 1362This is often useful in large NFS environments where time stamps on 1363files are expected to be consistent network-wide. 1364.It Va timed_flags 1365.Pq Vt str 1366If 1367.Va timed_enable 1368is set to 1369.Dq Li YES , 1370these are the flags to pass to the 1371.Xr timed 8 1372service. 1373.It Va dntpd_enable 1374.Pq Vt bool 1375If set to 1376.Dq Li YES , 1377run 1378.Xr dntpd 8 1379at system boot time. 1380.It Va dntpd_program 1381.Pq Vt str 1382Path to 1383.Xr dntpd 8 1384(default 1385.Pa /usr/sbin/dntpd ) . 1386.It Va dntpd_flags 1387.Pq Vt str 1388If 1389.Va dntpd_enable 1390is set to 1391.Dq Li YES , 1392these are the flags to pass to the 1393.Xr dntpd 8 1394daemon. 1395.It Va btconfig_enable 1396.Pq Vt bool 1397If set to 1398.Dq Li YES , 1399configure Bluetooth devices via 1400.Xr btconfig 8 1401at system boot time. 1402.It Va btconfig_devices 1403.Pq Vt str 1404If 1405.Va btconfig_enable 1406is set to 1407.Dq Li YES , 1408this is the list of Bluetooth devices to configure. 1409If 1410.Va btconfig_devices 1411is not specified, all devices known to the system will be configured. 1412A 1413.Va btconfig_ Ns Aq Ar device 1414variable can be set to specify parameters to be passed to 1415.Ar device . 1416.It Va btconfig_args 1417.Pq Vt str 1418If 1419.Va btconfig_enable 1420is set to 1421.Dq Li YES , 1422this is the list of configuration parameters to pass to all Bluetooth 1423devices. 1424.It Va sdpd_enable 1425.Pq Vt bool 1426If set to 1427.Dq Li YES , 1428run the Service Discovery Profile daemon 1429.Xr ( sdpd 8 ) 1430at system boot time. 1431.It Va sdpd_flags 1432.Pq Vt str 1433If 1434.Va sdpd_enable 1435is set to 1436.Dq Li YES , 1437these are the flags to pass to the 1438.Xr sdpd 8 1439daemon. 1440.It Va bthcid_enable 1441.Pq Vt bool 1442If set to 1443.Dq Li YES , 1444run the Bluetooth Link Key/PIN Code Manager daemon 1445.Xr ( bthcid 8 ) 1446at system boot time. 1447.It Va bthcid_flags 1448.Pq Vt str 1449If 1450.Va bthcid_enable 1451is set to 1452.Dq Li YES , 1453these are the flags to pass to the 1454.Xr bthcid 8 1455daemon. 1456.It Va nis_client_enable 1457.Pq Vt bool 1458If set to 1459.Dq Li YES , 1460run the 1461.Xr ypbind 8 1462service at system boot time. 1463.It Va nis_client_flags 1464.Pq Vt str 1465If 1466.Va nis_client_enable 1467is set to 1468.Dq Li YES , 1469these are the flags to pass to the 1470.Xr ypbind 8 1471service. 1472.It Va nis_ypset_enable 1473.Pq Vt bool 1474If set to 1475.Dq Li YES , 1476run the 1477.Xr ypset 8 1478daemon at system boot time. 1479.It Va nis_ypset_flags 1480.Pq Vt str 1481If 1482.Va nis_ypset_enable 1483is set to 1484.Dq Li YES , 1485these are the flags to pass to the 1486.Xr ypset 8 1487daemon. 1488.It Va nis_server_enable 1489.Pq Vt bool 1490If set to 1491.Dq Li YES , 1492run the 1493.Xr ypserv 8 1494daemon at system boot time. 1495.It Va nis_server_flags 1496.Pq Vt str 1497If 1498.Va nis_server_enable 1499is set to 1500.Dq Li YES , 1501these are the flags to pass to the 1502.Xr ypserv 8 1503daemon. 1504.It Va nis_ypxfrd_enable 1505.Pq Vt bool 1506If set to 1507.Dq Li YES , 1508run the 1509.Xr rpc.ypxfrd 8 1510daemon at system boot time. 1511.It Va nis_ypxfrd_flags 1512.Pq Vt str 1513If 1514.Va nis_ypxfrd_enable 1515is set to 1516.Dq Li YES , 1517these are the flags to pass to the 1518.Xr rpc.ypxfrd 8 1519daemon. 1520.It Va nis_yppasswdd_enable 1521.Pq Vt bool 1522If set to 1523.Dq Li YES , 1524run the 1525.Xr rpc.yppasswdd 8 1526daemon at system boot time. 1527.It Va nis_yppasswdd_flags 1528.Pq Vt str 1529If 1530.Va nis_yppasswdd_enable 1531is set to 1532.Dq Li YES , 1533these are the flags to pass to the 1534.Xr rpc.yppasswdd 8 1535daemon. 1536.It Va rpc_ypupdated_enable 1537.Pq Vt bool 1538If set to 1539.Dq Li YES , 1540run the 1541.Nm rpc.ypupdated 1542daemon at system boot time. 1543.It Va defaultrouter 1544.Pq Vt str 1545If not set to 1546.Dq Li NO , 1547create a default route to this host name or IP address 1548(use an IP address if this router is also required to get to the 1549name server!). 1550.It Va ipv6_defaultrouter 1551.Pq Vt str 1552The IPv6 equivalent of 1553.Va defaultrouter . 1554.It Va static_routes 1555.Pq Vt str 1556Set to the list of static routes that are to be added at system boot time. 1557If not set to 1558.Dq Li NO 1559then for each whitespace separated 1560.Ar element 1561in the value, a 1562.Va route_ Ns Aq Ar element 1563variable is assumed to exist whose contents will later be passed to a 1564.Dq Nm route Cm add 1565operation. 1566.It Va change_routes 1567.Pq Vt str 1568Set to the list of static routes that are to be changed at system boot time 1569(such as those added by the kernel). 1570If not set to 1571.Dq Li NO 1572then for each whitespace separated 1573.Ar element 1574in the value, a 1575.Va change_route_ Ns Aq Ar element 1576variable is assumed to exist whose contents will later be passed to a 1577.Dq Nm route Cm change 1578operation. 1579.It Va ipv6_static_routes 1580.Pq Vt str 1581The IPv6 equivalent of 1582.Va static_routes . 1583If not set to 1584.Dq Li NO 1585then for each whitespace separated 1586.Ar element 1587in the value, a 1588.Va ipv6_route_ Ns Aq Ar element 1589variable is assumed to exist whose contents will later be passed to a 1590.Dq Nm route Cm add Fl inet6 1591operation. 1592.It Va gateway_enable 1593.Pq Vt bool 1594If set to 1595.Dq Li YES , 1596configure host to act as an IP router, e.g. to forward packets 1597between interfaces. 1598.It Va ipv6_gateway_enable 1599.Pq Vt bool 1600The IPv6 equivalent of 1601.Va gateway_enable . 1602.It Va router_enable 1603.Pq Vt bool 1604If set to 1605.Dq Li YES , 1606run a routing daemon of some sort, based on the settings of 1607.Va router_program 1608and 1609.Va router_flags . 1610.It Va ipv6_router_enable 1611.Pq Vt bool 1612The IPv6 equivalent of 1613.Va router_enable . 1614If set to 1615.Dq Li YES , 1616run a routing daemon of some sort, based on the settings of 1617.Va ipv6_router_program 1618and 1619.Va ipv6_router_flags . 1620.It Va router_program 1621.Pq Vt str 1622If 1623.Va router_enable 1624is set to 1625.Dq Li YES , 1626this is the name of the routing daemon to use 1627(default 1628.Pa /sbin/routed ) . 1629.It Va ipv6_router_program 1630.Pq Vt str 1631The IPv6 equivalent of 1632.Va router_program 1633(default 1634.Pa /sbin/route6d ) . 1635.It Va router_flags 1636.Pq Vt str 1637If 1638.Va router_enable 1639is set to 1640.Dq Li YES , 1641these are the flags to pass to the routing daemon. 1642.It Va ipv6_router_flags 1643.Pq Vt str 1644The IPv6 equivalent of 1645.Va router_flags . 1646.It Va mrouted_enable 1647.Pq Vt bool 1648If set to 1649.Dq Li YES , 1650run the multicast routing daemon, 1651.Xr mrouted 8 . 1652.It Va mroute6d_enable 1653.Pq Vt bool 1654The IPv6 equivalent of 1655.Va mrouted_enable . 1656If set to 1657.Dq Li YES , 1658run the IPv6 multicast routing daemon. 1659Note that no IPv6 multicast routing daemon is included in the 1660.Dx 1661base system but 1662.Xr pim6dd 8 1663can be installed from the 1664.Xr dports 7 1665collection 1666.Pa ( net/mcast-tools ) . 1667.It Va mrouted_flags 1668.Pq Vt str 1669If 1670.Va mrouted_enable 1671is set to 1672.Dq Li YES , 1673these are the flags to pass to the 1674.Xr mrouted 8 1675daemon. 1676.It Va mroute6d_flags 1677.Pq Vt str 1678The IPv6 equivalent of 1679.Va mrouted_flags . 1680If 1681.Va mroute6d_enable 1682is set to 1683.Dq Li YES , 1684these are the flags passed to the IPv6 multicast routing daemon. 1685.It Va mroute6d_program 1686.Pq Vt str 1687If 1688.Va mroute6d_enable 1689is set to 1690.Dq Li YES , 1691this is the path to the IPv6 multicast routing daemon. 1692.It Va rtadvd_enable 1693.Pq Vt bool 1694If set to 1695.Dq Li YES , 1696run the 1697.Xr rtadvd 8 1698daemon at boot time. 1699.Xr rtadvd 8 1700will only run if 1701.Va ipv6_gateway_enable 1702is also set to 1703.Dq Li YES . 1704The 1705.Xr rtadvd 8 1706utility sends router advertisement packets to the interfaces specified in 1707.Va rtadvd_interfaces . 1708.Xr rtadvd 8 1709and should only be enabled with great care. 1710You may want to fine-tune 1711.Xr rtadvd.conf 5 . 1712.It Va rtadvd_interfaces 1713.Pq Vt str 1714If 1715.Va rtadvd_enable 1716is set to 1717.Dq Li YES 1718this is the list of interfaces to use. 1719.It Va rtsold_enable 1720.Pq Vt bool 1721If set to 1722.Dq Li YES , 1723run the 1724.Xr rtsold 8 1725daemon at boot time. 1726The 1727.Xr rtsold 8 1728daemon is used for automatic discovery of non-link local addresses. 1729.It Va rtsold_flags 1730.Pq Vt str 1731If 1732.Va rtsold_enable 1733is set to 1734.Dq Li YES , 1735these are the flags to pass to the 1736.Xr rtsold 8 1737daemon. 1738.It Va arpproxy_all 1739.Pq Vt bool 1740If set to 1741.Dq Li YES , 1742enable global proxy ARP. 1743.It Va forward_sourceroute 1744.Pq Vt bool 1745If set to 1746.Dq Li YES 1747and 1748.Va gateway_enable 1749is also set to 1750.Dq Li YES , 1751source-routed packets are forwarded. 1752.It Va accept_sourceroute 1753.Pq Vt bool 1754If set to 1755.Dq Li YES , 1756the system will accept source-routed packets directed at it. 1757.It Va rarpd_enable 1758.Pq Vt bool 1759If set to 1760.Dq Li YES , 1761run the 1762.Xr rarpd 8 1763daemon at system boot time. 1764.It Va rarpd_flags 1765.Pq Vt str 1766If 1767.Va rarpd_enable 1768is set to 1769.Dq Li YES , 1770these are the flags to pass to the 1771.Xr rarpd 8 1772daemon. 1773.It Va bootparamd_enable 1774.Pq Vt bool 1775If set to 1776.Dq Li YES , 1777run the 1778.Xr bootparamd 8 1779daemon at system boot time. 1780.It Va bootparamd_flags 1781.Pq Vt str 1782If 1783.Va bootparamd_enable 1784is set to 1785.Dq Li YES , 1786these are the flags to pass to the 1787.Xr bootparamd 8 1788daemon. 1789.It Va stf_interface_ipv4addr 1790.Pq Vt str 1791If not set to 1792.Dq Li NO , 1793this is the local IPv4 address for 6to4 (IPv6 over IPv4 tunneling interface). 1794Specify this entry to enable the 6to4 interface. 1795.It Va stf_interface_ipv4plen 1796.Pq Vt int 1797Prefix length for 6to4 IPv4 addresses, to limit peer address range. 1798An effective value is 0-31. 1799.It Va stf_interface_ipv6_ifid 1800.Pq Vt str 1801IPv6 interface ID for 1802.Xr stf 4 . 1803This can be set to 1804.Dq Li AUTO . 1805.It Va stf_interface_ipv6_slaid 1806.Pq Vt str 1807IPv6 Site Level Aggregator for 1808.Xr stf 4 . 1809.It Va keybell 1810.Pq Vt str 1811The keyboard bell sound. 1812Set to 1813.Dq Li normal , 1814.Dq Li visual , 1815.Dq Li off , 1816or 1817.Dq Li NO 1818if the default behavior is desired. 1819For details, refer to the 1820.Xr kbdcontrol 1 1821manpage. 1822.It Va keymap 1823.Pq Vt str 1824If set to 1825.Dq Li NO , 1826no keymap is installed, otherwise the value is used to install 1827the keymap file in 1828.Pa /usr/share/syscons/keymaps/ Ns Ao Ar value Ac Ns Pa .kbd . 1829.It Va keyrate 1830.Pq Vt str 1831The keyboard repeat speed. 1832Set to 1833.Dq Li slow , 1834.Dq Li normal , 1835.Dq Li fast , 1836or 1837.Dq Li NO 1838if the default behavior is desired. 1839.It Va keychange 1840.Pq Vt str 1841If not set to 1842.Dq Li NO , 1843attempt to program the function keys with the value. 1844The value should be a single string of the form: 1845.Dq Ar funkey_number new_value Op Ar funkey_number new_value ... . 1846.It Va cursor 1847.Pq Vt str 1848Can be set to the value of 1849.Dq Li normal , 1850.Dq Li blink , 1851.Dq Li destructive , 1852or 1853.Dq Li NO 1854to set the cursor behavior explicitly or choose the default behavior. 1855.It Va scrnmap 1856.Pq Vt str 1857If set to 1858.Dq Li NO , 1859no screen map is installed, otherwise the value is used to install 1860the screen map file in 1861.Pa /usr/share/syscons/scrnmaps/ Ns Aq Ar value . 1862.It Va font8x16 1863.Pq Vt str 1864If set to 1865.Dq Li NO , 1866the default 8x16 font value is used for screen size requests, otherwise 1867the value in 1868.Pa /usr/share/syscons/fonts/ Ns Aq Ar value 1869is used. 1870.It Va font8x14 1871.Pq Vt str 1872If set to 1873.Dq Li NO , 1874the default 8x14 font value is used for screen size requests, otherwise 1875the value in 1876.Pa /usr/share/syscons/fonts/ Ns Aq Ar value 1877is used. 1878.It Va font8x8 1879.Pq Vt str 1880If set to 1881.Dq Li NO , 1882the default 8x8 font value is used for screen size requests, otherwise 1883the value in 1884.Pa /usr/share/syscons/fonts/ Ns Aq Ar value 1885is used. 1886.It Va blanktime 1887.Pq Vt int 1888If set to 1889.Dq Li NO , 1890the default screen blanking interval is used, otherwise it is set to 1891.Ar value 1892seconds. 1893.It Va saver 1894.Pq Vt str 1895If not set to 1896.Dq Li NO , 1897this is the actual screen saver to use 1898.Li ( blank , snake , daemon , 1899etc). 1900.It Va moused_nondefault_enable 1901.Pq Vt str 1902If set to 1903.Dq Li NO , 1904the mouse device specified on 1905the command line is not automatically treated as enabled by the 1906.Pa /etc/rc.d/moused 1907script. 1908Having this variable set to 1909.Dq Li YES 1910allows a 1911.Xr usb 4 1912mouse, 1913for example, 1914to be enabled as soon as it is plugged in. 1915.It Va moused_enable 1916.Pq Vt str 1917If set to 1918.Dq Li YES , 1919the 1920.Xr moused 8 1921daemon is started for doing cut/paste selection on the console. 1922.It Va moused_type 1923.Pq Vt str 1924If 1925.Va moused_enable 1926is set to 1927.Dq Li YES , 1928this is the protocol type of the mouse connected to this host. 1929The default type is 1930.Dq Li auto . 1931The 1932.Xr moused 8 1933daemon 1934is able to detect the appropriate mouse type automatically in many cases. 1935Leave this variable at the default 1936.Dq Li auto 1937to let the daemon detect it, or 1938select one from the following list if the automatic detection fails. 1939.Pp 1940If the mouse is attached to the PS/2 mouse port, leave the variable at the 1941default 1942.Dq Li auto 1943or set it to 1944.Dq Li ps/2 , 1945regardless of the brand and model of the mouse. 1946Likewise, if the mouse is attached to the bus mouse port, leave it at 1947.Dq Li auto 1948or set it to 1949.Dq Li busmouse . 1950All other protocols are for serial mice and will not work with 1951the PS/2 and bus mice. 1952If this is a USB mouse, 1953.Dq Li auto 1954is the only protocol type which will work. 1955.Pp 1956.Bl -tag -width ".Li x10mouseremote" -compact 1957.It Li microsoft 1958Microsoft mouse (serial) 1959.It Li intellimouse 1960Microsoft IntelliMouse (serial) 1961.It Li mousesystems 1962Mouse systems Corp. mouse (serial) 1963.It Li mmseries 1964MM Series mouse (serial) 1965.It Li logitech 1966Logitech mouse (serial) 1967.It Li busmouse 1968A bus mouse 1969.It Li mouseman 1970Logitech MouseMan and TrackMan (serial) 1971.It Li glidepoint 1972ALPS GlidePoint (serial) 1973.It Li thinkingmouse 1974Kensington ThinkingMouse (serial) 1975.It Li ps/2 1976PS/2 mouse 1977.It Li mmhittab 1978MM HitTablet (serial) 1979.It Li x10mouseremote 1980X10 MouseRemote (serial) 1981.It Li versapad 1982Interlink VersaPad (serial) 1983.El 1984.Pp 1985Even if the mouse is not in the above list, it may be compatible 1986with one in the list. 1987Refer to the man page for 1988.Xr moused 8 1989for compatibility information. 1990.Pp 1991It should also be noted that while this is enabled, any 1992other client of the mouse (such as an X server) should access 1993the mouse through the virtual mouse device, 1994.Pa /dev/sysmouse , 1995and configure it as a 1996.Dq Li sysmouse 1997type mouse, since all 1998mouse data is converted to this single canonical format when using 1999.Xr moused 8 . 2000If the client program does not support the 2001.Dq Li sysmouse 2002type, specify the 2003.Dq Li mousesystems 2004type. 2005It is the second preferred type. 2006.It Va moused_port 2007.Pq Vt str 2008If 2009.Va moused_enable 2010is set to 2011.Dq Li YES , 2012this is the actual port the mouse is on. 2013It might be 2014.Pa /dev/cuaa0 2015for a COM1 serial mouse or 2016.Pa /dev/psm0 2017for a PS/2 mouse, for example. 2018.It Va moused_flags 2019.Pq Vt str 2020If 2021.Va moused_type 2022is set, these are the additional flags to pass to the 2023.Xr moused 8 2024daemon. 2025.It Va mousechar_start 2026.Pq Vt int 2027If set to 2028.Dq Li NO , 2029the default mouse cursor character range 2030.Li 0xd0 Ns - Ns Li 0xd3 2031is used, otherwise the range start is set to 2032.Ar value 2033character, see 2034.Xr vidcontrol 1 . 2035Use if the default range is occupied in the language code table. 2036.It Va vidhistory 2037.Pq Vt int 2038Set the size of the history (scrollback) buffer in lines. 2039.It Va allscreens_flags 2040.Pq Vt str 2041If set, 2042.Xr vidcontrol 1 2043is run with these options for each of the virtual terminals 2044.Pq Pa /dev/ttyv* . 2045For example, 2046.Dq Fl m Cm on 2047will enable the mouse pointer on all virtual terminals if 2048.Va moused_enable 2049is set to 2050.Dq Li YES . 2051.It Va allscreens_kbdflags 2052.Pq Vt str 2053If set, 2054.Xr kbdcontrol 1 2055is run with these options for each of the virtual terminals 2056.Pq Pa /dev/ttyv* . 2057For example, 2058.Dq Fl h Li 200 2059will set the 2060.Xr syscons 4 2061scrollback (history) buffer to 200 lines. 2062.It Va cron_enable 2063.Pq Vt bool 2064If set to 2065.Dq Li YES , 2066run the 2067.Xr cron 8 2068daemon at system boot time. 2069.It Va cron_program 2070.Pq Vt str 2071Path to 2072.Xr cron 8 2073(default 2074.Pa /usr/sbin/cron ) . 2075.It Va cron_flags 2076.Pq Vt str 2077If 2078.Va cron_enable 2079is set to 2080.Dq Li YES , 2081these are the flags to pass to 2082.Xr cron 8 . 2083.It Va lpd_program 2084.Pq Vt str 2085Path to 2086.Xr lpd 8 2087(default 2088.Pa /usr/sbin/lpd ) . 2089.It Va lpd_enable 2090.Pq Vt bool 2091If set to 2092.Dq Li YES , 2093run the 2094.Xr lpd 8 2095daemon at system boot time. 2096.It Va lpd_flags 2097.Pq Vt str 2098If 2099.Va lpd_enable 2100is set to 2101.Dq Li YES , 2102these are the flags to pass to the 2103.Xr lpd 8 2104daemon. 2105.It Va nscd_enable 2106.Pq Vt bool 2107If set to 2108.Dq Li YES , 2109run the 2110.Xr nscd 8 2111daemon at system boot time. 2112.It Va mixer_enable 2113.Pq Vt bool 2114If set to 2115.Dq Li YES , 2116preserve 2117.Xr mixer 8 2118settings across reboots. 2119.It Va mta_start_script 2120.Pq Vt str 2121The full path to the script to run to start 2122a mail transfer agent. 2123The default is 2124.Pa /etc/rc.sendmail . 2125The 2126.Va sendmail_* 2127variables which 2128.Pa /etc/rc.sendmail 2129uses are documented in the 2130.Xr rc.sendmail 8 2131man page. 2132.It Va fixbootfile 2133.Pq Vt bool 2134In a 2135.Sq HAMMER ROOT with UFS /boot 2136setup, the boot loader will not set up the 2137.Va kern.bootfile 2138sysctl correctly. 2139The system will attempt to fix this on its own. 2140Set this variable to 2141.Dq Li NO 2142to turn this behavior off. 2143.It Va dumpdev 2144.Pq Vt str 2145Indicates the device (usually a swap partition) to which a crash dump 2146should be written in the event of a system crash. 2147The value of this variable is passed as the argument to 2148.Xr dumpon 8 2149and 2150.Xr savecore 8 . 2151To disable crash dumps, set this variable to 2152.Dq Li NO . 2153.It Va dumpdir 2154.Pq Vt str 2155When the system reboots after a crash and a crash dump is found on the 2156device specified by the 2157.Va dumpdev 2158variable, 2159.Xr savecore 8 2160will save that crash dump and a copy of the kernel to the directory 2161specified by the 2162.Va dumpdir 2163variable. 2164The default value is 2165.Pa /var/crash . 2166Set to 2167.Dq Li NO 2168to not run 2169.Xr savecore 8 2170at boot time when 2171.Va dumpdir 2172is set. 2173.It Va savecore_flags 2174.Pq Vt str 2175If crash dumps are enabled, these are the flags to pass to the 2176.Xr savecore 8 2177utility. 2178.It Va crashinfo_enable 2179.Pq Vt bool 2180Set to 2181.Dq Li YES 2182to turn on automatic crash dump summary generation using the utility 2183specified by the 2184.Va crashinfo_program 2185variable. 2186.It Va crashinfo_program 2187.Pq Vt str 2188Program to run to generate a crash dump summary if the variable 2189.Va crashinfo_enable 2190is set to 2191.Dq Li YES . 2192The default value is 2193.Pa /usr/sbin/crashinfo . 2194.It Va enable_quotas 2195.Pq Vt bool 2196Set to 2197.Dq Li YES 2198to turn on user disk quotas on system startup via the 2199.Xr quotaon 8 2200command. 2201.It Va check_quotas 2202.Pq Vt bool 2203Set to 2204.Dq Li YES 2205to enable user disk quota checking via the 2206.Xr quotacheck 8 2207command. 2208.It Va accounting_enable 2209.Pq Vt bool 2210Set to 2211.Dq Li YES 2212to enable system accounting through the 2213.Xr accton 8 2214facility. 2215.\" ----- cleanvar_enable setting-------------------------------- 2216.It Va cleanvar_enable 2217.Pq Vt bool 2218Set to 2219.Dq Li YES 2220to have 2221.Pa /var/run , 2222.Pa /var/spool/lock 2223and 2224.Pa /var/spool/uucp/.Temp/* 2225cleaned at startup. 2226.\" ----- clear_tmp_enable setting------------------------------- 2227.It Va clear_tmp_enable 2228.Pq Vt bool 2229Set to 2230.Dq Li YES 2231to have 2232.Pa /tmp 2233cleaned at startup. 2234.\" ----- ldconfig_paths setting -------------------------------- 2235.It Va ldconfig_paths 2236.Pq Vt str 2237Set to the list of shared library paths to use with 2238.Xr ldconfig 8 . 2239NOTE: 2240.Pa /usr/lib 2241will always be added first, so it need not appear in this list. 2242.It Va ldconfig_insecure 2243.Pq Vt bool 2244The 2245.Xr ldconfig 8 2246utility normally refuses to use directories 2247which are writable by anyone except root. 2248Set this variable to 2249.Dq Li YES 2250to disable that security check during system startup. 2251.It Va ldconfig_local_dirs 2252.Pq Vt str 2253Set to the list of local 2254.Xr ldconfig 8 2255directories. 2256The names of all files in the directories listed will be 2257passed as arguments to 2258.Xr ldconfig 8 . 2259.It Va kern_securelevel 2260.Pq Vt int 2261The kernel security level to set at startup. 2262The allowed range of 2263.Ar value 2264ranges from \-1 (the compile time default) to 3 (the most secure). 2265See 2266.Xr init 8 2267for the list of possible security levels and their effect on system operation. 2268.It Va start_vinum 2269.Pq Vt bool 2270Set to 2271.Dq Li YES 2272to start 2273.Xr vinum 8 2274at system boot time. 2275.It Va sshd_enable 2276.Pq Vt bool 2277Set to 2278.Dq Li YES 2279to start 2280.Xr sshd 8 2281at system boot time. 2282.It Va sshd_program 2283.Pq Vt str 2284Path to the SSH server program 2285(default 2286.Pa /usr/sbin/sshd ) . 2287.It Va sshd_flags 2288.Pq Vt str 2289If 2290.Va sshd_enable 2291is set to 2292.Dq Li YES , 2293these are the flags to pass to the 2294.Xr sshd 8 2295daemon. 2296.It Va ftpd_enable 2297.Pq Vt bool 2298Set to 2299.Dq Li YES 2300to start 2301.Xr ftpd 8 2302at system boot time. 2303.It Va ftpd_flags 2304.Pq Vt str 2305If 2306.Va ftpd_enable 2307is set to 2308.Dq Li YES , 2309these are the flags to pass to the 2310.Xr ftpd 8 2311daemon. 2312.It Va watchdogd_enable 2313.Pq Vt bool 2314If set to 2315.Dq Li YES , 2316start the 2317.Xr watchdogd 8 2318daemon at boot time. 2319.It Va jail_enable 2320.Pq Vt bool 2321If set to 2322.Dq Li NO , 2323any configured jails will not be started. 2324.It Va jail_list 2325.Pq Vt str 2326A space separated list of names for jails. 2327This is purely a configuration aid to help identify and 2328configure multiple jails. 2329The names specified in this list will be used to 2330identify settings common to an instance of a jail. 2331Assuming that the jail in question was named 2332.Li vjail , 2333you would have the following dependent variables: 2334.Bd -literal 2335jail_vjail_hostname="jail.example.com" 2336jail_vjail_ip="192.168.1.100" 2337jail_vjail_rootdir="/var/jails/vjail/root" 2338.Ed 2339.It Va jail_flags 2340.Pq Vt str 2341Unset by default. 2342When set, use as default value for 2343.Va jail_ Ns Ao Ar jname Ac Ns Va _flags 2344for every jail in 2345.Va jail_list . 2346.It Va jail_interface 2347.Pq Vt str 2348Unset by default. 2349When set, use as default value for 2350.Va jail_ Ns Ao Ar jname Ac Ns Va _interface 2351for every jail in 2352.Va jail_list . 2353.It Va jail_fstab 2354.Pq Vt str 2355Unset by default. 2356When set, use as default value for 2357.Va jail_ Ns Ao Ar jname Ac Ns Va _fstab 2358for every jail in 2359.Va jail_list . 2360.It Va jail_mount_enable 2361.Pq Vt bool 2362Set to 2363.Dq Li NO 2364by default. 2365When set to 2366.Dq Li YES , 2367sets 2368.Va jail_ Ns Ao Ar jname Ac Ns Va _mount_enable 2369to 2370.Dq Li YES 2371by default for every jail in 2372.Va jail_list . 2373.It Va jail_procfs_enable 2374.Pq Vt bool 2375Set to 2376.Dq Li NO 2377by default. 2378When set to 2379.Dq Li YES , 2380sets 2381.Va jail_ Ns Ao Ar jname Ac Ns Va _procfs_enable 2382to 2383.Dq Li YES 2384by default for every jail in 2385.Va jail_list . 2386.It Va jail_devfs_enable 2387.Pq Vt bool 2388Set to 2389.Dq Li NO 2390by default. 2391When set to 2392.Dq Li YES , 2393sets 2394.Va jail_ Ns Ao Ar jname Ac Ns Va _devfs_enable 2395to 2396.Dq Li YES 2397by default for every jail in 2398.Va jail_list . 2399.It Va jail_exec_start 2400.Pq Vt str 2401Unset by default. 2402When set, use as default value for 2403.Va jail_ Ns Ao Ar jname Ac Ns Va _exec_start 2404for every jail in 2405.Va jail_list . 2406.It Va jail_exec_stop 2407Unset by default. 2408When set, use as default value for 2409.Va jail_ Ns Ao Ar jname Ac Ns Va _exec_stop 2410for every jail in 2411.Va jail_list . 2412.It Va jail_ Ns Ao Ar jname Ac Ns Va _rootdir 2413.Pq Vt str 2414Unset by default. 2415Set to the root directory used by jail 2416.Va jname . 2417.It Va jail_ Ns Ao Ar jname Ac Ns Va _hostname 2418.Pq Vt str 2419Unset by default. 2420Set to the fully qualified domain name (FQDN) assigned to jail 2421.Va jname . 2422.It Va jail_ Ns Ao Ar jname Ac Ns Va _ip 2423.Pq Vt str 2424Unset by default. 2425Set to the IP address assigned to jail 2426.Va jname . 2427.It Va jail_ Ns Ao Ar jname Ac Ns Va _flags 2428.Pq Vt str 2429Set to 2430.Dq Li -l -U root 2431by default. 2432These are flags to pass to 2433.Xr jail 8 . 2434.It Va jail_ Ns Ao Ar jname Ac Ns Va _interface 2435.Pq Vt str 2436Unset by default. 2437When set, sets the interface to use when setting IP address alias. 2438Note that the alias is created at jail startup and removed at jail shutdown. 2439.It Va jail_ Ns Ao Ar jname Ac Ns Va _fstab 2440.Pq Vt str 2441Set to 2442.Pa /etc/fstab. Ns Aq Ar jname 2443by default. 2444This is the file system information file to use for jail 2445.Va jname . 2446.It Va jail_ Ns Ao Ar jname Ac Ns Va _mount_enable 2447.Pq Vt bool 2448Set to 2449.Dq Li NO 2450by default. 2451When set to 2452.Dq Li YES , 2453mount all file systems from 2454.Va jail_ Ns Ao Ar jname Ac Ns Va _fstab 2455at jail startup. 2456.It Va jail_ Ns Ao Ar jname Ac Ns Va _procfs_enable 2457.Pq Vt bool 2458Set to 2459.Dq Li NO 2460by default. 2461When set to 2462.Dq Li YES , 2463mount the process file system inside jail 2464.Ar jname 2465at jail startup. 2466.It Va jail_ Ns Ao Ar jname Ac Ns Va _devfs_enable 2467.Pq Vt bool 2468Set to 2469.Dq Li NO 2470by default. 2471When set to 2472.Dq Li YES , 2473mount the device file system inside jail 2474.Ar jname 2475at jail startup. 2476.It Va jail_ Ns Ao Ar jname Ac Ns Va _exec_start 2477.Pq Vt str 2478Set to 2479.Dq Li /bin/sh /etc/rc 2480by default. 2481This is the command executed at jail startup. 2482.It Va jail_ Ns Ao Ar jname Ac Ns Va _exec_stop 2483.Pq Vt str 2484Set to 2485.Dq Li /bin/sh /etc/rc.shutdown 2486by default. 2487This is the command executed at jail shutdown. 2488.It Va jail_set_hostname_allow 2489.Pq Vt bool 2490If set to 2491.Dq Li NO , 2492do not allow the root user in a jail to set its hostname. 2493.It Va jail_socket_unixiproute_only 2494.Pq Vt bool 2495If set to 2496.Dq Li YES , 2497do not allow any sockets, 2498besides UNIX/IP/route sockets, 2499to be used within a jail. 2500.It Va jail_sysvipc_allow 2501.Pq Vt bool 2502If set to 2503.Dq Li YES , 2504allow applications within a jail to use System V IPC. 2505.It Va lvm_enable 2506.Pq Vt bool 2507If set to 2508.Dq Li YES 2509LVM volumes will be discovered and configured on boot. 2510.It Va newsyslog_enable 2511.Pq Vt bool 2512If set to 2513.Dq Li YES , 2514run 2515.Xr newsyslog 8 2516before syslogd starts. 2517.It Va newsyslog_flags 2518.Pq Vt str 2519If 2520.Va newsyslog_enable 2521is set to 2522.Dq Li YES , 2523these are the flags passed to 2524.Xr newsyslog 8 . 2525.It Va resident_enable 2526.Pq Vt bool 2527If set to 2528.Dq Li YES , 2529make the dynamic binaries listed in 2530.Pa /etc/resident.conf 2531resident. 2532.It Va varsym_enable 2533.Pq Vt bool 2534If set to 2535.Dq Li YES , 2536process 2537.Pa /etc/varsym.conf 2538to set system-wide variables for variant symlinks. 2539.It Va rand_irqs 2540.Pq Vt str 2541Set either to 2542.Dq Li NO 2543or a whitespace separated list of IRQ numbers which will be used as a source of 2544randomness. 2545.\" ----------------------------------------------------- 2546.It Va entropy_dir 2547.Pq Vt str 2548Set to 2549.Dq Li NO 2550to disable caching entropy via 2551.Xr cron 8 . 2552Otherwise set to the directory used to store entropy files in. 2553.It Va entropy_file 2554.Pq Vt str 2555Set to 2556.Dq Li NO 2557to disable caching entropy through reboots. 2558Otherwise set to the filename used to store cached entropy through reboots. 2559This file should be located on the root file system to seed the 2560.Xr random 4 2561device as early as possible in the boot process. 2562.It Va entropy_save_sz 2563.Pq Vt int 2564Determines the size of the entropy cache files used for entropy cached 2565through reboots and also entropy cached via 2566.Xr cron 8 . 2567The entropy is fed to the system in blocks of 512 bytes, so this number 2568should be large enough to fill as many of the entropy pools in the kernel 2569CSPRNG as possible. 2570By default, it is set to 16384, which should be able to seed all 32 entropy 2571pools in the Fortuna CSPRNG. 2572.It Va dmesg_enable 2573.Pq Vt bool 2574Set to 2575.Dq Li YES 2576to save 2577.Xr dmesg 8 2578to 2579.Pa /var/run/dmesg.boot 2580on boot. 2581.It Va rcshutdown_timeout 2582.Pq Vt int 2583If set, start a watchdog timer in the background which will terminate 2584.Pa rc.shutdown 2585if 2586.Xr shutdown 8 2587has not completed within the specified time (in seconds). 2588Notice that in addition to this soft timeout, 2589.Xr init 8 2590also applies a hard timeout for the execution of 2591.Pa rc.shutdown . 2592This is configured via 2593.Xr sysctl 8 2594variable 2595.Va kern.init_shutdown_timeout 2596and defaults to 120 seconds. Setting the value of 2597.Va rcshutdown_timeout 2598to more than 120 seconds will have no effect until the 2599.Xr sysctl 8 2600variable 2601.Va kern.init_shutdown_timeout 2602is also increased. 2603.It Va udevd_enable 2604.Pq Vt bool 2605If set to 2606.Dq Li YES , 2607the udevd daemon will be started on boot. 2608.It Va vfs_quota_enable 2609.Pq Vt bool 2610If set to 2611.Dq Li YES , 2612vfs quota rc.d scripts will be run on boot. 2613.It Va vfs_quota_sync 2614.Pq Vt str 2615List of mount points whose counters are to be synchronized with on-disk 2616usage during system startup. 2617See also 2618.Xr vquota 8 . 2619.It Va vknetd_enable 2620.Pq Vt bool 2621If set to 2622.Dq Li YES , 2623.Xr vknetd 8 2624will be started on boot. 2625.It Va vknetd_flags 2626.Pq Vt bool 2627Additional flags passed to 2628.Xr vknetd 8 . 2629Usually address/cidrbits is specified here. 2630When no flags are passed, default option 2631.Fl U 2632will be used. 2633.It Va vkernel_enable 2634.Pq Vt bool 2635If set to 2636.Dq Li NO , 2637any configured vkernels will not be started. 2638.It Va vkernel_kill_timeout 2639.Pq Vt int 2640This defines the default number of seconds that we will wait for the 2641vkernel to shut down on its own. 2642If after this time it's still alive, 2643it will be killed with SIGKILL. 2644.It Va vkernel_bin 2645.Pq Vt str 2646Defines the default path to the vkernel binary. 2647.It Va vkernel_list 2648.Pq Vt str 2649A space separated list of names for vkernels. 2650This is purely a configuration aid to help identify and 2651configure multiple vkernels. 2652The names specified in this list will be used to 2653identify settings common to a vkernel instance. 2654Assuming that the vkernel in question was named 2655.Li example , 2656you would have the following dependent variables 2657(filled with reference values in this text): 2658.Bd -literal 2659vkernel_example_bin="/usr/obj/usr/src/sys/VKERNEL64/kernel.debug" 2660vkernel_example_memsize="64m" 2661vkernel_example_rootimg_list="/var/vkernel/rootimg.01" 2662vkernel_example_memimg="/var/vkernel/memimg.000001" 2663vkernel_example_user="myuser" 2664vkernel_example_iface_list="auto:bridge0" 2665vkernel_example_logfile="/dev/null" 2666vkernel_example_flags="-U" 2667vkernel_example_kill_timeout="45" 2668.Ed 2669.Pp 2670The last six are optional. 2671They default to an empty string if not set, except for logfile which defaults to 2672.Pa /dev/null 2673if it is not set. 2674.Pp 2675Note that in case 2676.Va vkernel_memimg 2677is not set, the 2678.Pa rc.d 2679script will create 2680.Pa /var/vkernel , 2681which is the vkernel's default directory for memory images, 2682with permissions of 1777, i.e. world writable with the sticky bit set 2683(see 2684.Xr sticky 8 ) . 2685.It Va autofs_enable 2686.Pq Vt bool 2687If set to 2688.Dq Li YES , 2689start the 2690.Xr automount 8 2691utility and the 2692.Xr automountd 8 2693and 2694.Xr autounmountd 8 2695daemons at boot time. 2696.It Va automount_flags 2697.Pq Vt str 2698If 2699.Va autofs_enable 2700is set to 2701.Dq Li YES , 2702these are the flags to pass to the 2703.Xr automount 8 2704program. 2705By default no flags are passed. 2706.It Va automountd_flags 2707.Pq Vt str 2708If 2709.Va autofs_enable 2710is set to 2711.Dq Li YES , 2712these are the flags to pass to the 2713.Xr automountd 8 2714daemon. 2715By default no flags are passed. 2716.It Va autounmountd_flags 2717.Pq Vt str 2718If 2719.Va autofs_enable 2720is set to 2721.Dq Li YES , 2722these are the flags to pass to the 2723.Xr autounmountd 8 2724daemon. 2725By default no flags are passed. 2726.El 2727.Sh FILES 2728.Bl -tag -width ".Pa /etc/start_if. Ns Aq Ar interface" -compact 2729.It Pa /etc/defaults/rc.conf 2730.It Pa /etc/rc.conf 2731.It Pa /etc/rc.conf.local 2732.It Pa /etc/start_if. Ns Aq Ar interface 2733.El 2734.Sh SEE ALSO 2735.Xr catman 1 , 2736.Xr gdb 1 , 2737.Xr info 1 , 2738.Xr kbdcontrol 1 , 2739.Xr varsym 1 , 2740.Xr vidcontrol 1 , 2741.Xr ip 4 , 2742.Xr ipfw 4 , 2743.Xr kld 4 , 2744.Xr pf 4 , 2745.Xr tcp 4 , 2746.Xr udp 4 , 2747.Xr vlan 4 , 2748.Xr autofs 5 , 2749.Xr auto_master 5 , 2750.Xr exports 5 , 2751.Xr motd 5 , 2752.Xr resident.conf 5 , 2753.Xr varsym.conf 5 , 2754.Xr accton 8 , 2755.Xr automount 8 , 2756.Xr automountd 8 , 2757.Xr autounmountd 8 , 2758.Xr btconfig 8 , 2759.Xr bthcid 8 , 2760.Xr cron 8 , 2761.Xr devd 8 , 2762.Xr dhclient 8 , 2763.Xr dhcpcd 8 , 2764.Xr dntpd 8 , 2765.Xr ftpd 8 , 2766.Xr ifconfig 8 , 2767.Xr inetd 8 , 2768.Xr ip6addrctl 8 , 2769.Xr jail 8 , 2770.Xr lpd 8 , 2771.Xr makewhatis 8 , 2772.Xr mixer 8 , 2773.Xr mountd 8 , 2774.Xr moused 8 , 2775.Xr mrouted 8 , 2776.Xr nfsd 8 , 2777.Xr pcnfsd 8 , 2778.Xr pfctl 8 , 2779.Xr pflogd 8 , 2780.Xr quotacheck 8 , 2781.Xr quotaon 8 , 2782.Xr rc 8 , 2783.Xr rc.sendmail 8 , 2784.Xr resident 8 , 2785.Xr rndcontrol 8 , 2786.Xr route 8 , 2787.Xr routed 8 , 2788.Xr rpcbind 8 , 2789.Xr rpc.lockd 8 , 2790.Xr rpc.statd 8 , 2791.Xr rtadvd 8 , 2792.Xr rtsold 8 , 2793.Xr rwhod 8 , 2794.Xr savecore 8 , 2795.Xr sdpd 8 , 2796.Xr sensorsd 8 , 2797.Xr sshd 8 , 2798.Xr swapon 8 , 2799.Xr sysctl 8 , 2800.Xr syslogd 8 , 2801.Xr sysvipcd 8 , 2802.Xr timed 8 , 2803.Xr vinum 8 , 2804.Xr yp 8 , 2805.Xr ypbind 8 , 2806.Xr ypserv 8 , 2807.Xr ypset 8 2808.Sh HISTORY 2809The 2810.Nm 2811file appeared in 2812.Fx 2.2.2 . 2813.Sh AUTHORS 2814.An Jordan K. Hubbard . 2815