1.\" Copyright (c) 1995 2.\" Jordan K. Hubbard 3.\" 4.\" Redistribution and use in source and binary forms, with or without 5.\" modification, are permitted provided that the following conditions 6.\" are met: 7.\" 1. Redistributions of source code must retain the above copyright 8.\" notice, this list of conditions and the following disclaimer. 9.\" 2. Redistributions in binary form must reproduce the above copyright 10.\" notice, this list of conditions and the following disclaimer in the 11.\" documentation and/or other materials provided with the distribution. 12.\" 13.\" THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND 14.\" ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 15.\" IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 16.\" ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR BE LIABLE 17.\" FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 18.\" DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 19.\" OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 20.\" HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 21.\" LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 22.\" OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 23.\" SUCH DAMAGE. 24.\" 25.\" $FreeBSD: src/share/man/man5/rc.conf.5,v 1.197 2003/07/28 13:56:00 mbr Exp $ 26.\" 27.Dd June 17, 2019 28.Dt RC.CONF 5 29.Os 30.Sh NAME 31.Nm rc.conf 32.Nd system configuration information 33.Sh DESCRIPTION 34The file 35.Nm 36contains descriptive information about the local host name, configuration 37details for any potential network interfaces and which services should be 38started up at system initial boot time. 39In new installations, the 40.Nm 41file is generally initialized by the installer. 42.Pp 43The purpose of 44.Nm 45is not to run commands or perform system startup actions directly. 46Instead, it is included by the various generic startup scripts in 47.Pa /etc 48which conditionalize their 49internal actions according to the settings found there. 50.Pp 51The 52.Pa /etc/defaults/rc.conf 53file specifies the default settings for all the available options, 54the 55.Pa /etc/rc.conf 56file specifies override settings. 57Options need only be specified in 58.Pa /etc/rc.conf 59when the system administrator wishes to override the defaults. 60The file 61.Pa /etc/rc.conf.local 62is used to override settings in 63.Pa /etc/rc.conf 64for historical reasons. 65In addition to 66.Pa /etc/rc.conf.local 67you can also place smaller configuration files for each 68.Xr rc 8 69script in the 70.Pa /etc/rc.conf.d 71directory, which will be included by the 72.Va load_rc_config 73function. 74For jail configurations you could use the file 75.Pa /etc/rc.conf.d/jail 76to store jail specific configuration options. 77Also see the 78.Va rc_conf_files 79variable below. 80.Pp 81The following list provides a name and short description for each 82variable that can be set in the 83.Nm 84file. 85To set a variable of 86.Vt bool 87type, specify either 88.Dq Li YES , 89.Dq Li TRUE , 90.Dq Li ON , 91or 92.Dq Li 1 . 93To unset, specify 94.Dq Li NO , 95.Dq Li FALSE , 96.Dq Li OFF , 97or 98.Dq Li 0 . 99These values are case insensitive. 100The 101.Va _enable 102postfix in the name of a variable for starting a service can be 103omitted (as in 104.Nx ) . 105.Bl -tag -width indent-two 106.It Va rc_debug 107.Pq Vt bool 108If set to 109.Dq Li YES , 110enable output of debug messages from rc scripts. 111This variable can be helpful in diagnosing mistakes when 112editing or integrating new scripts. 113Beware that this produces copious output to the terminal and 114.Xr syslog 3 . 115.It Va rc_info 116.Pq Vt bool 117If set to 118.Dq Li NO , 119disable informational messages from the rc scripts. 120Informational messages are displayed when 121a condition that is not serious enough to warrant a warning or an error occurs. 122.It Va rc_startmsgs 123.Pq Vt bool 124If set to 125.Dq Li YES , 126show 127.Dq Starting foo: 128when faststart is used (e.g., at boot time). 129.It Va swapfile 130.Pq Vt str 131If set to 132.Dq Li NO , 133no swapfile is installed, otherwise the value is used as the full 134pathname to a file to use for additional swap space. 135The 136.Xr vn 4 137driver is needed for a swapfile and will be loaded if it is not 138already compiled into the kernel or loaded via 139.Xr loader.conf 5 . 140.It Ao Ar module Ac Ns Ar _load 141.Pq Vt bool 142If set to 143.Dq YES , 144that kernel module will be loaded. 145If no 146.Ao Ar module Ac Ns Ar _name 147is defined (see below), the 148module's name is taken to be 149.Aq Ar module . 150.It Ao Ar module Ac Ns Ar _name 151.Pq Vt str 152Defines the name of the module. 153.It Va devd_enable 154.Pq Vt bool 155Run 156.Xr devd 8 157to handle device added, removed or unknown events from the kernel. 158.It Va devd_flags 159.Pq Vt str 160If 161.Va devd_enable 162is set to 163.Dq Li YES , 164these are the flags to pass to the 165.Xr devd 8 166daemon. 167.It Va powerd_enable 168.Pq Vt bool 169Set to 170.Dq Li NO 171by default. 172Setting this to 173.Dq Li YES 174enables 175.Xr powerd 8 , 176a CPU speed control daemon. 177.It Va powerd_flags 178.Pq Vt str 179Empty by default. 180Additional flags passed to the 181.Xr powerd 8 182program. 183.It Va sensorsd_enable 184.Pq Vt bool 185Set to 186.Dq Li NO 187by default. 188Setting this to 189.Dq Li YES 190enables 191.Xr sensorsd 8 , 192a sensors monitoring and logging daemon. 193.It Va sensorsd_flags 194.Pq Vt str 195Empty by default. 196Additional flags passed to the 197.Xr sensorsd 8 198program. 199.It Va sysvipcd_enable 200.Pq Vt bool 201Set to 202.Dq Li NO 203by default. 204Setting this to 205.Dq Li YES 206enables 207.Xr sysvipcd 8 , 208a daemon needed for the userspace implementation of the XSI Interprocess 209Communication functions. 210.It Va sysvipcd_flags 211.Pq Vt str 212Empty by default. 213Additional flags passed to the 214.Xr sysvipcd 8 215program. 216.It Va hotplugd_enable 217.Pq Vt bool 218Set to 219.Dq Li NO 220by default. 221Setting this to 222.Dq Li YES 223enables 224.Xr hotplugd 8 , 225a devices hot plugging monitoring daemon. 226.It Va hotplugd_flags 227.Pq Vt str 228Empty by default. 229Additional flags passed to the 230.Xr hotplugd 8 231program. 232.It Va pccard_ifconfig 233.Pq Vt str 234List of arguments to be passed to 235.Xr ifconfig 8 236at boot time or on insertion of the card (e.g.\& 237.Dq Cm inet Li 192.168.1.1 Cm netmask Li 255.255.255.0 238for a fixed address or 239.Dq Li DHCP 240for a DHCP client). 241.It Va pccard_ether_delay 242.Pq Vt str 243Set the delay before starting the DHCP client (configured with 244.Va dhcp_client ) 245in the 246.Pa /etc/pccard_ether 247script. 248This defaults to 249.Dq Li 5 250seconds. 251.It Va removable_interfaces 252.Pq Vt str 253List of removable network interfaces to be supported by 254.Pa /etc/pccard_ether . 255.It Va local_startup 256.Pq Vt str 257List of directories to search for startup script files. 258.It Va script_name_sep 259.Pq Vt str 260The field separator to use for breaking down the list of startup script files 261into individual filenames. 262The default is a space. 263It is not necessary to change this unless there are startup scripts with names 264containing spaces. 265.It Va hostname 266.Pq Vt str 267The fully qualified domain name (FQDN) of this host on the network. 268This should almost certainly be set to something meaningful, even if 269there is no network connection. 270If DHCP is used to set the hostname, 271this variable should be set to an empty string. 272.It Va ipv6_enable 273.Pq Vt bool 274Enable support for IPv6 networking. 275Note that this requires that the kernel have been compiled with 276.Cd "options INET6" . 277.It Va nisdomainname 278.Pq Vt str 279The NIS domain name of this host, or 280.Dq Li NO 281if NIS is not used. 282.It Va dhcp_client 283.Pq Vt str 284Set the rc script that is called to start the DHCP client. 285This can be set to 286.Dq Li dhclient 287(default) or 288.Dq Li dhcpcd . 289.It Va dhclient_program 290.Pq Vt str 291Path to the 292.Xr dhclient 8 293program (default 294.Pa /sbin/dhclient ) . 295.It Va dhclient_flags 296.Pq Vt str 297Additional flags to pass to the 298.Xr dhclient 8 299program. 300.It Va dhcpcd_enable 301.Pq Vt bool 302Set to 303.Dq Li YES 304to run 305.Xr dhcpcd 8 306in master mode (i.e., configure all available Ethernet interfaces) at startup. 307.It Va dhcpcd_program 308.Pq Vt str 309Path to the 310.Xr dhcpcd 8 311program (default 312.Pa /sbin/dhcpcd ) . 313.It Va dhcpcd_flags 314.Pq Vt str 315Additional flags to pass to the 316.Xr dhcpcd 8 317program. 318The default value is 319.Fl b , 320i.e., tell 321.Xr dhcpcd 8 322to go to background immediately. 323.It Va pf_enable 324.Pq Vt bool 325Set to 326.Dq Li YES 327to load 328.Xr pf 4 329at startup. 330If the kernel was not built with 331.Cd "device pf" , 332the 333.Pa pf.ko 334kernel module will be loaded. 335See also 336.Va firewall_enable . 337.It Va pf_rules 338.Pq Vt str 339Path to the 340.Xr pf 4 341ruleset definition file. 342.It Va pf_program 343.Pq Vt str 344Path to 345.Xr pfctl 8 . 346.It Va pf_flags 347.Pq Vt str 348If 349.Va pf_enable 350is set to 351.Dq Li YES , 352these are the flags to pass to 353.Xr pfctl 8 354when loading the ruleset. 355.It Va pflog_enable 356.Pq Vt bool 357Set this to 358.Dq Li YES 359to enable 360.Xr pflogd 8 361which logs packets from 362.Xr pf 4 . 363.It Va pflog_logfile 364.Pq Vt str 365If 366.Va pflog_enable 367is set to 368.Dq Li YES 369this specifies the path of the log file. 370.It Va pflog_program 371.Pq Vt str 372Path to 373.Xr pflogd 8 . 374.It Va pflog_flags 375.Pq Vt str 376If 377.Va pflog_enable 378is set to 379.Dq Li YES , 380these are the flags to pass to 381.Xr pflogd 8 . 382.It Va firewall_enable 383.Pq Vt bool 384Set to 385.Dq Li YES 386to load firewall rules at startup. 387If the kernel was not built with 388.Cd "options IPFIREWALL" , 389the 390.Pa ipfw.ko 391kernel module will be loaded. 392See also 393.Va pf_enable . 394.It Va ipv6_firewall_enable 395.Pq Vt bool 396The IPv6 equivalent of 397.Va firewall_enable . 398Set to 399.Dq Li YES 400to load IPv6 firewall rules at startup. 401If the kernel was not built with 402.Cd "options IPV6FIREWALL" , 403the 404.Pa ip6fw.ko 405kernel module will be loaded. 406.It Va firewall_script 407.Pq Vt str 408The full path to the firewall script to run 409(default 410.Pa /etc/rc.firewall ) . 411.It Va ipv6_firewall_script 412.Pq Vt str 413The IPv6 equivalent of 414.Va firewall_script . 415.It Va firewall_type 416.Pq Vt str 417Names the firewall type from the selection in 418.Pa /etc/rc.firewall , 419or the file which contains the local firewall ruleset. 420Valid selections from 421.Pa /etc/rc.firewall 422are: 423.Pp 424.Bl -tag -width ".Li simple" -compact 425.It Li open 426unrestricted IP access 427.It Li closed 428all IP services disabled, except via 429.Dq Li lo0 430.It Li client 431basic protection for a workstation on a LAN 432.It Li simple 433alias for 434.Li client . 435.El 436.Pp 437If a filename is specified, the full path must be given. 438.It Va firewall_trusted_nets 439.Pq Vt str 440List of trusted networks (if 441.Va firewall_type 442is set to 443.Li client ) . 444.It Va firewall_trusted_interfaces 445.Pq Vt str 446List of trusted network interfaces (if 447.Va firewall_type 448is set to 449.Li client ) . 450.It Va firewall_allowed_icmp_types 451.Pq Vt str 452List of allowed ICMP types (if 453.Va firewall_type 454is set to 455.Li client ) . 456.It Va firewall_open_tcp_ports 457.Pq Vt str 458List of TCP ports to open (if 459.Va firewall_type 460is set to 461.Li client ) . 462.It Va firewall_open_udp_ports 463.Pq Vt str 464List of UDP ports to open (if 465.Va firewall_type 466is set to 467.Li client ) . 468.It Va ipv6_firewall_type 469.Pq Vt str 470The IPv6 equivalent of 471.Va firewall_type . 472.It Va firewall_quiet 473.Pq Vt bool 474Set to 475.Dq Li YES 476to disable the display of firewall rules on the console during boot. 477.It Va ipv6_firewall_quiet 478.Pq Vt bool 479The IPv6 equivalent of 480.Va firewall_quiet . 481.It Va firewall_logging 482.Pq Vt bool 483Set to 484.Dq Li YES 485to enable firewall event logging. 486This is equivalent to the 487.Dv IPFIREWALL_VERBOSE 488kernel option. 489.It Va ipv6_firewall_logging 490.Pq Vt bool 491The IPv6 equivalent of 492.Va firewall_logging . 493.It Va firewall_flags 494.Pq Vt str 495Flags passed to 496.Xr ipfw 8 497if 498.Va firewall_type 499specifies a filename. 500.It Va ipv6_firewall_flags 501.Pq Vt str 502The IPv6 equivalent of 503.Va firewall_flags . 504.It Va ipfw3_enable 505.Pq Vt bool 506Set to 507.Dq Li YES 508to enable 509.Xr ipfw3 8 . 510.It Va ipfw3_program 511.Pq Vt str 512Path to 513.Xr ipfw3 8 . 514.It Va ipfw3_script 515.Pq Vt str 516The full path to the shell script to run to set up the ipfw3 517firewall rules (default 518.Pa /etc/ipfw3.rules ) . 519.It Va ipfw3_modules 520.Pq Vt str 521List of ipfw3 modules to be loaded before executing the above 522.Va ipfw3_script . 523(default 524.Dq Li ipfw3 ipfw3_basic ) . 525.It Va natd_program 526.Pq Vt str 527Path to 528.Xr natd 8 . 529.It Va natd_enable 530.Pq Vt bool 531Set to 532.Dq Li YES 533to enable 534.Xr natd 8 . 535.Va firewall_enable 536must also be set to 537.Dq Li YES , 538and 539.Xr divert 4 540sockets must be enabled in the kernel. 541.It Va natd_interface 542.Pq Vt str 543This is the name of the public interface on which 544.Xr natd 8 545should run. 546The interface may be given as an interface name or as an IP address. 547.It Va natd_flags 548.Pq Vt str 549Additional 550.Xr natd 8 551flags should be placed here. 552The 553.Fl n 554or 555.Fl a 556flag is automatically added with the above 557.Va natd_interface 558as an argument. 559.It Va tcp_extensions 560.Pq Vt bool 561Set to 562.Dq Li YES 563by default. 564Setting this to 565.Dq Li NO 566disables certain TCP options as described by 567.Rs 568.%T "RFC 1323" 569.Re 570Setting this to 571.Dq Li NO 572might help remedy such problems with connections as randomly hanging 573or other weird behavior. 574Some network devices are known to be broken with respect to these options. 575.It Va log_in_vain 576.Pq Vt int 577Set to 0 by default. 578The 579.Xr sysctl 8 580variables, 581.Va net.inet.tcp.log_in_vain 582and 583.Va net.inet.udp.log_in_vain , 584as described in 585.Xr tcp 4 586and 587.Xr udp 4 , 588are set to the given value. 589.It Va tcp_keepalive 590.Pq Vt bool 591Set to 592.Dq Li YES 593by default. 594Setting to 595.Dq Li NO 596will disable probing idle TCP connections to verify that the 597peer is still up and reachable. 598.It Va tcp_drop_synfin 599.Pq Vt bool 600Set to 601.Dq Li NO 602by default. 603Setting to 604.Dq Li YES 605will cause the kernel to ignore TCP frames that have both 606the SYN and FIN flags set. 607This prevents OS fingerprinting, but may break some legitimate applications. 608This option is only available if the kernel was built with the 609.Dv TCP_DROP_SYNFIN 610option. 611.It Va icmp_drop_redirect 612.Pq Vt bool 613Set to 614.Dq Li NO 615by default. 616Setting to 617.Dq Li YES 618will cause the kernel to ignore ICMP REDIRECT packets. 619Refer to 620.Xr icmp 4 621for more information. 622.It Va icmp_log_redirect 623.Pq Vt bool 624Set to 625.Dq Li NO 626by default. 627Setting to 628.Dq Li YES 629will cause the kernel to log ICMP REDIRECT packets. 630Note that 631the log messages are not rate-limited, so this option should only be used 632for troubleshooting networks. 633Refer to 634.Xr icmp 4 635for more information. 636.It Va icmp_bmcastecho 637.Pq Vt bool 638Set to 639.Dq Li YES 640to respond to broadcast or multicast ICMP ping packets. 641Refer to 642.Xr icmp 4 643for more information. 644.It Va ip_portrange_first 645.Pq Vt int 646If not set to 647.Dq Li NO , 648this is the first port in the default portrange. 649Refer to 650.Xr ip 4 651for more information. 652.It Va ip_portrange_last 653.Pq Vt int 654If not set to 655.Dq Li NO , 656this is the last port in the default portrange. 657Refer to 658.Xr ip 4 659for more information. 660.\" 661.It Va ifconfig_ Ns Aq Ar interface 662.Pq Vt str 663Configuration for 664.Dq interface . 665Typically includes IP address. 666Assuming that the interface in question was 667.Li ed0 , 668it might look something like this: 669.Bd -literal 670ifconfig_ed0="inet 10.0.0.1 netmask 0xffff0000" 671.Ed 672.Pp 673If the 674.Pa /etc/start_if. Ns Aq Ar interface 675file is present, it is read and executed by the 676.Xr sh 1 677interpreter before configuring the interface as specified in the 678.Va ifconfig_ Ns Aq Ar interface 679and 680.Va ifconfig_ Ns Ao Ar interface Ac Ns Va _alias Ns Aq Ar n 681variables. 682.Pp 683It is possible to bring up an interface with DHCP by adding 684.Dq Li DHCP 685to the 686.Va ifconfig_ Ns Aq Ar interface 687variable. 688For instance, to initialize the 689.Li ed0 690device via DHCP, it is possible to use something like: 691.Bd -literal 692ifconfig_ed0="DHCP" 693.Ed 694.Pp 695If a 696.Va vlans_ Ns Aq Ar interface 697variable is set, 698a 699.Xr vlan 4 700interface will be created for each item in the list with the 701.Ar vlandev 702argument set to 703.Ar interface . 704If a vlan interface's name is a number, 705then that number is used as the vlan tag and the new vlan interface is 706named 707.Ar interface . Ns Ar tag . 708Otherwise, 709the vlan tag must be specified via a 710.Va vlan 711parameter in the 712.Va create_args_ Ns Aq Ar interface 713variable. 714.Pp 715To create a vlan device named 716.Li em0.101 717on 718.Li em0 719with the vlan tag 101 and the optional the IPv4 address 192.0.2.1/24: 720.Bd -literal 721vlans_em0="101" 722ifconfig_em0_101="inet 192.0.2.1/24" 723.Ed 724.Pp 725To create a vlan device named 726.Li myvlan 727on 728.Li em0 729with the vlan tag 102: 730.Bd -literal 731vlans_em0="myvlan" 732create_args_myvlan="vlan 102" 733.Ed 734.Pp 735If a 736.Va wlans_ Ns Aq Ar interface 737variable is set, 738an 739.Xr wlan 4 740interface will be created for each item in the list with the 741.Ar wlandev 742argument set to 743.Ar interface . 744Further wlan cloning arguments may be passed to the 745.Xr ifconfig 8 746.Cm create 747command by setting the 748.Va create_args_ Ns Aq Ar interface 749variable. 750One or more 751.Xr wlan 4 752devices must be created for each wireless devices as of 753.Dx 2.5 . 754Debugging flags for 755.Xr wlan 4 756devices as set by 757.Xr wlandebug 8 758may be specified with an 759.Va wlandebug_ Ns Aq Ar interface 760variable. 761The contents of this variable will be passed directly to 762.Xr wlandebug 8 . 763.Pp 764Also, if your interface needs WPA authentication, it is possible to add 765.Dq Li WPA 766to the 767.Va ifconfig_ Ns Aq Ar interface 768variable. 769This will start 770.Xr wpa_supplicant 8 . 771See 772.Xr wpa_supplicant.conf 5 773for configuring authentication information. 774.Pp 775Finally, you can add 776.Xr ifconfig 8 777options in this variable, in addition to the 778.Pa /etc/start_if. Ns Aq Ar interface 779file. 780For instance, to initialize the 781.Li wi0 782device via DHCP, using WPA authentication and 802.11b mode, it is 783possible to use something like: 784.Bd -literal 785wlans_wi0="wlan0" 786ifconfig_wlan0="up DHCP WPA mode 11b" 787.Ed 788.It Va ifconfig_ Ns Ao Ar interface Ac Ns Va _alias Ns Aq Ar n 789.Pq Vt str 790Configuration to establish an additional network address for 791.Dq interface . 792Assuming that the interface in question was 793.Li ed0 , 794it might look something like this: 795.Bd -literal 796ifconfig_ed0_alias0="inet 127.0.0.253 netmask 0xffffffff" 797ifconfig_ed0_alias1="inet 127.0.0.254 netmask 0xffffffff" 798.Ed 799.Pp 800And so on. 801For each 802.Va ifconfig_ Ns Ao Ar interface Ac Ns Va _alias Ns Aq Ar n 803entry that is found, its contents are passed to 804.Xr ifconfig 8 . 805Execution stops at the first unsuccessful access, so if 806something like this is present: 807.Bd -literal 808ifconfig_ed0_alias0="inet 127.0.0.251 netmask 0xffffffff" 809ifconfig_ed0_alias1="inet 127.0.0.252 netmask 0xffffffff" 810ifconfig_ed0_alias2="inet 127.0.0.253 netmask 0xffffffff" 811ifconfig_ed0_alias4="inet 127.0.0.254 netmask 0xffffffff" 812.Ed 813.Pp 814Then note that alias4 would 815.Em not 816be added since the search would stop with the missing alias3 entry. 817.It Va ifconfig_ Ns Ao Ar interface Ac Ns Va _name 818.Pq Vt str 819New name for 820.Dq interface . 821It is possible to rename interface by doing: 822.Bd -literal 823ifconfig_ed0_name="net0" 824ifconfig_net0="inet 10.0.0.1 netmask 0xffff0000" 825.Ed 826.It Va netif_enable 827.Pq Vt bool 828Set to 829.Dq Li YES 830by default. 831Setting to 832.Dq Li NO 833will disable the configuration of network interfaces. 834.It Va network_interfaces 835.Pq Vt str 836The list of network interfaces to configure on this host, 837or 838.Dq Li auto 839to configure all network interfaces 840(default 841.Dq Li auto ) . 842For example, if the only network devices to be configured are the loopback device 843.Pq Li lo0 844and a NIC using the 845.Xr em 4 846driver, this could be set to 847.Dq Li "lo0 em0" . 848An 849.Va ifconfig_ Ns Aq Ar interface 850variable is assumed to exist for each value of 851.Ar interface . 852.It Va ipv6_network_interfaces 853.Pq Vt str 854This is the IPv6 equivalent of 855.Va network_interfaces . 856Instead of setting the ifconfig variables as 857.Va ifconfig_ Ns Aq Ar interface 858they should be set as 859.Va ipv6_ifconfig_ Ns Aq Ar interface . 860Aliases should be set as 861.Va ipv6_ifconfig_ Ns Ao Ar interface Ac Ns Va _alias Ns Aq Ar n . 862Interfaces that do not have a 863.Va ipv6_ifconfig_ Ns Aq Ar interface 864setting will be auto configured by 865.Xr rtsol 8 866if the 867.Va ipv6_gateway_enable 868is set to 869.Dq Li NO . 870Note that the IPv6 networking code does not support the 871.Pa /etc/start_if. Ns Aq Ar interface 872files. 873.It Va ipv6_prefix_ Ns Aq Ar interface 874.Pq Vt str 875Assign prefix to 876.Ar interface , 877prefixlen 64 is used. 878.It Va ipv6_default_interface 879.Pq Vt str 880If not set to 881.Dq Li NO , 882this is the default output interface for scoped addresses. 883Now this works only for IPv6 link local multicast addresses. 884.It Va ip6addrctl_enable 885.Pq Vt bool 886This variable is to enable configuring the default address selection policy table 887.Pq RFC 3484 . 888The default value is 889.Dq Li YES , 890and the policy table to be installed is specified by the 891.Va ip6addrctl_policy 892variable below. 893.It Va ip6addrctl_policy 894.Pq Vt str 895This variable specifies the policy table to be installed, 896and can be one of the following keywords: 897.Dq Li ipv4_prefer , 898.Dq Li ipv6_prefer , 899or 900.Dq Li AUTO 901(default). 902.Pp 903If 904.Dq Li ipv4_prefer 905or 906.Dq Li ipv6_prefer 907is specified, 908.Xr ip6addrctl 8 909installs a pre-defined policy table described in Section 2.1 910.Pq IPv6-preferred 911or 10.3 912.Pq IPv4-preferred 913of RFC 3484. 914.Pp 915If 916.Dq Li AUTO 917is specified, it attempts to read a file 918.Pa /etc/ip6addrctl.conf 919first. 920If this file is found, 921.Xr ip6addrctl 8 922reads and installs it. 923If not found, a policy is automatically set 924according to 925.Va ipv6_enable 926variable; if the variable is set to 927.Dq Li YES 928the IPv6-preferred one is used. 929Otherwise IPv4-preferred. 930.It Va ip6addrctl_verbose 931.Pq Vt bool 932If set to 933.Dq Li YES , 934print the installed policy table after configuring. 935The default value is 936.Dq Li NO . 937.It Va cloned_interfaces 938.Pq Vt str 939Set to the list of clonable network interfaces to create on this host. 940Entries in 941.Va cloned_interfaces 942are automatically appended to 943.Va network_interfaces 944for configuration. 945.It Va gif_interfaces 946.Pq Vt str 947Set to the list of 948.Xr gif 4 949tunnel interfaces to configure on this host. 950A 951.Va gifconfig_ Ns Aq Ar interface 952variable is assumed to exist for each value of 953.Ar interface . 954The value of this variable is used to configure the link layer of the 955tunnel according to the syntax of the 956.Cm tunnel 957option to 958.Xr ifconfig 8 . 959Additionally, this option ensures that each listed interface is created via the 960.Cm create 961option to 962.Xr ifconfig 8 963before attempting to configure it. 964.It Va sppp_interfaces 965.Pq Vt str 966Set to the list of 967.Xr sppp 4 968interfaces to configure on this host. 969A 970.Va spppconfig_ Ns Aq Ar interface 971variable is assumed to exist for each value of 972.Ar interface . 973Each interface should also be configured by a general 974.Va ifconfig_ Ns Aq Ar interface 975setting. 976Refer to 977.Xr spppcontrol 8 978for more information about available options. 979.It Va ppp_enable 980.Pq Vt bool 981If set to 982.Dq Li YES , 983run the 984.Xr ppp 8 985daemon. 986.It Va ppp_mode 987.Pq Vt str 988Mode in which to run the 989.Xr ppp 8 990daemon. 991Accepted modes are 992.Dq Li auto , 993.Dq Li ddial , 994.Dq Li direct 995and 996.Dq Li dedicated . 997See the manual for a full description. 998.It Va ppp_nat 999.Pq Vt bool 1000If set to 1001.Dq Li YES , 1002enables network address translation. 1003Used in conjunction with 1004.Va gateway_enable 1005allows hosts on private network addresses access to the Internet using 1006this host as a network address translating router. 1007.It Va ppp_profile 1008.Pq Vt str 1009The name of the profile to use from 1010.Pa /etc/ppp/ppp.conf . 1011Also used for per-profile overrides of 1012.Va ppp_ Ns Ao Ar profile Ac Ns _unit . 1013Where the profile contains any of the characters 1014.Dq Li .-/+ 1015they are translated to 1016.Dq Li _ 1017for the purposes of the override variable names. 1018.It Va ppp_ Ns Ao Ar profile Ac Ns _unit 1019.Pq Vt int 1020Set the unit number to be used for this profile. 1021See the manual description of 1022.Fl unit Ns Ar N 1023in 1024.Xr ppp 8 1025for details. 1026.It Va ppp_user 1027.Pq Vt str 1028The name of the user under which 1029.Xr ppp 8 1030should be started. 1031By default, 1032.Xr ppp 8 1033is started as 1034.Dq Li root . 1035.It Va rc_conf_files 1036.Pq Vt str 1037This option is used to specify a list of files that will override 1038the settings in 1039.Pa /etc/defaults/rc.conf . 1040The files will be read in the order in which they are specified and should 1041include the full path to the file. 1042By default, the files specified are 1043.Pa /etc/rc.conf 1044and 1045.Pa /etc/rc.conf.local 1046.It Va fsck_y_enable 1047.Pq Vt bool 1048If set to 1049.Dq Li YES , 1050.Xr fsck 8 1051will be run with the 1052.Fl y 1053flag if the initial preen of the file systems fails. 1054.It Va netfs_types 1055.Pq Vt str 1056List of file system types that are network-based. 1057This list should generally not be modified by end users. 1058Use 1059.Va extra_netfs_types 1060instead. 1061.It Va extra_netfs_types 1062.Pq Vt str 1063If set to something other than 1064.Dq Li NO 1065(the default), this variable extends the list of file system types 1066for which automatic mounting at startup by 1067.Xr rc 8 1068should be delayed until the network is initialized. 1069It should contain 1070a whitespace-separated list of network file system descriptor pairs, 1071each consisting of a file system type as passed to 1072.Xr mount 8 1073and a human-readable, one-word description, joined with a colon 1074.Pq Ql \&: . 1075Extending the default list in this way is only necessary 1076when third party file system types are used. 1077.It Va devfs_config_files 1078.Pq Vt str 1079This option is used to specify a list of configuration files containing 1080.Xr devfs 5 1081rules that will be applied by 1082.Xr devfsctl 8 1083in the order in which they are specified and must include the full path 1084to the file. 1085.It Va syslogd_enable 1086.Pq Vt bool 1087If set to 1088.Dq Li YES , 1089run the 1090.Xr syslogd 8 1091daemon. 1092.It Va syslogd_program 1093.Pq Vt str 1094Path to 1095.Xr syslogd 8 1096(default 1097.Pa /usr/sbin/syslogd ) . 1098.It Va syslogd_flags 1099.Pq Vt str 1100If 1101.Va syslogd_enable 1102is set to 1103.Dq Li YES , 1104these are the flags to pass to 1105.Xr syslogd 8 . 1106.It Va inetd_enable 1107.Pq Vt bool 1108If set to 1109.Dq Li YES , 1110run the 1111.Xr inetd 8 1112daemon. 1113.It Va inetd_program 1114.Pq Vt str 1115Path to 1116.Xr inetd 8 1117(default 1118.Pa /usr/sbin/inetd ) . 1119.It Va inetd_flags 1120.Pq Vt str 1121If 1122.Va inetd_enable 1123is set to 1124.Dq Li YES , 1125these are the flags to pass to 1126.Xr inetd 8 . 1127.It Va rwhod_enable 1128.Pq Vt bool 1129If set to 1130.Dq Li YES , 1131run the 1132.Xr rwhod 8 1133daemon at boot time. 1134.It Va rwhod_flags 1135.Pq Vt str 1136If 1137.Va rwhod_enable 1138is set to 1139.Dq Li YES , 1140these are the flags to pass to it. 1141.It Va update_motd 1142.Pq Vt bool 1143If set to 1144.Dq Li YES , 1145.Pa /etc/motd 1146will be updated at boot time to reflect the kernel release being run. 1147If set to 1148.Dq Li NO , 1149.Pa /etc/motd 1150will not be updated. 1151.It Va nfs_client_enable 1152.Pq Vt bool 1153If set to 1154.Dq Li YES , 1155setup NFS client parameters at boot time. 1156.It Va nfs_access_cache 1157.Pq Vt int 1158If 1159.Va nfs_client_enable 1160is set to 1161.Dq Li YES , 1162this can be set to 1163.Dq Li 0 1164to disable NFS ACCESS RPC caching, or to the number of seconds for which 1165NFS ACCESS results should be cached. 1166A value of 2-10 seconds will substantially reduce network traffic for 1167many NFS operations. 1168The default is 5 seconds. 1169Note that the attribute cache holds stat information only. 1170The NFS data cache is independent of the attribute cache and is only 1171invalidated when the client detects that the server has modified the 1172underlying file. 1173This value specifies a maximum timeout. 1174The NFS client will automatically use a shorter timeout for files which 1175have been recently modified. 1176.It Va nfs_neg_cache 1177.Pq Vt int 1178If 1179.Va nfs_client_enable 1180is set to 1181.Dq Li YES , 1182this can be set to 1183.Dq Li 0 1184to disable the caching of NEGATIVE LOOKUPS (lookups of non-existent 1185filenames), or to the number of seconds for which negative lookups should 1186be cached. 1187A value of 2-10 seconds will substantially reduce network 1188traffic for many NFS operations, especially source code builds. 1189The default is 3 seconds. 1190.It Va nfs_server_enable 1191.Pq Vt bool 1192If set to 1193.Dq Li YES , 1194run the NFS server daemons at boot time. 1195.It Va nfs_server_flags 1196.Pq Vt str 1197If 1198.Va nfs_server_enable 1199is set to 1200.Dq Li YES , 1201these are the flags to pass to the 1202.Xr nfsd 8 1203daemon. 1204.It Va mountd_enable 1205.Pq Vt bool 1206If set to 1207.Dq Li YES , 1208and no 1209.Va nfs_server_enable 1210is set, start 1211.Xr mountd 8 , 1212but not 1213.Xr nfsd 8 1214daemon. 1215It is commonly needed to run CFS without real NFS used. 1216.It Va mountd_flags 1217.Pq Vt str 1218If 1219.Va mountd_enable 1220is set to 1221.Dq Li YES , 1222these are the flags to pass to the 1223.Xr mountd 8 1224daemon. 1225.It Va weak_mountd_authentication 1226.Pq Vt bool 1227If set to 1228.Dq Li YES , 1229allow services like PCNFSD to make non-privileged mount requests. 1230.It Va nfs_reserved_port_only 1231.Pq Vt bool 1232If set to 1233.Dq Li YES , 1234provide NFS services only on a secure port. 1235.It Va nfs_bufpackets 1236.Pq Vt int 1237If set to a number, indicates the number of packets worth of 1238socket buffer space to reserve on an NFS client. 1239The kernel default is typically 4. 1240Using a higher number may be useful on gigabit networks to improve performance. 1241The minimum value is 2 and the maximum is 64. 1242.It Va rpc_umntall_enable 1243.Pq Vt bool 1244If set to 1245.Dq Li YES 1246(default) and we are also an NFS client, run 1247.Xr rpc.umntall 8 1248at boot time to clear out old mounts on remote servers. 1249If set to 1250.Dq Li NO 1251then 1252.Xr rpc.umntall 8 1253will not be run at boot time. 1254.It Va rpc_lockd_enable 1255.Pq Vt bool 1256If set to 1257.Dq Li YES 1258and also an NFS server, run 1259.Xr rpc.lockd 8 1260at boot time. 1261.It Va rpc_lockd_flags 1262.Pq Vt str 1263If 1264.Va rpc_lockd_enable 1265is set to 1266.Dq Li YES , 1267these are the flags to pass to 1268.Xr rpc.lockd 8 . 1269.It Va rpc_statd_enable 1270.Pq Vt bool 1271If set to 1272.Dq Li YES 1273and also an NFS server, run 1274.Xr rpc.statd 8 1275at boot time. 1276.It Va rpc_statd_flags 1277.Pq Vt str 1278If 1279.Va rpc_statd_enable 1280is set to 1281.Dq Li YES , 1282these are the flags to pass to 1283.Xr rpc.statd 8 . 1284.It Va rpcbind_program 1285.Pq Vt str 1286Path to program for rpcbind daemon 1287(default 1288.Pa /usr/sbin/rpcbind ) . 1289.It Va rpcbind_enable 1290.Pq Vt bool 1291If set to 1292.Dq Li YES , 1293run 1294.Va rpcbind_program 1295at boot time. 1296.It Va rpcbind_flags 1297.Pq Vt str 1298If 1299.Va rpcbind_enable 1300is set to 1301.Dq Li YES , 1302these are the flags to pass to 1303.Va rpcbind_program . 1304.It Va keyserv_enable 1305.Pq Vt bool 1306If set to 1307.Dq Li YES , 1308run the 1309.Xr keyserv 8 1310daemon on boot for running Secure RPC. 1311.It Va keyserv_flags 1312.Pq Vt str 1313If 1314.Va keyserv_enable 1315is set to 1316.Dq Li YES , 1317these are the flags to pass to 1318.Xr keyserv 8 1319daemon. 1320.It Va pppoed_enable 1321.Pq Vt bool 1322If set to 1323.Dq Li YES , 1324run the 1325.Xr pppoed 8 1326daemon at boot time to provide PPP over Ethernet services. 1327.It Va pppoed_provider 1328.Pq Vt str 1329.Xr pppoed 8 1330listens to requests to this provider and ultimately runs 1331.Xr ppp 8 1332with a 1333.Ar system 1334argument of the same name. 1335.It Va pppoed_flags 1336.Pq Vt str 1337Additional flags to pass to 1338.Xr pppoed 8 . 1339.It Va pppoed_interface 1340.Pq Vt str 1341The network interface to run 1342.Xr pppoed 8 1343on. 1344This is mandatory when 1345.Va pppoed_enable 1346is set to 1347.Dq Li YES . 1348.It Va dntpd_enable 1349.Pq Vt bool 1350If set to 1351.Dq Li YES , 1352run 1353.Xr dntpd 8 1354at system boot time. 1355.It Va dntpd_program 1356.Pq Vt str 1357Path to 1358.Xr dntpd 8 1359(default 1360.Pa /usr/sbin/dntpd ) . 1361.It Va dntpd_flags 1362.Pq Vt str 1363If 1364.Va dntpd_enable 1365is set to 1366.Dq Li YES , 1367these are the flags to pass to the 1368.Xr dntpd 8 1369daemon. 1370.It Va btconfig_enable 1371.Pq Vt bool 1372If set to 1373.Dq Li YES , 1374configure Bluetooth devices via 1375.Xr btconfig 8 1376at system boot time. 1377.It Va btconfig_devices 1378.Pq Vt str 1379If 1380.Va btconfig_enable 1381is set to 1382.Dq Li YES , 1383this is the list of Bluetooth devices to configure. 1384If 1385.Va btconfig_devices 1386is not specified, all devices known to the system will be configured. 1387A 1388.Va btconfig_ Ns Aq Ar device 1389variable can be set to specify parameters to be passed to 1390.Ar device . 1391.It Va btconfig_args 1392.Pq Vt str 1393If 1394.Va btconfig_enable 1395is set to 1396.Dq Li YES , 1397this is the list of configuration parameters to pass to all Bluetooth 1398devices. 1399.It Va sdpd_enable 1400.Pq Vt bool 1401If set to 1402.Dq Li YES , 1403run the Service Discovery Profile daemon 1404.Xr ( sdpd 8 ) 1405at system boot time. 1406.It Va sdpd_flags 1407.Pq Vt str 1408If 1409.Va sdpd_enable 1410is set to 1411.Dq Li YES , 1412these are the flags to pass to the 1413.Xr sdpd 8 1414daemon. 1415.It Va bthcid_enable 1416.Pq Vt bool 1417If set to 1418.Dq Li YES , 1419run the Bluetooth Link Key/PIN Code Manager daemon 1420.Xr ( bthcid 8 ) 1421at system boot time. 1422.It Va bthcid_flags 1423.Pq Vt str 1424If 1425.Va bthcid_enable 1426is set to 1427.Dq Li YES , 1428these are the flags to pass to the 1429.Xr bthcid 8 1430daemon. 1431.It Va nis_client_enable 1432.Pq Vt bool 1433If set to 1434.Dq Li YES , 1435run the 1436.Xr ypbind 8 1437service at system boot time. 1438.It Va nis_client_flags 1439.Pq Vt str 1440If 1441.Va nis_client_enable 1442is set to 1443.Dq Li YES , 1444these are the flags to pass to the 1445.Xr ypbind 8 1446service. 1447.It Va nis_ypset_enable 1448.Pq Vt bool 1449If set to 1450.Dq Li YES , 1451run the 1452.Xr ypset 8 1453daemon at system boot time. 1454.It Va nis_ypset_flags 1455.Pq Vt str 1456If 1457.Va nis_ypset_enable 1458is set to 1459.Dq Li YES , 1460these are the flags to pass to the 1461.Xr ypset 8 1462daemon. 1463.It Va nis_server_enable 1464.Pq Vt bool 1465If set to 1466.Dq Li YES , 1467run the 1468.Xr ypserv 8 1469daemon at system boot time. 1470.It Va nis_server_flags 1471.Pq Vt str 1472If 1473.Va nis_server_enable 1474is set to 1475.Dq Li YES , 1476these are the flags to pass to the 1477.Xr ypserv 8 1478daemon. 1479.It Va nis_ypxfrd_enable 1480.Pq Vt bool 1481If set to 1482.Dq Li YES , 1483run the 1484.Xr rpc.ypxfrd 8 1485daemon at system boot time. 1486.It Va nis_ypxfrd_flags 1487.Pq Vt str 1488If 1489.Va nis_ypxfrd_enable 1490is set to 1491.Dq Li YES , 1492these are the flags to pass to the 1493.Xr rpc.ypxfrd 8 1494daemon. 1495.It Va nis_yppasswdd_enable 1496.Pq Vt bool 1497If set to 1498.Dq Li YES , 1499run the 1500.Xr rpc.yppasswdd 8 1501daemon at system boot time. 1502.It Va nis_yppasswdd_flags 1503.Pq Vt str 1504If 1505.Va nis_yppasswdd_enable 1506is set to 1507.Dq Li YES , 1508these are the flags to pass to the 1509.Xr rpc.yppasswdd 8 1510daemon. 1511.It Va rpc_ypupdated_enable 1512.Pq Vt bool 1513If set to 1514.Dq Li YES , 1515run the 1516.Nm rpc.ypupdated 1517daemon at system boot time. 1518.It Va defaultrouter 1519.Pq Vt str 1520If not set to 1521.Dq Li NO , 1522create a default route to this host name or IP address 1523(use an IP address if this router is also required to get to the 1524name server!). 1525.It Va ipv6_defaultrouter 1526.Pq Vt str 1527The IPv6 equivalent of 1528.Va defaultrouter . 1529.It Va static_routes 1530.Pq Vt str 1531Set to the list of static routes that are to be added at system boot time. 1532If not set to 1533.Dq Li NO 1534then for each whitespace separated 1535.Ar element 1536in the value, a 1537.Va route_ Ns Aq Ar element 1538variable is assumed to exist whose contents will later be passed to a 1539.Dq Nm route Cm add 1540operation. 1541.It Va change_routes 1542.Pq Vt str 1543Set to the list of static routes that are to be changed at system boot time 1544(such as those added by the kernel). 1545If not set to 1546.Dq Li NO 1547then for each whitespace separated 1548.Ar element 1549in the value, a 1550.Va change_route_ Ns Aq Ar element 1551variable is assumed to exist whose contents will later be passed to a 1552.Dq Nm route Cm change 1553operation. 1554.It Va ipv6_static_routes 1555.Pq Vt str 1556The IPv6 equivalent of 1557.Va static_routes . 1558If not set to 1559.Dq Li NO 1560then for each whitespace separated 1561.Ar element 1562in the value, a 1563.Va ipv6_route_ Ns Aq Ar element 1564variable is assumed to exist whose contents will later be passed to a 1565.Dq Nm route Cm add Fl inet6 1566operation. 1567.It Va gateway_enable 1568.Pq Vt bool 1569If set to 1570.Dq Li YES , 1571configure host to act as an IP router, e.g. to forward packets 1572between interfaces. 1573.It Va ipv6_gateway_enable 1574.Pq Vt bool 1575The IPv6 equivalent of 1576.Va gateway_enable . 1577.It Va router_enable 1578.Pq Vt bool 1579If set to 1580.Dq Li YES , 1581run a routing daemon of some sort, based on the settings of 1582.Va router_program 1583and 1584.Va router_flags . 1585.It Va ipv6_router_enable 1586.Pq Vt bool 1587The IPv6 equivalent of 1588.Va router_enable . 1589If set to 1590.Dq Li YES , 1591run a routing daemon of some sort, based on the settings of 1592.Va ipv6_router_program 1593and 1594.Va ipv6_router_flags . 1595.It Va router_program 1596.Pq Vt str 1597If 1598.Va router_enable 1599is set to 1600.Dq Li YES , 1601this is the name of the routing daemon to use 1602(default 1603.Pa /sbin/routed ) . 1604.It Va ipv6_router_program 1605.Pq Vt str 1606The IPv6 equivalent of 1607.Va router_program 1608(default 1609.Pa /sbin/route6d ) . 1610.It Va router_flags 1611.Pq Vt str 1612If 1613.Va router_enable 1614is set to 1615.Dq Li YES , 1616these are the flags to pass to the routing daemon. 1617.It Va ipv6_router_flags 1618.Pq Vt str 1619The IPv6 equivalent of 1620.Va router_flags . 1621.It Va mrouted_enable 1622.Pq Vt bool 1623If set to 1624.Dq Li YES , 1625run the multicast routing daemon, 1626.Xr mrouted 8 . 1627.It Va mroute6d_enable 1628.Pq Vt bool 1629The IPv6 equivalent of 1630.Va mrouted_enable . 1631If set to 1632.Dq Li YES , 1633run the IPv6 multicast routing daemon. 1634Note that no IPv6 multicast routing daemon is included in the 1635.Dx 1636base system but 1637.Xr pim6dd 8 1638can be installed from the 1639.Xr dports 7 1640collection 1641.Pa ( net/mcast-tools ) . 1642.It Va mrouted_flags 1643.Pq Vt str 1644If 1645.Va mrouted_enable 1646is set to 1647.Dq Li YES , 1648these are the flags to pass to the 1649.Xr mrouted 8 1650daemon. 1651.It Va mroute6d_flags 1652.Pq Vt str 1653The IPv6 equivalent of 1654.Va mrouted_flags . 1655If 1656.Va mroute6d_enable 1657is set to 1658.Dq Li YES , 1659these are the flags passed to the IPv6 multicast routing daemon. 1660.It Va mroute6d_program 1661.Pq Vt str 1662If 1663.Va mroute6d_enable 1664is set to 1665.Dq Li YES , 1666this is the path to the IPv6 multicast routing daemon. 1667.It Va rtadvd_enable 1668.Pq Vt bool 1669If set to 1670.Dq Li YES , 1671run the 1672.Xr rtadvd 8 1673daemon at boot time. 1674.Xr rtadvd 8 1675will only run if 1676.Va ipv6_gateway_enable 1677is also set to 1678.Dq Li YES . 1679The 1680.Xr rtadvd 8 1681utility sends router advertisement packets to the interfaces specified in 1682.Va rtadvd_interfaces . 1683.Xr rtadvd 8 1684and should only be enabled with great care. 1685You may want to fine-tune 1686.Xr rtadvd.conf 5 . 1687.It Va rtadvd_interfaces 1688.Pq Vt str 1689If 1690.Va rtadvd_enable 1691is set to 1692.Dq Li YES 1693this is the list of interfaces to use. 1694.It Va rtsold_enable 1695.Pq Vt bool 1696If set to 1697.Dq Li YES , 1698run the 1699.Xr rtsold 8 1700daemon at boot time. 1701The 1702.Xr rtsold 8 1703daemon is used for automatic discovery of non-link local addresses. 1704.It Va rtsold_flags 1705.Pq Vt str 1706If 1707.Va rtsold_enable 1708is set to 1709.Dq Li YES , 1710these are the flags to pass to the 1711.Xr rtsold 8 1712daemon. 1713.It Va arpproxy_all 1714.Pq Vt bool 1715If set to 1716.Dq Li YES , 1717enable global proxy ARP. 1718.It Va forward_sourceroute 1719.Pq Vt bool 1720If set to 1721.Dq Li YES 1722and 1723.Va gateway_enable 1724is also set to 1725.Dq Li YES , 1726source-routed packets are forwarded. 1727.It Va accept_sourceroute 1728.Pq Vt bool 1729If set to 1730.Dq Li YES , 1731the system will accept source-routed packets directed at it. 1732.It Va rarpd_enable 1733.Pq Vt bool 1734If set to 1735.Dq Li YES , 1736run the 1737.Xr rarpd 8 1738daemon at system boot time. 1739.It Va rarpd_flags 1740.Pq Vt str 1741If 1742.Va rarpd_enable 1743is set to 1744.Dq Li YES , 1745these are the flags to pass to the 1746.Xr rarpd 8 1747daemon. 1748.It Va bootparamd_enable 1749.Pq Vt bool 1750If set to 1751.Dq Li YES , 1752run the 1753.Xr bootparamd 8 1754daemon at system boot time. 1755.It Va bootparamd_flags 1756.Pq Vt str 1757If 1758.Va bootparamd_enable 1759is set to 1760.Dq Li YES , 1761these are the flags to pass to the 1762.Xr bootparamd 8 1763daemon. 1764.It Va stf_interface_ipv4addr 1765.Pq Vt str 1766If not set to 1767.Dq Li NO , 1768this is the local IPv4 address for 6to4 (IPv6 over IPv4 tunneling interface). 1769Specify this entry to enable the 6to4 interface. 1770.It Va stf_interface_ipv4plen 1771.Pq Vt int 1772Prefix length for 6to4 IPv4 addresses, to limit peer address range. 1773An effective value is 0-31. 1774.It Va stf_interface_ipv6_ifid 1775.Pq Vt str 1776IPv6 interface ID for 1777.Xr stf 4 . 1778This can be set to 1779.Dq Li AUTO . 1780.It Va stf_interface_ipv6_slaid 1781.Pq Vt str 1782IPv6 Site Level Aggregator for 1783.Xr stf 4 . 1784.It Va keybell 1785.Pq Vt str 1786The keyboard bell sound. 1787Set to 1788.Dq Li normal , 1789.Dq Li visual , 1790.Dq Li off , 1791or 1792.Dq Li NO 1793if the default behavior is desired. 1794For details, refer to the 1795.Xr kbdcontrol 1 1796manpage. 1797.It Va keymap 1798.Pq Vt str 1799If set to 1800.Dq Li NO , 1801no keymap is installed, otherwise the value is used to install 1802the keymap file in 1803.Pa /usr/share/syscons/keymaps/ Ns Ao Ar value Ac Ns Pa .kbd . 1804.It Va keyrate 1805.Pq Vt str 1806The keyboard repeat speed. 1807Set to 1808.Dq Li slow , 1809.Dq Li normal , 1810.Dq Li fast , 1811or 1812.Dq Li NO 1813if the default behavior is desired. 1814.It Va keychange 1815.Pq Vt str 1816If not set to 1817.Dq Li NO , 1818attempt to program the function keys with the value. 1819The value should be a single string of the form: 1820.Dq Ar funkey_number new_value Op Ar funkey_number new_value ... . 1821.It Va cursor 1822.Pq Vt str 1823Can be set to the value of 1824.Dq Li normal , 1825.Dq Li blink , 1826.Dq Li destructive , 1827or 1828.Dq Li NO 1829to set the cursor behavior explicitly or choose the default behavior. 1830.It Va scrnmap 1831.Pq Vt str 1832If set to 1833.Dq Li NO , 1834no screen map is installed, otherwise the value is used to install 1835the screen map file in 1836.Pa /usr/share/syscons/scrnmaps/ Ns Aq Ar value . 1837.It Va font8x16 1838.Pq Vt str 1839If set to 1840.Dq Li NO , 1841the default 8x16 font value is used for screen size requests, otherwise 1842the value in 1843.Pa /usr/share/syscons/fonts/ Ns Aq Ar value 1844is used. 1845.It Va font8x14 1846.Pq Vt str 1847If set to 1848.Dq Li NO , 1849the default 8x14 font value is used for screen size requests, otherwise 1850the value in 1851.Pa /usr/share/syscons/fonts/ Ns Aq Ar value 1852is used. 1853.It Va font8x8 1854.Pq Vt str 1855If set to 1856.Dq Li NO , 1857the default 8x8 font value is used for screen size requests, otherwise 1858the value in 1859.Pa /usr/share/syscons/fonts/ Ns Aq Ar value 1860is used. 1861.It Va blanktime 1862.Pq Vt int 1863If set to 1864.Dq Li NO , 1865the default screen blanking interval is used, otherwise it is set to 1866.Ar value 1867seconds. 1868.It Va saver 1869.Pq Vt str 1870If not set to 1871.Dq Li NO , 1872this is the actual screen saver to use 1873.Li ( blank , snake , daemon , 1874etc). 1875.It Va moused_nondefault_enable 1876.Pq Vt str 1877If set to 1878.Dq Li NO , 1879the mouse device specified on 1880the command line is not automatically treated as enabled by the 1881.Pa /etc/rc.d/moused 1882script. 1883Having this variable set to 1884.Dq Li YES 1885allows a 1886.Xr usb 4 1887mouse, 1888for example, 1889to be enabled as soon as it is plugged in. 1890.It Va moused_enable 1891.Pq Vt str 1892If set to 1893.Dq Li YES , 1894the 1895.Xr moused 8 1896daemon is started for doing cut/paste selection on the console. 1897.It Va moused_type 1898.Pq Vt str 1899If 1900.Va moused_enable 1901is set to 1902.Dq Li YES , 1903this is the protocol type of the mouse connected to this host. 1904The default type is 1905.Dq Li auto . 1906The 1907.Xr moused 8 1908daemon 1909is able to detect the appropriate mouse type automatically in many cases. 1910Leave this variable at the default 1911.Dq Li auto 1912to let the daemon detect it, or 1913select one from the following list if the automatic detection fails. 1914.Pp 1915If the mouse is attached to the PS/2 mouse port, leave the variable at the 1916default 1917.Dq Li auto 1918or set it to 1919.Dq Li ps/2 , 1920regardless of the brand and model of the mouse. 1921Likewise, if the mouse is attached to the bus mouse port, leave it at 1922.Dq Li auto 1923or set it to 1924.Dq Li busmouse . 1925All other protocols are for serial mice and will not work with 1926the PS/2 and bus mice. 1927If this is a USB mouse, 1928.Dq Li auto 1929is the only protocol type which will work. 1930.Pp 1931.Bl -tag -width ".Li x10mouseremote" -compact 1932.It Li microsoft 1933Microsoft mouse (serial) 1934.It Li intellimouse 1935Microsoft IntelliMouse (serial) 1936.It Li mousesystems 1937Mouse systems Corp. mouse (serial) 1938.It Li mmseries 1939MM Series mouse (serial) 1940.It Li logitech 1941Logitech mouse (serial) 1942.It Li busmouse 1943A bus mouse 1944.It Li mouseman 1945Logitech MouseMan and TrackMan (serial) 1946.It Li glidepoint 1947ALPS GlidePoint (serial) 1948.It Li thinkingmouse 1949Kensington ThinkingMouse (serial) 1950.It Li ps/2 1951PS/2 mouse 1952.It Li mmhittab 1953MM HitTablet (serial) 1954.It Li x10mouseremote 1955X10 MouseRemote (serial) 1956.It Li versapad 1957Interlink VersaPad (serial) 1958.El 1959.Pp 1960Even if the mouse is not in the above list, it may be compatible 1961with one in the list. 1962Refer to the man page for 1963.Xr moused 8 1964for compatibility information. 1965.Pp 1966It should also be noted that while this is enabled, any 1967other client of the mouse (such as an X server) should access 1968the mouse through the virtual mouse device, 1969.Pa /dev/sysmouse , 1970and configure it as a 1971.Dq Li sysmouse 1972type mouse, since all 1973mouse data is converted to this single canonical format when using 1974.Xr moused 8 . 1975If the client program does not support the 1976.Dq Li sysmouse 1977type, specify the 1978.Dq Li mousesystems 1979type. 1980It is the second preferred type. 1981.It Va moused_port 1982.Pq Vt str 1983If 1984.Va moused_enable 1985is set to 1986.Dq Li YES , 1987this is the actual port the mouse is on. 1988It might be 1989.Pa /dev/cuaa0 1990for a COM1 serial mouse or 1991.Pa /dev/psm0 1992for a PS/2 mouse, for example. 1993.It Va moused_flags 1994.Pq Vt str 1995If 1996.Va moused_type 1997is set, these are the additional flags to pass to the 1998.Xr moused 8 1999daemon. 2000.It Va mousechar_start 2001.Pq Vt int 2002If set to 2003.Dq Li NO , 2004the default mouse cursor character range 2005.Li 0xd0 Ns - Ns Li 0xd3 2006is used, otherwise the range start is set to 2007.Ar value 2008character, see 2009.Xr vidcontrol 1 . 2010Use if the default range is occupied in the language code table. 2011.It Va vidhistory 2012.Pq Vt int 2013Set the size of the history (scrollback) buffer in lines. 2014.It Va allscreens_flags 2015.Pq Vt str 2016If set, 2017.Xr vidcontrol 1 2018is run with these options for each of the virtual terminals 2019.Pq Pa /dev/ttyv* . 2020For example, 2021.Dq Fl m Cm on 2022will enable the mouse pointer on all virtual terminals if 2023.Va moused_enable 2024is set to 2025.Dq Li YES . 2026.It Va allscreens_kbdflags 2027.Pq Vt str 2028If set, 2029.Xr kbdcontrol 1 2030is run with these options for each of the virtual terminals 2031.Pq Pa /dev/ttyv* . 2032For example, 2033.Dq Fl h Li 200 2034will set the 2035.Xr syscons 4 2036scrollback (history) buffer to 200 lines. 2037.It Va cron_enable 2038.Pq Vt bool 2039If set to 2040.Dq Li YES , 2041run the 2042.Xr cron 8 2043daemon at system boot time. 2044.It Va cron_program 2045.Pq Vt str 2046Path to 2047.Xr cron 8 2048(default 2049.Pa /usr/sbin/cron ) . 2050.It Va cron_flags 2051.Pq Vt str 2052If 2053.Va cron_enable 2054is set to 2055.Dq Li YES , 2056these are the flags to pass to 2057.Xr cron 8 . 2058.It Va lpd_program 2059.Pq Vt str 2060Path to 2061.Xr lpd 8 2062(default 2063.Pa /usr/sbin/lpd ) . 2064.It Va lpd_enable 2065.Pq Vt bool 2066If set to 2067.Dq Li YES , 2068run the 2069.Xr lpd 8 2070daemon at system boot time. 2071.It Va lpd_flags 2072.Pq Vt str 2073If 2074.Va lpd_enable 2075is set to 2076.Dq Li YES , 2077these are the flags to pass to the 2078.Xr lpd 8 2079daemon. 2080.It Va nscd_enable 2081.Pq Vt bool 2082If set to 2083.Dq Li YES , 2084run the 2085.Xr nscd 8 2086daemon at system boot time. 2087.It Va mixer_enable 2088.Pq Vt bool 2089If set to 2090.Dq Li YES , 2091preserve 2092.Xr mixer 8 2093settings across reboots. 2094.It Va mta_start_script 2095.Pq Vt str 2096The full path to the script to run to start 2097a mail transfer agent. 2098The default is 2099.Pa /etc/rc.sendmail . 2100The 2101.Va sendmail_* 2102variables which 2103.Pa /etc/rc.sendmail 2104uses are documented in the 2105.Xr rc.sendmail 8 2106man page. 2107.It Va fixbootfile 2108.Pq Vt bool 2109In a 2110.Sq HAMMER ROOT with UFS /boot 2111setup, the boot loader will not set up the 2112.Va kern.bootfile 2113sysctl correctly. 2114The system will attempt to fix this on its own. 2115Set this variable to 2116.Dq Li NO 2117to turn this behavior off. 2118.It Va dumpdev 2119.Pq Vt str 2120Indicates the device (usually a swap partition) to which a crash dump 2121should be written in the event of a system crash. 2122The value of this variable is passed as the argument to 2123.Xr dumpon 8 2124and 2125.Xr savecore 8 . 2126To disable crash dumps, set this variable to 2127.Dq Li NO . 2128.It Va dumpdir 2129.Pq Vt str 2130When the system reboots after a crash and a crash dump is found on the 2131device specified by the 2132.Va dumpdev 2133variable, 2134.Xr savecore 8 2135will save that crash dump and a copy of the kernel to the directory 2136specified by the 2137.Va dumpdir 2138variable. 2139The default value is 2140.Pa /var/crash . 2141Set to 2142.Dq Li NO 2143to not run 2144.Xr savecore 8 2145at boot time when 2146.Va dumpdir 2147is set. 2148.It Va savecore_flags 2149.Pq Vt str 2150If crash dumps are enabled, these are the flags to pass to the 2151.Xr savecore 8 2152utility. 2153.It Va crashinfo_enable 2154.Pq Vt bool 2155Set to 2156.Dq Li YES 2157to turn on automatic crash dump summary generation using the utility 2158specified by the 2159.Va crashinfo_program 2160variable. 2161.It Va crashinfo_program 2162.Pq Vt str 2163Program to run to generate a crash dump summary if the variable 2164.Va crashinfo_enable 2165is set to 2166.Dq Li YES . 2167The default value is 2168.Pa /usr/sbin/crashinfo . 2169.It Va enable_quotas 2170.Pq Vt bool 2171Set to 2172.Dq Li YES 2173to turn on user disk quotas on system startup via the 2174.Xr quotaon 8 2175command. 2176.It Va check_quotas 2177.Pq Vt bool 2178Set to 2179.Dq Li YES 2180to enable user disk quota checking via the 2181.Xr quotacheck 8 2182command. 2183.It Va accounting_enable 2184.Pq Vt bool 2185Set to 2186.Dq Li YES 2187to enable system accounting through the 2188.Xr accton 8 2189facility. 2190.\" ----- cleanvar_enable setting-------------------------------- 2191.It Va cleanvar_enable 2192.Pq Vt bool 2193Set to 2194.Dq Li YES 2195to have 2196.Pa /var/run , 2197.Pa /var/spool/lock 2198and 2199.Pa /var/spool/uucp/.Temp/* 2200cleaned at startup. 2201.\" ----- clear_tmp_enable setting------------------------------- 2202.It Va clear_tmp_enable 2203.Pq Vt bool 2204Set to 2205.Dq Li YES 2206to have 2207.Pa /tmp 2208cleaned at startup. 2209.\" ----- ldconfig_paths setting -------------------------------- 2210.It Va ldconfig_paths 2211.Pq Vt str 2212Set to the list of shared library paths to use with 2213.Xr ldconfig 8 . 2214NOTE: 2215.Pa /usr/lib 2216will always be added first, so it need not appear in this list. 2217.It Va ldconfig_insecure 2218.Pq Vt bool 2219The 2220.Xr ldconfig 8 2221utility normally refuses to use directories 2222which are writable by anyone except root. 2223Set this variable to 2224.Dq Li YES 2225to disable that security check during system startup. 2226.It Va ldconfig_local_dirs 2227.Pq Vt str 2228Set to the list of local 2229.Xr ldconfig 8 2230directories. 2231The names of all files in the directories listed will be 2232passed as arguments to 2233.Xr ldconfig 8 . 2234.It Va kern_securelevel 2235.Pq Vt int 2236The kernel security level to set at startup. 2237The allowed range of 2238.Ar value 2239ranges from \-1 (the compile time default) to 3 (the most secure). 2240See 2241.Xr init 8 2242for the list of possible security levels and their effect on system operation. 2243.It Va start_vinum 2244.Pq Vt bool 2245Set to 2246.Dq Li YES 2247to start 2248.Xr vinum 8 2249at system boot time. 2250.It Va sshd_enable 2251.Pq Vt bool 2252Set to 2253.Dq Li YES 2254to start 2255.Xr sshd 8 2256at system boot time. 2257.It Va sshd_program 2258.Pq Vt str 2259Path to the SSH server program 2260(default 2261.Pa /usr/sbin/sshd ) . 2262.It Va sshd_flags 2263.Pq Vt str 2264If 2265.Va sshd_enable 2266is set to 2267.Dq Li YES , 2268these are the flags to pass to the 2269.Xr sshd 8 2270daemon. 2271.It Va ftpd_enable 2272.Pq Vt bool 2273Set to 2274.Dq Li YES 2275to start 2276.Xr ftpd 8 2277at system boot time. 2278.It Va ftpd_flags 2279.Pq Vt str 2280If 2281.Va ftpd_enable 2282is set to 2283.Dq Li YES , 2284these are the flags to pass to the 2285.Xr ftpd 8 2286daemon. 2287.It Va watchdogd_enable 2288.Pq Vt bool 2289If set to 2290.Dq Li YES , 2291start the 2292.Xr watchdogd 8 2293daemon at boot time. 2294.It Va jail_enable 2295.Pq Vt bool 2296If set to 2297.Dq Li NO , 2298any configured jails will not be started. 2299.It Va jail_list 2300.Pq Vt str 2301A space separated list of names for jails. 2302This is purely a configuration aid to help identify and 2303configure multiple jails. 2304The names specified in this list will be used to 2305identify settings common to an instance of a jail. 2306Assuming that the jail in question was named 2307.Li vjail , 2308you would have the following dependent variables: 2309.Bd -literal 2310jail_vjail_hostname="jail.example.com" 2311jail_vjail_ip="192.168.1.100" 2312jail_vjail_rootdir="/var/jails/vjail/root" 2313.Ed 2314.It Va jail_flags 2315.Pq Vt str 2316Unset by default. 2317When set, use as default value for 2318.Va jail_ Ns Ao Ar jname Ac Ns Va _flags 2319for every jail in 2320.Va jail_list . 2321.It Va jail_interface 2322.Pq Vt str 2323Unset by default. 2324When set, use as default value for 2325.Va jail_ Ns Ao Ar jname Ac Ns Va _interface 2326for every jail in 2327.Va jail_list . 2328.It Va jail_fstab 2329.Pq Vt str 2330Unset by default. 2331When set, use as default value for 2332.Va jail_ Ns Ao Ar jname Ac Ns Va _fstab 2333for every jail in 2334.Va jail_list . 2335.It Va jail_mount_enable 2336.Pq Vt bool 2337Set to 2338.Dq Li NO 2339by default. 2340When set to 2341.Dq Li YES , 2342sets 2343.Va jail_ Ns Ao Ar jname Ac Ns Va _mount_enable 2344to 2345.Dq Li YES 2346by default for every jail in 2347.Va jail_list . 2348.It Va jail_procfs_enable 2349.Pq Vt bool 2350Set to 2351.Dq Li NO 2352by default. 2353When set to 2354.Dq Li YES , 2355sets 2356.Va jail_ Ns Ao Ar jname Ac Ns Va _procfs_enable 2357to 2358.Dq Li YES 2359by default for every jail in 2360.Va jail_list . 2361.It Va jail_devfs_enable 2362.Pq Vt bool 2363Set to 2364.Dq Li NO 2365by default. 2366When set to 2367.Dq Li YES , 2368sets 2369.Va jail_ Ns Ao Ar jname Ac Ns Va _devfs_enable 2370to 2371.Dq Li YES 2372by default for every jail in 2373.Va jail_list . 2374.It Va jail_exec_start 2375.Pq Vt str 2376Unset by default. 2377When set, use as default value for 2378.Va jail_ Ns Ao Ar jname Ac Ns Va _exec_start 2379for every jail in 2380.Va jail_list . 2381.It Va jail_exec_stop 2382Unset by default. 2383When set, use as default value for 2384.Va jail_ Ns Ao Ar jname Ac Ns Va _exec_stop 2385for every jail in 2386.Va jail_list . 2387.It Va jail_ Ns Ao Ar jname Ac Ns Va _rootdir 2388.Pq Vt str 2389Unset by default. 2390Set to the root directory used by jail 2391.Va jname . 2392.It Va jail_ Ns Ao Ar jname Ac Ns Va _hostname 2393.Pq Vt str 2394Unset by default. 2395Set to the fully qualified domain name (FQDN) assigned to jail 2396.Va jname . 2397.It Va jail_ Ns Ao Ar jname Ac Ns Va _ip 2398.Pq Vt str 2399Unset by default. 2400Set to the IP address assigned to jail 2401.Va jname . 2402.It Va jail_ Ns Ao Ar jname Ac Ns Va _flags 2403.Pq Vt str 2404Set to 2405.Dq Li -l -U root 2406by default. 2407These are flags to pass to 2408.Xr jail 8 . 2409.It Va jail_ Ns Ao Ar jname Ac Ns Va _interface 2410.Pq Vt str 2411Unset by default. 2412When set, sets the interface to use when setting IP address alias. 2413Note that the alias is created at jail startup and removed at jail shutdown. 2414.It Va jail_ Ns Ao Ar jname Ac Ns Va _fstab 2415.Pq Vt str 2416Set to 2417.Pa /etc/fstab. Ns Aq Ar jname 2418by default. 2419This is the file system information file to use for jail 2420.Va jname . 2421.It Va jail_ Ns Ao Ar jname Ac Ns Va _mount_enable 2422.Pq Vt bool 2423Set to 2424.Dq Li NO 2425by default. 2426When set to 2427.Dq Li YES , 2428mount all file systems from 2429.Va jail_ Ns Ao Ar jname Ac Ns Va _fstab 2430at jail startup. 2431.It Va jail_ Ns Ao Ar jname Ac Ns Va _procfs_enable 2432.Pq Vt bool 2433Set to 2434.Dq Li NO 2435by default. 2436When set to 2437.Dq Li YES , 2438mount the process file system inside jail 2439.Ar jname 2440at jail startup. 2441.It Va jail_ Ns Ao Ar jname Ac Ns Va _devfs_enable 2442.Pq Vt bool 2443Set to 2444.Dq Li NO 2445by default. 2446When set to 2447.Dq Li YES , 2448mount the device file system inside jail 2449.Ar jname 2450at jail startup. 2451.It Va jail_ Ns Ao Ar jname Ac Ns Va _exec_start 2452.Pq Vt str 2453Set to 2454.Dq Li /bin/sh /etc/rc 2455by default. 2456This is the command executed at jail startup. 2457.It Va jail_ Ns Ao Ar jname Ac Ns Va _exec_stop 2458.Pq Vt str 2459Set to 2460.Dq Li /bin/sh /etc/rc.shutdown 2461by default. 2462This is the command executed at jail shutdown. 2463.It Va jail_set_hostname_allow 2464.Pq Vt bool 2465If set to 2466.Dq Li NO , 2467do not allow the root user in a jail to set its hostname. 2468.It Va jail_socket_unixiproute_only 2469.Pq Vt bool 2470If set to 2471.Dq Li YES , 2472do not allow any sockets, 2473besides UNIX/IP/route sockets, 2474to be used within a jail. 2475.It Va jail_sysvipc_allow 2476.Pq Vt bool 2477If set to 2478.Dq Li YES , 2479allow applications within a jail to use System V IPC. 2480.It Va lvm_enable 2481.Pq Vt bool 2482If set to 2483.Dq Li YES 2484LVM volumes will be discovered and configured on boot. 2485.It Va newsyslog_enable 2486.Pq Vt bool 2487If set to 2488.Dq Li YES , 2489run 2490.Xr newsyslog 8 2491before syslogd starts. 2492.It Va newsyslog_flags 2493.Pq Vt str 2494If 2495.Va newsyslog_enable 2496is set to 2497.Dq Li YES , 2498these are the flags passed to 2499.Xr newsyslog 8 . 2500.It Va resident_enable 2501.Pq Vt bool 2502If set to 2503.Dq Li YES , 2504make the dynamic binaries listed in 2505.Pa /etc/resident.conf 2506resident. 2507.It Va varsym_enable 2508.Pq Vt bool 2509If set to 2510.Dq Li YES , 2511process 2512.Pa /etc/varsym.conf 2513to set system-wide variables for variant symlinks. 2514.It Va rand_irqs 2515.Pq Vt str 2516Set either to 2517.Dq Li NO 2518or a whitespace separated list of IRQ numbers which will be used as a source of 2519randomness. 2520.\" ----------------------------------------------------- 2521.It Va entropy_dir 2522.Pq Vt str 2523Set to 2524.Dq Li NO 2525to disable caching entropy via 2526.Xr cron 8 . 2527Otherwise set to the directory used to store entropy files in. 2528.It Va entropy_file 2529.Pq Vt str 2530Set to 2531.Dq Li NO 2532to disable caching entropy through reboots. 2533Otherwise set to the filename used to store cached entropy through reboots. 2534This file should be located on the root file system to seed the 2535.Xr random 4 2536device as early as possible in the boot process. 2537.It Va entropy_save_sz 2538.Pq Vt int 2539Determines the size of the entropy cache files used for entropy cached 2540through reboots and also entropy cached via 2541.Xr cron 8 . 2542The entropy is fed to the system in blocks of 512 bytes, so this number 2543should be large enough to fill as many of the entropy pools in the kernel 2544CSPRNG as possible. 2545By default, it is set to 16384, which should be able to seed all 32 entropy 2546pools in the Fortuna CSPRNG. 2547.It Va dmesg_enable 2548.Pq Vt bool 2549Set to 2550.Dq Li YES 2551to save 2552.Xr dmesg 8 2553to 2554.Pa /var/run/dmesg.boot 2555on boot. 2556.It Va rcshutdown_timeout 2557.Pq Vt int 2558If set, start a watchdog timer in the background which will terminate 2559.Pa rc.shutdown 2560if 2561.Xr shutdown 8 2562has not completed within the specified time (in seconds). 2563Notice that in addition to this soft timeout, 2564.Xr init 8 2565also applies a hard timeout for the execution of 2566.Pa rc.shutdown . 2567This is configured via 2568.Xr sysctl 8 2569variable 2570.Va kern.init_shutdown_timeout 2571and defaults to 120 seconds. Setting the value of 2572.Va rcshutdown_timeout 2573to more than 120 seconds will have no effect until the 2574.Xr sysctl 8 2575variable 2576.Va kern.init_shutdown_timeout 2577is also increased. 2578.It Va udevd_enable 2579.Pq Vt bool 2580If set to 2581.Dq Li YES , 2582the udevd daemon will be started on boot. 2583.It Va vfs_quota_enable 2584.Pq Vt bool 2585If set to 2586.Dq Li YES , 2587vfs quota rc.d scripts will be run on boot. 2588.It Va vfs_quota_sync 2589.Pq Vt str 2590List of mount points whose counters are to be synchronized with on-disk 2591usage during system startup. 2592See also 2593.Xr vquota 8 . 2594.It Va vknetd_enable 2595.Pq Vt bool 2596If set to 2597.Dq Li YES , 2598.Xr vknetd 8 2599will be started on boot. 2600.It Va vknetd_flags 2601.Pq Vt bool 2602Additional flags passed to 2603.Xr vknetd 8 . 2604Usually address/cidrbits is specified here. 2605When no flags are passed, default option 2606.Fl U 2607will be used. 2608.It Va vkernel_enable 2609.Pq Vt bool 2610If set to 2611.Dq Li NO , 2612any configured vkernels will not be started. 2613.It Va vkernel_kill_timeout 2614.Pq Vt int 2615This defines the default number of seconds that we will wait for the 2616vkernel to shut down on its own. 2617If after this time it's still alive, 2618it will be killed with SIGKILL. 2619.It Va vkernel_bin 2620.Pq Vt str 2621Defines the default path to the vkernel binary. 2622.It Va vkernel_list 2623.Pq Vt str 2624A space separated list of names for vkernels. 2625This is purely a configuration aid to help identify and 2626configure multiple vkernels. 2627The names specified in this list will be used to 2628identify settings common to a vkernel instance. 2629Assuming that the vkernel in question was named 2630.Li example , 2631you would have the following dependent variables 2632(filled with reference values in this text): 2633.Bd -literal 2634vkernel_example_bin="/usr/obj/usr/src/sys/VKERNEL64/kernel.debug" 2635vkernel_example_memsize="64m" 2636vkernel_example_rootimg_list="/var/vkernel/rootimg.01" 2637vkernel_example_memimg="/var/vkernel/memimg.000001" 2638vkernel_example_user="myuser" 2639vkernel_example_iface_list="auto:bridge0" 2640vkernel_example_logfile="/dev/null" 2641vkernel_example_flags="-U" 2642vkernel_example_kill_timeout="45" 2643.Ed 2644.Pp 2645The last six are optional. 2646They default to an empty string if not set, except for logfile which defaults to 2647.Pa /dev/null 2648if it is not set. 2649.Pp 2650Note that in case 2651.Va vkernel_memimg 2652is not set, the 2653.Pa rc.d 2654script will create 2655.Pa /var/vkernel , 2656which is the vkernel's default directory for memory images, 2657with permissions of 1777, i.e. world writable with the sticky bit set 2658(see 2659.Xr sticky 8 ) . 2660.It Va autofs_enable 2661.Pq Vt bool 2662If set to 2663.Dq Li YES , 2664start the 2665.Xr automount 8 2666utility and the 2667.Xr automountd 8 2668and 2669.Xr autounmountd 8 2670daemons at boot time. 2671.It Va automount_flags 2672.Pq Vt str 2673If 2674.Va autofs_enable 2675is set to 2676.Dq Li YES , 2677these are the flags to pass to the 2678.Xr automount 8 2679program. 2680By default no flags are passed. 2681.It Va automountd_flags 2682.Pq Vt str 2683If 2684.Va autofs_enable 2685is set to 2686.Dq Li YES , 2687these are the flags to pass to the 2688.Xr automountd 8 2689daemon. 2690By default no flags are passed. 2691.It Va autounmountd_flags 2692.Pq Vt str 2693If 2694.Va autofs_enable 2695is set to 2696.Dq Li YES , 2697these are the flags to pass to the 2698.Xr autounmountd 8 2699daemon. 2700By default no flags are passed. 2701.El 2702.Sh FILES 2703.Bl -tag -width ".Pa /etc/start_if. Ns Aq Ar interface" -compact 2704.It Pa /etc/defaults/rc.conf 2705.It Pa /etc/rc.conf 2706.It Pa /etc/rc.conf.local 2707.It Pa /etc/start_if. Ns Aq Ar interface 2708.El 2709.Sh SEE ALSO 2710.Xr gdb 1 , 2711.Xr info 1 , 2712.Xr kbdcontrol 1 , 2713.Xr varsym 1 , 2714.Xr vidcontrol 1 , 2715.Xr ip 4 , 2716.Xr ipfw 4 , 2717.Xr kld 4 , 2718.Xr pf 4 , 2719.Xr tcp 4 , 2720.Xr udp 4 , 2721.Xr vlan 4 , 2722.Xr autofs 5 , 2723.Xr auto_master 5 , 2724.Xr exports 5 , 2725.Xr motd 5 , 2726.Xr resident.conf 5 , 2727.Xr varsym.conf 5 , 2728.Xr accton 8 , 2729.Xr automount 8 , 2730.Xr automountd 8 , 2731.Xr autounmountd 8 , 2732.Xr btconfig 8 , 2733.Xr bthcid 8 , 2734.Xr cron 8 , 2735.Xr devd 8 , 2736.Xr dhclient 8 , 2737.Xr dhcpcd 8 , 2738.Xr dntpd 8 , 2739.Xr ftpd 8 , 2740.Xr ifconfig 8 , 2741.Xr inetd 8 , 2742.Xr ip6addrctl 8 , 2743.Xr jail 8 , 2744.Xr lpd 8 , 2745.Xr makewhatis 8 , 2746.Xr mixer 8 , 2747.Xr mountd 8 , 2748.Xr moused 8 , 2749.Xr mrouted 8 , 2750.Xr nfsd 8 , 2751.Xr pcnfsd 8 , 2752.Xr pfctl 8 , 2753.Xr pflogd 8 , 2754.Xr quotacheck 8 , 2755.Xr quotaon 8 , 2756.Xr rc 8 , 2757.Xr rc.sendmail 8 , 2758.Xr resident 8 , 2759.Xr rndcontrol 8 , 2760.Xr route 8 , 2761.Xr routed 8 , 2762.Xr rpcbind 8 , 2763.Xr rpc.lockd 8 , 2764.Xr rpc.statd 8 , 2765.Xr rtadvd 8 , 2766.Xr rtsold 8 , 2767.Xr rwhod 8 , 2768.Xr savecore 8 , 2769.Xr sdpd 8 , 2770.Xr sensorsd 8 , 2771.Xr sshd 8 , 2772.Xr swapon 8 , 2773.Xr sysctl 8 , 2774.Xr syslogd 8 , 2775.Xr sysvipcd 8 , 2776.Xr vinum 8 , 2777.Xr yp 8 , 2778.Xr ypbind 8 , 2779.Xr ypserv 8 , 2780.Xr ypset 8 2781.Sh HISTORY 2782The 2783.Nm 2784file appeared in 2785.Fx 2.2.2 . 2786.Sh AUTHORS 2787.An Jordan K. Hubbard . 2788