1.\" Copyright (c) 1995 2.\" Jordan K. Hubbard 3.\" 4.\" Redistribution and use in source and binary forms, with or without 5.\" modification, are permitted provided that the following conditions 6.\" are met: 7.\" 1. Redistributions of source code must retain the above copyright 8.\" notice, this list of conditions and the following disclaimer. 9.\" 2. Redistributions in binary form must reproduce the above copyright 10.\" notice, this list of conditions and the following disclaimer in the 11.\" documentation and/or other materials provided with the distribution. 12.\" 13.\" THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND 14.\" ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 15.\" IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 16.\" ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR BE LIABLE 17.\" FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 18.\" DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 19.\" OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 20.\" HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 21.\" LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 22.\" OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 23.\" SUCH DAMAGE. 24.\" 25.\" $FreeBSD: src/share/man/man5/rc.conf.5,v 1.197 2003/07/28 13:56:00 mbr Exp $ 26.\" 27.Dd April 16, 2020 28.Dt RC.CONF 5 29.Os 30.Sh NAME 31.Nm rc.conf 32.Nd system configuration information 33.Sh DESCRIPTION 34The file 35.Nm 36contains descriptive information about the local host name, configuration 37details for any potential network interfaces and which services should be 38started up at system initial boot time. 39In new installations, the 40.Nm 41file is generally initialized by the installer. 42.Pp 43The purpose of 44.Nm 45is not to run commands or perform system startup actions directly. 46Instead, it is included by the various generic startup scripts in 47.Pa /etc 48which conditionalize their 49internal actions according to the settings found there. 50.Pp 51The 52.Pa /etc/defaults/rc.conf 53file specifies the default settings for all the available options, 54the 55.Pa /etc/rc.conf 56file specifies override settings. 57Options need only be specified in 58.Pa /etc/rc.conf 59when the system administrator wishes to override the defaults. 60The file 61.Pa /etc/rc.conf.local 62is used to override settings in 63.Pa /etc/rc.conf 64for historical reasons. 65In addition to 66.Pa /etc/rc.conf.local 67you can also place smaller configuration files for each 68.Xr rc 8 69script in the 70.Pa /etc/rc.conf.d 71directory, which will be included by the 72.Va load_rc_config 73function. 74For jail configurations you could use the file 75.Pa /etc/rc.conf.d/jail 76to store jail specific configuration options. 77Also see the 78.Va rc_conf_files 79variable below. 80.Pp 81The following list provides a name and short description for each 82variable that can be set in the 83.Nm 84file. 85To set a variable of 86.Vt bool 87type, specify either 88.Dq Li YES , 89.Dq Li TRUE , 90.Dq Li ON , 91or 92.Dq Li 1 . 93To unset, specify 94.Dq Li NO , 95.Dq Li FALSE , 96.Dq Li OFF , 97or 98.Dq Li 0 . 99These values are case insensitive. 100The 101.Va _enable 102postfix in the name of a variable for starting a service can be 103omitted (as in 104.Nx ) . 105.Bl -tag -width indent-two 106.It Va rc_debug 107.Pq Vt bool 108If set to 109.Dq Li YES , 110enable output of debug messages from rc scripts. 111This variable can be helpful in diagnosing mistakes when 112editing or integrating new scripts. 113Beware that this produces copious output to the terminal and 114.Xr syslog 3 . 115.It Va rc_info 116.Pq Vt bool 117If set to 118.Dq Li NO , 119disable informational messages from the rc scripts. 120Informational messages are displayed when 121a condition that is not serious enough to warrant a warning or an error occurs. 122.It Va rc_startmsgs 123.Pq Vt bool 124If set to 125.Dq Li YES , 126show 127.Dq Starting foo: 128when faststart is used (e.g., at boot time). 129.It Va swapfile 130.Pq Vt str 131If set to 132.Dq Li NO , 133no swapfile is installed, otherwise the value is used as the full 134pathname to a file to use for additional swap space. 135The 136.Xr vn 4 137driver is needed for a swapfile and will be loaded if it is not 138already compiled into the kernel or loaded via 139.Xr loader.conf 5 . 140.It Ao Ar module Ac Ns Ar _load 141.Pq Vt bool 142If set to 143.Dq YES , 144that kernel module will be loaded. 145If no 146.Ao Ar module Ac Ns Ar _name 147is defined (see below), the 148module's name is taken to be 149.Aq Ar module . 150.It Ao Ar module Ac Ns Ar _name 151.Pq Vt str 152Defines the name of the module. 153.It Va devd_enable 154.Pq Vt bool 155Run 156.Xr devd 8 157to handle device added, removed or unknown events from the kernel. 158.It Va devd_flags 159.Pq Vt str 160If 161.Va devd_enable 162is set to 163.Dq Li YES , 164these are the flags to pass to the 165.Xr devd 8 166daemon. 167.It Va powerd_enable 168.Pq Vt bool 169Set to 170.Dq Li NO 171by default. 172Setting this to 173.Dq Li YES 174enables 175.Xr powerd 8 , 176a CPU speed control daemon. 177.It Va powerd_flags 178.Pq Vt str 179Empty by default. 180Additional flags passed to the 181.Xr powerd 8 182program. 183.Pp 184If you are running a serial port at 115200 baud we recommend setting 185the flags to "-l 1500" as lower frequencies will cause characters to 186drop. 187.It Va sensorsd_enable 188.Pq Vt bool 189Set to 190.Dq Li NO 191by default. 192Setting this to 193.Dq Li YES 194enables 195.Xr sensorsd 8 , 196a sensors monitoring and logging daemon. 197.It Va sensorsd_flags 198.Pq Vt str 199Empty by default. 200Additional flags passed to the 201.Xr sensorsd 8 202program. 203.It Va sysvipcd_enable 204.Pq Vt bool 205Set to 206.Dq Li NO 207by default. 208Setting this to 209.Dq Li YES 210enables 211.Xr sysvipcd 8 , 212a daemon needed for the userspace implementation of the XSI Interprocess 213Communication functions. 214.It Va sysvipcd_flags 215.Pq Vt str 216Empty by default. 217Additional flags passed to the 218.Xr sysvipcd 8 219program. 220.It Va hotplugd_enable 221.Pq Vt bool 222Set to 223.Dq Li NO 224by default. 225Setting this to 226.Dq Li YES 227enables 228.Xr hotplugd 8 , 229a devices hot plugging monitoring daemon. 230.It Va hotplugd_flags 231.Pq Vt str 232Empty by default. 233Additional flags passed to the 234.Xr hotplugd 8 235program. 236.It Va pccard_ifconfig 237.Pq Vt str 238List of arguments to be passed to 239.Xr ifconfig 8 240at boot time or on insertion of the card (e.g.\& 241.Dq Cm inet Li 192.168.1.1 Cm netmask Li 255.255.255.0 242for a fixed address or 243.Dq Li DHCP 244for a DHCP client). 245.It Va pccard_ether_delay 246.Pq Vt str 247Set the delay before starting the DHCP client (configured with 248.Va dhcp_client ) 249in the 250.Pa /etc/pccard_ether 251script. 252This defaults to 253.Dq Li 5 254seconds. 255.It Va removable_interfaces 256.Pq Vt str 257List of removable network interfaces to be supported by 258.Pa /etc/pccard_ether . 259.It Va local_startup 260.Pq Vt str 261List of directories to search for startup script files. 262.It Va script_name_sep 263.Pq Vt str 264The field separator to use for breaking down the list of startup script files 265into individual filenames. 266The default is a space. 267It is not necessary to change this unless there are startup scripts with names 268containing spaces. 269.It Va hostname 270.Pq Vt str 271The fully qualified domain name (FQDN) of this host on the network. 272This should almost certainly be set to something meaningful, even if 273there is no network connection. 274If DHCP is used to set the hostname, 275this variable should be set to an empty string. 276.It Va ipv6_enable 277.Pq Vt bool 278Enable support for IPv6 networking. 279Note that this requires that the kernel have been compiled with 280.Cd "options INET6" . 281.It Va nisdomainname 282.Pq Vt str 283The NIS domain name of this host, or 284.Dq Li NO 285if NIS is not used. 286.It Va dhcp_client 287.Pq Vt str 288Set the rc script that is called to start the DHCP client. 289This can be set to 290.Dq Li dhclient 291(default) or 292.Dq Li dhcpcd . 293.It Va dhclient_program 294.Pq Vt str 295Path to the 296.Xr dhclient 8 297program (default 298.Pa /sbin/dhclient ) . 299.It Va dhclient_flags 300.Pq Vt str 301Additional flags to pass to the 302.Xr dhclient 8 303program. 304.It Va dhcpcd_enable 305.Pq Vt bool 306Set to 307.Dq Li YES 308to run 309.Xr dhcpcd 8 310in master mode (i.e., configure all available Ethernet interfaces) at startup. 311.It Va dhcpcd_program 312.Pq Vt str 313Path to the 314.Xr dhcpcd 8 315program (default 316.Pa /sbin/dhcpcd ) . 317.It Va dhcpcd_flags 318.Pq Vt str 319Additional flags to pass to the 320.Xr dhcpcd 8 321program. 322The default value is 323.Fl b , 324i.e., tell 325.Xr dhcpcd 8 326to go to background immediately. 327.It Va dhcpcd_chrootdir 328.Pq Vt str 329If non-blank and 330.Va dhcpcd_enable 331is true, run 332.Xr dhcpcd 8 333as the unprivileged user and group 334.Sq _dhcp , 335.Xr chroot 2 Ns ed 336to 337.Va dhcpcd_chrootdir . 338.Li \&${dhcpcd_chrootdir} Ns Pa /var/run/log 339will be added to the list of log sockets that 340.Xr syslogd 8 341listens to. 342.It Va pf_enable 343.Pq Vt bool 344Set to 345.Dq Li YES 346to load 347.Xr pf 4 348at startup. 349If the kernel was not built with 350.Cd "device pf" , 351the 352.Pa pf.ko 353kernel module will be loaded. 354See also 355.Va firewall_enable . 356.It Va pf_rules 357.Pq Vt str 358Path to the 359.Xr pf 4 360ruleset definition file. 361.It Va pf_program 362.Pq Vt str 363Path to 364.Xr pfctl 8 . 365.It Va pf_flags 366.Pq Vt str 367If 368.Va pf_enable 369is set to 370.Dq Li YES , 371these are the flags to pass to 372.Xr pfctl 8 373when loading the ruleset. 374.It Va pflog_enable 375.Pq Vt bool 376Set this to 377.Dq Li YES 378to enable 379.Xr pflogd 8 380which logs packets from 381.Xr pf 4 . 382.It Va pflog_logfile 383.Pq Vt str 384If 385.Va pflog_enable 386is set to 387.Dq Li YES 388this specifies the path of the log file. 389.It Va pflog_program 390.Pq Vt str 391Path to 392.Xr pflogd 8 . 393.It Va pflog_flags 394.Pq Vt str 395If 396.Va pflog_enable 397is set to 398.Dq Li YES , 399these are the flags to pass to 400.Xr pflogd 8 . 401.It Va firewall_enable 402.Pq Vt bool 403Set to 404.Dq Li YES 405to load firewall rules at startup. 406If the kernel was not built with 407.Cd "options IPFIREWALL" , 408the 409.Pa ipfw.ko 410kernel module will be loaded. 411See also 412.Va pf_enable . 413.It Va ipv6_firewall_enable 414.Pq Vt bool 415The IPv6 equivalent of 416.Va firewall_enable . 417Set to 418.Dq Li YES 419to load IPv6 firewall rules at startup. 420If the kernel was not built with 421.Cd "options IPV6FIREWALL" , 422the 423.Pa ip6fw.ko 424kernel module will be loaded. 425.It Va firewall_script 426.Pq Vt str 427The full path to the firewall script to run 428(default 429.Pa /etc/rc.firewall ) . 430.It Va ipv6_firewall_script 431.Pq Vt str 432The IPv6 equivalent of 433.Va firewall_script . 434.It Va firewall_type 435.Pq Vt str 436Names the firewall type from the selection in 437.Pa /etc/rc.firewall , 438or the file which contains the local firewall ruleset. 439Valid selections from 440.Pa /etc/rc.firewall 441are: 442.Pp 443.Bl -tag -width ".Li simple" -compact 444.It Li open 445unrestricted IP access 446.It Li closed 447all IP services disabled, except via 448.Dq Li lo0 449.It Li client 450basic protection for a workstation on a LAN 451.It Li simple 452alias for 453.Li client . 454.El 455.Pp 456If a filename is specified, the full path must be given. 457.It Va firewall_trusted_nets 458.Pq Vt str 459List of trusted networks (if 460.Va firewall_type 461is set to 462.Li client ) . 463.It Va firewall_trusted_interfaces 464.Pq Vt str 465List of trusted network interfaces (if 466.Va firewall_type 467is set to 468.Li client ) . 469.It Va firewall_allowed_icmp_types 470.Pq Vt str 471List of allowed ICMP types (if 472.Va firewall_type 473is set to 474.Li client ) . 475.It Va firewall_open_tcp_ports 476.Pq Vt str 477List of TCP ports to open (if 478.Va firewall_type 479is set to 480.Li client ) . 481.It Va firewall_open_udp_ports 482.Pq Vt str 483List of UDP ports to open (if 484.Va firewall_type 485is set to 486.Li client ) . 487.It Va ipv6_firewall_type 488.Pq Vt str 489The IPv6 equivalent of 490.Va firewall_type . 491.It Va firewall_quiet 492.Pq Vt bool 493Set to 494.Dq Li YES 495to disable the display of firewall rules on the console during boot. 496.It Va ipv6_firewall_quiet 497.Pq Vt bool 498The IPv6 equivalent of 499.Va firewall_quiet . 500.It Va firewall_logging 501.Pq Vt bool 502Set to 503.Dq Li YES 504to enable firewall event logging. 505This is equivalent to the 506.Dv IPFIREWALL_VERBOSE 507kernel option. 508.It Va ipv6_firewall_logging 509.Pq Vt bool 510The IPv6 equivalent of 511.Va firewall_logging . 512.It Va firewall_flags 513.Pq Vt str 514Flags passed to 515.Xr ipfw 8 516if 517.Va firewall_type 518specifies a filename. 519.It Va ipv6_firewall_flags 520.Pq Vt str 521The IPv6 equivalent of 522.Va firewall_flags . 523.It Va ipfw3_enable 524.Pq Vt bool 525Set to 526.Dq Li YES 527to enable 528.Xr ipfw3 8 . 529.It Va ipfw3_program 530.Pq Vt str 531Path to 532.Xr ipfw3 8 . 533.It Va ipfw3_script 534.Pq Vt str 535The full path to the shell script to run to set up the ipfw3 536firewall rules (default 537.Pa /etc/ipfw3.rules ) . 538.It Va ipfw3_modules 539.Pq Vt str 540List of ipfw3 modules to be loaded before executing the above 541.Va ipfw3_script . 542(default 543.Dq Li ipfw3 ipfw3_basic ) . 544.It Va natd_program 545.Pq Vt str 546Path to 547.Xr natd 8 . 548.It Va natd_enable 549.Pq Vt bool 550Set to 551.Dq Li YES 552to enable 553.Xr natd 8 . 554.Va firewall_enable 555must also be set to 556.Dq Li YES , 557and 558.Xr divert 4 559sockets must be enabled in the kernel. 560.It Va natd_interface 561.Pq Vt str 562This is the name of the public interface on which 563.Xr natd 8 564should run. 565The interface may be given as an interface name or as an IP address. 566.It Va natd_flags 567.Pq Vt str 568Additional 569.Xr natd 8 570flags should be placed here. 571The 572.Fl n 573or 574.Fl a 575flag is automatically added with the above 576.Va natd_interface 577as an argument. 578.It Va tcp_extensions 579.Pq Vt bool 580Set to 581.Dq Li YES 582by default. 583Setting this to 584.Dq Li NO 585disables certain TCP options as described by 586.Rs 587.%T "RFC 1323" 588.Re 589Setting this to 590.Dq Li NO 591might help remedy such problems with connections as randomly hanging 592or other weird behavior. 593Some network devices are known to be broken with respect to these options. 594.It Va log_in_vain 595.Pq Vt int 596Set to 0 by default. 597The 598.Xr sysctl 8 599variables, 600.Va net.inet.tcp.log_in_vain 601and 602.Va net.inet.udp.log_in_vain , 603as described in 604.Xr tcp 4 605and 606.Xr udp 4 , 607are set to the given value. 608.It Va tcp_keepalive 609.Pq Vt bool 610Set to 611.Dq Li YES 612by default. 613Setting to 614.Dq Li NO 615will disable probing idle TCP connections to verify that the 616peer is still up and reachable. 617.It Va tcp_drop_synfin 618.Pq Vt bool 619Set to 620.Dq Li NO 621by default. 622Setting to 623.Dq Li YES 624will cause the kernel to ignore TCP frames that have both 625the SYN and FIN flags set. 626This prevents OS fingerprinting, but may break some legitimate applications. 627This option is only available if the kernel was built with the 628.Dv TCP_DROP_SYNFIN 629option. 630.It Va icmp_drop_redirect 631.Pq Vt bool 632Set to 633.Dq Li NO 634by default. 635Setting to 636.Dq Li YES 637will cause the kernel to ignore ICMP REDIRECT packets. 638Refer to 639.Xr icmp 4 640for more information. 641.It Va icmp_log_redirect 642.Pq Vt bool 643Set to 644.Dq Li NO 645by default. 646Setting to 647.Dq Li YES 648will cause the kernel to log ICMP REDIRECT packets. 649Note that 650the log messages are not rate-limited, so this option should only be used 651for troubleshooting networks. 652Refer to 653.Xr icmp 4 654for more information. 655.It Va icmp_bmcastecho 656.Pq Vt bool 657Set to 658.Dq Li YES 659to respond to broadcast or multicast ICMP ping packets. 660Refer to 661.Xr icmp 4 662for more information. 663.It Va ip_portrange_first 664.Pq Vt int 665If not set to 666.Dq Li NO , 667this is the first port in the default portrange. 668Refer to 669.Xr ip 4 670for more information. 671.It Va ip_portrange_last 672.Pq Vt int 673If not set to 674.Dq Li NO , 675this is the last port in the default portrange. 676Refer to 677.Xr ip 4 678for more information. 679.\" 680.It Va ifconfig_ Ns Aq Ar interface 681.Pq Vt str 682Configuration for 683.Dq interface . 684Typically includes IP address. 685Assuming that the interface in question was 686.Li ed0 , 687it might look something like this: 688.Bd -literal 689ifconfig_ed0="inet 10.0.0.1 netmask 0xffff0000" 690.Ed 691.Pp 692If the 693.Pa /etc/start_if. Ns Aq Ar interface 694file is present, it is read and executed by the 695.Xr sh 1 696interpreter before configuring the interface as specified in the 697.Va ifconfig_ Ns Aq Ar interface 698and 699.Va ifconfig_ Ns Ao Ar interface Ac Ns Va _alias Ns Aq Ar n 700variables. 701.Pp 702It is possible to bring up an interface with DHCP by adding 703.Dq Li DHCP 704to the 705.Va ifconfig_ Ns Aq Ar interface 706variable. 707For instance, to initialize the 708.Li ed0 709device via DHCP, it is possible to use something like: 710.Bd -literal 711ifconfig_ed0="DHCP" 712.Ed 713.Pp 714If a 715.Va vlans_ Ns Aq Ar interface 716variable is set, 717a 718.Xr vlan 4 719interface will be created for each item in the list with the 720.Ar vlandev 721argument set to 722.Ar interface . 723If a vlan interface's name is a number, 724then that number is used as the vlan tag and the new vlan interface is 725named 726.Ar interface . Ns Ar tag . 727Otherwise, 728the vlan tag must be specified via a 729.Va vlan 730parameter in the 731.Va create_args_ Ns Aq Ar interface 732variable. 733.Pp 734To create a vlan device named 735.Li em0.101 736on 737.Li em0 738with the vlan tag 101 and the optional the IPv4 address 192.0.2.1/24: 739.Bd -literal 740vlans_em0="101" 741ifconfig_em0_101="inet 192.0.2.1/24" 742.Ed 743.Pp 744To create a vlan device named 745.Li myvlan 746on 747.Li em0 748with the vlan tag 102: 749.Bd -literal 750vlans_em0="myvlan" 751create_args_myvlan="vlan 102" 752.Ed 753.Pp 754If a 755.Va wlans_ Ns Aq Ar interface 756variable is set, 757an 758.Xr wlan 4 759interface will be created for each item in the list with the 760.Ar wlandev 761argument set to 762.Ar interface . 763Further wlan cloning arguments may be passed to the 764.Xr ifconfig 8 765.Cm create 766command by setting the 767.Va create_args_ Ns Aq Ar interface 768variable. 769One or more 770.Xr wlan 4 771devices must be created for each wireless devices as of 772.Dx 2.5 . 773Debugging flags for 774.Xr wlan 4 775devices as set by 776.Xr wlandebug 8 777may be specified with an 778.Va wlandebug_ Ns Aq Ar interface 779variable. 780The contents of this variable will be passed directly to 781.Xr wlandebug 8 . 782.Pp 783Also, if your interface needs WPA authentication, it is possible to add 784.Dq Li WPA 785to the 786.Va ifconfig_ Ns Aq Ar interface 787variable. 788This will start 789.Xr wpa_supplicant 8 . 790See 791.Xr wpa_supplicant.conf 5 792for configuring authentication information. 793.Pp 794Finally, you can add 795.Xr ifconfig 8 796options in this variable, in addition to the 797.Pa /etc/start_if. Ns Aq Ar interface 798file. 799For instance, to initialize the 800.Li wi0 801device via DHCP, using WPA authentication and 802.11b mode, it is 802possible to use something like: 803.Bd -literal 804wlans_wi0="wlan0" 805ifconfig_wlan0="up DHCP WPA mode 11b" 806.Ed 807.It Va ifconfig_ Ns Ao Ar interface Ac Ns Va _alias Ns Aq Ar n 808.Pq Vt str 809Configuration to establish an additional network address for 810.Dq interface . 811Assuming that the interface in question was 812.Li ed0 , 813it might look something like this: 814.Bd -literal 815ifconfig_ed0_alias0="inet 127.0.0.253 netmask 0xffffffff" 816ifconfig_ed0_alias1="inet 127.0.0.254 netmask 0xffffffff" 817.Ed 818.Pp 819And so on. 820For each 821.Va ifconfig_ Ns Ao Ar interface Ac Ns Va _alias Ns Aq Ar n 822entry that is found, its contents are passed to 823.Xr ifconfig 8 . 824Execution stops at the first unsuccessful access, so if 825something like this is present: 826.Bd -literal 827ifconfig_ed0_alias0="inet 127.0.0.251 netmask 0xffffffff" 828ifconfig_ed0_alias1="inet 127.0.0.252 netmask 0xffffffff" 829ifconfig_ed0_alias2="inet 127.0.0.253 netmask 0xffffffff" 830ifconfig_ed0_alias4="inet 127.0.0.254 netmask 0xffffffff" 831.Ed 832.Pp 833Then note that alias4 would 834.Em not 835be added since the search would stop with the missing alias3 entry. 836.It Va ifconfig_ Ns Ao Ar interface Ac Ns Va _name 837.Pq Vt str 838New name for 839.Dq interface . 840It is possible to rename interface by doing: 841.Bd -literal 842ifconfig_ed0_name="net0" 843ifconfig_net0="inet 10.0.0.1 netmask 0xffff0000" 844.Ed 845.It Va netif_enable 846.Pq Vt bool 847Set to 848.Dq Li YES 849by default. 850Setting to 851.Dq Li NO 852will disable the configuration of network interfaces. 853.It Va network_interfaces 854.Pq Vt str 855The list of network interfaces to configure on this host, 856or 857.Dq Li auto 858to configure all network interfaces 859(default 860.Dq Li auto ) . 861For example, if the only network devices to be configured are the loopback device 862.Pq Li lo0 863and a NIC using the 864.Xr em 4 865driver, this could be set to 866.Dq Li "lo0 em0" . 867An 868.Va ifconfig_ Ns Aq Ar interface 869variable is assumed to exist for each value of 870.Ar interface . 871.It Va ipv6_network_interfaces 872.Pq Vt str 873This is the IPv6 equivalent of 874.Va network_interfaces . 875Instead of setting the ifconfig variables as 876.Va ifconfig_ Ns Aq Ar interface 877they should be set as 878.Va ipv6_ifconfig_ Ns Aq Ar interface . 879Aliases should be set as 880.Va ipv6_ifconfig_ Ns Ao Ar interface Ac Ns Va _alias Ns Aq Ar n . 881Interfaces that do not have a 882.Va ipv6_ifconfig_ Ns Aq Ar interface 883setting will be auto configured by 884.Xr rtsol 8 885if the 886.Va ipv6_gateway_enable 887is set to 888.Dq Li NO . 889Note that the IPv6 networking code does not support the 890.Pa /etc/start_if. Ns Aq Ar interface 891files. 892.It Va ipv6_prefix_ Ns Aq Ar interface 893.Pq Vt str 894Assign prefix to 895.Ar interface , 896prefixlen 64 is used. 897.It Va ipv6_default_interface 898.Pq Vt str 899If not set to 900.Dq Li NO , 901this is the default output interface for scoped addresses. 902Now this works only for IPv6 link local multicast addresses. 903.It Va ip6addrctl_enable 904.Pq Vt bool 905This variable is to enable configuring the default address selection policy table 906.Pq RFC 3484 . 907The default value is 908.Dq Li YES , 909and the policy table to be installed is specified by the 910.Va ip6addrctl_policy 911variable below. 912.It Va ip6addrctl_policy 913.Pq Vt str 914This variable specifies the policy table to be installed, 915and can be one of the following keywords: 916.Dq Li ipv4_prefer , 917.Dq Li ipv6_prefer , 918or 919.Dq Li AUTO 920(default). 921.Pp 922If 923.Dq Li ipv4_prefer 924or 925.Dq Li ipv6_prefer 926is specified, 927.Xr ip6addrctl 8 928installs a pre-defined policy table described in Section 2.1 929.Pq IPv6-preferred 930or 10.3 931.Pq IPv4-preferred 932of RFC 3484. 933.Pp 934If 935.Dq Li AUTO 936is specified, it attempts to read a file 937.Pa /etc/ip6addrctl.conf 938first. 939If this file is found, 940.Xr ip6addrctl 8 941reads and installs it. 942If not found, a policy is automatically set 943according to 944.Va ipv6_enable 945variable; if the variable is set to 946.Dq Li YES 947the IPv6-preferred one is used. 948Otherwise IPv4-preferred. 949.It Va ip6addrctl_verbose 950.Pq Vt bool 951If set to 952.Dq Li YES , 953print the installed policy table after configuring. 954The default value is 955.Dq Li NO . 956.It Va cloned_interfaces 957.Pq Vt str 958Set to the list of clonable network interfaces to create on this host. 959Entries in 960.Va cloned_interfaces 961are automatically appended to 962.Va network_interfaces 963for configuration. 964.It Va gif_interfaces 965.Pq Vt str 966Set to the list of 967.Xr gif 4 968tunnel interfaces to configure on this host. 969A 970.Va gifconfig_ Ns Aq Ar interface 971variable is assumed to exist for each value of 972.Ar interface . 973The value of this variable is used to configure the link layer of the 974tunnel according to the syntax of the 975.Cm tunnel 976option to 977.Xr ifconfig 8 . 978Additionally, this option ensures that each listed interface is created via the 979.Cm create 980option to 981.Xr ifconfig 8 982before attempting to configure it. 983.It Va sppp_interfaces 984.Pq Vt str 985Set to the list of 986.Xr sppp 4 987interfaces to configure on this host. 988A 989.Va spppconfig_ Ns Aq Ar interface 990variable is assumed to exist for each value of 991.Ar interface . 992Each interface should also be configured by a general 993.Va ifconfig_ Ns Aq Ar interface 994setting. 995Refer to 996.Xr spppcontrol 8 997for more information about available options. 998.It Va ppp_enable 999.Pq Vt bool 1000If set to 1001.Dq Li YES , 1002run the 1003.Xr ppp 8 1004daemon. 1005.It Va ppp_mode 1006.Pq Vt str 1007Mode in which to run the 1008.Xr ppp 8 1009daemon. 1010Accepted modes are 1011.Dq Li auto , 1012.Dq Li ddial , 1013.Dq Li direct 1014and 1015.Dq Li dedicated . 1016See the manual for a full description. 1017.It Va ppp_nat 1018.Pq Vt bool 1019If set to 1020.Dq Li YES , 1021enables network address translation. 1022Used in conjunction with 1023.Va gateway_enable 1024allows hosts on private network addresses access to the Internet using 1025this host as a network address translating router. 1026.It Va ppp_profile 1027.Pq Vt str 1028The name of the profile to use from 1029.Pa /etc/ppp/ppp.conf . 1030Also used for per-profile overrides of 1031.Va ppp_ Ns Ao Ar profile Ac Ns _unit . 1032Where the profile contains any of the characters 1033.Dq Li .-/+ 1034they are translated to 1035.Dq Li _ 1036for the purposes of the override variable names. 1037.It Va ppp_ Ns Ao Ar profile Ac Ns _unit 1038.Pq Vt int 1039Set the unit number to be used for this profile. 1040See the manual description of 1041.Fl unit Ns Ar N 1042in 1043.Xr ppp 8 1044for details. 1045.It Va ppp_user 1046.Pq Vt str 1047The name of the user under which 1048.Xr ppp 8 1049should be started. 1050By default, 1051.Xr ppp 8 1052is started as 1053.Dq Li root . 1054.It Va rc_conf_files 1055.Pq Vt str 1056This option is used to specify a list of files that will override 1057the settings in 1058.Pa /etc/defaults/rc.conf . 1059The files will be read in the order in which they are specified and should 1060include the full path to the file. 1061By default, the files specified are 1062.Pa /etc/rc.conf 1063and 1064.Pa /etc/rc.conf.local 1065.It Va fsck_y_enable 1066.Pq Vt bool 1067If set to 1068.Dq Li YES , 1069.Xr fsck 8 1070will be run with the 1071.Fl y 1072flag if the initial preen of the file systems fails. 1073.It Va netfs_types 1074.Pq Vt str 1075List of file system types that are network-based. 1076This list should generally not be modified by end users. 1077Use 1078.Va extra_netfs_types 1079instead. 1080.It Va extra_netfs_types 1081.Pq Vt str 1082If set to something other than 1083.Dq Li NO 1084(the default), this variable extends the list of file system types 1085for which automatic mounting at startup by 1086.Xr rc 8 1087should be delayed until the network is initialized. 1088It should contain 1089a whitespace-separated list of network file system descriptor pairs, 1090each consisting of a file system type as passed to 1091.Xr mount 8 1092and a human-readable, one-word description, joined with a colon 1093.Pq Ql \&: . 1094Extending the default list in this way is only necessary 1095when third party file system types are used. 1096.It Va devfs_config_files 1097.Pq Vt str 1098This option is used to specify a list of configuration files containing 1099.Xr devfs 5 1100rules that will be applied by 1101.Xr devfsctl 8 1102in the order in which they are specified and must include the full path 1103to the file. 1104.It Va syslogd_enable 1105.Pq Vt bool 1106If set to 1107.Dq Li YES , 1108run the 1109.Xr syslogd 8 1110daemon. 1111.It Va syslogd_program 1112.Pq Vt str 1113Path to 1114.Xr syslogd 8 1115(default 1116.Pa /usr/sbin/syslogd ) . 1117.It Va syslogd_flags 1118.Pq Vt str 1119If 1120.Va syslogd_enable 1121is set to 1122.Dq Li YES , 1123these are the flags to pass to 1124.Xr syslogd 8 . 1125.It Va inetd_enable 1126.Pq Vt bool 1127If set to 1128.Dq Li YES , 1129run the 1130.Xr inetd 8 1131daemon. 1132.It Va inetd_program 1133.Pq Vt str 1134Path to 1135.Xr inetd 8 1136(default 1137.Pa /usr/sbin/inetd ) . 1138.It Va inetd_flags 1139.Pq Vt str 1140If 1141.Va inetd_enable 1142is set to 1143.Dq Li YES , 1144these are the flags to pass to 1145.Xr inetd 8 . 1146.It Va rwhod_enable 1147.Pq Vt bool 1148If set to 1149.Dq Li YES , 1150run the 1151.Xr rwhod 8 1152daemon at boot time. 1153.It Va rwhod_flags 1154.Pq Vt str 1155If 1156.Va rwhod_enable 1157is set to 1158.Dq Li YES , 1159these are the flags to pass to it. 1160.It Va update_motd 1161.Pq Vt bool 1162If set to 1163.Dq Li YES , 1164.Pa /etc/motd 1165will be updated at boot time to reflect the kernel release being run. 1166If set to 1167.Dq Li NO , 1168.Pa /etc/motd 1169will not be updated. 1170.It Va nfs_client_enable 1171.Pq Vt bool 1172If set to 1173.Dq Li YES , 1174setup NFS client parameters at boot time. 1175.It Va nfs_access_cache 1176.Pq Vt int 1177If 1178.Va nfs_client_enable 1179is set to 1180.Dq Li YES , 1181this can be set to 1182.Dq Li 0 1183to disable NFS ACCESS RPC caching, or to the number of seconds for which 1184NFS ACCESS results should be cached. 1185A value of 2-10 seconds will substantially reduce network traffic for 1186many NFS operations. 1187The default is 5 seconds. 1188Note that the attribute cache holds stat information only. 1189The NFS data cache is independent of the attribute cache and is only 1190invalidated when the client detects that the server has modified the 1191underlying file. 1192This value specifies a maximum timeout. 1193The NFS client will automatically use a shorter timeout for files which 1194have been recently modified. 1195.It Va nfs_neg_cache 1196.Pq Vt int 1197If 1198.Va nfs_client_enable 1199is set to 1200.Dq Li YES , 1201this can be set to 1202.Dq Li 0 1203to disable the caching of NEGATIVE LOOKUPS (lookups of non-existent 1204filenames), or to the number of seconds for which negative lookups should 1205be cached. 1206A value of 2-10 seconds will substantially reduce network 1207traffic for many NFS operations, especially source code builds. 1208The default is 3 seconds. 1209.It Va nfs_server_enable 1210.Pq Vt bool 1211If set to 1212.Dq Li YES , 1213run the NFS server daemons at boot time. 1214.It Va nfs_server_flags 1215.Pq Vt str 1216If 1217.Va nfs_server_enable 1218is set to 1219.Dq Li YES , 1220these are the flags to pass to the 1221.Xr nfsd 8 1222daemon. 1223.It Va mountd_enable 1224.Pq Vt bool 1225If set to 1226.Dq Li YES , 1227and no 1228.Va nfs_server_enable 1229is set, start 1230.Xr mountd 8 , 1231but not 1232.Xr nfsd 8 1233daemon. 1234It is commonly needed to run CFS without real NFS used. 1235.It Va mountd_flags 1236.Pq Vt str 1237If 1238.Va mountd_enable 1239is set to 1240.Dq Li YES , 1241these are the flags to pass to the 1242.Xr mountd 8 1243daemon. 1244.It Va weak_mountd_authentication 1245.Pq Vt bool 1246If set to 1247.Dq Li YES , 1248allow services like PCNFSD to make non-privileged mount requests. 1249.It Va nfs_reserved_port_only 1250.Pq Vt bool 1251If set to 1252.Dq Li YES , 1253provide NFS services only on a secure port. 1254.It Va nfs_bufpackets 1255.Pq Vt int 1256If set to a number, indicates the number of packets worth of 1257socket buffer space to reserve on an NFS client. 1258The kernel default is typically 4. 1259Using a higher number may be useful on gigabit networks to improve performance. 1260The minimum value is 2 and the maximum is 64. 1261.It Va rpc_umntall_enable 1262.Pq Vt bool 1263If set to 1264.Dq Li YES 1265(default) and we are also an NFS client, run 1266.Xr rpc.umntall 8 1267at boot time to clear out old mounts on remote servers. 1268If set to 1269.Dq Li NO 1270then 1271.Xr rpc.umntall 8 1272will not be run at boot time. 1273.It Va rpc_lockd_enable 1274.Pq Vt bool 1275If set to 1276.Dq Li YES 1277and also an NFS server, run 1278.Xr rpc.lockd 8 1279at boot time. 1280.It Va rpc_lockd_flags 1281.Pq Vt str 1282If 1283.Va rpc_lockd_enable 1284is set to 1285.Dq Li YES , 1286these are the flags to pass to 1287.Xr rpc.lockd 8 . 1288.It Va rpc_statd_enable 1289.Pq Vt bool 1290If set to 1291.Dq Li YES 1292and also an NFS server, run 1293.Xr rpc.statd 8 1294at boot time. 1295.It Va rpc_statd_flags 1296.Pq Vt str 1297If 1298.Va rpc_statd_enable 1299is set to 1300.Dq Li YES , 1301these are the flags to pass to 1302.Xr rpc.statd 8 . 1303.It Va rpcbind_program 1304.Pq Vt str 1305Path to program for rpcbind daemon 1306(default 1307.Pa /usr/sbin/rpcbind ) . 1308.It Va rpcbind_enable 1309.Pq Vt bool 1310If set to 1311.Dq Li YES , 1312run 1313.Va rpcbind_program 1314at boot time. 1315.It Va rpcbind_flags 1316.Pq Vt str 1317If 1318.Va rpcbind_enable 1319is set to 1320.Dq Li YES , 1321these are the flags to pass to 1322.Va rpcbind_program . 1323.It Va keyserv_enable 1324.Pq Vt bool 1325If set to 1326.Dq Li YES , 1327run the 1328.Xr keyserv 8 1329daemon on boot for running Secure RPC. 1330.It Va keyserv_flags 1331.Pq Vt str 1332If 1333.Va keyserv_enable 1334is set to 1335.Dq Li YES , 1336these are the flags to pass to 1337.Xr keyserv 8 1338daemon. 1339.It Va pppoed_enable 1340.Pq Vt bool 1341If set to 1342.Dq Li YES , 1343run the 1344.Xr pppoed 8 1345daemon at boot time to provide PPP over Ethernet services. 1346.It Va pppoed_provider 1347.Pq Vt str 1348.Xr pppoed 8 1349listens to requests to this provider and ultimately runs 1350.Xr ppp 8 1351with a 1352.Ar system 1353argument of the same name. 1354.It Va pppoed_flags 1355.Pq Vt str 1356Additional flags to pass to 1357.Xr pppoed 8 . 1358.It Va pppoed_interface 1359.Pq Vt str 1360The network interface to run 1361.Xr pppoed 8 1362on. 1363This is mandatory when 1364.Va pppoed_enable 1365is set to 1366.Dq Li YES . 1367.It Va dntpd_enable 1368.Pq Vt bool 1369If set to 1370.Dq Li YES , 1371run 1372.Xr dntpd 8 1373at system boot time. 1374.It Va dntpd_program 1375.Pq Vt str 1376Path to 1377.Xr dntpd 8 1378(default 1379.Pa /usr/sbin/dntpd ) . 1380.It Va dntpd_flags 1381.Pq Vt str 1382If 1383.Va dntpd_enable 1384is set to 1385.Dq Li YES , 1386these are the flags to pass to the 1387.Xr dntpd 8 1388daemon. 1389.It Va btconfig_enable 1390.Pq Vt bool 1391If set to 1392.Dq Li YES , 1393configure Bluetooth devices via 1394.Xr btconfig 8 1395at system boot time. 1396.It Va btconfig_devices 1397.Pq Vt str 1398If 1399.Va btconfig_enable 1400is set to 1401.Dq Li YES , 1402this is the list of Bluetooth devices to configure. 1403If 1404.Va btconfig_devices 1405is not specified, all devices known to the system will be configured. 1406A 1407.Va btconfig_ Ns Aq Ar device 1408variable can be set to specify parameters to be passed to 1409.Ar device . 1410.It Va btconfig_args 1411.Pq Vt str 1412If 1413.Va btconfig_enable 1414is set to 1415.Dq Li YES , 1416this is the list of configuration parameters to pass to all Bluetooth 1417devices. 1418.It Va sdpd_enable 1419.Pq Vt bool 1420If set to 1421.Dq Li YES , 1422run the Service Discovery Profile daemon 1423.Xr ( sdpd 8 ) 1424at system boot time. 1425.It Va sdpd_flags 1426.Pq Vt str 1427If 1428.Va sdpd_enable 1429is set to 1430.Dq Li YES , 1431these are the flags to pass to the 1432.Xr sdpd 8 1433daemon. 1434.It Va bthcid_enable 1435.Pq Vt bool 1436If set to 1437.Dq Li YES , 1438run the Bluetooth Link Key/PIN Code Manager daemon 1439.Xr ( bthcid 8 ) 1440at system boot time. 1441.It Va bthcid_flags 1442.Pq Vt str 1443If 1444.Va bthcid_enable 1445is set to 1446.Dq Li YES , 1447these are the flags to pass to the 1448.Xr bthcid 8 1449daemon. 1450.It Va nis_client_enable 1451.Pq Vt bool 1452If set to 1453.Dq Li YES , 1454run the 1455.Xr ypbind 8 1456service at system boot time. 1457.It Va nis_client_flags 1458.Pq Vt str 1459If 1460.Va nis_client_enable 1461is set to 1462.Dq Li YES , 1463these are the flags to pass to the 1464.Xr ypbind 8 1465service. 1466.It Va nis_ypset_enable 1467.Pq Vt bool 1468If set to 1469.Dq Li YES , 1470run the 1471.Xr ypset 8 1472daemon at system boot time. 1473.It Va nis_ypset_flags 1474.Pq Vt str 1475If 1476.Va nis_ypset_enable 1477is set to 1478.Dq Li YES , 1479these are the flags to pass to the 1480.Xr ypset 8 1481daemon. 1482.It Va nis_server_enable 1483.Pq Vt bool 1484If set to 1485.Dq Li YES , 1486run the 1487.Xr ypserv 8 1488daemon at system boot time. 1489.It Va nis_server_flags 1490.Pq Vt str 1491If 1492.Va nis_server_enable 1493is set to 1494.Dq Li YES , 1495these are the flags to pass to the 1496.Xr ypserv 8 1497daemon. 1498.It Va nis_ypxfrd_enable 1499.Pq Vt bool 1500If set to 1501.Dq Li YES , 1502run the 1503.Xr rpc.ypxfrd 8 1504daemon at system boot time. 1505.It Va nis_ypxfrd_flags 1506.Pq Vt str 1507If 1508.Va nis_ypxfrd_enable 1509is set to 1510.Dq Li YES , 1511these are the flags to pass to the 1512.Xr rpc.ypxfrd 8 1513daemon. 1514.It Va nis_yppasswdd_enable 1515.Pq Vt bool 1516If set to 1517.Dq Li YES , 1518run the 1519.Xr rpc.yppasswdd 8 1520daemon at system boot time. 1521.It Va nis_yppasswdd_flags 1522.Pq Vt str 1523If 1524.Va nis_yppasswdd_enable 1525is set to 1526.Dq Li YES , 1527these are the flags to pass to the 1528.Xr rpc.yppasswdd 8 1529daemon. 1530.It Va rpc_ypupdated_enable 1531.Pq Vt bool 1532If set to 1533.Dq Li YES , 1534run the 1535.Nm rpc.ypupdated 1536daemon at system boot time. 1537.It Va defaultrouter 1538.Pq Vt str 1539If not set to 1540.Dq Li NO , 1541create a default route to this host name or IP address 1542(use an IP address if this router is also required to get to the 1543name server!). 1544.It Va ipv6_defaultrouter 1545.Pq Vt str 1546The IPv6 equivalent of 1547.Va defaultrouter . 1548.It Va static_routes 1549.Pq Vt str 1550Set to the list of static routes that are to be added at system boot time. 1551If not set to 1552.Dq Li NO 1553then for each whitespace separated 1554.Ar element 1555in the value, a 1556.Va route_ Ns Aq Ar element 1557variable is assumed to exist whose contents will later be passed to a 1558.Dq Nm route Cm add 1559operation. 1560.It Va change_routes 1561.Pq Vt str 1562Set to the list of static routes that are to be changed at system boot time 1563(such as those added by the kernel). 1564If not set to 1565.Dq Li NO 1566then for each whitespace separated 1567.Ar element 1568in the value, a 1569.Va change_route_ Ns Aq Ar element 1570variable is assumed to exist whose contents will later be passed to a 1571.Dq Nm route Cm change 1572operation. 1573.It Va ipv6_static_routes 1574.Pq Vt str 1575The IPv6 equivalent of 1576.Va static_routes . 1577If not set to 1578.Dq Li NO 1579then for each whitespace separated 1580.Ar element 1581in the value, a 1582.Va ipv6_route_ Ns Aq Ar element 1583variable is assumed to exist whose contents will later be passed to a 1584.Dq Nm route Cm add Fl inet6 1585operation. 1586.It Va gateway_enable 1587.Pq Vt bool 1588If set to 1589.Dq Li YES , 1590configure host to act as an IP router, e.g. to forward packets 1591between interfaces. 1592.It Va ipv6_gateway_enable 1593.Pq Vt bool 1594The IPv6 equivalent of 1595.Va gateway_enable . 1596.It Va router_enable 1597.Pq Vt bool 1598If set to 1599.Dq Li YES , 1600run a routing daemon of some sort, based on the settings of 1601.Va router_program 1602and 1603.Va router_flags . 1604.It Va ipv6_router_enable 1605.Pq Vt bool 1606The IPv6 equivalent of 1607.Va router_enable . 1608If set to 1609.Dq Li YES , 1610run a routing daemon of some sort, based on the settings of 1611.Va ipv6_router_program 1612and 1613.Va ipv6_router_flags . 1614.It Va router_program 1615.Pq Vt str 1616If 1617.Va router_enable 1618is set to 1619.Dq Li YES , 1620this is the name of the routing daemon to use 1621(default 1622.Pa /sbin/routed ) . 1623.It Va ipv6_router_program 1624.Pq Vt str 1625The IPv6 equivalent of 1626.Va router_program 1627(default 1628.Pa /sbin/route6d ) . 1629.It Va router_flags 1630.Pq Vt str 1631If 1632.Va router_enable 1633is set to 1634.Dq Li YES , 1635these are the flags to pass to the routing daemon. 1636.It Va ipv6_router_flags 1637.Pq Vt str 1638The IPv6 equivalent of 1639.Va router_flags . 1640.It Va rtadvd_enable 1641.Pq Vt bool 1642If set to 1643.Dq Li YES , 1644run the 1645.Xr rtadvd 8 1646daemon at boot time. 1647.Xr rtadvd 8 1648will only run if 1649.Va ipv6_gateway_enable 1650is also set to 1651.Dq Li YES . 1652The 1653.Xr rtadvd 8 1654utility sends router advertisement packets to the interfaces specified in 1655.Va rtadvd_interfaces . 1656.Xr rtadvd 8 1657and should only be enabled with great care. 1658You may want to fine-tune 1659.Xr rtadvd.conf 5 . 1660.It Va rtadvd_interfaces 1661.Pq Vt str 1662If 1663.Va rtadvd_enable 1664is set to 1665.Dq Li YES 1666this is the list of interfaces to use. 1667.It Va rtsold_enable 1668.Pq Vt bool 1669If set to 1670.Dq Li YES , 1671run the 1672.Xr rtsold 8 1673daemon at boot time. 1674The 1675.Xr rtsold 8 1676daemon is used for automatic discovery of non-link local addresses. 1677.It Va rtsold_flags 1678.Pq Vt str 1679If 1680.Va rtsold_enable 1681is set to 1682.Dq Li YES , 1683these are the flags to pass to the 1684.Xr rtsold 8 1685daemon. 1686.It Va arpproxy_all 1687.Pq Vt bool 1688If set to 1689.Dq Li YES , 1690enable global proxy ARP. 1691.It Va forward_sourceroute 1692.Pq Vt bool 1693If set to 1694.Dq Li YES 1695and 1696.Va gateway_enable 1697is also set to 1698.Dq Li YES , 1699source-routed packets are forwarded. 1700.It Va accept_sourceroute 1701.Pq Vt bool 1702If set to 1703.Dq Li YES , 1704the system will accept source-routed packets directed at it. 1705.It Va rarpd_enable 1706.Pq Vt bool 1707If set to 1708.Dq Li YES , 1709run the 1710.Xr rarpd 8 1711daemon at system boot time. 1712.It Va rarpd_flags 1713.Pq Vt str 1714If 1715.Va rarpd_enable 1716is set to 1717.Dq Li YES , 1718these are the flags to pass to the 1719.Xr rarpd 8 1720daemon. 1721.It Va bootparamd_enable 1722.Pq Vt bool 1723If set to 1724.Dq Li YES , 1725run the 1726.Xr bootparamd 8 1727daemon at system boot time. 1728.It Va bootparamd_flags 1729.Pq Vt str 1730If 1731.Va bootparamd_enable 1732is set to 1733.Dq Li YES , 1734these are the flags to pass to the 1735.Xr bootparamd 8 1736daemon. 1737.It Va stf_interface_ipv4addr 1738.Pq Vt str 1739If not set to 1740.Dq Li NO , 1741this is the local IPv4 address for 6to4 (IPv6 over IPv4 tunneling interface). 1742Specify this entry to enable the 6to4 interface. 1743.It Va stf_interface_ipv4plen 1744.Pq Vt int 1745Prefix length for 6to4 IPv4 addresses, to limit peer address range. 1746An effective value is 0-31. 1747.It Va stf_interface_ipv6_ifid 1748.Pq Vt str 1749IPv6 interface ID for 1750.Xr stf 4 . 1751This can be set to 1752.Dq Li AUTO . 1753.It Va stf_interface_ipv6_slaid 1754.Pq Vt str 1755IPv6 Site Level Aggregator for 1756.Xr stf 4 . 1757.It Va keybell 1758.Pq Vt str 1759The keyboard bell sound. 1760Set to 1761.Dq Li normal , 1762.Dq Li visual , 1763.Dq Li off , 1764or 1765.Dq Li NO 1766if the default behavior is desired. 1767For details, refer to the 1768.Xr kbdcontrol 1 1769manpage. 1770.It Va keymap 1771.Pq Vt str 1772If set to 1773.Dq Li NO , 1774no keymap is installed, otherwise the value is used to install 1775the keymap file in 1776.Pa /usr/share/syscons/keymaps/ Ns Ao Ar value Ac Ns Pa .kbd . 1777.It Va keyrate 1778.Pq Vt str 1779The keyboard repeat speed. 1780Set to 1781.Dq Li slow , 1782.Dq Li normal , 1783.Dq Li fast , 1784or 1785.Dq Li NO 1786if the default behavior is desired. 1787.It Va keychange 1788.Pq Vt str 1789If not set to 1790.Dq Li NO , 1791attempt to program the function keys with the value. 1792The value should be a single string of the form: 1793.Dq Ar funkey_number new_value Op Ar funkey_number new_value ... . 1794.It Va cursor 1795.Pq Vt str 1796Can be set to the value of 1797.Dq Li normal , 1798.Dq Li blink , 1799.Dq Li destructive , 1800or 1801.Dq Li NO 1802to set the cursor behavior explicitly or choose the default behavior. 1803.It Va scrnmap 1804.Pq Vt str 1805If set to 1806.Dq Li NO , 1807no screen map is installed, otherwise the value is used to install 1808the screen map file in 1809.Pa /usr/share/syscons/scrnmaps/ Ns Aq Ar value . 1810.It Va font8x16 1811.Pq Vt str 1812If set to 1813.Dq Li NO , 1814the default 8x16 font value is used for screen size requests, otherwise 1815the value in 1816.Pa /usr/share/syscons/fonts/ Ns Aq Ar value 1817is used. 1818.It Va font8x14 1819.Pq Vt str 1820If set to 1821.Dq Li NO , 1822the default 8x14 font value is used for screen size requests, otherwise 1823the value in 1824.Pa /usr/share/syscons/fonts/ Ns Aq Ar value 1825is used. 1826.It Va font8x8 1827.Pq Vt str 1828If set to 1829.Dq Li NO , 1830the default 8x8 font value is used for screen size requests, otherwise 1831the value in 1832.Pa /usr/share/syscons/fonts/ Ns Aq Ar value 1833is used. 1834.It Va blanktime 1835.Pq Vt int 1836If set to 1837.Dq Li NO , 1838the default screen blanking interval is used, otherwise it is set to 1839.Ar value 1840seconds. 1841.It Va saver 1842.Pq Vt str 1843If not set to 1844.Dq Li NO , 1845this is the actual screen saver to use 1846.Li ( blank , snake , daemon , 1847etc). 1848.It Va moused_nondefault_enable 1849.Pq Vt str 1850If set to 1851.Dq Li NO , 1852the mouse device specified on 1853the command line is not automatically treated as enabled by the 1854.Pa /etc/rc.d/moused 1855script. 1856Having this variable set to 1857.Dq Li YES 1858allows a 1859.Xr usb 4 1860mouse, 1861for example, 1862to be enabled as soon as it is plugged in. 1863.It Va moused_enable 1864.Pq Vt str 1865If set to 1866.Dq Li YES , 1867the 1868.Xr moused 8 1869daemon is started for doing cut/paste selection on the console. 1870.It Va moused_type 1871.Pq Vt str 1872If 1873.Va moused_enable 1874is set to 1875.Dq Li YES , 1876this is the protocol type of the mouse connected to this host. 1877The default type is 1878.Dq Li auto . 1879The 1880.Xr moused 8 1881daemon 1882is able to detect the appropriate mouse type automatically in many cases. 1883Leave this variable at the default 1884.Dq Li auto 1885to let the daemon detect it, or 1886select one from the following list if the automatic detection fails. 1887.Pp 1888If the mouse is attached to the PS/2 mouse port, leave the variable at the 1889default 1890.Dq Li auto 1891or set it to 1892.Dq Li ps/2 , 1893regardless of the brand and model of the mouse. 1894Likewise, if the mouse is attached to the bus mouse port, leave it at 1895.Dq Li auto 1896or set it to 1897.Dq Li busmouse . 1898All other protocols are for serial mice and will not work with 1899the PS/2 and bus mice. 1900If this is a USB mouse, 1901.Dq Li auto 1902is the only protocol type which will work. 1903.Pp 1904.Bl -tag -width ".Li x10mouseremote" -compact 1905.It Li microsoft 1906Microsoft mouse (serial) 1907.It Li intellimouse 1908Microsoft IntelliMouse (serial) 1909.It Li mousesystems 1910Mouse systems Corp. mouse (serial) 1911.It Li mmseries 1912MM Series mouse (serial) 1913.It Li logitech 1914Logitech mouse (serial) 1915.It Li busmouse 1916A bus mouse 1917.It Li mouseman 1918Logitech MouseMan and TrackMan (serial) 1919.It Li glidepoint 1920ALPS GlidePoint (serial) 1921.It Li thinkingmouse 1922Kensington ThinkingMouse (serial) 1923.It Li ps/2 1924PS/2 mouse 1925.It Li mmhittab 1926MM HitTablet (serial) 1927.It Li x10mouseremote 1928X10 MouseRemote (serial) 1929.It Li versapad 1930Interlink VersaPad (serial) 1931.El 1932.Pp 1933Even if the mouse is not in the above list, it may be compatible 1934with one in the list. 1935Refer to the man page for 1936.Xr moused 8 1937for compatibility information. 1938.Pp 1939It should also be noted that while this is enabled, any 1940other client of the mouse (such as an X server) should access 1941the mouse through the virtual mouse device, 1942.Pa /dev/sysmouse , 1943and configure it as a 1944.Dq Li sysmouse 1945type mouse, since all 1946mouse data is converted to this single canonical format when using 1947.Xr moused 8 . 1948If the client program does not support the 1949.Dq Li sysmouse 1950type, specify the 1951.Dq Li mousesystems 1952type. 1953It is the second preferred type. 1954.It Va moused_port 1955.Pq Vt str 1956If 1957.Va moused_enable 1958is set to 1959.Dq Li YES , 1960this is the actual port the mouse is on. 1961It might be 1962.Pa /dev/cuaa0 1963for a COM1 serial mouse or 1964.Pa /dev/psm0 1965for a PS/2 mouse, for example. 1966.It Va moused_flags 1967.Pq Vt str 1968If 1969.Va moused_type 1970is set, these are the additional flags to pass to the 1971.Xr moused 8 1972daemon. 1973.It Va mousechar_start 1974.Pq Vt int 1975If set to 1976.Dq Li NO , 1977the default mouse cursor character range 1978.Li 0xd0 Ns - Ns Li 0xd3 1979is used, otherwise the range start is set to 1980.Ar value 1981character, see 1982.Xr vidcontrol 1 . 1983Use if the default range is occupied in the language code table. 1984.It Va vidhistory 1985.Pq Vt int 1986Set the size of the history (scrollback) buffer in lines. 1987.It Va allscreens_flags 1988.Pq Vt str 1989If set, 1990.Xr vidcontrol 1 1991is run with these options for each of the virtual terminals 1992.Pq Pa /dev/ttyv* . 1993For example, 1994.Dq Fl m Cm on 1995will enable the mouse pointer on all virtual terminals if 1996.Va moused_enable 1997is set to 1998.Dq Li YES . 1999.It Va allscreens_kbdflags 2000.Pq Vt str 2001If set, 2002.Xr kbdcontrol 1 2003is run with these options for each of the virtual terminals 2004.Pq Pa /dev/ttyv* . 2005For example, 2006.Dq Fl h Li 200 2007will set the 2008.Xr syscons 4 2009scrollback (history) buffer to 200 lines. 2010.It Va cron_enable 2011.Pq Vt bool 2012If set to 2013.Dq Li YES , 2014run the 2015.Xr cron 8 2016daemon at system boot time. 2017.It Va cron_program 2018.Pq Vt str 2019Path to 2020.Xr cron 8 2021(default 2022.Pa /usr/sbin/cron ) . 2023.It Va cron_flags 2024.Pq Vt str 2025If 2026.Va cron_enable 2027is set to 2028.Dq Li YES , 2029these are the flags to pass to 2030.Xr cron 8 . 2031.It Va lpd_program 2032.Pq Vt str 2033Path to 2034.Xr lpd 8 2035(default 2036.Pa /usr/sbin/lpd ) . 2037.It Va lpd_enable 2038.Pq Vt bool 2039If set to 2040.Dq Li YES , 2041run the 2042.Xr lpd 8 2043daemon at system boot time. 2044.It Va lpd_flags 2045.Pq Vt str 2046If 2047.Va lpd_enable 2048is set to 2049.Dq Li YES , 2050these are the flags to pass to the 2051.Xr lpd 8 2052daemon. 2053.It Va nscd_enable 2054.Pq Vt bool 2055If set to 2056.Dq Li YES , 2057run the 2058.Xr nscd 8 2059daemon at system boot time. 2060.It Va mixer_enable 2061.Pq Vt bool 2062If set to 2063.Dq Li YES , 2064preserve 2065.Xr mixer 8 2066settings across reboots. 2067.It Va mta_start_script 2068.Pq Vt str 2069The full path to the script to run to start 2070a mail transfer agent. 2071The default is 2072.Pa /etc/rc.sendmail . 2073The 2074.Va sendmail_* 2075variables which 2076.Pa /etc/rc.sendmail 2077uses are documented in the 2078.Xr rc.sendmail 8 2079man page. 2080.It Va fixbootfile 2081.Pq Vt bool 2082In a 2083.Sq HAMMER ROOT with UFS /boot 2084setup, the boot loader will not set up the 2085.Va kern.bootfile 2086sysctl correctly. 2087The system will attempt to fix this on its own. 2088Set this variable to 2089.Dq Li NO 2090to turn this behavior off. 2091.It Va dumpdev 2092.Pq Vt str 2093Indicates the device (usually a swap partition) to which a crash dump 2094should be written in the event of a system crash. 2095The value of this variable is passed as the argument to 2096.Xr dumpon 8 2097and 2098.Xr savecore 8 . 2099To disable crash dumps, set this variable to 2100.Dq Li NO . 2101.It Va dumpdir 2102.Pq Vt str 2103When the system reboots after a crash and a crash dump is found on the 2104device specified by the 2105.Va dumpdev 2106variable, 2107.Xr savecore 8 2108will save that crash dump and a copy of the kernel to the directory 2109specified by the 2110.Va dumpdir 2111variable. 2112The default value is 2113.Pa /var/crash . 2114Set to 2115.Dq Li NO 2116to not run 2117.Xr savecore 8 2118at boot time when 2119.Va dumpdir 2120is set. 2121.It Va savecore_flags 2122.Pq Vt str 2123If crash dumps are enabled, these are the flags to pass to the 2124.Xr savecore 8 2125utility. 2126.It Va crashinfo_enable 2127.Pq Vt bool 2128Set to 2129.Dq Li YES 2130to turn on automatic crash dump summary generation using the utility 2131specified by the 2132.Va crashinfo_program 2133variable. 2134.It Va crashinfo_program 2135.Pq Vt str 2136Program to run to generate a crash dump summary if the variable 2137.Va crashinfo_enable 2138is set to 2139.Dq Li YES . 2140The default value is 2141.Pa /usr/sbin/crashinfo . 2142.It Va enable_quotas 2143.Pq Vt bool 2144Set to 2145.Dq Li YES 2146to turn on user disk quotas on system startup via the 2147.Xr quotaon 8 2148command. 2149.It Va check_quotas 2150.Pq Vt bool 2151Set to 2152.Dq Li YES 2153to enable user disk quota checking via the 2154.Xr quotacheck 8 2155command. 2156.It Va accounting_enable 2157.Pq Vt bool 2158Set to 2159.Dq Li YES 2160to enable system accounting through the 2161.Xr accton 8 2162facility. 2163.\" ----- cleanvar_enable setting-------------------------------- 2164.It Va cleanvar_enable 2165.Pq Vt bool 2166Set to 2167.Dq Li YES 2168to have 2169.Pa /var/run , 2170.Pa /var/spool/lock 2171and 2172.Pa /var/spool/uucp/.Temp/* 2173cleaned at startup. 2174.\" ----- clear_tmp_enable setting------------------------------- 2175.It Va clear_tmp_enable 2176.Pq Vt bool 2177Set to 2178.Dq Li YES 2179to have 2180.Pa /tmp 2181cleaned at startup. 2182.\" ----- ldconfig_paths setting -------------------------------- 2183.It Va ldconfig_paths 2184.Pq Vt str 2185Set to the list of shared library paths to use with 2186.Xr ldconfig 8 . 2187NOTE: 2188.Pa /usr/lib 2189will always be added first, so it need not appear in this list. 2190.It Va ldconfig_insecure 2191.Pq Vt bool 2192The 2193.Xr ldconfig 8 2194utility normally refuses to use directories 2195which are writable by anyone except root. 2196Set this variable to 2197.Dq Li YES 2198to disable that security check during system startup. 2199.It Va ldconfig_local_dirs 2200.Pq Vt str 2201Set to the list of local 2202.Xr ldconfig 8 2203directories. 2204The names of all files in the directories listed will be 2205passed as arguments to 2206.Xr ldconfig 8 . 2207.It Va kern_securelevel 2208.Pq Vt int 2209The kernel security level to set at startup. 2210The allowed range of 2211.Ar value 2212ranges from \-1 (the compile time default) to 3 (the most secure). 2213See 2214.Xr init 8 2215for the list of possible security levels and their effect on system operation. 2216.It Va start_vinum 2217.Pq Vt bool 2218Set to 2219.Dq Li YES 2220to start 2221.Xr vinum 8 2222at system boot time. 2223.It Va sshd_enable 2224.Pq Vt bool 2225Set to 2226.Dq Li YES 2227to start 2228.Xr sshd 8 2229at system boot time. 2230.It Va sshd_program 2231.Pq Vt str 2232Path to the SSH server program 2233(default 2234.Pa /usr/sbin/sshd ) . 2235.It Va sshd_flags 2236.Pq Vt str 2237If 2238.Va sshd_enable 2239is set to 2240.Dq Li YES , 2241these are the flags to pass to the 2242.Xr sshd 8 2243daemon. 2244.It Va ftpd_enable 2245.Pq Vt bool 2246Set to 2247.Dq Li YES 2248to start 2249.Xr ftpd 8 2250at system boot time. 2251.It Va ftpd_flags 2252.Pq Vt str 2253If 2254.Va ftpd_enable 2255is set to 2256.Dq Li YES , 2257these are the flags to pass to the 2258.Xr ftpd 8 2259daemon. 2260.It Va watchdogd_enable 2261.Pq Vt bool 2262If set to 2263.Dq Li YES , 2264start the 2265.Xr watchdogd 8 2266daemon at boot time. 2267.It Va jail_enable 2268.Pq Vt bool 2269If set to 2270.Dq Li NO , 2271any configured jails will not be started. 2272.It Va jail_list 2273.Pq Vt str 2274A space separated list of names for jails. 2275This is purely a configuration aid to help identify and 2276configure multiple jails. 2277The names specified in this list will be used to 2278identify settings common to an instance of a jail. 2279Assuming that the jail in question was named 2280.Li vjail , 2281you would have the following dependent variables: 2282.Bd -literal 2283jail_vjail_hostname="jail.example.com" 2284jail_vjail_ip="192.168.1.100" 2285jail_vjail_rootdir="/var/jails/vjail/root" 2286.Ed 2287.It Va jail_flags 2288.Pq Vt str 2289Unset by default. 2290When set, use as default value for 2291.Va jail_ Ns Ao Ar jname Ac Ns Va _flags 2292for every jail in 2293.Va jail_list . 2294.It Va jail_interface 2295.Pq Vt str 2296Unset by default. 2297When set, use as default value for 2298.Va jail_ Ns Ao Ar jname Ac Ns Va _interface 2299for every jail in 2300.Va jail_list . 2301.It Va jail_fstab 2302.Pq Vt str 2303Unset by default. 2304When set, use as default value for 2305.Va jail_ Ns Ao Ar jname Ac Ns Va _fstab 2306for every jail in 2307.Va jail_list . 2308.It Va jail_mount_enable 2309.Pq Vt bool 2310Set to 2311.Dq Li NO 2312by default. 2313When set to 2314.Dq Li YES , 2315sets 2316.Va jail_ Ns Ao Ar jname Ac Ns Va _mount_enable 2317to 2318.Dq Li YES 2319by default for every jail in 2320.Va jail_list . 2321.It Va jail_procfs_enable 2322.Pq Vt bool 2323Set to 2324.Dq Li NO 2325by default. 2326When set to 2327.Dq Li YES , 2328sets 2329.Va jail_ Ns Ao Ar jname Ac Ns Va _procfs_enable 2330to 2331.Dq Li YES 2332by default for every jail in 2333.Va jail_list . 2334.It Va jail_devfs_enable 2335.Pq Vt bool 2336Set to 2337.Dq Li NO 2338by default. 2339When set to 2340.Dq Li YES , 2341sets 2342.Va jail_ Ns Ao Ar jname Ac Ns Va _devfs_enable 2343to 2344.Dq Li YES 2345by default for every jail in 2346.Va jail_list . 2347.It Va jail_exec_start 2348.Pq Vt str 2349Unset by default. 2350When set, use as default value for 2351.Va jail_ Ns Ao Ar jname Ac Ns Va _exec_start 2352for every jail in 2353.Va jail_list . 2354.It Va jail_exec_stop 2355Unset by default. 2356When set, use as default value for 2357.Va jail_ Ns Ao Ar jname Ac Ns Va _exec_stop 2358for every jail in 2359.Va jail_list . 2360.It Va jail_ Ns Ao Ar jname Ac Ns Va _rootdir 2361.Pq Vt str 2362Unset by default. 2363Set to the root directory used by jail 2364.Va jname . 2365.It Va jail_ Ns Ao Ar jname Ac Ns Va _hostname 2366.Pq Vt str 2367Unset by default. 2368Set to the fully qualified domain name (FQDN) assigned to jail 2369.Va jname . 2370.It Va jail_ Ns Ao Ar jname Ac Ns Va _ip 2371.Pq Vt str 2372Unset by default. 2373Set to the IP address assigned to jail 2374.Va jname . 2375.It Va jail_ Ns Ao Ar jname Ac Ns Va _flags 2376.Pq Vt str 2377Set to 2378.Dq Li -l -U root 2379by default. 2380These are flags to pass to 2381.Xr jail 8 . 2382.It Va jail_ Ns Ao Ar jname Ac Ns Va _interface 2383.Pq Vt str 2384Unset by default. 2385When set, sets the interface to use when setting IP address alias. 2386Note that the alias is created at jail startup and removed at jail shutdown. 2387.It Va jail_ Ns Ao Ar jname Ac Ns Va _fstab 2388.Pq Vt str 2389Set to 2390.Pa /etc/fstab. Ns Aq Ar jname 2391by default. 2392This is the file system information file to use for jail 2393.Va jname . 2394.It Va jail_ Ns Ao Ar jname Ac Ns Va _mount_enable 2395.Pq Vt bool 2396Set to 2397.Dq Li NO 2398by default. 2399When set to 2400.Dq Li YES , 2401mount all file systems from 2402.Va jail_ Ns Ao Ar jname Ac Ns Va _fstab 2403at jail startup. 2404.It Va jail_ Ns Ao Ar jname Ac Ns Va _procfs_enable 2405.Pq Vt bool 2406Set to 2407.Dq Li NO 2408by default. 2409When set to 2410.Dq Li YES , 2411mount the process file system inside jail 2412.Ar jname 2413at jail startup. 2414.It Va jail_ Ns Ao Ar jname Ac Ns Va _devfs_enable 2415.Pq Vt bool 2416Set to 2417.Dq Li NO 2418by default. 2419When set to 2420.Dq Li YES , 2421mount the device file system inside jail 2422.Ar jname 2423at jail startup. 2424.It Va jail_ Ns Ao Ar jname Ac Ns Va _exec_start 2425.Pq Vt str 2426Set to 2427.Dq Li /bin/sh /etc/rc 2428by default. 2429This is the command executed at jail startup. 2430.It Va jail_ Ns Ao Ar jname Ac Ns Va _exec_stop 2431.Pq Vt str 2432Set to 2433.Dq Li /bin/sh /etc/rc.shutdown 2434by default. 2435This is the command executed at jail shutdown. 2436.It Va jail_default_set_hostname_allow 2437.Pq Vt bool 2438If set to 2439.Dq Li NO , 2440do not allow the root user in a jail to set its hostname. 2441.It Va jail_default_socket_unixiproute_only 2442.Pq Vt bool 2443If set to 2444.Dq Li YES , 2445do not allow any sockets, 2446besides UNIX/IP/route sockets, 2447to be used within a jail. 2448.It Va jail_default_sysvipc_allow 2449.Pq Vt bool 2450If set to 2451.Dq Li YES , 2452allow applications within a jail to use System V IPC. 2453.It Va jail_default_chflags_allow 2454.Pq Vt bool 2455If set to 2456.Dq Li YES , 2457allow applications within a jail to alter system file flags. 2458.It Va jail_default_raw_sockets_allow 2459.Pq Vt bool 2460If set to 2461.Dq Li YES , 2462allow applications within a jail to user raw sockets. 2463.It Va lvm_enable 2464.Pq Vt bool 2465If set to 2466.Dq Li YES 2467LVM volumes will be discovered and configured on boot. 2468.It Va newsyslog_enable 2469.Pq Vt bool 2470If set to 2471.Dq Li YES , 2472run 2473.Xr newsyslog 8 2474before syslogd starts. 2475.It Va newsyslog_flags 2476.Pq Vt str 2477If 2478.Va newsyslog_enable 2479is set to 2480.Dq Li YES , 2481these are the flags passed to 2482.Xr newsyslog 8 . 2483.It Va resident_enable 2484.Pq Vt bool 2485If set to 2486.Dq Li YES , 2487make the dynamic binaries listed in 2488.Pa /etc/resident.conf 2489resident. 2490.It Va varsym_enable 2491.Pq Vt bool 2492If set to 2493.Dq Li YES , 2494process 2495.Pa /etc/varsym.conf 2496to set system-wide variables for variant symlinks. 2497.It Va rand_irqs 2498.Pq Vt str 2499Set either to 2500.Dq Li NO 2501or a whitespace separated list of IRQ numbers which will be used as a source of 2502randomness. 2503.\" ----------------------------------------------------- 2504.It Va entropy_dir 2505.Pq Vt str 2506Set to 2507.Dq Li NO 2508to disable caching entropy via 2509.Xr cron 8 . 2510Otherwise set to the directory used to store entropy files in. 2511.It Va entropy_file 2512.Pq Vt str 2513Set to 2514.Dq Li NO 2515to disable caching entropy through reboots. 2516Otherwise set to the filename used to store cached entropy through reboots. 2517This file should be located on the root file system to seed the 2518.Xr random 4 2519device as early as possible in the boot process. 2520.It Va entropy_save_sz 2521.Pq Vt int 2522Determines the size of the entropy cache files used for entropy cached 2523through reboots and also entropy cached via 2524.Xr cron 8 . 2525The entropy is fed to the system in blocks of 512 bytes, so this number 2526should be large enough to fill as many of the entropy pools in the kernel 2527CSPRNG as possible. 2528By default, it is set to 16384, which should be able to seed all 32 entropy 2529pools in the Fortuna CSPRNG. 2530.It Va dmesg_enable 2531.Pq Vt bool 2532Set to 2533.Dq Li YES 2534to save 2535.Xr dmesg 8 2536to 2537.Pa /var/run/dmesg.boot 2538on boot. 2539.It Va rcshutdown_timeout 2540.Pq Vt int 2541If set, start a watchdog timer in the background which will terminate 2542.Pa rc.shutdown 2543if 2544.Xr shutdown 8 2545has not completed within the specified time (in seconds). 2546Notice that in addition to this soft timeout, 2547.Xr init 8 2548also applies a hard timeout for the execution of 2549.Pa rc.shutdown . 2550This is configured via 2551.Xr sysctl 8 2552variable 2553.Va kern.init_shutdown_timeout 2554and defaults to 120 seconds. Setting the value of 2555.Va rcshutdown_timeout 2556to more than 120 seconds will have no effect until the 2557.Xr sysctl 8 2558variable 2559.Va kern.init_shutdown_timeout 2560is also increased. 2561.It Va udevd_enable 2562.Pq Vt bool 2563If set to 2564.Dq Li YES , 2565the udevd daemon will be started on boot. 2566.It Va vfs_quota_enable 2567.Pq Vt bool 2568If set to 2569.Dq Li YES , 2570vfs quota rc.d scripts will be run on boot. 2571.It Va vfs_quota_sync 2572.Pq Vt str 2573List of mount points whose counters are to be synchronized with on-disk 2574usage during system startup. 2575See also 2576.Xr vquota 8 . 2577.It Va vknetd_enable 2578.Pq Vt bool 2579If set to 2580.Dq Li YES , 2581.Xr vknetd 8 2582will be started on boot. 2583.It Va vknetd_flags 2584.Pq Vt bool 2585Additional flags passed to 2586.Xr vknetd 8 . 2587Usually address/cidrbits is specified here. 2588When no flags are passed, default option 2589.Fl U 2590will be used. 2591.It Va vkernel_enable 2592.Pq Vt bool 2593If set to 2594.Dq Li NO , 2595any configured vkernels will not be started. 2596.It Va vkernel_kill_timeout 2597.Pq Vt int 2598This defines the default number of seconds that we will wait for the 2599vkernel to shut down on its own. 2600If after this time it's still alive, 2601it will be killed with SIGKILL. 2602.It Va vkernel_bin 2603.Pq Vt str 2604Defines the default path to the vkernel binary. 2605.It Va vkernel_list 2606.Pq Vt str 2607A space separated list of names for vkernels. 2608This is purely a configuration aid to help identify and 2609configure multiple vkernels. 2610The names specified in this list will be used to 2611identify settings common to a vkernel instance. 2612Assuming that the vkernel in question was named 2613.Li example , 2614you would have the following dependent variables 2615(filled with reference values in this text): 2616.Bd -literal 2617vkernel_example_bin="/usr/obj/usr/src/sys/VKERNEL64/kernel.debug" 2618vkernel_example_memsize="64m" 2619vkernel_example_rootimg_list="/var/vkernel/rootimg.01" 2620vkernel_example_memimg="/var/vkernel/memimg.000001" 2621vkernel_example_user="myuser" 2622vkernel_example_iface_list="auto:bridge0" 2623vkernel_example_logfile="/dev/null" 2624vkernel_example_flags="-U" 2625vkernel_example_kill_timeout="45" 2626.Ed 2627.Pp 2628The last six are optional. 2629They default to an empty string if not set, except for logfile which defaults to 2630.Pa /dev/null 2631if it is not set. 2632.Pp 2633Note that in case 2634.Va vkernel_memimg 2635is not set, the 2636.Pa rc.d 2637script will create 2638.Pa /var/vkernel , 2639which is the vkernel's default directory for memory images, 2640with permissions of 1777, i.e. world writable with the sticky bit set 2641(see 2642.Xr sticky 8 ) . 2643.It Va autofs_enable 2644.Pq Vt bool 2645If set to 2646.Dq Li YES , 2647start the 2648.Xr automount 8 2649utility and the 2650.Xr automountd 8 2651and 2652.Xr autounmountd 8 2653daemons at boot time. 2654.It Va automount_flags 2655.Pq Vt str 2656If 2657.Va autofs_enable 2658is set to 2659.Dq Li YES , 2660these are the flags to pass to the 2661.Xr automount 8 2662program. 2663By default no flags are passed. 2664.It Va automountd_flags 2665.Pq Vt str 2666If 2667.Va autofs_enable 2668is set to 2669.Dq Li YES , 2670these are the flags to pass to the 2671.Xr automountd 8 2672daemon. 2673By default no flags are passed. 2674.It Va autounmountd_flags 2675.Pq Vt str 2676If 2677.Va autofs_enable 2678is set to 2679.Dq Li YES , 2680these are the flags to pass to the 2681.Xr autounmountd 8 2682daemon. 2683By default no flags are passed. 2684.El 2685.Sh FILES 2686.Bl -tag -width ".Pa /etc/start_if. Ns Aq Ar interface" -compact 2687.It Pa /etc/defaults/rc.conf 2688.It Pa /etc/rc.conf 2689.It Pa /etc/rc.conf.local 2690.It Pa /etc/start_if. Ns Aq Ar interface 2691.El 2692.Sh SEE ALSO 2693.Xr gdb 1 , 2694.Xr info 1 , 2695.Xr kbdcontrol 1 , 2696.Xr varsym 1 , 2697.Xr vidcontrol 1 , 2698.Xr ip 4 , 2699.Xr ipfw 4 , 2700.Xr kld 4 , 2701.Xr pf 4 , 2702.Xr tcp 4 , 2703.Xr udp 4 , 2704.Xr vlan 4 , 2705.Xr autofs 5 , 2706.Xr auto_master 5 , 2707.Xr exports 5 , 2708.Xr motd 5 , 2709.Xr resident.conf 5 , 2710.Xr varsym.conf 5 , 2711.Xr accton 8 , 2712.Xr automount 8 , 2713.Xr automountd 8 , 2714.Xr autounmountd 8 , 2715.Xr btconfig 8 , 2716.Xr bthcid 8 , 2717.Xr cron 8 , 2718.Xr devd 8 , 2719.Xr dhclient 8 , 2720.Xr dhcpcd 8 , 2721.Xr dntpd 8 , 2722.Xr ftpd 8 , 2723.Xr ifconfig 8 , 2724.Xr inetd 8 , 2725.Xr ip6addrctl 8 , 2726.Xr jail 8 , 2727.Xr lpd 8 , 2728.Xr makewhatis 8 , 2729.Xr mixer 8 , 2730.Xr mountd 8 , 2731.Xr moused 8 , 2732.Xr nfsd 8 , 2733.Xr pcnfsd 8 , 2734.Xr pfctl 8 , 2735.Xr pflogd 8 , 2736.Xr quotacheck 8 , 2737.Xr quotaon 8 , 2738.Xr rc 8 , 2739.Xr rc.sendmail 8 , 2740.Xr resident 8 , 2741.Xr rndcontrol 8 , 2742.Xr route 8 , 2743.Xr routed 8 , 2744.Xr rpcbind 8 , 2745.Xr rpc.lockd 8 , 2746.Xr rpc.statd 8 , 2747.Xr rtadvd 8 , 2748.Xr rtsold 8 , 2749.Xr rwhod 8 , 2750.Xr savecore 8 , 2751.Xr sdpd 8 , 2752.Xr sensorsd 8 , 2753.Xr sshd 8 , 2754.Xr swapon 8 , 2755.Xr sysctl 8 , 2756.Xr syslogd 8 , 2757.Xr sysvipcd 8 , 2758.Xr vinum 8 , 2759.Xr yp 8 , 2760.Xr ypbind 8 , 2761.Xr ypserv 8 , 2762.Xr ypset 8 2763.Sh HISTORY 2764The 2765.Nm 2766file appeared in 2767.Fx 2.2.2 . 2768.Sh AUTHORS 2769.An Jordan K. Hubbard . 2770