1.\" Copyright (c) 1995 2.\" Jordan K. Hubbard 3.\" 4.\" Redistribution and use in source and binary forms, with or without 5.\" modification, are permitted provided that the following conditions 6.\" are met: 7.\" 1. Redistributions of source code must retain the above copyright 8.\" notice, this list of conditions and the following disclaimer. 9.\" 2. Redistributions in binary form must reproduce the above copyright 10.\" notice, this list of conditions and the following disclaimer in the 11.\" documentation and/or other materials provided with the distribution. 12.\" 13.\" THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND 14.\" ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 15.\" IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 16.\" ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR BE LIABLE 17.\" FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 18.\" DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 19.\" OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 20.\" HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 21.\" LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 22.\" OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 23.\" SUCH DAMAGE. 24.\" 25.\" $FreeBSD: src/share/man/man5/rc.conf.5,v 1.197 2003/07/28 13:56:00 mbr Exp $ 26.\" 27.Dd December 21, 2014 28.Dt RC.CONF 5 29.Os 30.Sh NAME 31.Nm rc.conf 32.Nd system configuration information 33.Sh DESCRIPTION 34The file 35.Nm 36contains descriptive information about the local host name, configuration 37details for any potential network interfaces and which services should be 38started up at system initial boot time. 39In new installations, the 40.Nm 41file is generally initialized by the installer. 42.Pp 43The purpose of 44.Nm 45is not to run commands or perform system startup actions directly. 46Instead, it is included by the various generic startup scripts in 47.Pa /etc 48which conditionalize their 49internal actions according to the settings found there. 50.Pp 51The 52.Pa /etc/defaults/rc.conf 53file specifies the default settings for all the available options, 54the 55.Pa /etc/rc.conf 56file specifies override settings. 57Options need only be specified in 58.Pa /etc/rc.conf 59when the system administrator wishes to override the defaults. 60The file 61.Pa /etc/rc.conf.local 62is used to override settings in 63.Pa /etc/rc.conf 64for historical reasons. 65In addition to 66.Pa /etc/rc.conf.local 67you can also place smaller configuration files for each 68.Xr rc 8 69script in the 70.Pa /etc/rc.conf.d 71directory, which will be included by the 72.Va load_rc_config 73function. 74For jail configurations you could use the file 75.Pa /etc/rc.conf.d/jail 76to store jail specific configuration options. 77Also see the 78.Va rc_conf_files 79variable below. 80.Pp 81The following list provides a name and short description for each 82variable that can be set in the 83.Nm 84file. 85To set a variable of 86.Vt bool 87type, specify either 88.Dq Li YES , 89.Dq Li TRUE , 90.Dq Li ON , 91or 92.Dq Li 1 . 93To unset, specify 94.Dq Li NO , 95.Dq Li FALSE , 96.Dq Li OFF , 97or 98.Dq Li 0 . 99These values are case insensitive. 100The 101.Va _enable 102postfix in the name of a variable for starting a service can be 103omitted (as in 104.Nx ) . 105.Bl -tag -width indent-two 106.It Va rc_debug 107.Pq Vt bool 108If set to 109.Dq Li YES , 110enable output of debug messages from rc scripts. 111This variable can be helpful in diagnosing mistakes when 112editing or integrating new scripts. 113Beware that this produces copious output to the terminal and 114.Xr syslog 3 . 115.It Va rc_info 116.Pq Vt bool 117If set to 118.Dq Li NO , 119disable informational messages from the rc scripts. 120Informational messages are displayed when 121a condition that is not serious enough to warrant a warning or an error occurs. 122.It Va rc_startmsgs 123.Pq Vt bool 124If set to 125.Dq Li YES , 126show 127.Dq Starting foo: 128when faststart is used (e.g., at boot time). 129.It Va swapfile 130.Pq Vt str 131If set to 132.Dq Li NO , 133no swapfile is installed, otherwise the value is used as the full 134pathname to a file to use for additional swap space. 135The 136.Xr vn 4 137driver is needed for a swapfile and will be loaded if it is not 138already compiled into the kernel or loaded via 139.Xr loader.conf 5 . 140.It Va apm_enable 141.Pq Vt bool 142If set to 143.Dq Li YES , 144enable support for Automatic Power Management with the 145.Xr apm 8 146command. 147.It Va apmd_enable 148.Pq Vt bool 149Run 150.Xr apmd 8 151to handle APM event from userland. 152This also enables support for APM. 153.It Va apmd_flags 154.Pq Vt str 155If 156.Va apmd_enable 157is set to 158.Dq Li YES , 159these are the flags to pass to the 160.Xr apmd 8 161daemon. 162.It Va battd_enable 163Enable 164.Xr battd 8 165to monitor the status of batteries present in the system. 166This also enables support for APM. 167.It Va battd_flags 168.Pq Vt str 169If 170.Va battd_enable 171is set to 172.Dq Li YES , 173these are the flags to pass to the 174.Xr battd 8 175daemon. 176.It Va devd_enable 177.Pq Vt bool 178Run 179.Xr devd 8 180to handle device added, removed or unknown events from the kernel. 181.It Va devd_flags 182.Pq Vt str 183If 184.Va devd_enable 185is set to 186.Dq Li YES , 187these are the flags to pass to the 188.Xr devd 8 189daemon. 190.It Va powerd_enable 191.Pq Vt bool 192Set to 193.Dq Li NO 194by default. 195Setting this to 196.Dq Li YES 197enables 198.Xr powerd 8 , 199a CPU speed control daemon. 200.It Va sensorsd_enable 201.Pq Vt bool 202Set to 203.Dq Li NO 204by default. 205Setting this to 206.Dq Li YES 207enables 208.Xr sensorsd 8 , 209a sensors monitoring and logging daemon. 210.It Va sensorsd_flags 211.Pq Vt str 212Empty by default. 213Additional flags passed to the 214.Xr sensorsd 8 215program. 216.It Va sysvipcd_enable 217.Pq Vt bool 218Set to 219.Dq Li NO 220by default. 221Setting this to 222.Dq Li YES 223enables 224.Xr sysvipcd 8 , 225a sensors monitoring and logging daemon. 226.It Va sysvipcd_flags 227.Pq Vt str 228Empty by default. 229Additional flags passed to the 230.Xr sysvipcd 8 231program. 232.It Va hotplugd_enable 233.Pq Vt bool 234Set to 235.Dq Li NO 236by default. 237Setting this to 238.Dq Li YES 239enables 240.Xr hotplugd 8 , 241a devices hot plugging monitoring daemon. 242.It Va hotplugd_flags 243.Pq Vt str 244Empty by default. 245Additional flags passed to the 246.Xr hotplugd 8 247program. 248.It Va pccard_ifconfig 249.Pq Vt str 250List of arguments to be passed to 251.Xr ifconfig 8 252at boot time or on insertion of the card (e.g.\& 253.Dq Cm inet Li 192.168.1.1 Cm netmask Li 255.255.255.0 254for a fixed address or 255.Dq Li DHCP 256for a DHCP client). 257.It Va pccard_ether_delay 258.Pq Vt str 259Set the delay before starting 260.Xr dhclient 8 261in the 262.Pa /etc/pccard_ether 263script. 264This defaults to 5 seconds to work around a bug in the 265.Xr ed 4 266driver which can lead to system hangs when using some newer 267.Xr ed 4 268based cards. 269.It Va removable_interfaces 270.Pq Vt str 271List of removable network interfaces to be supported by 272.Pa /etc/pccard_ether . 273.It Va local_startup 274.Pq Vt str 275List of directories to search for startup script files. 276.It Va script_name_sep 277.Pq Vt str 278The field separator to use for breaking down the list of startup script files 279into individual filenames. 280The default is a space. 281It is not necessary to change this unless there are startup scripts with names 282containing spaces. 283.It Va hostapd_enable 284.Pq Vt bool 285Set to 286.Dq Li YES 287to start 288.Xr hostapd 8 289at system boot time. 290.It Va hostname 291.Pq Vt str 292The fully qualified domain name (FQDN) of this host on the network. 293This should almost certainly be set to something meaningful, even if 294there is no network connection. 295If 296.Xr dhclient 8 297is used to set the hostname via DHCP, 298this variable should be set to an empty string. 299.It Va ipv6_enable 300.Pq Vt bool 301Enable support for IPv6 networking. 302Note that this requires that the kernel have been compiled with 303.Cd "options INET6" . 304.It Va nisdomainname 305.Pq Vt str 306The NIS domain name of this host, or 307.Dq Li NO 308if NIS is not used. 309.It Va dhclient_program 310.Pq Vt str 311Path to the DHCP client program 312(default 313.Pa /sbin/dhclient ) . 314.It Va dhclient_flags 315.Pq Vt str 316Additional flags to pass to the DHCP client program. 317.It Va pf_enable 318.Pq Vt bool 319Set to 320.Dq Li YES 321to load 322.Xr pf 4 323at startup. 324If the kernel was not built with 325.Cd "device pf" , 326the 327.Pa pf.ko 328kernel module will be loaded. 329See also 330.Va firewall_enable . 331.It Va pf_rules 332.Pq Vt str 333Path to the 334.Xr pf 4 335ruleset definition file. 336.It Va pf_program 337.Pq Vt str 338Path to 339.Xr pfctl 8 . 340.It Va pf_flags 341.Pq Vt str 342If 343.Va pf_enable 344is set to 345.Dq Li YES , 346these are the flags to pass to 347.Xr pfctl 8 348when loading the ruleset. 349.It Va pflog_enable 350.Pq Vt bool 351Set this to 352.Dq Li YES 353to enable 354.Xr pflogd 8 355which logs packets from 356.Xr pf 4 . 357.It Va pflog_logfile 358.Pq Vt str 359If 360.Va pflog_enable 361is set to 362.Dq Li YES 363this specifies the path of the log file. 364.It Va pflog_program 365.Pq Vt str 366Path to 367.Xr pflogd 8 . 368.It Va pflog_flags 369.Pq Vt str 370If 371.Va pflog_enable 372is set to 373.Dq Li YES , 374these are the flags to pass to 375.Xr pflogd 8 . 376.It Va firewall_enable 377.Pq Vt bool 378Set to 379.Dq Li YES 380to load firewall rules at startup. 381If the kernel was not built with 382.Cd "options IPFIREWALL" , 383the 384.Pa ipfw.ko 385kernel module will be loaded. 386See also 387.Va pf_enable . 388.It Va ipv6_firewall_enable 389.Pq Vt bool 390The IPv6 equivalent of 391.Va firewall_enable . 392Set to 393.Dq Li YES 394to load IPv6 firewall rules at startup. 395If the kernel was not built with 396.Cd "options IPV6FIREWALL" , 397the 398.Pa ip6fw.ko 399kernel module will be loaded. 400.It Va firewall_script 401.Pq Vt str 402The full path to the firewall script to run 403(default 404.Pa /etc/rc.firewall ) . 405.It Va ipv6_firewall_script 406.Pq Vt str 407The IPv6 equivalent of 408.Va firewall_script . 409.It Va firewall_type 410.Pq Vt str 411Names the firewall type from the selection in 412.Pa /etc/rc.firewall , 413or the file which contains the local firewall ruleset. 414Valid selections from 415.Pa /etc/rc.firewall 416are: 417.Pp 418.Bl -tag -width ".Li simple" -compact 419.It Li open 420unrestricted IP access 421.It Li closed 422all IP services disabled, except via 423.Dq Li lo0 424.It Li client 425basic protection for a workstation on a LAN 426.It Li simple 427alias for 428.Li client . 429.El 430.Pp 431If a filename is specified, the full path must be given. 432.It Va firewall_trusted_nets 433.Pq Vt str 434List of trusted networks (if 435.Va firewall_type 436is set to 437.Li client ) . 438.It Va firewall_trusted_interfaces 439.Pq Vt str 440List of trusted network interfaces (if 441.Va firewall_type 442is set to 443.Li client ) . 444.It Va firewall_allowed_icmp_types 445.Pq Vt str 446List of allowed ICMP types (if 447.Va firewall_type 448is set to 449.Li client ) . 450.It Va firewall_open_tcp_ports 451.Pq Vt str 452List of TCP ports to open (if 453.Va firewall_type 454is set to 455.Li client ) . 456.It Va firewall_open_udp_ports 457.Pq Vt str 458List of UDP ports to open (if 459.Va firewall_type 460is set to 461.Li client ) . 462.It Va ipv6_firewall_type 463.Pq Vt str 464The IPv6 equivalent of 465.Va firewall_type . 466.It Va firewall_quiet 467.Pq Vt bool 468Set to 469.Dq Li YES 470to disable the display of firewall rules on the console during boot. 471.It Va ipv6_firewall_quiet 472.Pq Vt bool 473The IPv6 equivalent of 474.Va firewall_quiet . 475.It Va firewall_logging 476.Pq Vt bool 477Set to 478.Dq Li YES 479to enable firewall event logging. 480This is equivalent to the 481.Dv IPFIREWALL_VERBOSE 482kernel option. 483.It Va ipv6_firewall_logging 484.Pq Vt bool 485The IPv6 equivalent of 486.Va firewall_logging . 487.It Va firewall_flags 488.Pq Vt str 489Flags passed to 490.Xr ipfw 8 491if 492.Va firewall_type 493specifies a filename. 494.It Va ipv6_firewall_flags 495.Pq Vt str 496The IPv6 equivalent of 497.Va firewall_flags . 498.It Va natd_program 499.Pq Vt str 500Path to 501.Xr natd 8 . 502.It Va natd_enable 503.Pq Vt bool 504Set to 505.Dq Li YES 506to enable 507.Xr natd 8 . 508.Va firewall_enable 509must also be set to 510.Dq Li YES , 511and 512.Xr divert 4 513sockets must be enabled in the kernel. 514.It Va natd_interface 515.Pq Vt str 516This is the name of the public interface on which 517.Xr natd 8 518should run. 519The interface may be given as an interface name or as an IP address. 520.It Va natd_flags 521.Pq Vt str 522Additional 523.Xr natd 8 524flags should be placed here. 525The 526.Fl n 527or 528.Fl a 529flag is automatically added with the above 530.Va natd_interface 531as an argument. 532.It Va tcp_extensions 533.Pq Vt bool 534Set to 535.Dq Li YES 536by default. 537Setting this to 538.Dq Li NO 539disables certain TCP options as described by 540.Rs 541.%T "RFC 1323" 542.Re 543Setting this to 544.Dq Li NO 545might help remedy such problems with connections as randomly hanging 546or other weird behavior. 547Some network devices are known to be broken with respect to these options. 548.It Va log_in_vain 549.Pq Vt int 550Set to 0 by default. 551The 552.Xr sysctl 8 553variables, 554.Va net.inet.tcp.log_in_vain 555and 556.Va net.inet.udp.log_in_vain , 557as described in 558.Xr tcp 4 559and 560.Xr udp 4 , 561are set to the given value. 562.It Va tcp_keepalive 563.Pq Vt bool 564Set to 565.Dq Li YES 566by default. 567Setting to 568.Dq Li NO 569will disable probing idle TCP connections to verify that the 570peer is still up and reachable. 571.It Va tcp_drop_synfin 572.Pq Vt bool 573Set to 574.Dq Li NO 575by default. 576Setting to 577.Dq Li YES 578will cause the kernel to ignore TCP frames that have both 579the SYN and FIN flags set. 580This prevents OS fingerprinting, but may break some legitimate applications. 581This option is only available if the kernel was built with the 582.Dv TCP_DROP_SYNFIN 583option. 584.It Va icmp_drop_redirect 585.Pq Vt bool 586Set to 587.Dq Li NO 588by default. 589Setting to 590.Dq Li YES 591will cause the kernel to ignore ICMP REDIRECT packets. 592Refer to 593.Xr icmp 4 594for more information. 595.It Va icmp_log_redirect 596.Pq Vt bool 597Set to 598.Dq Li NO 599by default. 600Setting to 601.Dq Li YES 602will cause the kernel to log ICMP REDIRECT packets. 603Note that 604the log messages are not rate-limited, so this option should only be used 605for troubleshooting networks. 606Refer to 607.Xr icmp 4 608for more information. 609.It Va icmp_bmcastecho 610.Pq Vt bool 611Set to 612.Dq Li YES 613to respond to broadcast or multicast ICMP ping packets. 614Refer to 615.Xr icmp 4 616for more information. 617.It Va ip_portrange_first 618.Pq Vt int 619If not set to 620.Dq Li NO , 621this is the first port in the default portrange. 622Refer to 623.Xr ip 4 624for more information. 625.It Va ip_portrange_last 626.Pq Vt int 627If not set to 628.Dq Li NO , 629this is the last port in the default portrange. 630Refer to 631.Xr ip 4 632for more information. 633.\" 634.It Va ifconfig_ Ns Aq Ar interface 635.Pq Vt str 636Configuration for 637.Dq interface . 638Typically includes IP address. 639Assuming that the interface in question was 640.Li ed0 , 641it might look something like this: 642.Bd -literal 643ifconfig_ed0="inet 10.0.0.1 netmask 0xffff0000" 644.Ed 645.Pp 646If the 647.Pa /etc/start_if. Ns Aq Ar interface 648file is present, it is read and executed by the 649.Xr sh 1 650interpreter before configuring the interface as specified in the 651.Va ifconfig_ Ns Aq Ar interface 652and 653.Va ifconfig_ Ns Ao Ar interface Ac Ns Va _alias Ns Aq Ar n 654variables. 655.Pp 656It is possible to bring up an interface with DHCP by adding 657.Dq Li DHCP 658to the 659.Va ifconfig_ Ns Aq Ar interface 660variable. 661For instance, to initialize the 662.Li ed0 663device via DHCP, it is possible to use something like: 664.Bd -literal 665ifconfig_ed0="DHCP" 666.Ed 667.Pp 668If a 669.Va vlans_ Ns Aq Ar interface 670variable is set, 671a 672.Xr vlan 4 673interface will be created for each item in the list with the 674.Ar vlandev 675argument set to 676.Ar interface . 677If a vlan interface's name is a number, 678then that number is used as the vlan tag and the new vlan interface is 679named 680.Ar interface . Ns Ar tag . 681Otherwise, 682the vlan tag must be specified via a 683.Va vlan 684parameter in the 685.Va create_args_ Ns Aq Ar interface 686variable. 687.Pp 688To create a vlan device named 689.Li em0.101 690on 691.Li em0 692with the vlan tag 101 and the optional the IPv4 address 192.0.2.1/24: 693.Bd -literal 694vlans_em0="101" 695ifconfig_em0_101="inet 192.0.2.1/24" 696.Ed 697.Pp 698To create a vlan device named 699.Li myvlan 700on 701.Li em0 702with the vlan tag 102: 703.Bd -literal 704vlans_em0="myvlan" 705create_args_myvlan="vlan 102" 706.Ed 707.Pp 708If a 709.Va wlans_ Ns Aq Ar interface 710variable is set, 711an 712.Xr wlan 4 713interface will be created for each item in the list with the 714.Ar wlandev 715argument set to 716.Ar interface . 717Further wlan cloning arguments may be passed to the 718.Xr ifconfig 8 719.Cm create 720command by setting the 721.Va create_args_ Ns Aq Ar interface 722variable. 723One or more 724.Xr wlan 4 725devices must be created for each wireless devices as of 726.Dx 2.5 . 727Debugging flags for 728.Xr wlan 4 729devices as set by 730.Xr wlandebug 8 731may be specified with an 732.Va wlandebug_ Ns Aq Ar interface 733variable. 734The contents of this variable will be passed directly to 735.Xr wlandebug 8 . 736.Pp 737Also, if your interface needs WPA authentication, it is possible to add 738.Dq Li WPA 739to the 740.Va ifconfig_ Ns Aq Ar interface 741variable. 742This will start 743.Xr wpa_supplicant 8 . 744See 745.Xr wpa_supplicant.conf 5 746for configuring authentication information. 747.Pp 748Finally, you can add 749.Xr ifconfig 8 750options in this variable, in addition to the 751.Pa /etc/start_if. Ns Aq Ar interface 752file. 753For instance, to initialize the 754.Li wi0 755device via DHCP, using WPA authentication and 802.11b mode, it is 756possible to use something like: 757.Bd -literal 758wlans_wi0="wlan0" 759ifconfig_wlan0="up DHCP WPA mode 11b" 760.Ed 761.It Va ifconfig_ Ns Ao Ar interface Ac Ns Va _alias Ns Aq Ar n 762.Pq Vt str 763Configuration to establish an additional network address for 764.Dq interface . 765Assuming that the interface in question was 766.Li ed0 , 767it might look something like this: 768.Bd -literal 769ifconfig_ed0_alias0="inet 127.0.0.253 netmask 0xffffffff" 770ifconfig_ed0_alias1="inet 127.0.0.254 netmask 0xffffffff" 771.Ed 772.Pp 773And so on. 774For each 775.Va ifconfig_ Ns Ao Ar interface Ac Ns Va _alias Ns Aq Ar n 776entry that is found, its contents are passed to 777.Xr ifconfig 8 . 778Execution stops at the first unsuccessful access, so if 779something like this is present: 780.Bd -literal 781ifconfig_ed0_alias0="inet 127.0.0.251 netmask 0xffffffff" 782ifconfig_ed0_alias1="inet 127.0.0.252 netmask 0xffffffff" 783ifconfig_ed0_alias2="inet 127.0.0.253 netmask 0xffffffff" 784ifconfig_ed0_alias4="inet 127.0.0.254 netmask 0xffffffff" 785.Ed 786.Pp 787Then note that alias4 would 788.Em not 789be added since the search would stop with the missing alias3 entry. 790.It Va ifconfig_ Ns Ao Ar interface Ac Ns Va _name 791.Pq Vt str 792New name for 793.Dq interface . 794It is possible to rename interface by doing: 795.Bd -literal 796ifconfig_ed0_name="net0" 797ifconfig_net0="inet 10.0.0.1 netmask 0xffff0000" 798.Ed 799.It Va network_interfaces 800.Pq Vt str 801The list of network interfaces to configure on this host, 802or 803.Dq Li auto 804to configure all network interfaces 805(default 806.Dq Li auto ) . 807For example, if the only network devices to be configured are the loopback device 808.Pq Li lo0 809and a NIC using the 810.Xr ed 4 811driver, this could be set to 812.Dq Li "lo0 ed0" . 813An 814.Va ifconfig_ Ns Aq Ar interface 815variable is assumed to exist for each value of 816.Ar interface . 817.It Va ipv6_network_interfaces 818.Pq Vt str 819This is the IPv6 equivalent of 820.Va network_interfaces . 821Instead of setting the ifconfig variables as 822.Va ifconfig_ Ns Aq Ar interface 823they should be set as 824.Va ipv6_ifconfig_ Ns Aq Ar interface . 825Aliases should be set as 826.Va ipv6_ifconfig_ Ns Ao Ar interface Ac Ns Va _alias Ns Aq Ar n . 827Interfaces that do not have a 828.Va ipv6_ifconfig_ Ns Aq Ar interface 829setting will be auto configured by 830.Xr rtsol 8 831if the 832.Va ipv6_gateway_enable 833is set to 834.Dq Li NO . 835Note that the IPv6 networking code does not support the 836.Pa /etc/start_if. Ns Aq Ar interface 837files. 838.It Va ipv6_prefix_ Ns Aq Ar interface 839.Pq Vt str 840Assign prefix to 841.Ar interface , 842prefixlen 64 is used. 843.It Va ipv6_default_interface 844.Pq Vt str 845If not set to 846.Dq Li NO , 847this is the default output interface for scoped addresses. 848Now this works only for IPv6 link local multicast addresses. 849.It Va cloned_interfaces 850.Pq Vt str 851Set to the list of clonable network interfaces to create on this host. 852Entries in 853.Va cloned_interfaces 854are automatically appended to 855.Va network_interfaces 856for configuration. 857.It Va gif_interfaces 858.Pq Vt str 859Set to the list of 860.Xr gif 4 861tunnel interfaces to configure on this host. 862A 863.Va gifconfig_ Ns Aq Ar interface 864variable is assumed to exist for each value of 865.Ar interface . 866The value of this variable is used to configure the link layer of the 867tunnel according to the syntax of the 868.Cm tunnel 869option to 870.Xr ifconfig 8 . 871Additionally, this option ensures that each listed interface is created via the 872.Cm create 873option to 874.Xr ifconfig 8 875before attempting to configure it. 876.It Va sppp_interfaces 877.Pq Vt str 878Set to the list of 879.Xr sppp 4 880interfaces to configure on this host. 881A 882.Va spppconfig_ Ns Aq Ar interface 883variable is assumed to exist for each value of 884.Ar interface . 885Each interface should also be configured by a general 886.Va ifconfig_ Ns Aq Ar interface 887setting. 888Refer to 889.Xr spppcontrol 8 890for more information about available options. 891.It Va ppp_enable 892.Pq Vt bool 893If set to 894.Dq Li YES , 895run the 896.Xr ppp 8 897daemon. 898.It Va ppp_mode 899.Pq Vt str 900Mode in which to run the 901.Xr ppp 8 902daemon. 903Accepted modes are 904.Dq Li auto , 905.Dq Li ddial , 906.Dq Li direct 907and 908.Dq Li dedicated . 909See the manual for a full description. 910.It Va ppp_nat 911.Pq Vt bool 912If set to 913.Dq Li YES , 914enables network address translation. 915Used in conjunction with 916.Va gateway_enable 917allows hosts on private network addresses access to the Internet using 918this host as a network address translating router. 919.It Va ppp_profile 920.Pq Vt str 921The name of the profile to use from 922.Pa /etc/ppp/ppp.conf . 923Also used for per-profile overrides of 924.Va ppp_ Ns Ao Ar profile Ac Ns _unit . 925Where the profile contains any of the characters 926.Dq Li .-/+ 927they are translated to 928.Dq Li _ 929for the purposes of the override variable names. 930.It Va ppp_ Ns Ao Ar profile Ac Ns _unit 931.Pq Vt int 932Set the unit number to be used for this profile. 933See the manual description of 934.Fl unit Ns Ar N 935in 936.Xr ppp 8 937for details. 938.It Va ppp_user 939.Pq Vt str 940The name of the user under which 941.Xr ppp 8 942should be started. 943By default, 944.Xr ppp 8 945is started as 946.Dq Li root . 947.It Va rc_conf_files 948.Pq Vt str 949This option is used to specify a list of files that will override 950the settings in 951.Pa /etc/defaults/rc.conf . 952The files will be read in the order in which they are specified and should 953include the full path to the file. 954By default, the files specified are 955.Pa /etc/rc.conf 956and 957.Pa /etc/rc.conf.local 958.It Va fsck_y_enable 959.Pq Vt bool 960If set to 961.Dq Li YES , 962.Xr fsck 8 963will be run with the 964.Fl y 965flag if the initial preen of the file systems fails. 966.It Va netfs_types 967.Pq Vt str 968List of file system types that are network-based. 969This list should generally not be modified by end users. 970Use 971.Va extra_netfs_types 972instead. 973.It Va extra_netfs_types 974.Pq Vt str 975If set to something other than 976.Dq Li NO 977(the default), this variable extends the list of file system types 978for which automatic mounting at startup by 979.Xr rc 8 980should be delayed until the network is initialized. 981It should contain 982a whitespace-separated list of network file system descriptor pairs, 983each consisting of a file system type as passed to 984.Xr mount 8 985and a human-readable, one-word description, joined with a colon 986.Pq Ql \&: . 987Extending the default list in this way is only necessary 988when third party file system types are used. 989.It Va devfs_config_files 990.Pq Vt str 991This option is used to specify a list of configuration files containing 992.Xr devfs 5 993rules that will be applied by 994.Xr devfsctl 8 995in the order in which they are specified and must include the full path 996to the file. 997.It Va syslogd_enable 998.Pq Vt bool 999If set to 1000.Dq Li YES , 1001run the 1002.Xr syslogd 8 1003daemon. 1004.It Va syslogd_program 1005.Pq Vt str 1006Path to 1007.Xr syslogd 8 1008(default 1009.Pa /usr/sbin/syslogd ) . 1010.It Va syslogd_flags 1011.Pq Vt str 1012If 1013.Va syslogd_enable 1014is set to 1015.Dq Li YES , 1016these are the flags to pass to 1017.Xr syslogd 8 . 1018.It Va inetd_enable 1019.Pq Vt bool 1020If set to 1021.Dq Li YES , 1022run the 1023.Xr inetd 8 1024daemon. 1025.It Va inetd_program 1026.Pq Vt str 1027Path to 1028.Xr inetd 8 1029(default 1030.Pa /usr/sbin/inetd ) . 1031.It Va inetd_flags 1032.Pq Vt str 1033If 1034.Va inetd_enable 1035is set to 1036.Dq Li YES , 1037these are the flags to pass to 1038.Xr inetd 8 . 1039.It Va rwhod_enable 1040.Pq Vt bool 1041If set to 1042.Dq Li YES , 1043run the 1044.Xr rwhod 8 1045daemon at boot time. 1046.It Va rwhod_flags 1047.Pq Vt str 1048If 1049.Va rwhod_enable 1050is set to 1051.Dq Li YES , 1052these are the flags to pass to it. 1053.It Va amd_enable 1054.Pq Vt bool 1055If set to 1056.Dq Li YES , 1057run the 1058.Xr amd 8 1059daemon at boot time. 1060.It Va amd_flags 1061.Pq Vt str 1062If 1063.Va amd_enable 1064is set to 1065.Dq Li YES , 1066these are the flags to pass to it. 1067See the 1068.Xr amd 8 1069manpage for more information. 1070.It Va amd_map_program 1071.Pq Vt str 1072If set, the specified program is run to get the list of 1073.Xr amd 8 1074maps. 1075For example, if the 1076.Xr amd 8 1077maps are stored in NIS, one can set this to run 1078.Xr ypcat 1 1079to get a list of 1080.Xr amd 8 1081maps from the 1082.Pa amd.master 1083NIS map. 1084.It Va update_motd 1085.Pq Vt bool 1086If set to 1087.Dq Li YES , 1088.Pa /etc/motd 1089will be updated at boot time to reflect the kernel release being run. 1090If set to 1091.Dq Li NO , 1092.Pa /etc/motd 1093will not be updated. 1094.It Va nfs_client_enable 1095.Pq Vt bool 1096If set to 1097.Dq Li YES , 1098setup NFS client parameters at boot time. 1099.It Va nfs_access_cache 1100.Pq Vt int 1101If 1102.Va nfs_client_enable 1103is set to 1104.Dq Li YES , 1105this can be set to 1106.Dq Li 0 1107to disable NFS ACCESS RPC caching, or to the number of seconds for which 1108NFS ACCESS results should be cached. 1109A value of 2-10 seconds will substantially reduce network traffic for 1110many NFS operations. 1111The default is 5 seconds. 1112Note that the attribute cache holds stat information only. 1113The NFS data cache is independent of the attribute cache and is only 1114invalidated when the client detects that the server has modified the 1115underlying file. 1116This value specifies a maximum timeout. 1117The NFS client will automatically use a shorter timeout for files which 1118have been recently modified. 1119.It Va nfs_neg_cache 1120.Pq Vt int 1121If 1122.Va nfs_client_enable 1123is set to 1124.Dq Li YES , 1125this can be set to 1126.Dq Li 0 1127to disable the caching of NEGATIVE LOOKUPS (lookups of non-existent 1128filenames), or to the number of seconds for which negative lookups should 1129be cached. 1130A value of 2-10 seconds will substantially reduce network 1131traffic for many NFS operations, especially source code builds. 1132The default is 3 seconds. 1133.It Va nfs_server_enable 1134.Pq Vt bool 1135If set to 1136.Dq Li YES , 1137run the NFS server daemons at boot time. 1138.It Va nfs_server_flags 1139.Pq Vt str 1140If 1141.Va nfs_server_enable 1142is set to 1143.Dq Li YES , 1144these are the flags to pass to the 1145.Xr nfsd 8 1146daemon. 1147.It Va mountd_enable 1148.Pq Vt bool 1149If set to 1150.Dq Li YES , 1151and no 1152.Va nfs_server_enable 1153is set, start 1154.Xr mountd 8 , 1155but not 1156.Xr nfsd 8 1157daemon. 1158It is commonly needed to run CFS without real NFS used. 1159.It Va mountd_flags 1160.Pq Vt str 1161If 1162.Va mountd_enable 1163is set to 1164.Dq Li YES , 1165these are the flags to pass to the 1166.Xr mountd 8 1167daemon. 1168.It Va weak_mountd_authentication 1169.Pq Vt bool 1170If set to 1171.Dq Li YES , 1172allow services like PCNFSD to make non-privileged mount requests. 1173.It Va nfs_reserved_port_only 1174.Pq Vt bool 1175If set to 1176.Dq Li YES , 1177provide NFS services only on a secure port. 1178.It Va nfs_bufpackets 1179.Pq Vt int 1180If set to a number, indicates the number of packets worth of 1181socket buffer space to reserve on an NFS client. 1182The kernel default is typically 4. 1183Using a higher number may be useful on gigabit networks to improve performance. 1184The minimum value is 2 and the maximum is 64. 1185.It Va rpc_umntall_enable 1186.Pq Vt bool 1187If set to 1188.Dq Li YES 1189(default) and we are also an NFS client, run 1190.Xr rpc.umntall 8 1191at boot time to clear out old mounts on remote servers. 1192If set to 1193.Dq Li NO 1194then 1195.Xr rpc.umntall 8 1196will not be run at boot time. 1197.It Va rpc_lockd_enable 1198.Pq Vt bool 1199If set to 1200.Dq Li YES 1201and also an NFS server, run 1202.Xr rpc.lockd 8 1203at boot time. 1204.It Va rpc_lockd_flags 1205.Pq Vt str 1206If 1207.Va rpc_lockd_enable 1208is set to 1209.Dq Li YES , 1210these are the flags to pass to 1211.Xr rpc.lockd 8 . 1212.It Va rpc_statd_enable 1213.Pq Vt bool 1214If set to 1215.Dq Li YES 1216and also an NFS server, run 1217.Xr rpc.statd 8 1218at boot time. 1219.It Va rpc_statd_flags 1220.Pq Vt str 1221If 1222.Va rpc_statd_enable 1223is set to 1224.Dq Li YES , 1225these are the flags to pass to 1226.Xr rpc.statd 8 . 1227.It Va rpcbind_program 1228.Pq Vt str 1229Path to program for rpcbind daemon 1230(default 1231.Pa /usr/sbin/rpcbind ) . 1232.It Va rpcbind_enable 1233.Pq Vt bool 1234If set to 1235.Dq Li YES , 1236run 1237.Va rpcbind_program 1238at boot time. 1239.It Va rpcbind_flags 1240.Pq Vt str 1241If 1242.Va rpcbind_enable 1243is set to 1244.Dq Li YES , 1245these are the flags to pass to 1246.Va rpcbind_program . 1247.It Va keyserv_enable 1248.Pq Vt bool 1249If set to 1250.Dq Li YES , 1251run the 1252.Xr keyserv 8 1253daemon on boot for running Secure RPC. 1254.It Va keyserv_flags 1255.Pq Vt str 1256If 1257.Va keyserv_enable 1258is set to 1259.Dq Li YES , 1260these are the flags to pass to 1261.Xr keyserv 8 1262daemon. 1263.It Va pppoed_enable 1264.Pq Vt bool 1265If set to 1266.Dq Li YES , 1267run the 1268.Xr pppoed 8 1269daemon at boot time to provide PPP over Ethernet services. 1270.It Va pppoed_provider 1271.Pq Vt str 1272.Xr pppoed 8 1273listens to requests to this provider and ultimately runs 1274.Xr ppp 8 1275with a 1276.Ar system 1277argument of the same name. 1278.It Va pppoed_flags 1279.Pq Vt str 1280Additional flags to pass to 1281.Xr pppoed 8 . 1282.It Va pppoed_interface 1283.Pq Vt str 1284The network interface to run 1285.Xr pppoed 8 1286on. 1287This is mandatory when 1288.Va pppoed_enable 1289is set to 1290.Dq Li YES . 1291.It Va timed_enable 1292.Pq Vt bool 1293If set to 1294.Dq Li YES , 1295run the 1296.Xr timed 8 1297service at boot time. 1298This command is intended for networks of machines where a consistent 1299.Dq "network time" 1300for all hosts must be established. 1301This is often useful in large NFS environments where time stamps on 1302files are expected to be consistent network-wide. 1303.It Va timed_flags 1304.Pq Vt str 1305If 1306.Va timed_enable 1307is set to 1308.Dq Li YES , 1309these are the flags to pass to the 1310.Xr timed 8 1311service. 1312.It Va dntpd_enable 1313.Pq Vt bool 1314If set to 1315.Dq Li YES , 1316run 1317.Xr dntpd 8 1318at system boot time. 1319.It Va dntpd_program 1320.Pq Vt str 1321Path to 1322.Xr dntpd 8 1323(default 1324.Pa /usr/sbin/dntpd ) . 1325.It Va dntpd_flags 1326.Pq Vt str 1327If 1328.Va dntpd_enable 1329is set to 1330.Dq Li YES , 1331these are the flags to pass to the 1332.Xr dntpd 8 1333daemon. 1334.It Va btconfig_enable 1335.Pq Vt bool 1336If set to 1337.Dq Li YES , 1338configure Bluetooth devices via 1339.Xr btconfig 8 1340at system boot time. 1341.It Va btconfig_devices 1342.Pq Vt str 1343If 1344.Va btconfig_enable 1345is set to 1346.Dq Li YES , 1347this is the list of Bluetooth devices to configure. 1348If 1349.Va btconfig_devices 1350is not specified, all devices known to the system will be configured. 1351A 1352.Va btconfig_ Ns Aq Ar device 1353variable can be set to specify parameters to be passed to 1354.Ar device . 1355.It Va btconfig_args 1356.Pq Vt str 1357If 1358.Va btconfig_enable 1359is set to 1360.Dq Li YES , 1361this is the list of configuration parameters to pass to all Bluetooth 1362devices. 1363.It Va sdpd_enable 1364.Pq Vt bool 1365If set to 1366.Dq Li YES , 1367run the Service Discovery Profile daemon 1368.Xr ( sdpd 8 ) 1369at system boot time. 1370.It Va sdpd_flags 1371.Pq Vt str 1372If 1373.Va sdpd_enable 1374is set to 1375.Dq Li YES , 1376these are the flags to pass to the 1377.Xr sdpd 8 1378daemon. 1379.It Va bthcid_enable 1380.Pq Vt bool 1381If set to 1382.Dq Li YES , 1383run the Bluetooth Link Key/PIN Code Manager daemon 1384.Xr ( bthcid 8 ) 1385at system boot time. 1386.It Va bthcid_flags 1387.Pq Vt str 1388If 1389.Va bthcid_enable 1390is set to 1391.Dq Li YES , 1392these are the flags to pass to the 1393.Xr bthcid 8 1394daemon. 1395.It Va nis_client_enable 1396.Pq Vt bool 1397If set to 1398.Dq Li YES , 1399run the 1400.Xr ypbind 8 1401service at system boot time. 1402.It Va nis_client_flags 1403.Pq Vt str 1404If 1405.Va nis_client_enable 1406is set to 1407.Dq Li YES , 1408these are the flags to pass to the 1409.Xr ypbind 8 1410service. 1411.It Va nis_ypset_enable 1412.Pq Vt bool 1413If set to 1414.Dq Li YES , 1415run the 1416.Xr ypset 8 1417daemon at system boot time. 1418.It Va nis_ypset_flags 1419.Pq Vt str 1420If 1421.Va nis_ypset_enable 1422is set to 1423.Dq Li YES , 1424these are the flags to pass to the 1425.Xr ypset 8 1426daemon. 1427.It Va nis_server_enable 1428.Pq Vt bool 1429If set to 1430.Dq Li YES , 1431run the 1432.Xr ypserv 8 1433daemon at system boot time. 1434.It Va nis_server_flags 1435.Pq Vt str 1436If 1437.Va nis_server_enable 1438is set to 1439.Dq Li YES , 1440these are the flags to pass to the 1441.Xr ypserv 8 1442daemon. 1443.It Va nis_ypxfrd_enable 1444.Pq Vt bool 1445If set to 1446.Dq Li YES , 1447run the 1448.Xr rpc.ypxfrd 8 1449daemon at system boot time. 1450.It Va nis_ypxfrd_flags 1451.Pq Vt str 1452If 1453.Va nis_ypxfrd_enable 1454is set to 1455.Dq Li YES , 1456these are the flags to pass to the 1457.Xr rpc.ypxfrd 8 1458daemon. 1459.It Va nis_yppasswdd_enable 1460.Pq Vt bool 1461If set to 1462.Dq Li YES , 1463run the 1464.Xr rpc.yppasswdd 8 1465daemon at system boot time. 1466.It Va nis_yppasswdd_flags 1467.Pq Vt str 1468If 1469.Va nis_yppasswdd_enable 1470is set to 1471.Dq Li YES , 1472these are the flags to pass to the 1473.Xr rpc.yppasswdd 8 1474daemon. 1475.It Va rpc_ypupdated_enable 1476.Pq Vt bool 1477If set to 1478.Dq Li YES , 1479run the 1480.Nm rpc.ypupdated 1481daemon at system boot time. 1482.It Va defaultrouter 1483.Pq Vt str 1484If not set to 1485.Dq Li NO , 1486create a default route to this host name or IP address 1487(use an IP address if this router is also required to get to the 1488name server!). 1489.It Va ipv6_defaultrouter 1490.Pq Vt str 1491The IPv6 equivalent of 1492.Va defaultrouter . 1493.It Va static_routes 1494.Pq Vt str 1495Set to the list of static routes that are to be added at system boot time. 1496If not set to 1497.Dq Li NO 1498then for each whitespace separated 1499.Ar element 1500in the value, a 1501.Va route_ Ns Aq Ar element 1502variable is assumed to exist whose contents will later be passed to a 1503.Dq Nm route Cm add 1504operation. 1505.It Va change_routes 1506.Pq Vt str 1507Set to the list of static routes that are to be changed at system boot time 1508(such as those added by the kernel). 1509If not set to 1510.Dq Li NO 1511then for each whitespace separated 1512.Ar element 1513in the value, a 1514.Va change_route_ Ns Aq Ar element 1515variable is assumed to exist whose contents will later be passed to a 1516.Dq Nm route Cm change 1517operation. 1518.It Va ipv6_static_routes 1519.Pq Vt str 1520The IPv6 equivalent of 1521.Va static_routes . 1522If not set to 1523.Dq Li NO 1524then for each whitespace separated 1525.Ar element 1526in the value, a 1527.Va ipv6_route_ Ns Aq Ar element 1528variable is assumed to exist whose contents will later be passed to a 1529.Dq Nm route Cm add Fl inet6 1530operation. 1531.It Va gateway_enable 1532.Pq Vt bool 1533If set to 1534.Dq Li YES , 1535configure host to act as an IP router, e.g. to forward packets 1536between interfaces. 1537.It Va ipv6_gateway_enable 1538.Pq Vt bool 1539The IPv6 equivalent of 1540.Va gateway_enable . 1541.It Va router_enable 1542.Pq Vt bool 1543If set to 1544.Dq Li YES , 1545run a routing daemon of some sort, based on the settings of 1546.Va router_program 1547and 1548.Va router_flags . 1549.It Va ipv6_router_enable 1550.Pq Vt bool 1551The IPv6 equivalent of 1552.Va router_enable . 1553If set to 1554.Dq Li YES , 1555run a routing daemon of some sort, based on the settings of 1556.Va ipv6_router_program 1557and 1558.Va ipv6_router_flags . 1559.It Va router_program 1560.Pq Vt str 1561If 1562.Va router_enable 1563is set to 1564.Dq Li YES , 1565this is the name of the routing daemon to use 1566(default 1567.Pa /sbin/routed ) . 1568.It Va ipv6_router_program 1569.Pq Vt str 1570The IPv6 equivalent of 1571.Va router_program 1572(default 1573.Pa /sbin/route6d ) . 1574.It Va router_flags 1575.Pq Vt str 1576If 1577.Va router_enable 1578is set to 1579.Dq Li YES , 1580these are the flags to pass to the routing daemon. 1581.It Va ipv6_router_flags 1582.Pq Vt str 1583The IPv6 equivalent of 1584.Va router_flags . 1585.It Va mrouted_enable 1586.Pq Vt bool 1587If set to 1588.Dq Li YES , 1589run the multicast routing daemon, 1590.Xr mrouted 8 . 1591.It Va mroute6d_enable 1592.Pq Vt bool 1593The IPv6 equivalent of 1594.Va mrouted_enable . 1595If set to 1596.Dq Li YES , 1597run the IPv6 multicast routing daemon. 1598Note that no IPv6 multicast routing daemon is included in the 1599.Dx 1600base system but 1601.Xr pim6dd 8 1602can be installed from the 1603.Xr dports 7 1604collection 1605.Pa ( net/mcast-tools ) . 1606.It Va mrouted_flags 1607.Pq Vt str 1608If 1609.Va mrouted_enable 1610is set to 1611.Dq Li YES , 1612these are the flags to pass to the 1613.Xr mrouted 8 1614daemon. 1615.It Va mroute6d_flags 1616.Pq Vt str 1617The IPv6 equivalent of 1618.Va mrouted_flags . 1619If 1620.Va mroute6d_enable 1621is set to 1622.Dq Li YES , 1623these are the flags passed to the IPv6 multicast routing daemon. 1624.It Va mroute6d_program 1625.Pq Vt str 1626If 1627.Va mroute6d_enable 1628is set to 1629.Dq Li YES , 1630this is the path to the IPv6 multicast routing daemon. 1631.It Va rtadvd_enable 1632.Pq Vt bool 1633If set to 1634.Dq Li YES , 1635run the 1636.Xr rtadvd 8 1637daemon at boot time. 1638.Xr rtadvd 8 1639will only run if 1640.Va ipv6_gateway_enable 1641is also set to 1642.Dq Li YES . 1643The 1644.Xr rtadvd 8 1645utility sends router advertisement packets to the interfaces specified in 1646.Va rtadvd_interfaces . 1647.Xr rtadvd 8 1648and should only be enabled with great care. 1649You may want to fine-tune 1650.Xr rtadvd.conf 5 . 1651.It Va rtadvd_interfaces 1652.Pq Vt str 1653If 1654.Va rtadvd_enable 1655is set to 1656.Dq Li YES 1657this is the list of interfaces to use. 1658.It Va rtsold_enable 1659.Pq Vt bool 1660If set to 1661.Dq Li YES , 1662run the 1663.Xr rtsold 8 1664daemon at boot time. 1665The 1666.Xr rtsold 8 1667daemon is used for automatic discovery of non-link local addresses. 1668.It Va rtsold_flags 1669.Pq Vt str 1670If 1671.Va rtsold_enable 1672is set to 1673.Dq Li YES , 1674these are the flags to pass to the 1675.Xr rtsold 8 1676daemon. 1677.It Va arpproxy_all 1678.Pq Vt bool 1679If set to 1680.Dq Li YES , 1681enable global proxy ARP. 1682.It Va forward_sourceroute 1683.Pq Vt bool 1684If set to 1685.Dq Li YES 1686and 1687.Va gateway_enable 1688is also set to 1689.Dq Li YES , 1690source-routed packets are forwarded. 1691.It Va accept_sourceroute 1692.Pq Vt bool 1693If set to 1694.Dq Li YES , 1695the system will accept source-routed packets directed at it. 1696.It Va rarpd_enable 1697.Pq Vt bool 1698If set to 1699.Dq Li YES , 1700run the 1701.Xr rarpd 8 1702daemon at system boot time. 1703.It Va rarpd_flags 1704.Pq Vt str 1705If 1706.Va rarpd_enable 1707is set to 1708.Dq Li YES , 1709these are the flags to pass to the 1710.Xr rarpd 8 1711daemon. 1712.It Va bootparamd_enable 1713.Pq Vt bool 1714If set to 1715.Dq Li YES , 1716run the 1717.Xr bootparamd 8 1718daemon at system boot time. 1719.It Va bootparamd_flags 1720.Pq Vt str 1721If 1722.Va bootparamd_enable 1723is set to 1724.Dq Li YES , 1725these are the flags to pass to the 1726.Xr bootparamd 8 1727daemon. 1728.It Va stf_interface_ipv4addr 1729.Pq Vt str 1730If not set to 1731.Dq Li NO , 1732this is the local IPv4 address for 6to4 (IPv6 over IPv4 tunneling interface). 1733Specify this entry to enable the 6to4 interface. 1734.It Va stf_interface_ipv4plen 1735.Pq Vt int 1736Prefix length for 6to4 IPv4 addresses, to limit peer address range. 1737An effective value is 0-31. 1738.It Va stf_interface_ipv6_ifid 1739.Pq Vt str 1740IPv6 interface ID for 1741.Xr stf 4 . 1742This can be set to 1743.Dq Li AUTO . 1744.It Va stf_interface_ipv6_slaid 1745.Pq Vt str 1746IPv6 Site Level Aggregator for 1747.Xr stf 4 . 1748.It Va ipv6_faith_prefix 1749.Pq Vt str 1750If not set to 1751.Dq Li NO , 1752this is the faith prefix to enable a FAITH IPv6-to-IPv4 TCP translator. 1753You also need 1754.Xr faithd 8 1755setup. 1756.It Va keybell 1757.Pq Vt str 1758The keyboard bell sound. 1759Set to 1760.Dq Li normal , 1761.Dq Li visual , 1762.Dq Li off , 1763or 1764.Dq Li NO 1765if the default behavior is desired. 1766For details, refer to the 1767.Xr kbdcontrol 1 1768manpage. 1769.It Va keymap 1770.Pq Vt str 1771If set to 1772.Dq Li NO , 1773no keymap is installed, otherwise the value is used to install 1774the keymap file in 1775.Pa /usr/share/syscons/keymaps/ Ns Ao Ar value Ac Ns Pa .kbd . 1776.It Va keyrate 1777.Pq Vt str 1778The keyboard repeat speed. 1779Set to 1780.Dq Li slow , 1781.Dq Li normal , 1782.Dq Li fast , 1783or 1784.Dq Li NO 1785if the default behavior is desired. 1786.It Va keychange 1787.Pq Vt str 1788If not set to 1789.Dq Li NO , 1790attempt to program the function keys with the value. 1791The value should be a single string of the form: 1792.Dq Ar funkey_number new_value Op Ar funkey_number new_value ... . 1793.It Va cursor 1794.Pq Vt str 1795Can be set to the value of 1796.Dq Li normal , 1797.Dq Li blink , 1798.Dq Li destructive , 1799or 1800.Dq Li NO 1801to set the cursor behavior explicitly or choose the default behavior. 1802.It Va scrnmap 1803.Pq Vt str 1804If set to 1805.Dq Li NO , 1806no screen map is installed, otherwise the value is used to install 1807the screen map file in 1808.Pa /usr/share/syscons/scrnmaps/ Ns Aq Ar value . 1809.It Va font8x16 1810.Pq Vt str 1811If set to 1812.Dq Li NO , 1813the default 8x16 font value is used for screen size requests, otherwise 1814the value in 1815.Pa /usr/share/syscons/fonts/ Ns Aq Ar value 1816is used. 1817.It Va font8x14 1818.Pq Vt str 1819If set to 1820.Dq Li NO , 1821the default 8x14 font value is used for screen size requests, otherwise 1822the value in 1823.Pa /usr/share/syscons/fonts/ Ns Aq Ar value 1824is used. 1825.It Va font8x8 1826.Pq Vt str 1827If set to 1828.Dq Li NO , 1829the default 8x8 font value is used for screen size requests, otherwise 1830the value in 1831.Pa /usr/share/syscons/fonts/ Ns Aq Ar value 1832is used. 1833.It Va blanktime 1834.Pq Vt int 1835If set to 1836.Dq Li NO , 1837the default screen blanking interval is used, otherwise it is set to 1838.Ar value 1839seconds. 1840.It Va saver 1841.Pq Vt str 1842If not set to 1843.Dq Li NO , 1844this is the actual screen saver to use 1845.Li ( blank , snake , daemon , 1846etc). 1847.It Va moused_nondefault_enable 1848.Pq Vt str 1849If set to 1850.Dq Li NO , 1851the mouse device specified on 1852the command line is not automatically treated as enabled by the 1853.Pa /etc/rc.d/moused 1854script. 1855Having this variable set to 1856.Dq Li YES 1857allows a 1858.Xr usb 4 1859mouse, 1860for example, 1861to be enabled as soon as it is plugged in. 1862.It Va moused_enable 1863.Pq Vt str 1864If set to 1865.Dq Li YES , 1866the 1867.Xr moused 8 1868daemon is started for doing cut/paste selection on the console. 1869.It Va moused_type 1870.Pq Vt str 1871This is the protocol type of the mouse connected to this host. 1872This variable must be set if 1873.Va moused_enable 1874is set to 1875.Dq Li YES . 1876The 1877.Xr moused 8 1878daemon 1879is able to detect the appropriate mouse type automatically in many cases. 1880Set this variable to 1881.Dq Li auto 1882to let the daemon detect it, or 1883select one from the following list if the automatic detection fails. 1884.Pp 1885If the mouse is attached to the PS/2 mouse port, choose 1886.Dq Li auto 1887or 1888.Dq Li ps/2 , 1889regardless of the brand and model of the mouse. 1890Likewise, if the mouse is attached to the bus mouse port, choose 1891.Dq Li auto 1892or 1893.Dq Li busmouse . 1894All other protocols are for serial mice and will not work with 1895the PS/2 and bus mice. 1896If this is a USB mouse, 1897.Dq Li auto 1898is the only protocol type which will work. 1899.Pp 1900.Bl -tag -width ".Li x10mouseremote" -compact 1901.It Li microsoft 1902Microsoft mouse (serial) 1903.It Li intellimouse 1904Microsoft IntelliMouse (serial) 1905.It Li mousesystems 1906Mouse systems Corp. mouse (serial) 1907.It Li mmseries 1908MM Series mouse (serial) 1909.It Li logitech 1910Logitech mouse (serial) 1911.It Li busmouse 1912A bus mouse 1913.It Li mouseman 1914Logitech MouseMan and TrackMan (serial) 1915.It Li glidepoint 1916ALPS GlidePoint (serial) 1917.It Li thinkingmouse 1918Kensington ThinkingMouse (serial) 1919.It Li ps/2 1920PS/2 mouse 1921.It Li mmhittab 1922MM HitTablet (serial) 1923.It Li x10mouseremote 1924X10 MouseRemote (serial) 1925.It Li versapad 1926Interlink VersaPad (serial) 1927.El 1928.Pp 1929Even if the mouse is not in the above list, it may be compatible 1930with one in the list. 1931Refer to the man page for 1932.Xr moused 8 1933for compatibility information. 1934.Pp 1935It should also be noted that while this is enabled, any 1936other client of the mouse (such as an X server) should access 1937the mouse through the virtual mouse device, 1938.Pa /dev/sysmouse , 1939and configure it as a 1940.Dq Li sysmouse 1941type mouse, since all 1942mouse data is converted to this single canonical format when using 1943.Xr moused 8 . 1944If the client program does not support the 1945.Dq Li sysmouse 1946type, specify the 1947.Dq Li mousesystems 1948type. 1949It is the second preferred type. 1950.It Va moused_port 1951.Pq Vt str 1952If 1953.Va moused_enable 1954is set to 1955.Dq Li YES , 1956this is the actual port the mouse is on. 1957It might be 1958.Pa /dev/cuaa0 1959for a COM1 serial mouse or 1960.Pa /dev/psm0 1961for a PS/2 mouse, for example. 1962.It Va moused_flags 1963.Pq Vt str 1964If 1965.Va moused_type 1966is set, these are the additional flags to pass to the 1967.Xr moused 8 1968daemon. 1969.It Va mousechar_start 1970.Pq Vt int 1971If set to 1972.Dq Li NO , 1973the default mouse cursor character range 1974.Li 0xd0 Ns - Ns Li 0xd3 1975is used, otherwise the range start is set to 1976.Ar value 1977character, see 1978.Xr vidcontrol 1 . 1979Use if the default range is occupied in the language code table. 1980.It Va vidhistory 1981.Pq Vt int 1982Set the size of the history (scrollback) buffer in lines. 1983.It Va allscreens_flags 1984.Pq Vt str 1985If set, 1986.Xr vidcontrol 1 1987is run with these options for each of the virtual terminals 1988.Pq Pa /dev/ttyv* . 1989For example, 1990.Dq Fl m Cm on 1991will enable the mouse pointer on all virtual terminals if 1992.Va moused_enable 1993is set to 1994.Dq Li YES . 1995.It Va allscreens_kbdflags 1996.Pq Vt str 1997If set, 1998.Xr kbdcontrol 1 1999is run with these options for each of the virtual terminals 2000.Pq Pa /dev/ttyv* . 2001For example, 2002.Dq Fl h Li 200 2003will set the 2004.Xr syscons 4 2005scrollback (history) buffer to 200 lines. 2006.It Va cron_enable 2007.Pq Vt bool 2008If set to 2009.Dq Li YES , 2010run the 2011.Xr cron 8 2012daemon at system boot time. 2013.It Va cron_program 2014.Pq Vt str 2015Path to 2016.Xr cron 8 2017(default 2018.Pa /usr/sbin/cron ) . 2019.It Va cron_flags 2020.Pq Vt str 2021If 2022.Va cron_enable 2023is set to 2024.Dq Li YES , 2025these are the flags to pass to 2026.Xr cron 8 . 2027.It Va lpd_program 2028.Pq Vt str 2029Path to 2030.Xr lpd 8 2031(default 2032.Pa /usr/sbin/lpd ) . 2033.It Va lpd_enable 2034.Pq Vt bool 2035If set to 2036.Dq Li YES , 2037run the 2038.Xr lpd 8 2039daemon at system boot time. 2040.It Va lpd_flags 2041.Pq Vt str 2042If 2043.Va lpd_enable 2044is set to 2045.Dq Li YES , 2046these are the flags to pass to the 2047.Xr lpd 8 2048daemon. 2049.It Va nscd_enable 2050.Pq Vt bool 2051If set to 2052.Dq Li YES , 2053run the 2054.Xr nscd 8 2055daemon at system boot time. 2056.It Va mixer_enable 2057.Pq Vt bool 2058If set to 2059.Dq Li YES , 2060preserve 2061.Xr mixer 8 2062settings across reboots. 2063.It Va mta_start_script 2064.Pq Vt str 2065The full path to the script to run to start 2066a mail transfer agent. 2067The default is 2068.Pa /etc/rc.sendmail . 2069The 2070.Va sendmail_* 2071variables which 2072.Pa /etc/rc.sendmail 2073uses are documented in the 2074.Xr rc.sendmail 8 2075man page. 2076.It Va fixbootfile 2077.Pq Vt bool 2078In a 2079.Sq HAMMER ROOT with UFS /boot 2080setup, the boot loader will not set up the 2081.Va kern.bootfile 2082sysctl correctly. 2083The system will attempt to fix this on its own. 2084Set this variable to 2085.Dq Li NO 2086to turn this behavior off. 2087.It Va dumpdev 2088.Pq Vt str 2089Indicates the device (usually a swap partition) to which a crash dump 2090should be written in the event of a system crash. 2091The value of this variable is passed as the argument to 2092.Xr dumpon 8 2093and 2094.Xr savecore 8 . 2095To disable crash dumps, set this variable to 2096.Dq Li NO . 2097.It Va dumpdir 2098.Pq Vt str 2099When the system reboots after a crash and a crash dump is found on the 2100device specified by the 2101.Va dumpdev 2102variable, 2103.Xr savecore 8 2104will save that crash dump and a copy of the kernel to the directory 2105specified by the 2106.Va dumpdir 2107variable. 2108The default value is 2109.Pa /var/crash . 2110Set to 2111.Dq Li NO 2112to not run 2113.Xr savecore 8 2114at boot time when 2115.Va dumpdir 2116is set. 2117.It Va savecore_flags 2118.Pq Vt str 2119If crash dumps are enabled, these are the flags to pass to the 2120.Xr savecore 8 2121utility. 2122.It Va crashinfo_enable 2123.Pq Vt bool 2124Set to 2125.Dq Li YES 2126to turn on automatic crash dump summary generation using the utility 2127specified by the 2128.Va crashinfo_program 2129variable. 2130.It Va crashinfo_program 2131.Pq Vt str 2132Program to run to generate a crash dump summary if the variable 2133.Va crashinfo_enable 2134is set to 2135.Dq Li YES . 2136The default value is 2137.Pa /usr/sbin/crashinfo . 2138.It Va enable_quotas 2139.Pq Vt bool 2140Set to 2141.Dq Li YES 2142to turn on user disk quotas on system startup via the 2143.Xr quotaon 8 2144command. 2145.It Va check_quotas 2146.Pq Vt bool 2147Set to 2148.Dq Li YES 2149to enable user disk quota checking via the 2150.Xr quotacheck 8 2151command. 2152.It Va accounting_enable 2153.Pq Vt bool 2154Set to 2155.Dq Li YES 2156to enable system accounting through the 2157.Xr accton 8 2158facility. 2159.It Va linux_enable 2160.Pq Vt bool 2161Set to 2162.Dq Li YES 2163to enable Linux/ELF binary emulation at system initial boot time. 2164.\" ----- cleanvar_enable setting-------------------------------- 2165.It Va cleanvar_enable 2166.Pq Vt bool 2167Set to 2168.Dq Li YES 2169to have 2170.Pa /var/run , 2171.Pa /var/spool/lock 2172and 2173.Pa /var/spool/uucp/.Temp/* 2174cleaned at startup. 2175.\" ----- clear_tmp_enable setting------------------------------- 2176.It Va clear_tmp_enable 2177.Pq Vt bool 2178Set to 2179.Dq Li YES 2180to have 2181.Pa /tmp 2182cleaned at startup. 2183.\" ----- ldconfig_paths setting -------------------------------- 2184.It Va ldconfig_paths 2185.Pq Vt str 2186Set to the list of shared library paths to use with 2187.Xr ldconfig 8 . 2188NOTE: 2189.Pa /usr/lib 2190will always be added first, so it need not appear in this list. 2191.It Va ldconfig_insecure 2192.Pq Vt bool 2193The 2194.Xr ldconfig 8 2195utility normally refuses to use directories 2196which are writable by anyone except root. 2197Set this variable to 2198.Dq Li YES 2199to disable that security check during system startup. 2200.It Va ldconfig_local_dirs 2201.Pq Vt str 2202Set to the list of local 2203.Xr ldconfig 8 2204directories. 2205The names of all files in the directories listed will be 2206passed as arguments to 2207.Xr ldconfig 8 . 2208.It Va kern_securelevel 2209.Pq Vt int 2210The kernel security level to set at startup. 2211The allowed range of 2212.Ar value 2213ranges from \-1 (the compile time default) to 3 (the most secure). 2214See 2215.Xr init 8 2216for the list of possible security levels and their effect on system operation. 2217.It Va start_vinum 2218.Pq Vt bool 2219Set to 2220.Dq Li YES 2221to start 2222.Xr vinum 8 2223at system boot time. 2224.It Va sshd_enable 2225.Pq Vt bool 2226Set to 2227.Dq Li YES 2228to start 2229.Xr sshd 8 2230at system boot time. 2231.It Va sshd_program 2232.Pq Vt str 2233Path to the SSH server program 2234(default 2235.Pa /usr/sbin/sshd ) . 2236.It Va sshd_flags 2237.Pq Vt str 2238If 2239.Va sshd_enable 2240is set to 2241.Dq Li YES , 2242these are the flags to pass to the 2243.Xr sshd 8 2244daemon. 2245.It Va ftpd_enable 2246.Pq Vt bool 2247Set to 2248.Dq Li YES 2249to start 2250.Xr ftpd 8 2251at system boot time. 2252.It Va ftpd_flags 2253.Pq Vt str 2254If 2255.Va ftpd_enable 2256is set to 2257.Dq Li YES , 2258these are the flags to pass to the 2259.Xr ftpd 8 2260daemon. 2261.It Va watchdogd_enable 2262.Pq Vt bool 2263If set to 2264.Dq Li YES , 2265start the 2266.Xr watchdogd 8 2267daemon at boot time. 2268This requires that the kernel have been compiled with 2269.Cd "options WATCHDOG" . 2270.It Va jail_enable 2271.Pq Vt bool 2272If set to 2273.Dq Li NO , 2274any configured jails will not be started. 2275.It Va jail_list 2276.Pq Vt str 2277A space separated list of names for jails. 2278This is purely a configuration aid to help identify and 2279configure multiple jails. 2280The names specified in this list will be used to 2281identify settings common to an instance of a jail. 2282Assuming that the jail in question was named 2283.Li vjail , 2284you would have the following dependent variables: 2285.Bd -literal 2286jail_vjail_hostname="jail.example.com" 2287jail_vjail_ip="192.168.1.100" 2288jail_vjail_rootdir="/var/jails/vjail/root" 2289.Ed 2290.It Va jail_flags 2291.Pq Vt str 2292Unset by default. 2293When set, use as default value for 2294.Va jail_ Ns Ao Ar jname Ac Ns Va _flags 2295for every jail in 2296.Va jail_list . 2297.It Va jail_interface 2298.Pq Vt str 2299Unset by default. 2300When set, use as default value for 2301.Va jail_ Ns Ao Ar jname Ac Ns Va _interface 2302for every jail in 2303.Va jail_list . 2304.It Va jail_fstab 2305.Pq Vt str 2306Unset by default. 2307When set, use as default value for 2308.Va jail_ Ns Ao Ar jname Ac Ns Va _fstab 2309for every jail in 2310.Va jail_list . 2311.It Va jail_mount_enable 2312.Pq Vt bool 2313Set to 2314.Dq Li NO 2315by default. 2316When set to 2317.Dq Li YES , 2318sets 2319.Va jail_ Ns Ao Ar jname Ac Ns Va _mount_enable 2320to 2321.Dq Li YES 2322by default for every jail in 2323.Va jail_list . 2324.It Va jail_fdesc_enable 2325.Pq Vt bool 2326Set to 2327.Dq Li NO 2328by default. 2329When set to 2330.Dq Li YES , 2331sets 2332.Va jail_ Ns Ao Ar jname Ac Ns Va _fdesc_enable 2333to 2334.Dq Li YES 2335by default for every jail in 2336.Va jail_list . 2337.It Va jail_procfs_enable 2338.Pq Vt bool 2339Set to 2340.Dq Li NO 2341by default. 2342When set to 2343.Dq Li YES , 2344sets 2345.Va jail_ Ns Ao Ar jname Ac Ns Va _procfs_enable 2346to 2347.Dq Li YES 2348by default for every jail in 2349.Va jail_list . 2350.It Va jail_devfs_enable 2351.Pq Vt bool 2352Set to 2353.Dq Li NO 2354by default. 2355When set to 2356.Dq Li YES , 2357sets 2358.Va jail_ Ns Ao Ar jname Ac Ns Va _devfs_enable 2359to 2360.Dq Li YES 2361by default for every jail in 2362.Va jail_list . 2363.It Va jail_exec_start 2364.Pq Vt str 2365Unset by default. 2366When set, use as default value for 2367.Va jail_ Ns Ao Ar jname Ac Ns Va _exec_start 2368for every jail in 2369.Va jail_list . 2370.It Va jail_exec_stop 2371Unset by default. 2372When set, use as default value for 2373.Va jail_ Ns Ao Ar jname Ac Ns Va _exec_stop 2374for every jail in 2375.Va jail_list . 2376.It Va jail_ Ns Ao Ar jname Ac Ns Va _rootdir 2377.Pq Vt str 2378Unset by default. 2379Set to the root directory used by jail 2380.Va jname . 2381.It Va jail_ Ns Ao Ar jname Ac Ns Va _hostname 2382.Pq Vt str 2383Unset by default. 2384Set to the fully qualified domain name (FQDN) assigned to jail 2385.Va jname . 2386.It Va jail_ Ns Ao Ar jname Ac Ns Va _ip 2387.Pq Vt str 2388Unset by default. 2389Set to the IP address assigned to jail 2390.Va jname . 2391.It Va jail_ Ns Ao Ar jname Ac Ns Va _flags 2392.Pq Vt str 2393Set to 2394.Dq Li -l -U root 2395by default. 2396These are flags to pass to 2397.Xr jail 8 . 2398.It Va jail_ Ns Ao Ar jname Ac Ns Va _interface 2399.Pq Vt str 2400Unset by default. 2401When set, sets the interface to use when setting IP address alias. 2402Note that the alias is created at jail startup and removed at jail shutdown. 2403.It Va jail_ Ns Ao Ar jname Ac Ns Va _fstab 2404.Pq Vt str 2405Set to 2406.Pa /etc/fstab. Ns Aq Ar jname 2407by default. 2408This is the file system information file to use for jail 2409.Va jname . 2410.It Va jail_ Ns Ao Ar jname Ac Ns Va _mount_enable 2411.Pq Vt bool 2412Set to 2413.Dq Li NO 2414by default. 2415When set to 2416.Dq Li YES , 2417mount all file systems from 2418.Va jail_ Ns Ao Ar jname Ac Ns Va _fstab 2419at jail startup. 2420.It Va jail_ Ns Ao Ar jname Ac Ns Va _fdesc_enable 2421.Pq Vt bool 2422Set to 2423.Dq Li NO 2424by default. 2425When set to 2426.Dq Li YES , 2427mount the file-descriptor file system inside jail 2428.Ar jname 2429at jail startup. 2430.It Va jail_ Ns Ao Ar jname Ac Ns Va _procfs_enable 2431.Pq Vt bool 2432Set to 2433.Dq Li NO 2434by default. 2435When set to 2436.Dq Li YES , 2437mount the process file system inside jail 2438.Ar jname 2439at jail startup. 2440.It Va jail_ Ns Ao Ar jname Ac Ns Va _devfs_enable 2441.Pq Vt bool 2442Set to 2443.Dq Li NO 2444by default. 2445When set to 2446.Dq Li YES , 2447mount the device file system inside jail 2448.Ar jname 2449at jail startup. 2450.It Va jail_ Ns Ao Ar jname Ac Ns Va _exec_start 2451.Pq Vt str 2452Set to 2453.Dq Li /bin/sh /etc/rc 2454by default. 2455This is the command executed at jail startup. 2456.It Va jail_ Ns Ao Ar jname Ac Ns Va _exec_stop 2457.Pq Vt str 2458Set to 2459.Dq Li /bin/sh /etc/rc.shutdown 2460by default. 2461This is the command executed at jail shutdown. 2462.It Va jail_set_hostname_allow 2463.Pq Vt bool 2464If set to 2465.Dq Li NO , 2466do not allow the root user in a jail to set its hostname. 2467.It Va jail_socket_unixiproute_only 2468.Pq Vt bool 2469If set to 2470.Dq Li YES , 2471do not allow any sockets, 2472besides UNIX/IP/route sockets, 2473to be used within a jail. 2474.It Va jail_sysvipc_allow 2475.Pq Vt bool 2476If set to 2477.Dq Li YES , 2478allow applications within a jail to use System V IPC. 2479.It Va lvm_enable 2480.Pq Vt bool 2481If set to 2482.Dq Li YES 2483LVM volumes will be discovered and configured on boot. 2484.It Va newsyslog_enable 2485.Pq Vt bool 2486If set to 2487.Dq Li YES , 2488run 2489.Xr newsyslog 8 2490before syslogd starts. 2491.It Va newsyslog_flags 2492.Pq Vt str 2493If 2494.Va newsyslog_enable 2495is set to 2496.Dq Li YES , 2497these are the flags passed to 2498.Xr newsyslog 8 . 2499.It Va resident_enable 2500.Pq Vt bool 2501If set to 2502.Dq Li YES , 2503make the dynamic binaries listed in 2504.Pa /etc/resident.conf 2505resident. 2506.It Va varsym_enable 2507.Pq Vt bool 2508If set to 2509.Dq Li YES , 2510process 2511.Pa /etc/varsym.conf 2512to set system-wide variables for variant symlinks. 2513.It Va rand_irqs 2514.Pq Vt str 2515Set either to 2516.Dq Li NO 2517or a whitespace separated list of IRQ numbers which will be used as a source of 2518randomness. 2519.\" ----------------------------------------------------- 2520.It Va entropy_dir 2521.Pq Vt str 2522Set to 2523.Dq Li NO 2524to disable caching entropy via 2525.Xr cron 8 . 2526Otherwise set to the directory used to store entropy files in. 2527.It Va entropy_file 2528.Pq Vt str 2529Set to 2530.Dq Li NO 2531to disable caching entropy through reboots. 2532Otherwise set to the filename used to store cached entropy through reboots. 2533This file should be located on the root file system to seed the 2534.Xr random 4 2535device as early as possible in the boot process. 2536.It Va entropy_save_sz 2537.Pq Vt int 2538Determines the size of the entropy cache files used for entropy cached 2539through reboots and also entropy cached via 2540.Xr cron 8 . 2541The entropy is fed to the system in blocks of 512 bytes, so this number 2542should be large enough to fill as many of the entropy pools in the kernel 2543CSPRNG as possible. 2544By default, it is set to 16384, which should be able to seed all 32 entropy 2545pools in the Fortuna CSPRNG. 2546.It Va ipsec_enable 2547.Pq Vt bool 2548Set to 2549.Dq Li YES 2550to run 2551.Xr setkey 8 2552on 2553.Va ipsec_file 2554at boot time. 2555.It Va ipsec_file 2556.Pq Vt str 2557Configuration file for 2558.Xr setkey 8 . 2559.It Va dmesg_enable 2560.Pq Vt bool 2561Set to 2562.Dq Li YES 2563to save 2564.Xr dmesg 8 2565to 2566.Pa /var/run/dmesg.boot 2567on boot. 2568.It Va rcshutdown_timeout 2569.Pq Vt int 2570If set, start a watchdog timer in the background which will terminate 2571.Pa rc.shutdown 2572if 2573.Xr shutdown 8 2574has not completed within the specified time (in seconds). 2575Notice that in addition to this soft timeout, 2576.Xr init 8 2577also applies a hard timeout for the execution of 2578.Pa rc.shutdown . 2579This is configured via 2580.Xr sysctl 8 2581variable 2582.Va kern.init_shutdown_timeout 2583and defaults to 120 seconds. Setting the value of 2584.Va rcshutdown_timeout 2585to more than 120 seconds will have no effect until the 2586.Xr sysctl 8 2587variable 2588.Va kern.init_shutdown_timeout 2589is also increased. 2590.It Va udevd_enable 2591.Pq Vt bool 2592If set to 2593.Dq Li YES , 2594the udevd daemon will be started on boot. 2595.It Va vfs_quota_enable 2596.Pq Vt bool 2597If set to 2598.Dq Li YES , 2599vfs quota rc.d scripts will be run on boot. 2600.It Va vfs_quota_sync 2601.Pq Vt str 2602List of mount points whose counters are to be synchronized with on-disk 2603usage during system startup. See also 2604.Xr vquota 8 . 2605.It Va vknetd_enable 2606.Pq Vt bool 2607If set to 2608.Dq Li YES , 2609.Xr vknetd 8 2610will be started on boot. 2611.It Va vknetd_flags 2612.Pq Vt bool 2613Additional flags passed to 2614.Xr vknetd 8 . 2615Usually address/cidrbits is specified here. 2616When no flags are passed, default option 2617.Fl U 2618will be used. 2619.It Va vkernel_enable 2620.Pq Vt bool 2621If set to 2622.Dq Li NO , 2623any configured vkernels will not be started. 2624.It Va vkernel_kill_timeout 2625.Pq Vt int 2626This defines the default number of seconds that we will wait for the 2627vkernel to shut down on it's own. If after this time it's still alive, 2628it will be killed with SIGKILL. 2629.It Va vkernel_bin 2630.Pq Vt str 2631Defines the default path to the vkernel binary. 2632.It Va vkernel_list 2633.Pq Vt str 2634A space separated list of names for vkernels. 2635This is purely a configuration aid to help identify and 2636configure multiple vkernels. 2637The names specified in this list will be used to 2638identify settings common to a vkernel instance. 2639Assuming that the vkernel in question was named 2640.Li example , 2641you would have the following dependent variables 2642(filled with reference values in this text): 2643.Bd -literal 2644vkernel_example_bin="/usr/obj/usr/src/sys/VKERNEL/kernel.debug" 2645vkernel_example_memsize="64m" 2646vkernel_example_rootimg_list="/var/vkernel/rootimg.01" 2647vkernel_example_iface_list="auto:bridge0" 2648vkernel_example_logfile="/dev/null" 2649vkernel_example_flags="-U" 2650vkernel_example_kill_timeout="45" 2651.Ed 2652.Pp 2653The last five are optional. 2654They default to an empty string if not set, except for logfile which defaults to 2655.Pa /dev/null 2656if it is not set. 2657.El 2658.Sh FILES 2659.Bl -tag -width ".Pa /etc/start_if. Ns Aq Ar interface" -compact 2660.It Pa /etc/defaults/rc.conf 2661.It Pa /etc/rc.conf 2662.It Pa /etc/rc.conf.local 2663.It Pa /etc/start_if. Ns Aq Ar interface 2664.El 2665.Sh SEE ALSO 2666.Xr catman 1 , 2667.Xr gdb 1 , 2668.Xr info 1 , 2669.Xr kbdcontrol 1 , 2670.Xr varsym 1 , 2671.Xr vidcontrol 1 , 2672.Xr ip 4 , 2673.Xr ipfw 4 , 2674.Xr kld 4 , 2675.Xr pf 4 , 2676.Xr tcp 4 , 2677.Xr udp 4 , 2678.Xr vlan 4 , 2679.Xr exports 5 , 2680.Xr motd 5 , 2681.Xr resident.conf 5 , 2682.Xr varsym.conf 5 , 2683.Xr accton 8 , 2684.Xr amd 8 , 2685.Xr apm 8 , 2686.Xr btconfig 8 , 2687.Xr bthcid 8 , 2688.Xr cron 8 , 2689.Xr devd 8 , 2690.Xr dhclient 8 , 2691.Xr dntpd 8 , 2692.Xr ftpd 8 , 2693.Xr ifconfig 8 , 2694.Xr inetd 8 , 2695.Xr jail 8 , 2696.Xr lpd 8 , 2697.Xr makewhatis 8 , 2698.Xr mixer 8 , 2699.Xr mountd 8 , 2700.Xr moused 8 , 2701.Xr mrouted 8 , 2702.Xr named 8 , 2703.Xr nfsd 8 , 2704.Xr pcnfsd 8 , 2705.Xr pfctl 8 , 2706.Xr pflogd 8 , 2707.Xr quotacheck 8 , 2708.Xr quotaon 8 , 2709.Xr rc 8 , 2710.Xr rc.sendmail 8 , 2711.Xr resident 8 , 2712.Xr rndcontrol 8 , 2713.Xr route 8 , 2714.Xr routed 8 , 2715.Xr rpcbind 8 , 2716.Xr rpc.lockd 8 , 2717.Xr rpc.statd 8 , 2718.Xr rtadvd 8 , 2719.Xr rtsold 8 , 2720.Xr rwhod 8 , 2721.Xr savecore 8 , 2722.Xr sdpd 8 , 2723.Xr sensorsd 8 , 2724.Xr sshd 8 , 2725.Xr swapon 8 , 2726.Xr sysctl 8 , 2727.Xr syslogd 8 , 2728.Xr sysvipcd 8 , 2729.Xr timed 8 , 2730.Xr vinum 8 , 2731.Xr yp 8 , 2732.Xr ypbind 8 , 2733.Xr ypserv 8 , 2734.Xr ypset 8 2735.Sh HISTORY 2736The 2737.Nm 2738file appeared in 2739.Fx 2.2.2 . 2740.Sh AUTHORS 2741.An Jordan K. Hubbard . 2742