1.\" $NetBSD: rc.conf.5,v 1.99 2006/03/27 10:07:07 ghen Exp $ 2.\" 3.\" Copyright (c) 1996 Matthew R. Green 4.\" Copyright (c) 1997 Curt J. Sampson 5.\" Copyright (c) 1997 Michael W. Long 6.\" Copyright (c) 1998-2002 The NetBSD Foundation, Inc. 7.\" All rights reserved. 8.\" 9.\" This document is derived from works contributed to The NetBSD Foundation 10.\" by Luke Mewburn. 11.\" 12.\" Redistribution and use in source and binary forms, with or without 13.\" modification, are permitted provided that the following conditions 14.\" are met: 15.\" 1. Redistributions of source code must retain the above copyright 16.\" notice, this list of conditions and the following disclaimer. 17.\" 2. Redistributions in binary form must reproduce the above copyright 18.\" notice, this list of conditions and the following disclaimer in the 19.\" documentation and/or other materials provided with the distribution. 20.\" 3. The name of the author may not be used to endorse or promote products 21.\" derived from this software without specific prior written permission. 22.\" 23.\" THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR 24.\" IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES 25.\" OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. 26.\" IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT, 27.\" INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, 28.\" BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; 29.\" LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED 30.\" AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, 31.\" OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 32.\" OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 33.\" SUCH DAMAGE. 34.\" 35.Dd March 27, 2006 36.Dt RC.CONF 5 37.Os 38.Sh NAME 39.Nm rc.conf 40.Nd system startup configuration file 41.Sh DESCRIPTION 42The 43.Nm 44file specifies which services are enabled during system startup by 45the startup scripts invoked by 46.Pa /etc/rc 47(see 48.Xr rc 8 ) , 49and the shutdown scripts invoked by 50.Pa /etc/rc.shutdown . 51The 52.Nm 53file is a shell script that is sourced by 54.Xr rc 8 , 55meaning that 56.Nm 57must contain valid shell commands. 58.Pp 59Listed below are the standard 60.Nm 61variables that may be set, the values to which each may be set, 62a brief description of what each variable does, and a reference to 63relevant manual pages. 64Third party packages may test for additional variables. 65.Pp 66Most variables are one of two types: enabling variables or flags 67variables. 68Enabling variables, such as 69.Sy inetd , 70are generally named after the program or the system they enable, 71and are set to 72.Sq YES 73or 74.Sq NO . 75Flags variables, such as 76.Sy inetd_flags 77have the same name with "_flags" appended, and determine what 78arguments are passed to the program if it is enabled. 79.Pp 80If a variable that 81.Xr rc 8 82expects to be set is not set, or the value is not one of the allowed 83values, a warning will be printed. 84.Pp 85By default, 86.Nm 87reads 88.Pa /etc/defaults/rc.conf 89(if it is readable) 90to obtain default values for various variables, and the end-user 91may override these by appending appropriate entries to the end of 92.Nm . 93.Pp 94.Xr rc.d 8 95scripts that use 96.Ic load_rc_config 97from 98.Xr rc.subr 8 99also support sourcing an optional end-user provided per-script override 100file 101.Pa /etc/rc.conf.d/ Ns Ar service , 102(where 103.Ar service 104is the contents of the 105.Sy name 106variable in the 107.Xr rc.d 8 108script). 109This may contain variable overrides, including allowing the end-user 110to override various 111.Ic run_rc_command 112.Xr rc.d 8 113control variables, and thus changing the operation of the script 114without requiring editing of the script. 115.Ss Overall control 116.Bl -tag -width net_interfaces 117.It Sy do_rcshutdown 118.Sq YES 119or 120.Sq NO . 121If set to 122.Sq NO , 123.Xr shutdown 8 124will not run 125.Pa /etc/rc.shutdown . 126.It Sy rcshutdown_rcorder_flags 127A string. 128Extra arguments to the 129.Xr rcorder 8 130run by 131.Pa /etc/rc.shutdown . 132.It Sy rcshutdown_timeout 133A number. 134If non-blank, use this as the number of seconds to run a watchdog timer for 135which will terminate 136.Pa /etc/rc.shutdown 137if the timer expires before the shutdown script completes. 138.It Sy rc_configured 139.Sq YES 140or 141.Sq NO . 142If not set to 143.Sq YES 144then the system will drop into single-user mode during boot. 145.It Sy rc_fast_and_loose 146If set to a non-empty string, 147each script in 148.Pa /etc/rc.d 149will be executed in the current shell rather than a sub shell. 150This may be faster on slow machines that have an expensive 151.Xr fork 2 152operation. 153.Bl -hang 154.It Em Note : 155Use this at your own risk! 156A rogue command or script may inadvertently prevent boot to multiuser. 157.El 158.It Sy rc_rcorder_flags 159A string. 160Extra arguments to the 161.Xr rcorder 8 162run by 163.Pa /etc/rc . 164.El 165.Ss Basic network configuration 166.Bl -tag -width net_interfaces 167.It Sy defaultroute 168A string. 169Default IPv4 network route. 170If empty or not set, then the contents of 171.Pa /etc/mygate 172(if it exists) are used. 173.It Sy defaultroute6 174A string. 175Default IPv6 network route. 176If empty or not set, then the contents of 177.Pa /etc/mygate6 178(if it exists) are used. 179.It Sy domainname 180A string. 181.Tn NIS 182(YP) domain of host. 183If empty or not set, then the contents of 184.Pa /etc/defaultdomain 185(if it exists) are used. 186.It Sy force_down_interfaces 187A space separated list of interface names. 188These interfaces will be configured down when going from multiuser to singleuser 189mode or on system shutdown. 190.Pp 191This is important for some stateful interfaces, for example PPP over ISDN 192connections that cost money by connection time or PPPoE interfaces which 193have no direct means of noticing 194.Dq disconnect 195events. 196.Pp 197All active 198.Xr pppoe 4 199and 200.Xr ippp 4 201interfaces will be automatically added to this list. 202.It Sy hostname 203A string. 204Name of host. 205If empty or not set, then the contents of 206.Pa /etc/myname 207(if it exists) are used. 208.El 209.Ss Boottime file-system and swap configuration 210.Bl -tag -width net_interfaces 211.It Sy critical_filesystems_local 212A string. 213File systems mounted very early in the system boot before networking 214services are available. 215Usually 216.Pa /var 217is part of this, because it is needed by services such as 218.Xr dhclient 8 219which may be required to get the network operational. 220.It Sy critical_filesystems_remote 221A string. 222File systems such as 223.Pa /usr 224that may require network services to be available to mount, 225that must be available early in the system boot for general services to use. 226.It Sy fsck_flags 227A string. 228A file system is checked with 229.Xr fsck 8 230during boot before mounting it. 231This option may be used to override the default command-line options 232passed to the 233.Xr fsck 8 234program. 235.Pp 236When set to 237.Fl y , 238.Xr fsck 8 239assumes yes as the answer to all operator questions during file system checks. 240This might be important with hosts where the administrator does not have 241access to the console and an unsuccessful shutdown must not make the host 242unbootable even if the file system checks would fail in preen mode. 243.It Sy no_swap 244.Sq YES 245or 246.Sq NO . 247Set the 248.Sy no_swap 249variable to 250.Sq YES 251if you have configured your system with no swap on purpose. 252If not set to 253.Sq YES , 254and no swap devices 255are configured, the system will warn you. 256.It Sy swapoff 257.Sq YES 258or 259.Sq NO . 260Remove block-type swap devices at shutdown time. 261Useful if swapping onto RAIDframe devices. 262.El 263.Ss One-time actions to perform or programs to run on boot-up 264.Bl -tag -width net_interfaces 265.It Sy accounting 266.Sq YES 267or 268.Sq NO . 269Enables process accounting with 270.Xr accton 8 . 271Requires 272.Pa /var/account/acct 273to exist. 274.It Sy clear_tmp 275.Sq YES 276or 277.Sq NO . 278Clear /tmp after reboot. 279.It Sy dmesg 280.Sq YES 281or 282.Sq NO . 283Create 284.Pa /var/run/dmesg.boot 285from the output of 286.Xr dmesg 8 . 287Passes 288.Sy dmesg_flags . 289.It Sy lkm 290.Sq YES 291or 292.Sq NO . 293Runs 294.Pa /etc/rc.lkm . 295.It Sy mixerctl 296.Sq YES 297or 298.Sq NO . 299Read 300.Xr mixerctl.conf 5 301for how to set mixer values. 302List in 303.Sy mixerctl_mixers 304the devices whose settings are to be saved at shutdown and 305restored at start-up. 306.It Sy newsyslog 307.Sq YES 308or 309.Sq NO . 310Run 311.Nm newsyslog 312to trim logfiles before syslogd starts. 313Intended for laptop users. 314Passes 315.Sy newsyslog_flags . 316.It Sy savecore 317.Sq YES 318or 319.Sq NO . 320Runs the 321.Xr savecore 8 322utility. 323Passes 324.Sy savecore_flags . 325The directory where crash dumps are stored is specified by 326.Sy savecore_dir . 327The default setting is 328.Dq Pa /var/crash . 329.It Sy tpctl 330.Sq YES 331or 332.Sq NO . 333Run 334.Xr tpctl 8 335to calibrate touch panel device. 336Passes 337.Sy tpctl_flags . 338.It Sy update_motd 339.Sq YES 340or 341.Sq NO . 342Updates the 343.Nx 344version string in the 345.Pa /etc/motd 346file to reflect the version of the running kernel. 347See 348.Xr motd 5 . 349.It Sy veriexec 350.Sq YES 351or 352.Sq NO . 353Load Veriexec fingerprints during startup. 354Read 355.Xr veriexecctl 8 356for more information. 357.It Sy virecover 358.Sq YES 359or 360.Sq NO . 361Send notification mail to users if any recoverable files exist in 362.Pa /var/tmp/vi.recover . 363See 364.Fl r 365option in 366.Xr vi 1 367for details. 368.El 369.Ss System security setting 370.Bl -tag -width net_interfaces 371.It Sy securelevel 372A number. 373The system securelevel is set to the specified value early 374in the boot process, before any external logins, or other programs 375that run users job, are started. 376If set to nothing, the default action is taken, as described in 377.Xr init 8 , 378which contains definitive information about the system securelevel. 379Note that setting 380.Sy securelevel 381to 0 in 382.Nm 383will actually result in the system booting with securelevel set to 1, as 384.Xr init 8 385will raise the level when 386.Xr rc 8 387completes. 388.It Sy permit_nonalpha 389Allow passwords to include non-alpha characters, usually to allow 390NIS/YP netgroups. 391.It Sy veriexec_strict 392A number. 393Controls the strict level of Veriexec. 394Level 0 is learning mode, used when building the signatures file. 395It will only output messages but will not enforce anything. 396Level 1 will only prevent access to files with a fingerprint 397mismatch. 398Level 2 will also deny writing to and removing of 399monitored files, as well as enforce access type (as specified in 400the signatures file). 401Level 3 will take a step further and prevent 402access to files that are not monitored. 403.It Sy veriexec_verbose 404A number. 405Controls the verbosity of Veriexec. 406Recommended operation is at level 0, verbose output (mostly used when 407building the signatures file) is at level 1. 408Level 2 is for debugging only and should not be used. 409.El 410.Ss Networking startup 411.Bl -tag -width net_interfaces 412.It Sy altqd 413.Sq YES 414or 415.Sq NO . 416ALTQ configuration/monitoring daemon. 417Passes 418.Sy altqd_flags . 419.It Sy auto_ifconfig 420.Sq YES 421or 422.Sq NO . 423Sets the 424.Sy net_interfaces 425variable (see below) to the output of 426.Xr ifconfig 8 427with the 428.Dq Li -l 429flag and suppresses warnings about interfaces in this list that 430do not have an ifconfig file or variable. 431.It Sy dhclient 432.Sq YES 433or 434.Sq NO . 435Set to 436.Sq YES 437to configure some or all network interfaces using 438the DHCP client. 439If you set 440.Sy dhclient 441to 442.Sq YES , 443you must either have 444.Pa /var 445in 446.Sy critical_filesystems_local , 447as part of 448.Pa / , 449or direct the DHCP client to store the leases file on the root 450file system by modifying the 451.Sy dhclient_flags 452variable. 453You must not provide ifconfig information or ifaliases 454information for any interface that is to be configured using the DHCP client. 455Interface aliases can be set up in the DHCP client configuration 456file if needed - see 457.Xr dhclient.conf 5 458for details. 459.Pp 460Passes 461.Sy dhclient_flags 462to the DHCP client. 463See 464.Xr dhclient 8 465for complete documentation. 466If you wish to configure all broadcast 467network interfaces using the DHCP client, you can leave this blank. 468To configure only specific interfaces, name the interfaces to be configured 469on the command line. 470.Pp 471If you must run the DHCP client before mounting critical file systems, 472then you should specify an alternate location for the DHCP client's lease 473file in the 474.Sy dhclient_flags 475variable - for example, "-lf /tmp/dhclient.leases". 476.It Sy flushroutes 477.Sq YES 478or 479.Sq NO . 480Flushes the route table on networking startup. 481Useful when coming up to multiuser mode after going down to 482single-user mode. 483.It Sy ifaliases_* 484A string. 485List of 486.Sq Em "address netmask" 487pairs to configure additional network addresses for the given 488configured interface 489.Dq * 490(e.g. 491.Sy ifaliases_le0 ) . 492If 493.Em netmask 494is 495.Dq - , 496then use the default netmask for the interface. 497.Pp 498.Sy ifaliases_* 499covers limited cases only and considered unrecommended. 500We recommend using 501.Pa /etc/ifconfig.xxN 502with multiple lines instead. 503.It Sy ifwatchd 504.Sq YES 505or 506.Sq NO . 507Monitor dynamic interfaces and perform actions upon address changes. 508Passes 509.Sy ifwatchd_flags . 510.It Sy ip6mode 511A string. 512An IPv6 node can be a router 513.Pq nodes that forward packet for others 514or a host 515.Pq nodes that do not forward . 516A host can be autoconfigured 517based on the information advertised by adjacent IPv6 routers. 518By setting 519.Sy ip6mode 520to 521.Dq Li router , 522.Dq Li host , 523or 524.Dq Li autohost , 525you can configure your node as a router, 526a non-autoconfigured host, or an autoconfigured host. 527Invalid values will be ignored, and the node will be configured as 528a non-autoconfigured host. 529You may want to check 530.Sy rtsol 531and 532.Sy rtsold 533as well, if you set the variable to 534.Dq Li autohost . 535.It Sy ip6uniquelocal 536.Sq YES 537or 538.Sq NO . 539If 540.Sy ip6mode 541is equal to 542.Dq Li router 543and 544.Sy ip6uniquelocal 545is set to 546.Sq NO 547a reject route will be installed on boot to avoid misconfiguration relating 548to unique-local addresses. 549If set to 550.Sq YES 551the reject route won't be installed. 552.It Sy ipfilter 553.Sq YES 554or 555.Sq NO . 556Runs 557.Xr ipf 8 558to load in packet filter specifications from 559.Pa /etc/ipf.conf 560at network boot time, before any interfaces are configured. 561See 562.Xr ipf.conf 5 . 563.It Sy ipfs 564.Sq YES 565or 566.Sq NO . 567Runs 568.Xr ipfs 8 569to save and restore information for ipnat and ipfilter state tables. 570The information is stored in 571.Pa /var/db/ipf/ipstate.ipf 572and 573.Pa /var/db/ipf/ipnat.ipf . 574Passes 575.Sy ipfs_flags . 576.It Sy ipmon 577.Sq YES 578or 579.Sq NO . 580Runs 581.Xr ipmon 8 582to read 583.Xr ipf 8 584packet log information and log it to a file or the system log. 585Passes 586.Sy ipmon_flags . 587.It Sy ipmon_flags 588A string. 589Specifies arguments to supply to 590.Xr ipmon 8 . 591Defaults to 592.Dq Li -ns . 593A typical example would be 594.Dq Fl nD Pa /var/log/ipflog 595to have 596.Xr ipmon 8 597log directly to a file bypassing 598.Xr syslogd 8 . 599If the 600.Dq -D 601argument is used, remember to modify 602.Pa /etc/newsyslog.conf 603accordingly; for example: 604.Bd -literal 605/var/log/ipflog 640 10 100 * Z /var/run/ipmon.pid 606.Ed 607.It Sy ipnat 608.Sq YES 609or 610.Sq NO . 611Runs 612.Xr ipnat 8 613to load in the IP network address translation (NAT) rules from 614.Pa /etc/ipnat.conf 615at network boot time, before any interfaces are configured. 616See 617.Xr ipnat.conf 5 . 618.It Sy ipsec 619.Sq YES 620or 621.Sq NO . 622Runs 623.Xr setkey 8 624to load in IPsec manual keys and policies from 625.Pa /etc/ipsec.conf 626at network boot time, before any interfaces are configured. 627.It Sy net_interfaces 628A string. 629The list of network interfaces to be configured at boot time. 630For each interface "xxN", the system first looks for ifconfig 631parameters in 632.Pa /etc/ifconfig.xxN 633and then in the variable 634.Sy ifconfig_xxN . 635The contents of the file or the variable are handed to ifconfig 636after the interface name. 637If 638.Sy auto_ifconfig 639is set to "NO" and neither the file nor the variable is found, 640a warning is printed. 641Refer to 642.Xr ifconfig.if 5 643for more details on 644.Pa /etc/ifconfig.xxN . 645.It Sy ntpdate 646.Sq YES 647or 648.Sq NO . 649Runs 650.Xr ntpdate 8 651to set the system time from one of the hosts in 652.Sy ntpdate_hosts . 653If 654.Sy ntpdate_hosts 655is empty, it will attempt to find a list of hosts in 656.Pa /etc/ntp.conf . 657Passes 658.Sy ntpdate_flags . 659.It Sy ppp_peers 660A string. 661If 662.Sy ppp_peers 663is not empty, then 664.Pa /etc/rc.d/ppp 665will check each word in 666.Sy ppp_peers 667for a corresponding ppp configuration file in 668.Pa /etc/ppp/peers 669and will call 670.Xr pppd 8 671with the 672.Dq call Sy peer 673option. 674.It Sy racoon 675.Sq YES 676or 677.Sq NO . 678Runs 679.Xr racoon 8 , 680the IKE (ISAKMP/Oakley) key management daemon. 681.It Sy rtsol 682.Sq YES 683or 684.Sq NO . 685Run 686.Xr rtsol 8 , 687router solicitation command for IPv6 hosts. 688On nomadic hosts like notebook computers, you may want to enable 689.Sy rtsold 690as well. 691Passes 692.Sy rtsol_flags . 693This is only for autoconfigured IPv6 hosts, so set 694.Sy ip6mode 695to 696.Dq Li autohost 697if you use it. 698.El 699.Ss Daemons required by other daemons 700.Bl -tag -width net_interfaces 701.It Sy inetd 702.Sq YES 703or 704.Sq NO . 705Runs the 706.Xr inetd 8 707daemon to start network server processes (as listed in 708.Pa /etc/inetd.conf ) 709as necessary. 710Passes 711.Sy inetd_flags . 712The 713.Dq Li -l 714flag turns on libwrap connection logging. 715.It Sy rpcbind 716.Sq YES 717or 718.Sq NO . 719The 720.Xr rpcbind 8 721daemon is required for any 722.Xr rpc 3 723services. 724These include NFS, 725.Tn NIS , 726.Xr bootparamd 8 , 727.Xr rstatd 8 , 728.Xr rusersd 8 , 729and 730.Xr rwalld 8 . 731Passes 732.Sy rpcbind_flags . 733.El 734.Ss Commonly used daemons 735.Bl -tag -width net_interfaces 736.It Sy cron 737.Sq YES 738or 739.Sq NO . 740Run 741.Xr cron 8 . 742.It Sy lpd 743.Sq YES 744or 745.Sq NO . 746Runs 747.Xr lpd 8 748and passes 749.Sy lpd_flags . 750The 751.Dq Li -l 752flag will turn on extra logging. 753.It Sy named 754.Sq YES 755or 756.Sq NO . 757Runs 758.Xr named 8 759and passes 760.Sy named_flags . 761.It Sy named_chrootdir 762A string. 763If non-blank and 764.Sy named 765is 766.Sq YES , 767run 768.Xr named 8 769as the unprivileged user and group 770.Sq named , 771.Xr chroot 2 Ns ed 772to 773.Sy named_chrootdir . 774.Sy named_chrootdir Ns Pa /var/run/log 775will be added to the list of log sockets that 776.Xr syslogd 8 777listens to. 778.It Sy ntpd 779.Sq YES 780or 781.Sq NO . 782Runs 783.Xr ntpd 8 784and passes 785.Sy ntpd_flags . 786.It Sy ntpd_chrootdir 787A string. 788If non-blank and 789.Sy ntpd 790is 791.Sq YES , 792run 793.Xr ntpd 8 794as the unprivileged user and group 795.Sq ntpd , 796.Xr chroot 2 Ns ed 797to 798.Sy ntpd_chrootdir . 799.Sy ntpd_chrootdir Ns Pa /var/run/log 800will be added to the list of log sockets that 801.Xr syslogd 8 802listens to. 803This option requires that the kernel has 804.Dl pseudo-device clockctl 805compiled in, and that 806.Pa /dev/clockctl 807is present. 808.It Sy postfix 809.Sq YES 810or 811.Sq NO . 812Starts 813.Xr postfix 1 814mail system. 815.It Sy sendmail 816.Sq YES 817or 818.Sq NO . 819Runs 820.Xr sendmail 8 821and passes 822.Sy sendmail_flags . 823The default setting for this calls on a function to determine if 824sendmail is actually needed, which means the 825.Xr rc.d 8 826script that starts sendmail will check to see if 827.Xr sendmail 8 828needs to run in order to facilitate local mail delivery. 829See 830.Pa /etc/defaults/rc.conf , 831.Pa /etc/mailer.conf , 832and 833.Xr mailer.conf 5 834for more details. 835.It Sy sendmail_suidroot 836.Sq YES 837or 838.Sq NO . 839Asserts that sendmail is being used as a setuid root binary and adjusts 840some precmd checks accordingly. 841If this is set to 842.Sq YES , 843you can remove the submit.cf file, and then turn off the 844.Sy smmsp 845process. 846Note that setting this to 847.Sq YES 848does not change or remove anything; you must still change the mode of 849the sendmail binary and remove the submit.cf file manually. 850.It Sy smmsp 851.Sq YES 852or 853.Sq NO . 854Runs 855.Xr sendmail 8 856as a client queue runner and passes 857.Sy smmsp_flags . 858Note that the smmsp process is not a full-featured SMTP daemon. 859Its main purpose is to flush locally collected mail from the queue, but 860it can also be used as a non-privileged 861.Dq nullclient 862that forwards to a more functional SMTP gateway. 863.It Sy sshd 864.Sq YES 865or 866.Sq NO . 867Runs 868.Xr sshd 8 869and passes 870.Sy sshd_flags . 871.It Sy syslogd 872.Sq YES 873or 874.Sq NO . 875Runs 876.Xr syslogd 8 877and passes 878.Sy syslogd_flags . 879.It Sy timed 880.Sq YES 881or 882.Sq NO . 883Runs 884.Xr timed 8 885and passes 886.Sy timed_flags . 887The 888.Dq Li -M 889option allows 890.Xr timed 8 891to be a master time source as well as a slave. 892If you are also running 893.Xr ntpd 8 , 894only one machine running both should have the 895.Dq Li -M 896flag given to 897.Xr timed 8 . 898.El 899.Ss Routing daemons 900.Bl -tag -width net_interfaces 901.It Sy mrouted 902.Sq YES 903or 904.Sq NO . 905Runs 906.Xr mrouted 8 , 907the DVMRP multicast routing protocol daemon. 908Passes 909.Sy mrouted_flags . 910.It Sy route6d 911.Sq YES 912or 913.Sq NO . 914Runs 915.Xr route6d 8 , 916the RIPng routing protocol daemon for IPv6. 917Passes 918.Sy route6d_flags . 919.It Sy routed 920.Sq YES 921or 922.Sq NO . 923Runs 924.Xr routed 8 , 925the RIP routing protocol daemon. 926Passes 927.Sy routed_flags . 928.\" This should be 929.\" .Sq NO 930.\" if 931.\" .Sy gated 932.\" is 933.\" .Sq YES . 934.It Sy rtsold 935.Sq YES 936or 937.Sq NO . 938Runs 939.Xr rtsold 8 , 940the IPv6 router solicitation daemon. 941.Xr rtsold 8 942periodically transmits router solicitation packets 943to find IPv6 routers on the network. 944This configuration is mainly for nomadic hosts like notebook computers. 945Stationary hosts should work fine with just 946.Sy rtsol . 947Passes 948.Sy rtsold_flags . 949This is only for autoconfigured IPv6 hosts, so set 950.Sy ip6mode 951to 952.Dq Li autohost 953if you use it. 954.El 955.Ss Daemons used to boot other hosts over a network 956.Bl -tag -width net_interfaces 957.It Sy bootparamd 958.Sq YES 959or 960.Sq NO . 961Runs 962.Xr bootparamd 8 , 963the boot parameter server, with 964.Sy bootparamd_flags 965as options. 966Used to boot 967.Nx 968and 969.Tn "SunOS 4.x" 970systems. 971.It Sy dhcpd 972.Sq YES 973or 974.Sq NO . 975Runs 976.Xr dhcpd 8 , 977the Dynamic Host Configuration Protocol (DHCP) daemon, 978for assigning IP addresses to hosts and passing boot information. 979Passes 980.Sy dhcpd_flags . 981.It Sy dhcrelay 982.Sq YES 983or 984.Sq NO . 985Runs 986.Xr dhcrelay 8 . 987Passes 988.Sy dhcrelay_flags . 989.It Sy mopd 990.Sq YES 991or 992.Sq NO . 993Runs 994.Xr mopd 8 , 995the 996.Tn DEC 997.Tn MOP 998protocol daemon; used for booting 999.Tn VAX 1000and other 1001.Tn DEC 1002machines. 1003Passes 1004.Sy mopd_flags . 1005.It Sy ndbootd 1006.Sq YES 1007or 1008.Sq NO . 1009Runs 1010.Xr ndbootd 8 , 1011the Sun Network Disk (ND) Protocol server. 1012Passes 1013.Sy ndbootd_flags . 1014.It Sy rarpd 1015.Sq YES 1016or 1017.Sq NO . 1018Runs 1019.Xr rarpd 8 , 1020the reverse ARP daemon, often used to boot 1021.Nx 1022and Sun workstations. 1023Passes 1024.Sy rarpd_flags . 1025.It Sy rbootd 1026.Sq YES 1027or 1028.Sq NO . 1029Runs 1030.Xr rbootd 8 , 1031the 1032.Tn HP 1033boot protocol daemon; used for booting 1034.Tn HP 1035workstations. 1036Passes 1037.Sy rbootd_flags . 1038.It Sy rtadvd 1039.Sq YES 1040or 1041.Sq NO . 1042Runs 1043.Xr rtadvd 8 , 1044the IPv6 router advertisement daemon, which is used to advertise 1045information about the subnet to IPv6 end hosts. 1046Passes 1047.Sy rtadvd_flags . 1048This is only for IPv6 routers, so set 1049.Sy ip6mode 1050to 1051.Dq Li router 1052if you use it. 1053.El 1054.Ss X Window System daemons 1055.Bl -tag -width net_interfaces 1056.It Sy xdm 1057.Sq YES 1058or 1059.Sq NO . 1060Runs the 1061.Xr xdm 1 1062X display manager. 1063These X daemons are available only with the optional X distribution of 1064.Nx . 1065.It Sy xfs 1066.Sq YES 1067or 1068.Sq NO . 1069Runs the 1070.Xr xfs 1 1071X11 font server, which supplies local X font files to X terminals. 1072.El 1073.Ss NIS (YP) daemons 1074.Bl -tag -width net_interfaces 1075.It Sy ypbind 1076.Sq YES 1077or 1078.Sq NO . 1079Runs 1080.Xr ypbind 8 , 1081which lets 1082.Tn NIS 1083(YP) clients use information from a 1084.Tn NIS 1085server. 1086Passes 1087.Sy ypbind_flags . 1088.It Sy yppasswdd 1089.Sq YES 1090or 1091.Sq NO . 1092Runs 1093.Xr yppasswdd 8 , 1094which allows remote 1095.Tn NIS 1096users to update password on master server. 1097Passes 1098.Sy yppasswdd_flags . 1099.It Sy ypserv 1100.Sq YES 1101or 1102.Sq NO . 1103Runs 1104.Xr ypserv 8 , 1105the 1106.Tn NIS 1107(YP) server for distributing information from certain files in 1108.Pa /etc . 1109Passes 1110.Sy ypserv_flags . 1111The 1112.Dq Li -d 1113flag causes it to use DNS for lookups in 1114.Pa /etc/hosts 1115that fail. 1116.El 1117.Ss NFS daemons and parameters 1118.Bl -tag -width net_interfaces 1119.It Sy amd 1120.Sq YES 1121or 1122.Sq NO . 1123Runs 1124.Xr amd 8 , 1125the automounter daemon, which automatically mounts NFS file systems 1126whenever a file or directory within that file system is accessed. 1127Passes 1128.Sy amd_flags . 1129.It Sy amd_dir 1130A string. 1131The 1132.Xr amd 8 1133mount directory. 1134Used only if 1135.Sy amd 1136is set to 1137.Sq YES . 1138.It Sy lockd 1139.Sq YES 1140or 1141.Sq NO . 1142Runs 1143.Xr rpc.lockd 8 1144if 1145.Sy nfs_server 1146and/or 1147.Sy nfs_client 1148are set to 1149.Sq YES . 1150Passes 1151.Sy lockd_flags . 1152.It Sy mountd 1153.Sq YES 1154or 1155.Sq NO . 1156Runs 1157.Xr mountd 8 1158and passes 1159.Sy mountd_flags . 1160.It Sy nfs_client 1161.Sq YES 1162or 1163.Sq NO . 1164The number of local NFS asynchronous I/O server is now controlled via 1165.Xr sysctl 8 . 1166.It Sy nfs_server 1167.Sq YES 1168or 1169.Sq NO . 1170Sets up a host to be a NFS server by running 1171.Xr nfsd 8 1172and passing 1173.Sy nfsd_flags . 1174.It Sy statd 1175.Sq YES 1176or 1177.Sq NO . 1178Runs 1179.Xr rpc.statd 8 , 1180a status monitoring daemon used when 1181.Xr rpc.lockd 8 1182is running, if 1183.Sy nfs_server 1184and/or 1185.Sy nfs_client 1186are set to 1187.Sq YES . 1188Passes 1189.Sy statd_flags . 1190.El 1191.Ss Other daemons 1192.Bl -tag -width net_interfaces 1193.It Sy isdnd 1194.Sq YES 1195or 1196.Sq NO . 1197Runs 1198.Xr isdnd 8 , 1199the isdn4bsd ISDN connection management daemon. 1200Passes 1201.Sy isdnd_flags . 1202.It Sy isdn_autoupdown 1203.Sq YES 1204or 1205.Sq NO . 1206Set all configured ISDN interfaces to 1207.Dq up . 1208If 1209.Sy isdn_interfaces 1210is not blank, only the listed interfaces will be modified. 1211Used only if 1212.Sy isdnd 1213is set to 1214.Sq YES . 1215.It Sy kdc 1216.Sq YES 1217or 1218.Sq NO . 1219Runs the 1220.Xr kdc 8 1221Kerberos v4 and v5 server. 1222This should be run on Kerberos master and slave servers. 1223.It Sy rwhod 1224.Sq YES 1225or 1226.Sq NO . 1227Runs 1228.Xr rwhod 8 1229to support the 1230.Xr rwho 1 1231and 1232.Xr ruptime 1 1233commands. 1234.El 1235.Ss Hardware daemons 1236.Bl -tag -width net_interfaces 1237.It Sy apmd 1238.Sq YES 1239or 1240.Sq NO . 1241Runs 1242.Xr apmd 8 1243and passes 1244.Sy apmd_flags . 1245.It Sy moused 1246.Sq YES 1247or 1248.Sq NO . 1249Runs 1250.Xr moused 8 , 1251to pass serial mouse data to the wscons mouse mux. 1252Passes 1253.Sy moused_flags . 1254.It Sy poffd 1255.Sq YES 1256or 1257.Sq NO . 1258Runs 1259.Xr poffd 8 1260x68k shutdown daemon 1261(only for 1262.Nx Ns /x68k ) . 1263Passes 1264.Sy poffd_flags . 1265.It Sy screenblank 1266.Sq YES 1267or 1268.Sq NO . 1269Runs 1270.Xr screenblank 1 1271and passes 1272.Sy screenblank_flags . 1273.It Sy wscons 1274.Sq YES 1275or 1276.Sq NO . 1277Configures the 1278.Xr wscons 4 1279console driver, from the configuration file 1280.Pa /etc/wscons.conf . 1281.It Sy wsmoused 1282.Sq YES 1283or 1284.Sq NO . 1285Runs 1286.Xr wsmoused 8 , 1287to provide copy and paste text support in wscons displays. 1288Passes 1289.Sy wsmoused_flags . 1290.El 1291.Sh FILES 1292.Bl -tag -width /etc/defaults/rc.conf -compact 1293.It Pa /etc/rc.conf 1294The file 1295.Nm 1296resides in 1297.Pa /etc . 1298.It Pa /etc/defaults/rc.conf 1299Default settings for 1300.Nm , 1301sourced by 1302.Nm 1303before the end-user configuration section. 1304.It Pa /etc/rc.conf.d/ Ns Ar foo 1305.Ar foo Ns No -specific 1306.Nm 1307overrides. 1308.El 1309.Sh SEE ALSO 1310.Xr boot 8 , 1311.Xr rc 8 , 1312.Xr rc.d 8 , 1313.Xr rc.subr 8 , 1314.Xr rcorder 8 1315.Sh HISTORY 1316The 1317.Nm 1318file appeared in 1319.Nx 1.3 . 1320