1.\" Copyright (c) 1995 2.\" Jordan K. Hubbard 3.\" 4.\" Redistribution and use in source and binary forms, with or without 5.\" modification, are permitted provided that the following conditions 6.\" are met: 7.\" 1. Redistributions of source code must retain the above copyright 8.\" notice, this list of conditions and the following disclaimer. 9.\" 2. Redistributions in binary form must reproduce the above copyright 10.\" notice, this list of conditions and the following disclaimer in the 11.\" documentation and/or other materials provided with the distribution. 12.\" 13.\" THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND 14.\" ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 15.\" IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 16.\" ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR BE LIABLE 17.\" FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 18.\" DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 19.\" OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 20.\" HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 21.\" LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 22.\" OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 23.\" SUCH DAMAGE. 24.\" 25.\" $FreeBSD: src/share/man/man5/rc.conf.5,v 1.197 2003/07/28 13:56:00 mbr Exp $ 26.\" 27.Dd April 29, 2020 28.Dt RC.CONF 5 29.Os 30.Sh NAME 31.Nm rc.conf 32.Nd system configuration information 33.Sh DESCRIPTION 34The file 35.Nm 36contains descriptive information about the local host name, configuration 37details for any potential network interfaces and which services should be 38started up at system initial boot time. 39In new installations, the 40.Nm 41file is generally initialized by the installer. 42.Pp 43The purpose of 44.Nm 45is not to run commands or perform system startup actions directly. 46Instead, it is included by the various generic startup scripts in 47.Pa /etc 48which conditionalize their 49internal actions according to the settings found there. 50.Pp 51The 52.Pa /etc/defaults/rc.conf 53file specifies the default settings for all the available options, 54the 55.Pa /etc/rc.conf 56file specifies override settings. 57Options need only be specified in 58.Pa /etc/rc.conf 59when the system administrator wishes to override the defaults. 60The file 61.Pa /etc/rc.conf.local 62is used to override settings in 63.Pa /etc/rc.conf 64for historical reasons. 65In addition to 66.Pa /etc/rc.conf.local 67you can also place smaller configuration files for each 68.Xr rc 8 69script in the 70.Pa /etc/rc.conf.d 71directory, which will be included by the 72.Va load_rc_config 73function. 74For jail configurations you could use the file 75.Pa /etc/rc.conf.d/jail 76to store jail specific configuration options. 77Also see the 78.Va rc_conf_files 79variable below. 80.Pp 81The following list provides a name and short description for each 82variable that can be set in the 83.Nm 84file. 85To set a variable of 86.Vt bool 87type, specify either 88.Dq Li YES , 89.Dq Li TRUE , 90.Dq Li ON , 91or 92.Dq Li 1 . 93To unset, specify 94.Dq Li NO , 95.Dq Li FALSE , 96.Dq Li OFF , 97or 98.Dq Li 0 . 99These values are case insensitive. 100The 101.Va _enable 102postfix in the name of a variable for starting a service can be 103omitted (as in 104.Nx ) . 105.Bl -tag -width indent-two 106.It Va rc_debug 107.Pq Vt bool 108If set to 109.Dq Li YES , 110enable output of debug messages from rc scripts. 111This variable can be helpful in diagnosing mistakes when 112editing or integrating new scripts. 113Beware that this produces copious output to the terminal and 114.Xr syslog 3 . 115.It Va rc_info 116.Pq Vt bool 117If set to 118.Dq Li NO , 119disable informational messages from the rc scripts. 120Informational messages are displayed when 121a condition that is not serious enough to warrant a warning or an error occurs. 122.It Va rc_startmsgs 123.Pq Vt bool 124If set to 125.Dq Li YES , 126show 127.Dq Starting foo: 128when faststart is used (e.g., at boot time). 129.It Va swapfile 130.Pq Vt str 131If set to 132.Dq Li NO , 133no swapfile is installed, otherwise the value is used as the full 134pathname to a file to use for additional swap space. 135The 136.Xr vn 4 137driver is needed for a swapfile and will be loaded if it is not 138already compiled into the kernel or loaded via 139.Xr loader.conf 5 . 140.It Ao Ar module Ac Ns Ar _load 141.Pq Vt bool 142If set to 143.Dq YES , 144that kernel module will be loaded. 145If no 146.Ao Ar module Ac Ns Ar _name 147is defined (see below), the 148module's name is taken to be 149.Aq Ar module . 150.It Ao Ar module Ac Ns Ar _name 151.Pq Vt str 152Defines the name of the module. 153.It Va devd_enable 154.Pq Vt bool 155Run 156.Xr devd 8 157to handle device added, removed or unknown events from the kernel. 158.It Va devd_flags 159.Pq Vt str 160If 161.Va devd_enable 162is set to 163.Dq Li YES , 164these are the flags to pass to the 165.Xr devd 8 166daemon. 167.It Va powerd_enable 168.Pq Vt bool 169Set to 170.Dq Li NO 171by default. 172Setting this to 173.Dq Li YES 174enables 175.Xr powerd 8 , 176a CPU speed control daemon. 177.It Va powerd_flags 178.Pq Vt str 179Empty by default. 180Additional flags passed to the 181.Xr powerd 8 182program. 183.Pp 184If you are running a serial port at 115200 baud we recommend setting 185the flags to "-l 1500" as lower frequencies will cause characters to 186drop. 187.It Va sensorsd_enable 188.Pq Vt bool 189Set to 190.Dq Li NO 191by default. 192Setting this to 193.Dq Li YES 194enables 195.Xr sensorsd 8 , 196a sensors monitoring and logging daemon. 197.It Va sensorsd_flags 198.Pq Vt str 199Empty by default. 200Additional flags passed to the 201.Xr sensorsd 8 202program. 203.It Va sysvipcd_enable 204.Pq Vt bool 205Set to 206.Dq Li NO 207by default. 208Setting this to 209.Dq Li YES 210enables 211.Xr sysvipcd 8 , 212a daemon needed for the userspace implementation of the XSI Interprocess 213Communication functions. 214.It Va sysvipcd_flags 215.Pq Vt str 216Empty by default. 217Additional flags passed to the 218.Xr sysvipcd 8 219program. 220.It Va hotplugd_enable 221.Pq Vt bool 222Set to 223.Dq Li NO 224by default. 225Setting this to 226.Dq Li YES 227enables 228.Xr hotplugd 8 , 229a devices hot plugging monitoring daemon. 230.It Va hotplugd_flags 231.Pq Vt str 232Empty by default. 233Additional flags passed to the 234.Xr hotplugd 8 235program. 236.It Va pccard_ifconfig 237.Pq Vt str 238List of arguments to be passed to 239.Xr ifconfig 8 240at boot time or on insertion of the card (e.g.\& 241.Dq Cm inet Li 192.168.1.1 Cm netmask Li 255.255.255.0 242for a fixed address or 243.Dq Li DHCP 244for a DHCP client). 245.It Va pccard_ether_delay 246.Pq Vt str 247Set the delay before starting the DHCP client (configured with 248.Va dhcp_client ) 249in the 250.Pa /etc/pccard_ether 251script. 252This defaults to 253.Dq Li 5 254seconds. 255.It Va removable_interfaces 256.Pq Vt str 257List of removable network interfaces to be supported by 258.Pa /etc/pccard_ether . 259.It Va local_startup 260.Pq Vt str 261List of directories to search for startup script files. 262.It Va script_name_sep 263.Pq Vt str 264The field separator to use for breaking down the list of startup script files 265into individual filenames. 266The default is a space. 267It is not necessary to change this unless there are startup scripts with names 268containing spaces. 269.It Va hostname 270.Pq Vt str 271The fully qualified domain name (FQDN) of this host on the network. 272This should almost certainly be set to something meaningful, even if 273there is no network connection. 274If DHCP is used to set the hostname, 275this variable should be set to an empty string. 276.It Va ipv6_enable 277.Pq Vt bool 278Enable support for IPv6 networking. 279Note that this requires that the kernel have been compiled with 280.Cd "options INET6" . 281.It Va nisdomainname 282.Pq Vt str 283The NIS domain name of this host, or 284.Dq Li NO 285if NIS is not used. 286.It Va dhcp_client 287.Pq Vt str 288Set the rc script that is called to start the DHCP client. 289This can be set to 290.Dq Li dhclient 291(default) or 292.Dq Li dhcpcd . 293.It Va dhclient_program 294.Pq Vt str 295Path to the 296.Xr dhclient 8 297program (default 298.Pa /sbin/dhclient ) . 299.It Va dhclient_flags 300.Pq Vt str 301Additional flags to pass to the 302.Xr dhclient 8 303program. 304.It Va dhcpcd_enable 305.Pq Vt bool 306Set to 307.Dq Li YES 308to run 309.Xr dhcpcd 8 310in master mode (i.e., configure all available Ethernet interfaces) at startup. 311.It Va dhcpcd_program 312.Pq Vt str 313Path to the 314.Xr dhcpcd 8 315program (default 316.Pa /sbin/dhcpcd ) . 317.It Va dhcpcd_flags 318.Pq Vt str 319Additional flags to pass to the 320.Xr dhcpcd 8 321program. 322The default value is 323.Fl b , 324i.e., tell 325.Xr dhcpcd 8 326to go to background immediately. 327.It Va dhcpcd_chrootdir 328.Pq Vt str 329If non-blank and 330.Va dhcpcd_enable 331is true, run 332.Xr dhcpcd 8 333as the unprivileged user and group 334.Sq _dhcp , 335.Xr chroot 2 Ns ed 336to 337.Va dhcpcd_chrootdir . 338.Li \&${dhcpcd_chrootdir} Ns Pa /var/run/log 339will be added to the list of log sockets that 340.Xr syslogd 8 341listens to. 342.It Va pf_enable 343.Pq Vt bool 344Set to 345.Dq Li YES 346to load 347.Xr pf 4 348at startup. 349If the kernel was not built with 350.Cd "device pf" , 351the 352.Pa pf.ko 353kernel module will be loaded. 354See also 355.Va firewall_enable . 356.It Va pf_rules 357.Pq Vt str 358Path to the 359.Xr pf 4 360ruleset definition file. 361.It Va pf_program 362.Pq Vt str 363Path to 364.Xr pfctl 8 . 365.It Va pf_flags 366.Pq Vt str 367If 368.Va pf_enable 369is set to 370.Dq Li YES , 371these are the flags to pass to 372.Xr pfctl 8 373when loading the ruleset. 374.It Va pflog_enable 375.Pq Vt bool 376Set this to 377.Dq Li YES 378to enable 379.Xr pflogd 8 380which logs packets from 381.Xr pf 4 . 382.It Va pflog_logfile 383.Pq Vt str 384If 385.Va pflog_enable 386is set to 387.Dq Li YES 388this specifies the path of the log file. 389.It Va pflog_program 390.Pq Vt str 391Path to 392.Xr pflogd 8 . 393.It Va pflog_flags 394.Pq Vt str 395If 396.Va pflog_enable 397is set to 398.Dq Li YES , 399these are the flags to pass to 400.Xr pflogd 8 . 401.It Va firewall_enable 402.Pq Vt bool 403Set to 404.Dq Li YES 405to load firewall rules at startup. 406If the kernel was not built with 407.Cd "options IPFIREWALL" , 408the 409.Pa ipfw.ko 410kernel module will be loaded. 411See also 412.Va pf_enable . 413.It Va ipv6_firewall_enable 414.Pq Vt bool 415The IPv6 equivalent of 416.Va firewall_enable . 417Set to 418.Dq Li YES 419to load IPv6 firewall rules at startup. 420If the kernel was not built with 421.Cd "options IPV6FIREWALL" , 422the 423.Pa ip6fw.ko 424kernel module will be loaded. 425.It Va firewall_script 426.Pq Vt str 427The full path to the firewall script to run 428(default 429.Pa /etc/rc.firewall ) . 430.It Va ipv6_firewall_script 431.Pq Vt str 432The IPv6 equivalent of 433.Va firewall_script . 434.It Va firewall_type 435.Pq Vt str 436Names the firewall type from the selection in 437.Pa /etc/rc.firewall , 438or the file which contains the local firewall ruleset. 439Valid selections from 440.Pa /etc/rc.firewall 441are: 442.Pp 443.Bl -tag -width ".Li simple" -compact 444.It Li open 445unrestricted IP access 446.It Li closed 447all IP services disabled, except via 448.Dq Li lo0 449.It Li client 450basic protection for a workstation on a LAN 451.It Li simple 452alias for 453.Li client . 454.El 455.Pp 456If a filename is specified, the full path must be given. 457.It Va firewall_trusted_nets 458.Pq Vt str 459List of trusted networks (if 460.Va firewall_type 461is set to 462.Li client ) . 463.It Va firewall_trusted_interfaces 464.Pq Vt str 465List of trusted network interfaces (if 466.Va firewall_type 467is set to 468.Li client ) . 469.It Va firewall_allowed_icmp_types 470.Pq Vt str 471List of allowed ICMP types (if 472.Va firewall_type 473is set to 474.Li client ) . 475.It Va firewall_open_tcp_ports 476.Pq Vt str 477List of TCP ports to open (if 478.Va firewall_type 479is set to 480.Li client ) . 481.It Va firewall_open_udp_ports 482.Pq Vt str 483List of UDP ports to open (if 484.Va firewall_type 485is set to 486.Li client ) . 487.It Va ipv6_firewall_type 488.Pq Vt str 489The IPv6 equivalent of 490.Va firewall_type . 491.It Va firewall_quiet 492.Pq Vt bool 493Set to 494.Dq Li YES 495to disable the display of firewall rules on the console during boot. 496.It Va ipv6_firewall_quiet 497.Pq Vt bool 498The IPv6 equivalent of 499.Va firewall_quiet . 500.It Va firewall_logging 501.Pq Vt bool 502Set to 503.Dq Li YES 504to enable firewall event logging. 505This is equivalent to the 506.Dv IPFIREWALL_VERBOSE 507kernel option. 508.It Va ipv6_firewall_logging 509.Pq Vt bool 510The IPv6 equivalent of 511.Va firewall_logging . 512.It Va firewall_flags 513.Pq Vt str 514Flags passed to 515.Xr ipfw 8 516if 517.Va firewall_type 518specifies a filename. 519.It Va ipv6_firewall_flags 520.Pq Vt str 521The IPv6 equivalent of 522.Va firewall_flags . 523.It Va ipfw3_enable 524.Pq Vt bool 525Set to 526.Dq Li YES 527to enable 528.Xr ipfw3 8 . 529.It Va ipfw3_program 530.Pq Vt str 531Path to 532.Xr ipfw3 8 . 533.It Va ipfw3_script 534.Pq Vt str 535The full path to the shell script to run to set up the ipfw3 536firewall rules (default 537.Pa /etc/ipfw3.rules ) . 538.It Va ipfw3_modules 539.Pq Vt str 540List of ipfw3 modules to be loaded before executing the above 541.Va ipfw3_script . 542(default 543.Dq Li ipfw3 ipfw3_basic ) . 544.It Va natd_program 545.Pq Vt str 546Path to 547.Xr natd 8 . 548.It Va natd_enable 549.Pq Vt bool 550Set to 551.Dq Li YES 552to enable 553.Xr natd 8 . 554.Va firewall_enable 555must also be set to 556.Dq Li YES , 557and 558.Xr divert 4 559sockets must be enabled in the kernel. 560.It Va natd_interface 561.Pq Vt str 562This is the name of the public interface on which 563.Xr natd 8 564should run. 565The interface may be given as an interface name or as an IP address. 566.It Va natd_flags 567.Pq Vt str 568Additional 569.Xr natd 8 570flags should be placed here. 571The 572.Fl n 573or 574.Fl a 575flag is automatically added with the above 576.Va natd_interface 577as an argument. 578.It Va tcp_extensions 579.Pq Vt bool 580Set to 581.Dq Li YES 582by default. 583Setting this to 584.Dq Li NO 585disables certain TCP options as described by 586.Rs 587.%T "RFC 1323" 588.Re 589Setting this to 590.Dq Li NO 591might help remedy such problems with connections as randomly hanging 592or other weird behavior. 593Some network devices are known to be broken with respect to these options. 594.It Va log_in_vain 595.Pq Vt int 596Set to 0 by default. 597The 598.Xr sysctl 8 599variables, 600.Va net.inet.tcp.log_in_vain 601and 602.Va net.inet.udp.log_in_vain , 603as described in 604.Xr tcp 4 605and 606.Xr udp 4 , 607are set to the given value. 608.It Va tcp_keepalive 609.Pq Vt bool 610Set to 611.Dq Li YES 612by default. 613Setting to 614.Dq Li NO 615will disable probing idle TCP connections to verify that the 616peer is still up and reachable. 617.It Va tcp_drop_synfin 618.Pq Vt bool 619Set to 620.Dq Li NO 621by default. 622Setting to 623.Dq Li YES 624will cause the kernel to ignore TCP frames that have both 625the SYN and FIN flags set. 626This prevents OS fingerprinting, but may break some legitimate applications. 627This option is only available if the kernel was built with the 628.Dv TCP_DROP_SYNFIN 629option. 630.It Va icmp_drop_redirect 631.Pq Vt bool 632Set to 633.Dq Li NO 634by default. 635Setting to 636.Dq Li YES 637will cause the kernel to ignore ICMP REDIRECT packets. 638Refer to 639.Xr icmp 4 640for more information. 641.It Va icmp_log_redirect 642.Pq Vt bool 643Set to 644.Dq Li NO 645by default. 646Setting to 647.Dq Li YES 648will cause the kernel to log ICMP REDIRECT packets. 649Note that 650the log messages are not rate-limited, so this option should only be used 651for troubleshooting networks. 652Refer to 653.Xr icmp 4 654for more information. 655.It Va icmp_bmcastecho 656.Pq Vt bool 657Set to 658.Dq Li YES 659to respond to broadcast or multicast ICMP ping packets. 660Refer to 661.Xr icmp 4 662for more information. 663.It Va ip_portrange_first 664.Pq Vt int 665If not set to 666.Dq Li NO , 667this is the first port in the default portrange. 668Refer to 669.Xr ip 4 670for more information. 671.It Va ip_portrange_last 672.Pq Vt int 673If not set to 674.Dq Li NO , 675this is the last port in the default portrange. 676Refer to 677.Xr ip 4 678for more information. 679.\" 680.It Va ifconfig_ Ns Aq Ar interface 681.Pq Vt str 682Configuration for 683.Dq interface . 684Typically includes IP address. 685Assuming that the interface in question was 686.Li ed0 , 687it might look something like this: 688.Bd -literal 689ifconfig_ed0="inet 10.0.0.1 netmask 0xffff0000" 690.Ed 691.Pp 692If the 693.Pa /etc/start_if. Ns Aq Ar interface 694file is present, it is read and executed by the 695.Xr sh 1 696interpreter before configuring the interface as specified in the 697.Va ifconfig_ Ns Aq Ar interface 698and 699.Va ifconfig_ Ns Ao Ar interface Ac Ns Va _alias Ns Aq Ar n 700variables. 701.Pp 702It is possible to bring up an interface with DHCP by adding 703.Dq Li DHCP 704to the 705.Va ifconfig_ Ns Aq Ar interface 706variable. 707For instance, to initialize the 708.Li ed0 709device via DHCP, it is possible to use something like: 710.Bd -literal 711ifconfig_ed0="DHCP" 712.Ed 713.Pp 714If a 715.Va vlans_ Ns Aq Ar interface 716variable is set, 717a 718.Xr vlan 4 719interface will be created for each item in the list with the 720.Ar vlandev 721argument set to 722.Ar interface . 723If a vlan interface's name is a number, 724then that number is used as the vlan tag and the new vlan interface is 725named 726.Ar interface . Ns Ar tag . 727Otherwise, 728the vlan tag must be specified via a 729.Va vlan 730parameter in the 731.Va create_args_ Ns Aq Ar interface 732variable. 733.Pp 734To create a vlan device named 735.Li em0.101 736on 737.Li em0 738with the vlan tag 101 and the optional the IPv4 address 192.0.2.1/24: 739.Bd -literal 740vlans_em0="101" 741ifconfig_em0_101="inet 192.0.2.1/24" 742.Ed 743.Pp 744To create a vlan device named 745.Li myvlan 746on 747.Li em0 748with the vlan tag 102: 749.Bd -literal 750vlans_em0="myvlan" 751create_args_myvlan="vlan 102" 752.Ed 753.Pp 754If a 755.Va wlans_ Ns Aq Ar interface 756variable is set, 757an 758.Xr wlan 4 759interface will be created for each item in the list with the 760.Ar wlandev 761argument set to 762.Ar interface . 763Further wlan cloning arguments may be passed to the 764.Xr ifconfig 8 765.Cm create 766command by setting the 767.Va create_args_ Ns Aq Ar interface 768variable. 769One or more 770.Xr wlan 4 771devices must be created for each wireless devices as of 772.Dx 2.5 . 773Debugging flags for 774.Xr wlan 4 775devices as set by 776.Xr wlandebug 8 777may be specified with an 778.Va wlandebug_ Ns Aq Ar interface 779variable. 780The contents of this variable will be passed directly to 781.Xr wlandebug 8 . 782.Pp 783Also, if your interface needs WPA authentication, it is possible to add 784.Dq Li WPA 785to the 786.Va ifconfig_ Ns Aq Ar interface 787variable. 788This will start 789.Xr wpa_supplicant 8 . 790See 791.Xr wpa_supplicant.conf 5 792for configuring authentication information. 793.Pp 794Finally, you can add 795.Xr ifconfig 8 796options in this variable, in addition to the 797.Pa /etc/start_if. Ns Aq Ar interface 798file. 799For instance, to initialize the 800.Li wi0 801device via DHCP, using WPA authentication and 802.11b mode, it is 802possible to use something like: 803.Bd -literal 804wlans_wi0="wlan0" 805ifconfig_wlan0="up DHCP WPA mode 11b" 806.Ed 807.It Va ifconfig_ Ns Ao Ar interface Ac Ns Va _alias Ns Aq Ar n 808.Pq Vt str 809Configuration to establish an additional network address for 810.Dq interface . 811Assuming that the interface in question was 812.Li ed0 , 813it might look something like this: 814.Bd -literal 815ifconfig_ed0_alias0="inet 127.0.0.253 netmask 0xffffffff" 816ifconfig_ed0_alias1="inet 127.0.0.254 netmask 0xffffffff" 817.Ed 818.Pp 819And so on. 820For each 821.Va ifconfig_ Ns Ao Ar interface Ac Ns Va _alias Ns Aq Ar n 822entry that is found, its contents are passed to 823.Xr ifconfig 8 . 824Execution stops at the first unsuccessful access, so if 825something like this is present: 826.Bd -literal 827ifconfig_ed0_alias0="inet 127.0.0.251 netmask 0xffffffff" 828ifconfig_ed0_alias1="inet 127.0.0.252 netmask 0xffffffff" 829ifconfig_ed0_alias2="inet 127.0.0.253 netmask 0xffffffff" 830ifconfig_ed0_alias4="inet 127.0.0.254 netmask 0xffffffff" 831.Ed 832.Pp 833Then note that alias4 would 834.Em not 835be added since the search would stop with the missing alias3 entry. 836.It Va ifconfig_ Ns Ao Ar interface Ac Ns Va _name 837.Pq Vt str 838New name for 839.Dq interface . 840It is possible to rename interface by doing: 841.Bd -literal 842ifconfig_ed0_name="net0" 843ifconfig_net0="inet 10.0.0.1 netmask 0xffff0000" 844.Ed 845.It Va netif_enable 846.Pq Vt bool 847Set to 848.Dq Li YES 849by default. 850Setting to 851.Dq Li NO 852will disable the configuration of network interfaces. 853.It Va network_interfaces 854.Pq Vt str 855The list of network interfaces to configure on this host, 856or 857.Dq Li auto 858to configure all network interfaces 859(default 860.Dq Li auto ) . 861For example, if the only network devices to be configured are the loopback device 862.Pq Li lo0 863and a NIC using the 864.Xr em 4 865driver, this could be set to 866.Dq Li "lo0 em0" . 867An 868.Va ifconfig_ Ns Aq Ar interface 869variable is assumed to exist for each value of 870.Ar interface . 871.It Va ipv6_network_interfaces 872.Pq Vt str 873This is the IPv6 equivalent of 874.Va network_interfaces . 875Instead of setting the ifconfig variables as 876.Va ifconfig_ Ns Aq Ar interface 877they should be set as 878.Va ipv6_ifconfig_ Ns Aq Ar interface . 879Aliases should be set as 880.Va ipv6_ifconfig_ Ns Ao Ar interface Ac Ns Va _alias Ns Aq Ar n . 881Interfaces that do not have a 882.Va ipv6_ifconfig_ Ns Aq Ar interface 883setting will be auto configured by 884.Xr rtsol 8 885if the 886.Va ipv6_gateway_enable 887is set to 888.Dq Li NO . 889Note that the IPv6 networking code does not support the 890.Pa /etc/start_if. Ns Aq Ar interface 891files. 892.It Va ipv6_prefix_ Ns Aq Ar interface 893.Pq Vt str 894Assign prefix to 895.Ar interface , 896prefixlen 64 is used. 897.It Va ipv6_default_interface 898.Pq Vt str 899If not set to 900.Dq Li NO , 901this is the default output interface for scoped addresses. 902Now this works only for IPv6 link local multicast addresses. 903.It Va ip6addrctl_enable 904.Pq Vt bool 905This variable is to enable configuring the default address selection policy table 906.Pq RFC 3484 . 907The default value is 908.Dq Li YES , 909and the policy table to be installed is specified by the 910.Va ip6addrctl_policy 911variable below. 912.It Va ip6addrctl_policy 913.Pq Vt str 914This variable specifies the policy table to be installed, 915and can be one of the following keywords: 916.Dq Li ipv4_prefer , 917.Dq Li ipv6_prefer , 918or 919.Dq Li AUTO 920(default). 921.Pp 922If 923.Dq Li ipv4_prefer 924or 925.Dq Li ipv6_prefer 926is specified, 927.Xr ip6addrctl 8 928installs a pre-defined policy table described in Section 2.1 929.Pq IPv6-preferred 930or 10.3 931.Pq IPv4-preferred 932of RFC 3484. 933.Pp 934If 935.Dq Li AUTO 936is specified, it attempts to read a file 937.Pa /etc/ip6addrctl.conf 938first. 939If this file is found, 940.Xr ip6addrctl 8 941reads and installs it. 942If not found, a policy is automatically set 943according to 944.Va ipv6_enable 945variable; if the variable is set to 946.Dq Li YES 947the IPv6-preferred one is used. 948Otherwise IPv4-preferred. 949.It Va ip6addrctl_verbose 950.Pq Vt bool 951If set to 952.Dq Li YES , 953print the installed policy table after configuring. 954The default value is 955.Dq Li NO . 956.It Va cloned_interfaces 957.Pq Vt str 958Set to the list of clonable network interfaces to create on this host. 959Entries in 960.Va cloned_interfaces 961are automatically appended to 962.Va network_interfaces 963for configuration. 964.It Va gif_interfaces 965.Pq Vt str 966Set to the list of 967.Xr gif 4 968tunnel interfaces to configure on this host. 969A 970.Va gifconfig_ Ns Aq Ar interface 971variable is assumed to exist for each value of 972.Ar interface . 973The value of this variable is used to configure the link layer of the 974tunnel according to the syntax of the 975.Cm tunnel 976option to 977.Xr ifconfig 8 . 978Additionally, this option ensures that each listed interface is created via the 979.Cm create 980option to 981.Xr ifconfig 8 982before attempting to configure it. 983.It Va sppp_interfaces 984.Pq Vt str 985Set to the list of 986.Xr sppp 4 987interfaces to configure on this host. 988A 989.Va spppconfig_ Ns Aq Ar interface 990variable is assumed to exist for each value of 991.Ar interface . 992Each interface should also be configured by a general 993.Va ifconfig_ Ns Aq Ar interface 994setting. 995Refer to 996.Xr spppcontrol 8 997for more information about available options. 998.It Va ppp_enable 999.Pq Vt bool 1000If set to 1001.Dq Li YES , 1002run the 1003.Xr ppp 8 1004daemon. 1005.It Va ppp_mode 1006.Pq Vt str 1007Mode in which to run the 1008.Xr ppp 8 1009daemon. 1010Accepted modes are 1011.Dq Li auto , 1012.Dq Li ddial , 1013.Dq Li direct 1014and 1015.Dq Li dedicated . 1016See the manual for a full description. 1017.It Va ppp_nat 1018.Pq Vt bool 1019If set to 1020.Dq Li YES , 1021enables network address translation. 1022Used in conjunction with 1023.Va gateway_enable 1024allows hosts on private network addresses access to the Internet using 1025this host as a network address translating router. 1026.It Va ppp_profile 1027.Pq Vt str 1028The name of the profile to use from 1029.Pa /etc/ppp/ppp.conf . 1030Also used for per-profile overrides of 1031.Va ppp_ Ns Ao Ar profile Ac Ns _unit . 1032Where the profile contains any of the characters 1033.Dq Li .-/+ 1034they are translated to 1035.Dq Li _ 1036for the purposes of the override variable names. 1037.It Va ppp_ Ns Ao Ar profile Ac Ns _unit 1038.Pq Vt int 1039Set the unit number to be used for this profile. 1040See the manual description of 1041.Fl unit Ns Ar N 1042in 1043.Xr ppp 8 1044for details. 1045.It Va ppp_user 1046.Pq Vt str 1047The name of the user under which 1048.Xr ppp 8 1049should be started. 1050By default, 1051.Xr ppp 8 1052is started as 1053.Dq Li root . 1054.It Va rc_conf_files 1055.Pq Vt str 1056This option is used to specify a list of files that will override 1057the settings in 1058.Pa /etc/defaults/rc.conf . 1059The files will be read in the order in which they are specified and should 1060include the full path to the file. 1061By default, the files specified are 1062.Pa /etc/rc.conf 1063and 1064.Pa /etc/rc.conf.local 1065.It Va fsck_y_enable 1066.Pq Vt bool 1067If set to 1068.Dq Li YES , 1069.Xr fsck 8 1070will be run with the 1071.Fl y 1072flag if the initial preen of the file systems fails. 1073.It Va netfs_types 1074.Pq Vt str 1075List of file system types that are network-based. 1076This list should generally not be modified by end users. 1077Use 1078.Va extra_netfs_types 1079instead. 1080.It Va extra_netfs_types 1081.Pq Vt str 1082If set to something other than 1083.Dq Li NO 1084(the default), this variable extends the list of file system types 1085for which automatic mounting at startup by 1086.Xr rc 8 1087should be delayed until the network is initialized. 1088It should contain 1089a whitespace-separated list of network file system descriptor pairs, 1090each consisting of a file system type as passed to 1091.Xr mount 8 1092and a human-readable, one-word description, joined with a colon 1093.Pq Ql \&: . 1094Extending the default list in this way is only necessary 1095when third party file system types are used. 1096.It Va devfs_config_files 1097.Pq Vt str 1098This option is used to specify a list of configuration files containing 1099.Xr devfs 5 1100rules that will be applied by 1101.Xr devfsctl 8 1102in the order in which they are specified and must include the full path 1103to the file. 1104.It Va tmpfs_var_run 1105.Pq Vt bool 1106If set to 1107.Dq Li YES , 1108a 1109.Xr tmpfs 5 1110will be mounted at 1111.Pa /var/run . 1112Necessary directories under there will be automatically created. 1113.It Va tmpfs_tmp 1114.Pq Vt bool 1115If set to 1116.Dq Li YES , 1117a 1118.Xr tmpfs 5 1119will be mounted at 1120.Pa /tmp . 1121.It Va syslogd_enable 1122.Pq Vt bool 1123If set to 1124.Dq Li YES , 1125run the 1126.Xr syslogd 8 1127daemon. 1128.It Va syslogd_program 1129.Pq Vt str 1130Path to 1131.Xr syslogd 8 1132(default 1133.Pa /usr/sbin/syslogd ) . 1134.It Va syslogd_flags 1135.Pq Vt str 1136If 1137.Va syslogd_enable 1138is set to 1139.Dq Li YES , 1140these are the flags to pass to 1141.Xr syslogd 8 . 1142.It Va inetd_enable 1143.Pq Vt bool 1144If set to 1145.Dq Li YES , 1146run the 1147.Xr inetd 8 1148daemon. 1149.It Va inetd_program 1150.Pq Vt str 1151Path to 1152.Xr inetd 8 1153(default 1154.Pa /usr/sbin/inetd ) . 1155.It Va inetd_flags 1156.Pq Vt str 1157If 1158.Va inetd_enable 1159is set to 1160.Dq Li YES , 1161these are the flags to pass to 1162.Xr inetd 8 . 1163.It Va rwhod_enable 1164.Pq Vt bool 1165If set to 1166.Dq Li YES , 1167run the 1168.Xr rwhod 8 1169daemon at boot time. 1170.It Va rwhod_flags 1171.Pq Vt str 1172If 1173.Va rwhod_enable 1174is set to 1175.Dq Li YES , 1176these are the flags to pass to it. 1177.It Va update_motd 1178.Pq Vt bool 1179If set to 1180.Dq Li YES , 1181.Pa /etc/motd 1182will be updated at boot time to reflect the kernel release being run. 1183If set to 1184.Dq Li NO , 1185.Pa /etc/motd 1186will not be updated. 1187.It Va nfs_client_enable 1188.Pq Vt bool 1189If set to 1190.Dq Li YES , 1191setup NFS client parameters at boot time. 1192.It Va nfs_access_cache 1193.Pq Vt int 1194If 1195.Va nfs_client_enable 1196is set to 1197.Dq Li YES , 1198this can be set to 1199.Dq Li 0 1200to disable NFS ACCESS RPC caching, or to the number of seconds for which 1201NFS ACCESS results should be cached. 1202A value of 2-10 seconds will substantially reduce network traffic for 1203many NFS operations. 1204The default is 5 seconds. 1205Note that the attribute cache holds stat information only. 1206The NFS data cache is independent of the attribute cache and is only 1207invalidated when the client detects that the server has modified the 1208underlying file. 1209This value specifies a maximum timeout. 1210The NFS client will automatically use a shorter timeout for files which 1211have been recently modified. 1212.It Va nfs_neg_cache 1213.Pq Vt int 1214If 1215.Va nfs_client_enable 1216is set to 1217.Dq Li YES , 1218this can be set to 1219.Dq Li 0 1220to disable the caching of NEGATIVE LOOKUPS (lookups of non-existent 1221filenames), or to the number of seconds for which negative lookups should 1222be cached. 1223A value of 2-10 seconds will substantially reduce network 1224traffic for many NFS operations, especially source code builds. 1225The default is 3 seconds. 1226.It Va nfs_server_enable 1227.Pq Vt bool 1228If set to 1229.Dq Li YES , 1230run the NFS server daemons at boot time. 1231.It Va nfs_server_flags 1232.Pq Vt str 1233If 1234.Va nfs_server_enable 1235is set to 1236.Dq Li YES , 1237these are the flags to pass to the 1238.Xr nfsd 8 1239daemon. 1240.It Va mountd_enable 1241.Pq Vt bool 1242If set to 1243.Dq Li YES , 1244and no 1245.Va nfs_server_enable 1246is set, start 1247.Xr mountd 8 , 1248but not 1249.Xr nfsd 8 1250daemon. 1251It is commonly needed to run CFS without real NFS used. 1252.It Va mountd_flags 1253.Pq Vt str 1254If 1255.Va mountd_enable 1256is set to 1257.Dq Li YES , 1258these are the flags to pass to the 1259.Xr mountd 8 1260daemon. 1261.It Va weak_mountd_authentication 1262.Pq Vt bool 1263If set to 1264.Dq Li YES , 1265allow services like PCNFSD to make non-privileged mount requests. 1266.It Va nfs_reserved_port_only 1267.Pq Vt bool 1268If set to 1269.Dq Li YES , 1270provide NFS services only on a secure port. 1271.It Va nfs_bufpackets 1272.Pq Vt int 1273If set to a number, indicates the number of packets worth of 1274socket buffer space to reserve on an NFS client. 1275The kernel default is typically 4. 1276Using a higher number may be useful on gigabit networks to improve performance. 1277The minimum value is 2 and the maximum is 64. 1278.It Va rpc_umntall_enable 1279.Pq Vt bool 1280If set to 1281.Dq Li YES 1282(default) and we are also an NFS client, run 1283.Xr rpc.umntall 8 1284at boot time to clear out old mounts on remote servers. 1285If set to 1286.Dq Li NO 1287then 1288.Xr rpc.umntall 8 1289will not be run at boot time. 1290.It Va rpc_lockd_enable 1291.Pq Vt bool 1292If set to 1293.Dq Li YES 1294and also an NFS server, run 1295.Xr rpc.lockd 8 1296at boot time. 1297.It Va rpc_lockd_flags 1298.Pq Vt str 1299If 1300.Va rpc_lockd_enable 1301is set to 1302.Dq Li YES , 1303these are the flags to pass to 1304.Xr rpc.lockd 8 . 1305.It Va rpc_statd_enable 1306.Pq Vt bool 1307If set to 1308.Dq Li YES 1309and also an NFS server, run 1310.Xr rpc.statd 8 1311at boot time. 1312.It Va rpc_statd_flags 1313.Pq Vt str 1314If 1315.Va rpc_statd_enable 1316is set to 1317.Dq Li YES , 1318these are the flags to pass to 1319.Xr rpc.statd 8 . 1320.It Va rpcbind_program 1321.Pq Vt str 1322Path to program for rpcbind daemon 1323(default 1324.Pa /usr/sbin/rpcbind ) . 1325.It Va rpcbind_enable 1326.Pq Vt bool 1327If set to 1328.Dq Li YES , 1329run 1330.Va rpcbind_program 1331at boot time. 1332.It Va rpcbind_flags 1333.Pq Vt str 1334If 1335.Va rpcbind_enable 1336is set to 1337.Dq Li YES , 1338these are the flags to pass to 1339.Va rpcbind_program . 1340.It Va keyserv_enable 1341.Pq Vt bool 1342If set to 1343.Dq Li YES , 1344run the 1345.Xr keyserv 8 1346daemon on boot for running Secure RPC. 1347.It Va keyserv_flags 1348.Pq Vt str 1349If 1350.Va keyserv_enable 1351is set to 1352.Dq Li YES , 1353these are the flags to pass to 1354.Xr keyserv 8 1355daemon. 1356.It Va pppoed_enable 1357.Pq Vt bool 1358If set to 1359.Dq Li YES , 1360run the 1361.Xr pppoed 8 1362daemon at boot time to provide PPP over Ethernet services. 1363.It Va pppoed_provider 1364.Pq Vt str 1365.Xr pppoed 8 1366listens to requests to this provider and ultimately runs 1367.Xr ppp 8 1368with a 1369.Ar system 1370argument of the same name. 1371.It Va pppoed_flags 1372.Pq Vt str 1373Additional flags to pass to 1374.Xr pppoed 8 . 1375.It Va pppoed_interface 1376.Pq Vt str 1377The network interface to run 1378.Xr pppoed 8 1379on. 1380This is mandatory when 1381.Va pppoed_enable 1382is set to 1383.Dq Li YES . 1384.It Va dntpd_enable 1385.Pq Vt bool 1386If set to 1387.Dq Li YES , 1388run 1389.Xr dntpd 8 1390at system boot time. 1391.It Va dntpd_program 1392.Pq Vt str 1393Path to 1394.Xr dntpd 8 1395(default 1396.Pa /usr/sbin/dntpd ) . 1397.It Va dntpd_flags 1398.Pq Vt str 1399If 1400.Va dntpd_enable 1401is set to 1402.Dq Li YES , 1403these are the flags to pass to the 1404.Xr dntpd 8 1405daemon. 1406.It Va btconfig_enable 1407.Pq Vt bool 1408If set to 1409.Dq Li YES , 1410configure Bluetooth devices via 1411.Xr btconfig 8 1412at system boot time. 1413.It Va btconfig_devices 1414.Pq Vt str 1415If 1416.Va btconfig_enable 1417is set to 1418.Dq Li YES , 1419this is the list of Bluetooth devices to configure. 1420If 1421.Va btconfig_devices 1422is not specified, all devices known to the system will be configured. 1423A 1424.Va btconfig_ Ns Aq Ar device 1425variable can be set to specify parameters to be passed to 1426.Ar device . 1427.It Va btconfig_args 1428.Pq Vt str 1429If 1430.Va btconfig_enable 1431is set to 1432.Dq Li YES , 1433this is the list of configuration parameters to pass to all Bluetooth 1434devices. 1435.It Va sdpd_enable 1436.Pq Vt bool 1437If set to 1438.Dq Li YES , 1439run the Service Discovery Profile daemon 1440.Xr ( sdpd 8 ) 1441at system boot time. 1442.It Va sdpd_flags 1443.Pq Vt str 1444If 1445.Va sdpd_enable 1446is set to 1447.Dq Li YES , 1448these are the flags to pass to the 1449.Xr sdpd 8 1450daemon. 1451.It Va bthcid_enable 1452.Pq Vt bool 1453If set to 1454.Dq Li YES , 1455run the Bluetooth Link Key/PIN Code Manager daemon 1456.Xr ( bthcid 8 ) 1457at system boot time. 1458.It Va bthcid_flags 1459.Pq Vt str 1460If 1461.Va bthcid_enable 1462is set to 1463.Dq Li YES , 1464these are the flags to pass to the 1465.Xr bthcid 8 1466daemon. 1467.It Va nis_client_enable 1468.Pq Vt bool 1469If set to 1470.Dq Li YES , 1471run the 1472.Xr ypbind 8 1473service at system boot time. 1474.It Va nis_client_flags 1475.Pq Vt str 1476If 1477.Va nis_client_enable 1478is set to 1479.Dq Li YES , 1480these are the flags to pass to the 1481.Xr ypbind 8 1482service. 1483.It Va nis_ypset_enable 1484.Pq Vt bool 1485If set to 1486.Dq Li YES , 1487run the 1488.Xr ypset 8 1489daemon at system boot time. 1490.It Va nis_ypset_flags 1491.Pq Vt str 1492If 1493.Va nis_ypset_enable 1494is set to 1495.Dq Li YES , 1496these are the flags to pass to the 1497.Xr ypset 8 1498daemon. 1499.It Va nis_server_enable 1500.Pq Vt bool 1501If set to 1502.Dq Li YES , 1503run the 1504.Xr ypserv 8 1505daemon at system boot time. 1506.It Va nis_server_flags 1507.Pq Vt str 1508If 1509.Va nis_server_enable 1510is set to 1511.Dq Li YES , 1512these are the flags to pass to the 1513.Xr ypserv 8 1514daemon. 1515.It Va nis_ypxfrd_enable 1516.Pq Vt bool 1517If set to 1518.Dq Li YES , 1519run the 1520.Xr rpc.ypxfrd 8 1521daemon at system boot time. 1522.It Va nis_ypxfrd_flags 1523.Pq Vt str 1524If 1525.Va nis_ypxfrd_enable 1526is set to 1527.Dq Li YES , 1528these are the flags to pass to the 1529.Xr rpc.ypxfrd 8 1530daemon. 1531.It Va nis_yppasswdd_enable 1532.Pq Vt bool 1533If set to 1534.Dq Li YES , 1535run the 1536.Xr rpc.yppasswdd 8 1537daemon at system boot time. 1538.It Va nis_yppasswdd_flags 1539.Pq Vt str 1540If 1541.Va nis_yppasswdd_enable 1542is set to 1543.Dq Li YES , 1544these are the flags to pass to the 1545.Xr rpc.yppasswdd 8 1546daemon. 1547.It Va rpc_ypupdated_enable 1548.Pq Vt bool 1549If set to 1550.Dq Li YES , 1551run the 1552.Nm rpc.ypupdated 1553daemon at system boot time. 1554.It Va defaultrouter 1555.Pq Vt str 1556If not set to 1557.Dq Li NO , 1558create a default route to this host name or IP address 1559(use an IP address if this router is also required to get to the 1560name server!). 1561.It Va ipv6_defaultrouter 1562.Pq Vt str 1563The IPv6 equivalent of 1564.Va defaultrouter . 1565.It Va static_routes 1566.Pq Vt str 1567Set to the list of static routes that are to be added at system boot time. 1568If not set to 1569.Dq Li NO 1570then for each whitespace separated 1571.Ar element 1572in the value, a 1573.Va route_ Ns Aq Ar element 1574variable is assumed to exist whose contents will later be passed to a 1575.Dq Nm route Cm add 1576operation. 1577.It Va change_routes 1578.Pq Vt str 1579Set to the list of static routes that are to be changed at system boot time 1580(such as those added by the kernel). 1581If not set to 1582.Dq Li NO 1583then for each whitespace separated 1584.Ar element 1585in the value, a 1586.Va change_route_ Ns Aq Ar element 1587variable is assumed to exist whose contents will later be passed to a 1588.Dq Nm route Cm change 1589operation. 1590.It Va ipv6_static_routes 1591.Pq Vt str 1592The IPv6 equivalent of 1593.Va static_routes . 1594If not set to 1595.Dq Li NO 1596then for each whitespace separated 1597.Ar element 1598in the value, a 1599.Va ipv6_route_ Ns Aq Ar element 1600variable is assumed to exist whose contents will later be passed to a 1601.Dq Nm route Cm add Fl inet6 1602operation. 1603.It Va gateway_enable 1604.Pq Vt bool 1605If set to 1606.Dq Li YES , 1607configure host to act as an IP router, e.g. to forward packets 1608between interfaces. 1609.It Va ipv6_gateway_enable 1610.Pq Vt bool 1611The IPv6 equivalent of 1612.Va gateway_enable . 1613.It Va router_enable 1614.Pq Vt bool 1615If set to 1616.Dq Li YES , 1617run a routing daemon of some sort, based on the settings of 1618.Va router_program 1619and 1620.Va router_flags . 1621.It Va ipv6_router_enable 1622.Pq Vt bool 1623The IPv6 equivalent of 1624.Va router_enable . 1625If set to 1626.Dq Li YES , 1627run a routing daemon of some sort, based on the settings of 1628.Va ipv6_router_program 1629and 1630.Va ipv6_router_flags . 1631.It Va router_program 1632.Pq Vt str 1633If 1634.Va router_enable 1635is set to 1636.Dq Li YES , 1637this is the name of the routing daemon to use 1638(default 1639.Pa /sbin/routed ) . 1640.It Va ipv6_router_program 1641.Pq Vt str 1642The IPv6 equivalent of 1643.Va router_program 1644(default 1645.Pa /sbin/route6d ) . 1646.It Va router_flags 1647.Pq Vt str 1648If 1649.Va router_enable 1650is set to 1651.Dq Li YES , 1652these are the flags to pass to the routing daemon. 1653.It Va ipv6_router_flags 1654.Pq Vt str 1655The IPv6 equivalent of 1656.Va router_flags . 1657.It Va rtadvd_enable 1658.Pq Vt bool 1659If set to 1660.Dq Li YES , 1661run the 1662.Xr rtadvd 8 1663daemon at boot time. 1664.Xr rtadvd 8 1665will only run if 1666.Va ipv6_gateway_enable 1667is also set to 1668.Dq Li YES . 1669The 1670.Xr rtadvd 8 1671utility sends router advertisement packets to the interfaces specified in 1672.Va rtadvd_interfaces . 1673.Xr rtadvd 8 1674and should only be enabled with great care. 1675You may want to fine-tune 1676.Xr rtadvd.conf 5 . 1677.It Va rtadvd_interfaces 1678.Pq Vt str 1679If 1680.Va rtadvd_enable 1681is set to 1682.Dq Li YES 1683this is the list of interfaces to use. 1684.It Va rtsold_enable 1685.Pq Vt bool 1686If set to 1687.Dq Li YES , 1688run the 1689.Xr rtsold 8 1690daemon at boot time. 1691The 1692.Xr rtsold 8 1693daemon is used for automatic discovery of non-link local addresses. 1694.It Va rtsold_flags 1695.Pq Vt str 1696If 1697.Va rtsold_enable 1698is set to 1699.Dq Li YES , 1700these are the flags to pass to the 1701.Xr rtsold 8 1702daemon. 1703.It Va arpproxy_all 1704.Pq Vt bool 1705If set to 1706.Dq Li YES , 1707enable global proxy ARP. 1708.It Va forward_sourceroute 1709.Pq Vt bool 1710If set to 1711.Dq Li YES 1712and 1713.Va gateway_enable 1714is also set to 1715.Dq Li YES , 1716source-routed packets are forwarded. 1717.It Va accept_sourceroute 1718.Pq Vt bool 1719If set to 1720.Dq Li YES , 1721the system will accept source-routed packets directed at it. 1722.It Va rarpd_enable 1723.Pq Vt bool 1724If set to 1725.Dq Li YES , 1726run the 1727.Xr rarpd 8 1728daemon at system boot time. 1729.It Va rarpd_flags 1730.Pq Vt str 1731If 1732.Va rarpd_enable 1733is set to 1734.Dq Li YES , 1735these are the flags to pass to the 1736.Xr rarpd 8 1737daemon. 1738.It Va bootparamd_enable 1739.Pq Vt bool 1740If set to 1741.Dq Li YES , 1742run the 1743.Xr bootparamd 8 1744daemon at system boot time. 1745.It Va bootparamd_flags 1746.Pq Vt str 1747If 1748.Va bootparamd_enable 1749is set to 1750.Dq Li YES , 1751these are the flags to pass to the 1752.Xr bootparamd 8 1753daemon. 1754.It Va stf_interface_ipv4addr 1755.Pq Vt str 1756If not set to 1757.Dq Li NO , 1758this is the local IPv4 address for 6to4 (IPv6 over IPv4 tunneling interface). 1759Specify this entry to enable the 6to4 interface. 1760.It Va stf_interface_ipv4plen 1761.Pq Vt int 1762Prefix length for 6to4 IPv4 addresses, to limit peer address range. 1763An effective value is 0-31. 1764.It Va stf_interface_ipv6_ifid 1765.Pq Vt str 1766IPv6 interface ID for 1767.Xr stf 4 . 1768This can be set to 1769.Dq Li AUTO . 1770.It Va stf_interface_ipv6_slaid 1771.Pq Vt str 1772IPv6 Site Level Aggregator for 1773.Xr stf 4 . 1774.It Va keybell 1775.Pq Vt str 1776The keyboard bell sound. 1777Set to 1778.Dq Li normal , 1779.Dq Li visual , 1780.Dq Li off , 1781or 1782.Dq Li NO 1783if the default behavior is desired. 1784For details, refer to the 1785.Xr kbdcontrol 1 1786manpage. 1787.It Va keymap 1788.Pq Vt str 1789If set to 1790.Dq Li NO , 1791no keymap is installed, otherwise the value is used to install 1792the keymap file in 1793.Pa /usr/share/syscons/keymaps/ Ns Ao Ar value Ac Ns Pa .kbd . 1794.It Va keyrate 1795.Pq Vt str 1796The keyboard repeat speed. 1797Set to 1798.Dq Li slow , 1799.Dq Li normal , 1800.Dq Li fast , 1801or 1802.Dq Li NO 1803if the default behavior is desired. 1804.It Va keychange 1805.Pq Vt str 1806If not set to 1807.Dq Li NO , 1808attempt to program the function keys with the value. 1809The value should be a single string of the form: 1810.Dq Ar funkey_number new_value Op Ar funkey_number new_value ... . 1811.It Va cursor 1812.Pq Vt str 1813Can be set to the value of 1814.Dq Li normal , 1815.Dq Li blink , 1816.Dq Li destructive , 1817or 1818.Dq Li NO 1819to set the cursor behavior explicitly or choose the default behavior. 1820.It Va scrnmap 1821.Pq Vt str 1822If set to 1823.Dq Li NO , 1824no screen map is installed, otherwise the value is used to install 1825the screen map file in 1826.Pa /usr/share/syscons/scrnmaps/ Ns Aq Ar value . 1827.It Va font8x16 1828.Pq Vt str 1829If set to 1830.Dq Li NO , 1831the default 8x16 font value is used for screen size requests, otherwise 1832the value in 1833.Pa /usr/share/syscons/fonts/ Ns Aq Ar value 1834is used. 1835.It Va font8x14 1836.Pq Vt str 1837If set to 1838.Dq Li NO , 1839the default 8x14 font value is used for screen size requests, otherwise 1840the value in 1841.Pa /usr/share/syscons/fonts/ Ns Aq Ar value 1842is used. 1843.It Va font8x8 1844.Pq Vt str 1845If set to 1846.Dq Li NO , 1847the default 8x8 font value is used for screen size requests, otherwise 1848the value in 1849.Pa /usr/share/syscons/fonts/ Ns Aq Ar value 1850is used. 1851.It Va blanktime 1852.Pq Vt int 1853If set to 1854.Dq Li NO , 1855the default screen blanking interval is used, otherwise it is set to 1856.Ar value 1857seconds. 1858.It Va saver 1859.Pq Vt str 1860If not set to 1861.Dq Li NO , 1862this is the actual screen saver to use 1863.Li ( blank , snake , daemon , 1864etc). 1865.It Va moused_nondefault_enable 1866.Pq Vt str 1867If set to 1868.Dq Li NO , 1869the mouse device specified on 1870the command line is not automatically treated as enabled by the 1871.Pa /etc/rc.d/moused 1872script. 1873Having this variable set to 1874.Dq Li YES 1875allows a 1876.Xr usb 4 1877mouse, 1878for example, 1879to be enabled as soon as it is plugged in. 1880.It Va moused_enable 1881.Pq Vt str 1882If set to 1883.Dq Li YES , 1884the 1885.Xr moused 8 1886daemon is started for doing cut/paste selection on the console. 1887.It Va moused_type 1888.Pq Vt str 1889If 1890.Va moused_enable 1891is set to 1892.Dq Li YES , 1893this is the protocol type of the mouse connected to this host. 1894The default type is 1895.Dq Li auto . 1896The 1897.Xr moused 8 1898daemon 1899is able to detect the appropriate mouse type automatically in many cases. 1900Leave this variable at the default 1901.Dq Li auto 1902to let the daemon detect it, or 1903select one from the following list if the automatic detection fails. 1904.Pp 1905If the mouse is attached to the PS/2 mouse port, leave the variable at the 1906default 1907.Dq Li auto 1908or set it to 1909.Dq Li ps/2 , 1910regardless of the brand and model of the mouse. 1911Likewise, if the mouse is attached to the bus mouse port, leave it at 1912.Dq Li auto 1913or set it to 1914.Dq Li busmouse . 1915All other protocols are for serial mice and will not work with 1916the PS/2 and bus mice. 1917If this is a USB mouse, 1918.Dq Li auto 1919is the only protocol type which will work. 1920.Pp 1921.Bl -tag -width ".Li x10mouseremote" -compact 1922.It Li microsoft 1923Microsoft mouse (serial) 1924.It Li intellimouse 1925Microsoft IntelliMouse (serial) 1926.It Li mousesystems 1927Mouse systems Corp. mouse (serial) 1928.It Li mmseries 1929MM Series mouse (serial) 1930.It Li logitech 1931Logitech mouse (serial) 1932.It Li busmouse 1933A bus mouse 1934.It Li mouseman 1935Logitech MouseMan and TrackMan (serial) 1936.It Li glidepoint 1937ALPS GlidePoint (serial) 1938.It Li thinkingmouse 1939Kensington ThinkingMouse (serial) 1940.It Li ps/2 1941PS/2 mouse 1942.It Li mmhittab 1943MM HitTablet (serial) 1944.It Li x10mouseremote 1945X10 MouseRemote (serial) 1946.It Li versapad 1947Interlink VersaPad (serial) 1948.El 1949.Pp 1950Even if the mouse is not in the above list, it may be compatible 1951with one in the list. 1952Refer to the man page for 1953.Xr moused 8 1954for compatibility information. 1955.Pp 1956It should also be noted that while this is enabled, any 1957other client of the mouse (such as an X server) should access 1958the mouse through the virtual mouse device, 1959.Pa /dev/sysmouse , 1960and configure it as a 1961.Dq Li sysmouse 1962type mouse, since all 1963mouse data is converted to this single canonical format when using 1964.Xr moused 8 . 1965If the client program does not support the 1966.Dq Li sysmouse 1967type, specify the 1968.Dq Li mousesystems 1969type. 1970It is the second preferred type. 1971.It Va moused_port 1972.Pq Vt str 1973If 1974.Va moused_enable 1975is set to 1976.Dq Li YES , 1977this is the actual port the mouse is on. 1978It might be 1979.Pa /dev/cuaa0 1980for a COM1 serial mouse or 1981.Pa /dev/psm0 1982for a PS/2 mouse, for example. 1983.It Va moused_flags 1984.Pq Vt str 1985If 1986.Va moused_type 1987is set, these are the additional flags to pass to the 1988.Xr moused 8 1989daemon. 1990.It Va mousechar_start 1991.Pq Vt int 1992If set to 1993.Dq Li NO , 1994the default mouse cursor character range 1995.Li 0xd0 Ns - Ns Li 0xd3 1996is used, otherwise the range start is set to 1997.Ar value 1998character, see 1999.Xr vidcontrol 1 . 2000Use if the default range is occupied in the language code table. 2001.It Va vidhistory 2002.Pq Vt int 2003Set the size of the history (scrollback) buffer in lines. 2004.It Va allscreens_flags 2005.Pq Vt str 2006If set, 2007.Xr vidcontrol 1 2008is run with these options for each of the virtual terminals 2009.Pq Pa /dev/ttyv* . 2010For example, 2011.Dq Fl m Cm on 2012will enable the mouse pointer on all virtual terminals if 2013.Va moused_enable 2014is set to 2015.Dq Li YES . 2016.It Va allscreens_kbdflags 2017.Pq Vt str 2018If set, 2019.Xr kbdcontrol 1 2020is run with these options for each of the virtual terminals 2021.Pq Pa /dev/ttyv* . 2022For example, 2023.Dq Fl h Li 200 2024will set the 2025.Xr syscons 4 2026scrollback (history) buffer to 200 lines. 2027.It Va cron_enable 2028.Pq Vt bool 2029If set to 2030.Dq Li YES , 2031run the 2032.Xr cron 8 2033daemon at system boot time. 2034.It Va cron_program 2035.Pq Vt str 2036Path to 2037.Xr cron 8 2038(default 2039.Pa /usr/sbin/cron ) . 2040.It Va cron_flags 2041.Pq Vt str 2042If 2043.Va cron_enable 2044is set to 2045.Dq Li YES , 2046these are the flags to pass to 2047.Xr cron 8 . 2048.It Va lpd_program 2049.Pq Vt str 2050Path to 2051.Xr lpd 8 2052(default 2053.Pa /usr/sbin/lpd ) . 2054.It Va lpd_enable 2055.Pq Vt bool 2056If set to 2057.Dq Li YES , 2058run the 2059.Xr lpd 8 2060daemon at system boot time. 2061.It Va lpd_flags 2062.Pq Vt str 2063If 2064.Va lpd_enable 2065is set to 2066.Dq Li YES , 2067these are the flags to pass to the 2068.Xr lpd 8 2069daemon. 2070.It Va nscd_enable 2071.Pq Vt bool 2072If set to 2073.Dq Li YES , 2074run the 2075.Xr nscd 8 2076daemon at system boot time. 2077.It Va mixer_enable 2078.Pq Vt bool 2079If set to 2080.Dq Li YES , 2081preserve 2082.Xr mixer 8 2083settings across reboots. 2084.It Va mta_start_script 2085.Pq Vt str 2086The full path to the script to run to start 2087a mail transfer agent. 2088The default is 2089.Pa /etc/rc.sendmail . 2090The 2091.Va sendmail_* 2092variables which 2093.Pa /etc/rc.sendmail 2094uses are documented in the 2095.Xr rc.sendmail 8 2096man page. 2097.It Va fixbootfile 2098.Pq Vt bool 2099In a 2100.Sq HAMMER ROOT with UFS /boot 2101setup, the boot loader will not set up the 2102.Va kern.bootfile 2103sysctl correctly. 2104The system will attempt to fix this on its own. 2105Set this variable to 2106.Dq Li NO 2107to turn this behavior off. 2108.It Va dumpdev 2109.Pq Vt str 2110Indicates the device (usually a swap partition) to which a crash dump 2111should be written in the event of a system crash. 2112The value of this variable is passed as the argument to 2113.Xr dumpon 8 2114and 2115.Xr savecore 8 . 2116To disable crash dumps, set this variable to 2117.Dq Li NO . 2118.It Va dumpdir 2119.Pq Vt str 2120When the system reboots after a crash and a crash dump is found on the 2121device specified by the 2122.Va dumpdev 2123variable, 2124.Xr savecore 8 2125will save that crash dump and a copy of the kernel to the directory 2126specified by the 2127.Va dumpdir 2128variable. 2129The default value is 2130.Pa /var/crash . 2131Set to 2132.Dq Li NO 2133to not run 2134.Xr savecore 8 2135at boot time when 2136.Va dumpdir 2137is set. 2138.It Va savecore_flags 2139.Pq Vt str 2140If crash dumps are enabled, these are the flags to pass to the 2141.Xr savecore 8 2142utility. 2143.It Va crashinfo_enable 2144.Pq Vt bool 2145Set to 2146.Dq Li YES 2147to turn on automatic crash dump summary generation using the utility 2148specified by the 2149.Va crashinfo_program 2150variable. 2151.It Va crashinfo_program 2152.Pq Vt str 2153Program to run to generate a crash dump summary if the variable 2154.Va crashinfo_enable 2155is set to 2156.Dq Li YES . 2157The default value is 2158.Pa /usr/sbin/crashinfo . 2159.It Va enable_quotas 2160.Pq Vt bool 2161Set to 2162.Dq Li YES 2163to turn on user disk quotas on system startup via the 2164.Xr quotaon 8 2165command. 2166.It Va check_quotas 2167.Pq Vt bool 2168Set to 2169.Dq Li YES 2170to enable user disk quota checking via the 2171.Xr quotacheck 8 2172command. 2173.It Va accounting_enable 2174.Pq Vt bool 2175Set to 2176.Dq Li YES 2177to enable system accounting through the 2178.Xr accton 8 2179facility. 2180.\" ----- cleanvar_enable setting-------------------------------- 2181.It Va cleanvar_enable 2182.Pq Vt bool 2183Set to 2184.Dq Li YES 2185to have 2186.Pa /var/run , 2187.Pa /var/spool/lock 2188and 2189.Pa /var/spool/uucp/.Temp/* 2190cleaned at startup. 2191.\" ----- clear_tmp_enable setting------------------------------- 2192.It Va clear_tmp_enable 2193.Pq Vt bool 2194Set to 2195.Dq Li YES 2196to have 2197.Pa /tmp 2198cleaned at startup. 2199.\" ----- ldconfig_paths setting -------------------------------- 2200.It Va ldconfig_paths 2201.Pq Vt str 2202Set to the list of shared library paths to use with 2203.Xr ldconfig 8 . 2204NOTE: 2205.Pa /usr/lib 2206will always be added first, so it need not appear in this list. 2207.It Va ldconfig_insecure 2208.Pq Vt bool 2209The 2210.Xr ldconfig 8 2211utility normally refuses to use directories 2212which are writable by anyone except root. 2213Set this variable to 2214.Dq Li YES 2215to disable that security check during system startup. 2216.It Va ldconfig_local_dirs 2217.Pq Vt str 2218Set to the list of local 2219.Xr ldconfig 8 2220directories. 2221The names of all files in the directories listed will be 2222passed as arguments to 2223.Xr ldconfig 8 . 2224.It Va kern_securelevel 2225.Pq Vt int 2226The kernel security level to set at startup. 2227The allowed range of 2228.Ar value 2229ranges from \-1 (the compile time default) to 3 (the most secure). 2230See 2231.Xr init 8 2232for the list of possible security levels and their effect on system operation. 2233.It Va start_vinum 2234.Pq Vt bool 2235Set to 2236.Dq Li YES 2237to start 2238.Xr vinum 8 2239at system boot time. 2240.It Va sshd_enable 2241.Pq Vt bool 2242Set to 2243.Dq Li YES 2244to start 2245.Xr sshd 8 2246at system boot time. 2247.It Va sshd_program 2248.Pq Vt str 2249Path to the SSH server program 2250(default 2251.Pa /usr/sbin/sshd ) . 2252.It Va sshd_flags 2253.Pq Vt str 2254If 2255.Va sshd_enable 2256is set to 2257.Dq Li YES , 2258these are the flags to pass to the 2259.Xr sshd 8 2260daemon. 2261.It Va ftpd_enable 2262.Pq Vt bool 2263Set to 2264.Dq Li YES 2265to start 2266.Xr ftpd 8 2267at system boot time. 2268.It Va ftpd_flags 2269.Pq Vt str 2270If 2271.Va ftpd_enable 2272is set to 2273.Dq Li YES , 2274these are the flags to pass to the 2275.Xr ftpd 8 2276daemon. 2277.It Va watchdogd_enable 2278.Pq Vt bool 2279If set to 2280.Dq Li YES , 2281start the 2282.Xr watchdogd 8 2283daemon at boot time. 2284.It Va jail_enable 2285.Pq Vt bool 2286If set to 2287.Dq Li NO , 2288any configured jails will not be started. 2289.It Va jail_list 2290.Pq Vt str 2291A space separated list of names for jails. 2292This is purely a configuration aid to help identify and 2293configure multiple jails. 2294The names specified in this list will be used to 2295identify settings common to an instance of a jail. 2296Assuming that the jail in question was named 2297.Li vjail , 2298you would have the following dependent variables: 2299.Bd -literal 2300jail_vjail_hostname="jail.example.com" 2301jail_vjail_ip="192.168.1.100" 2302jail_vjail_rootdir="/var/jails/vjail/root" 2303.Ed 2304.It Va jail_flags 2305.Pq Vt str 2306Unset by default. 2307When set, use as default value for 2308.Va jail_ Ns Ao Ar jname Ac Ns Va _flags 2309for every jail in 2310.Va jail_list . 2311.It Va jail_interface 2312.Pq Vt str 2313Unset by default. 2314When set, use as default value for 2315.Va jail_ Ns Ao Ar jname Ac Ns Va _interface 2316for every jail in 2317.Va jail_list . 2318.It Va jail_fstab 2319.Pq Vt str 2320Unset by default. 2321When set, use as default value for 2322.Va jail_ Ns Ao Ar jname Ac Ns Va _fstab 2323for every jail in 2324.Va jail_list . 2325.It Va jail_mount_enable 2326.Pq Vt bool 2327Set to 2328.Dq Li NO 2329by default. 2330When set to 2331.Dq Li YES , 2332sets 2333.Va jail_ Ns Ao Ar jname Ac Ns Va _mount_enable 2334to 2335.Dq Li YES 2336by default for every jail in 2337.Va jail_list . 2338.It Va jail_procfs_enable 2339.Pq Vt bool 2340Set to 2341.Dq Li NO 2342by default. 2343When set to 2344.Dq Li YES , 2345sets 2346.Va jail_ Ns Ao Ar jname Ac Ns Va _procfs_enable 2347to 2348.Dq Li YES 2349by default for every jail in 2350.Va jail_list . 2351.It Va jail_devfs_enable 2352.Pq Vt bool 2353Set to 2354.Dq Li NO 2355by default. 2356When set to 2357.Dq Li YES , 2358sets 2359.Va jail_ Ns Ao Ar jname Ac Ns Va _devfs_enable 2360to 2361.Dq Li YES 2362by default for every jail in 2363.Va jail_list . 2364.It Va jail_exec_start 2365.Pq Vt str 2366Unset by default. 2367When set, use as default value for 2368.Va jail_ Ns Ao Ar jname Ac Ns Va _exec_start 2369for every jail in 2370.Va jail_list . 2371.It Va jail_exec_stop 2372Unset by default. 2373When set, use as default value for 2374.Va jail_ Ns Ao Ar jname Ac Ns Va _exec_stop 2375for every jail in 2376.Va jail_list . 2377.It Va jail_ Ns Ao Ar jname Ac Ns Va _rootdir 2378.Pq Vt str 2379Unset by default. 2380Set to the root directory used by jail 2381.Va jname . 2382.It Va jail_ Ns Ao Ar jname Ac Ns Va _hostname 2383.Pq Vt str 2384Unset by default. 2385Set to the fully qualified domain name (FQDN) assigned to jail 2386.Va jname . 2387.It Va jail_ Ns Ao Ar jname Ac Ns Va _ip 2388.Pq Vt str 2389Unset by default. 2390Set to the IP address assigned to jail 2391.Va jname . 2392.It Va jail_ Ns Ao Ar jname Ac Ns Va _flags 2393.Pq Vt str 2394Set to 2395.Dq Li -l -U root 2396by default. 2397These are flags to pass to 2398.Xr jail 8 . 2399.It Va jail_ Ns Ao Ar jname Ac Ns Va _interface 2400.Pq Vt str 2401Unset by default. 2402When set, sets the interface to use when setting IP address alias. 2403Note that the alias is created at jail startup and removed at jail shutdown. 2404.It Va jail_ Ns Ao Ar jname Ac Ns Va _fstab 2405.Pq Vt str 2406Set to 2407.Pa /etc/fstab. Ns Aq Ar jname 2408by default. 2409This is the file system information file to use for jail 2410.Va jname . 2411.It Va jail_ Ns Ao Ar jname Ac Ns Va _mount_enable 2412.Pq Vt bool 2413Set to 2414.Dq Li NO 2415by default. 2416When set to 2417.Dq Li YES , 2418mount all file systems from 2419.Va jail_ Ns Ao Ar jname Ac Ns Va _fstab 2420at jail startup. 2421.It Va jail_ Ns Ao Ar jname Ac Ns Va _procfs_enable 2422.Pq Vt bool 2423Set to 2424.Dq Li NO 2425by default. 2426When set to 2427.Dq Li YES , 2428mount the process file system inside jail 2429.Ar jname 2430at jail startup. 2431.It Va jail_ Ns Ao Ar jname Ac Ns Va _devfs_enable 2432.Pq Vt bool 2433Set to 2434.Dq Li NO 2435by default. 2436When set to 2437.Dq Li YES , 2438mount the device file system inside jail 2439.Ar jname 2440at jail startup. 2441.It Va jail_ Ns Ao Ar jname Ac Ns Va _exec_start 2442.Pq Vt str 2443Set to 2444.Dq Li /bin/sh /etc/rc 2445by default. 2446This is the command executed at jail startup. 2447.It Va jail_ Ns Ao Ar jname Ac Ns Va _exec_stop 2448.Pq Vt str 2449Set to 2450.Dq Li /bin/sh /etc/rc.shutdown 2451by default. 2452This is the command executed at jail shutdown. 2453.It Va jail_default_set_hostname_allow 2454.Pq Vt bool 2455If set to 2456.Dq Li NO , 2457do not allow the root user in a jail to set its hostname. 2458.It Va jail_default_socket_unixiproute_only 2459.Pq Vt bool 2460If set to 2461.Dq Li YES , 2462do not allow any sockets, 2463besides UNIX/IP/route sockets, 2464to be used within a jail. 2465.It Va jail_default_sysvipc_allow 2466.Pq Vt bool 2467If set to 2468.Dq Li YES , 2469allow applications within a jail to use System V IPC. 2470.It Va jail_default_chflags_allow 2471.Pq Vt bool 2472If set to 2473.Dq Li YES , 2474allow applications within a jail to alter system file flags. 2475.It Va jail_default_raw_sockets_allow 2476.Pq Vt bool 2477If set to 2478.Dq Li YES , 2479allow applications within a jail to user raw sockets. 2480.It Va lvm_enable 2481.Pq Vt bool 2482If set to 2483.Dq Li YES 2484LVM volumes will be discovered and configured on boot. 2485.It Va newsyslog_enable 2486.Pq Vt bool 2487If set to 2488.Dq Li YES , 2489run 2490.Xr newsyslog 8 2491before syslogd starts. 2492.It Va newsyslog_flags 2493.Pq Vt str 2494If 2495.Va newsyslog_enable 2496is set to 2497.Dq Li YES , 2498these are the flags passed to 2499.Xr newsyslog 8 . 2500.It Va resident_enable 2501.Pq Vt bool 2502If set to 2503.Dq Li YES , 2504make the dynamic binaries listed in 2505.Pa /etc/resident.conf 2506resident. 2507.It Va varsym_enable 2508.Pq Vt bool 2509If set to 2510.Dq Li YES , 2511process 2512.Pa /etc/varsym.conf 2513to set system-wide variables for variant symlinks. 2514.It Va rand_irqs 2515.Pq Vt str 2516Set either to 2517.Dq Li NO 2518or a whitespace separated list of IRQ numbers which will be used as a source of 2519randomness. 2520.\" ----------------------------------------------------- 2521.It Va entropy_dir 2522.Pq Vt str 2523Set to 2524.Dq Li NO 2525to disable caching entropy via 2526.Xr cron 8 . 2527Otherwise set to the directory used to store entropy files in. 2528.It Va entropy_file 2529.Pq Vt str 2530Set to 2531.Dq Li NO 2532to disable caching entropy through reboots. 2533Otherwise set to the filename used to store cached entropy through reboots. 2534This file should be located on the root file system to seed the 2535.Xr random 4 2536device as early as possible in the boot process. 2537.It Va entropy_save_sz 2538.Pq Vt int 2539Determines the size of the entropy cache files used for entropy cached 2540through reboots and also entropy cached via 2541.Xr cron 8 . 2542The entropy is fed to the system in blocks of 512 bytes, so this number 2543should be large enough to fill as many of the entropy pools in the kernel 2544CSPRNG as possible. 2545By default, it is set to 16384, which should be able to seed all 32 entropy 2546pools in the Fortuna CSPRNG. 2547.It Va dmesg_enable 2548.Pq Vt bool 2549Set to 2550.Dq Li YES 2551to save 2552.Xr dmesg 8 2553to 2554.Pa /var/run/dmesg.boot 2555on boot. 2556.It Va rcshutdown_timeout 2557.Pq Vt int 2558If set, start a watchdog timer in the background which will terminate 2559.Pa rc.shutdown 2560if 2561.Xr shutdown 8 2562has not completed within the specified time (in seconds). 2563Notice that in addition to this soft timeout, 2564.Xr init 8 2565also applies a hard timeout for the execution of 2566.Pa rc.shutdown . 2567This is configured via 2568.Xr sysctl 8 2569variable 2570.Va kern.init_shutdown_timeout 2571and defaults to 120 seconds. Setting the value of 2572.Va rcshutdown_timeout 2573to more than 120 seconds will have no effect until the 2574.Xr sysctl 8 2575variable 2576.Va kern.init_shutdown_timeout 2577is also increased. 2578.It Va udevd_enable 2579.Pq Vt bool 2580If set to 2581.Dq Li YES , 2582the udevd daemon will be started on boot. 2583.It Va vfs_quota_enable 2584.Pq Vt bool 2585If set to 2586.Dq Li YES , 2587vfs quota rc.d scripts will be run on boot. 2588.It Va vfs_quota_sync 2589.Pq Vt str 2590List of mount points whose counters are to be synchronized with on-disk 2591usage during system startup. 2592See also 2593.Xr vquota 8 . 2594.It Va vknetd_enable 2595.Pq Vt bool 2596If set to 2597.Dq Li YES , 2598.Xr vknetd 8 2599will be started on boot. 2600.It Va vknetd_flags 2601.Pq Vt bool 2602Additional flags passed to 2603.Xr vknetd 8 . 2604Usually address/cidrbits is specified here. 2605When no flags are passed, default option 2606.Fl U 2607will be used. 2608.It Va vkernel_enable 2609.Pq Vt bool 2610If set to 2611.Dq Li NO , 2612any configured vkernels will not be started. 2613.It Va vkernel_kill_timeout 2614.Pq Vt int 2615This defines the default number of seconds that we will wait for the 2616vkernel to shut down on its own. 2617If after this time it's still alive, 2618it will be killed with SIGKILL. 2619.It Va vkernel_bin 2620.Pq Vt str 2621Defines the default path to the vkernel binary. 2622.It Va vkernel_list 2623.Pq Vt str 2624A space separated list of names for vkernels. 2625This is purely a configuration aid to help identify and 2626configure multiple vkernels. 2627The names specified in this list will be used to 2628identify settings common to a vkernel instance. 2629Assuming that the vkernel in question was named 2630.Li example , 2631you would have the following dependent variables 2632(filled with reference values in this text): 2633.Bd -literal 2634vkernel_example_bin="/usr/obj/usr/src/sys/VKERNEL64/kernel.debug" 2635vkernel_example_memsize="64m" 2636vkernel_example_rootimg_list="/var/vkernel/rootimg.01" 2637vkernel_example_memimg="/var/vkernel/memimg.000001" 2638vkernel_example_user="myuser" 2639vkernel_example_iface_list="auto:bridge0" 2640vkernel_example_logfile="/dev/null" 2641vkernel_example_flags="-U" 2642vkernel_example_kill_timeout="45" 2643.Ed 2644.Pp 2645The last six are optional. 2646They default to an empty string if not set, except for logfile which defaults to 2647.Pa /dev/null 2648if it is not set. 2649.Pp 2650Note that in case 2651.Va vkernel_memimg 2652is not set, the 2653.Pa rc.d 2654script will create 2655.Pa /var/vkernel , 2656which is the vkernel's default directory for memory images, 2657with permissions of 1777, i.e. world writable with the sticky bit set 2658(see 2659.Xr sticky 8 ) . 2660.It Va autofs_enable 2661.Pq Vt bool 2662If set to 2663.Dq Li YES , 2664start the 2665.Xr automount 8 2666utility and the 2667.Xr automountd 8 2668and 2669.Xr autounmountd 8 2670daemons at boot time. 2671.It Va automount_flags 2672.Pq Vt str 2673If 2674.Va autofs_enable 2675is set to 2676.Dq Li YES , 2677these are the flags to pass to the 2678.Xr automount 8 2679program. 2680By default no flags are passed. 2681.It Va automountd_flags 2682.Pq Vt str 2683If 2684.Va autofs_enable 2685is set to 2686.Dq Li YES , 2687these are the flags to pass to the 2688.Xr automountd 8 2689daemon. 2690By default no flags are passed. 2691.It Va autounmountd_flags 2692.Pq Vt str 2693If 2694.Va autofs_enable 2695is set to 2696.Dq Li YES , 2697these are the flags to pass to the 2698.Xr autounmountd 8 2699daemon. 2700By default no flags are passed. 2701.El 2702.Sh FILES 2703.Bl -tag -width ".Pa /etc/start_if. Ns Aq Ar interface" -compact 2704.It Pa /etc/defaults/rc.conf 2705.It Pa /etc/rc.conf 2706.It Pa /etc/rc.conf.local 2707.It Pa /etc/start_if. Ns Aq Ar interface 2708.El 2709.Sh SEE ALSO 2710.Xr gdb 1 , 2711.Xr info 1 , 2712.Xr kbdcontrol 1 , 2713.Xr varsym 1 , 2714.Xr vidcontrol 1 , 2715.Xr ip 4 , 2716.Xr ipfw 4 , 2717.Xr kld 4 , 2718.Xr pf 4 , 2719.Xr tcp 4 , 2720.Xr udp 4 , 2721.Xr vlan 4 , 2722.Xr autofs 5 , 2723.Xr auto_master 5 , 2724.Xr exports 5 , 2725.Xr motd 5 , 2726.Xr resident.conf 5 , 2727.Xr varsym.conf 5 , 2728.Xr accton 8 , 2729.Xr automount 8 , 2730.Xr automountd 8 , 2731.Xr autounmountd 8 , 2732.Xr btconfig 8 , 2733.Xr bthcid 8 , 2734.Xr cron 8 , 2735.Xr devd 8 , 2736.Xr dhclient 8 , 2737.Xr dhcpcd 8 , 2738.Xr dntpd 8 , 2739.Xr ftpd 8 , 2740.Xr ifconfig 8 , 2741.Xr inetd 8 , 2742.Xr ip6addrctl 8 , 2743.Xr jail 8 , 2744.Xr lpd 8 , 2745.Xr makewhatis 8 , 2746.Xr mixer 8 , 2747.Xr mountd 8 , 2748.Xr moused 8 , 2749.Xr nfsd 8 , 2750.Xr pcnfsd 8 , 2751.Xr pfctl 8 , 2752.Xr pflogd 8 , 2753.Xr quotacheck 8 , 2754.Xr quotaon 8 , 2755.Xr rc 8 , 2756.Xr rc.sendmail 8 , 2757.Xr resident 8 , 2758.Xr rndcontrol 8 , 2759.Xr route 8 , 2760.Xr routed 8 , 2761.Xr rpcbind 8 , 2762.Xr rpc.lockd 8 , 2763.Xr rpc.statd 8 , 2764.Xr rtadvd 8 , 2765.Xr rtsold 8 , 2766.Xr rwhod 8 , 2767.Xr savecore 8 , 2768.Xr sdpd 8 , 2769.Xr sensorsd 8 , 2770.Xr sshd 8 , 2771.Xr swapon 8 , 2772.Xr sysctl 8 , 2773.Xr syslogd 8 , 2774.Xr sysvipcd 8 , 2775.Xr vinum 8 , 2776.Xr yp 8 , 2777.Xr ypbind 8 , 2778.Xr ypserv 8 , 2779.Xr ypset 8 2780.Sh HISTORY 2781The 2782.Nm 2783file appeared in 2784.Fx 2.2.2 . 2785.Sh AUTHORS 2786.An Jordan K. Hubbard . 2787