1.\" $NetBSD: rc.conf.5,v 1.97 2005/11/24 19:32:35 wiz Exp $ 2.\" 3.\" Copyright (c) 1996 Matthew R. Green 4.\" Copyright (c) 1997 Curt J. Sampson 5.\" Copyright (c) 1997 Michael W. Long 6.\" Copyright (c) 1998-2002 The NetBSD Foundation, Inc. 7.\" All rights reserved. 8.\" 9.\" This document is derived from works contributed to The NetBSD Foundation 10.\" by Luke Mewburn. 11.\" 12.\" Redistribution and use in source and binary forms, with or without 13.\" modification, are permitted provided that the following conditions 14.\" are met: 15.\" 1. Redistributions of source code must retain the above copyright 16.\" notice, this list of conditions and the following disclaimer. 17.\" 2. Redistributions in binary form must reproduce the above copyright 18.\" notice, this list of conditions and the following disclaimer in the 19.\" documentation and/or other materials provided with the distribution. 20.\" 3. The name of the author may not be used to endorse or promote products 21.\" derived from this software without specific prior written permission. 22.\" 23.\" THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR 24.\" IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES 25.\" OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. 26.\" IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT, 27.\" INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, 28.\" BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; 29.\" LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED 30.\" AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, 31.\" OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 32.\" OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 33.\" SUCH DAMAGE. 34.\" 35.Dd November 24, 2005 36.Dt RC.CONF 5 37.Os 38.Sh NAME 39.Nm rc.conf 40.Nd system startup configuration file 41.Sh DESCRIPTION 42The 43.Nm 44file specifies which services are enabled during system startup by 45the startup scripts invoked by 46.Pa /etc/rc 47(see 48.Xr rc 8 ) , 49and the shutdown scripts invoked by 50.Pa /etc/rc.shutdown . 51The 52.Nm 53file is a shell script that is sourced by 54.Xr rc 8 , 55meaning that 56.Nm 57must contain valid shell commands. 58.Pp 59Listed below are the standard 60.Nm 61variables that may be set, the values to which each may be set, 62a brief description of what each variable does, and a reference to 63relevant manual pages. 64Third party packages may test for additional variables. 65.Pp 66Most variables are one of two types: enabling variables or flags 67variables. 68Enabling variables, such as 69.Sy inetd , 70are generally named after the program or the system they enable, 71and are set to 72.Sq YES 73or 74.Sq NO . 75Flags variables, such as 76.Sy inetd_flags 77have the same name with "_flags" appended, and determine what 78arguments are passed to the program if it is enabled. 79.Pp 80If a variable that 81.Xr rc 8 82expects to be set is not set, or the value is not one of the allowed 83values, a warning will be printed. 84.Pp 85By default, 86.Nm 87reads 88.Pa /etc/defaults/rc.conf 89(if it is readable) 90to obtain default values for various variables, and the end-user 91may override these by appending appropriate entries to the end of 92.Nm . 93.Pp 94.Xr rc.d 8 95scripts that use 96.Ic load_rc_config 97from 98.Xr rc.subr 8 99also support sourcing an optional end-user provided per-script override 100file 101.Pa /etc/rc.conf.d/ Ns Ar service , 102(where 103.Ar service 104is the contents of the 105.Sy name 106variable in the 107.Xr rc.d 8 108script). 109This may contain variable overrides, including allowing the end-user 110to override various 111.Ic run_rc_command 112.Xr rc.d 8 113control variables, and thus changing the operation of the script 114without requiring editing of the script. 115.Ss Overall control 116.Bl -tag -width net_interfaces 117.It Sy do_rcshutdown 118.Sq YES 119or 120.Sq NO . 121If set to 122.Sq NO , 123.Xr shutdown 8 124will not run 125.Pa /etc/rc.shutdown . 126.It Sy rcshutdown_rcorder_flags 127A string. 128Extra arguments to the 129.Xr rcorder 8 130run by 131.Pa /etc/rc.shutdown . 132.It Sy rcshutdown_timeout 133A number. 134If non-blank, use this as the number of seconds to run a watchdog timer for 135which will terminate 136.Pa /etc/rc.shutdown 137if the timer expires before the shutdown script completes. 138.It Sy rc_configured 139.Sq YES 140or 141.Sq NO . 142If not set to 143.Sq YES 144then the system will drop into single-user mode during boot. 145.It Sy rc_fast_and_loose 146If set to a non-empty string, 147each script in 148.Pa /etc/rc.d 149will be executed in the current shell rather than a sub shell. 150This may be faster on slow machines that have an expensive 151.Xr fork 2 152operation. 153.Bl -hang 154.It Em Note : 155Use this at your own risk! 156A rogue command or script may inadvertently prevent boot to multiuser. 157.El 158.It Sy rc_rcorder_flags 159A string. 160Extra arguments to the 161.Xr rcorder 8 162run by 163.Pa /etc/rc . 164.El 165.Ss Basic network configuration 166.Bl -tag -width net_interfaces 167.It Sy defaultroute 168A string. 169Default network route. 170If empty or not set, then the contents of 171.Pa /etc/mygate 172(if it exists) are used. 173.It Sy domainname 174A string. 175.Tn NIS 176(YP) domain of host. 177If empty or not set, then the contents of 178.Pa /etc/defaultdomain 179(if it exists) are used. 180.It Sy force_down_interfaces 181A space separated list of interface names. 182These interfaces will be configured down when going from multiuser to singleuser 183mode or on system shutdown. 184.Pp 185This is important for some stateful interfaces, for example PPP over ISDN 186connections that cost money by connection time or PPPoE interfaces which 187have no direct means of noticing 188.Dq disconnect 189events. 190.Pp 191All active 192.Xr pppoe 4 193and 194.Xr ippp 4 195interfaces will be automatically added to this list. 196.It Sy hostname 197A string. 198Name of host. 199If empty or not set, then the contents of 200.Pa /etc/myname 201(if it exists) are used. 202.El 203.Ss Boottime file-system and swap configuration 204.Bl -tag -width net_interfaces 205.It Sy critical_filesystems_local 206A string. 207File systems mounted very early in the system boot before networking 208services are available. 209Usually 210.Pa /var 211is part of this, because it is needed by services such as 212.Xr dhclient 8 213which may be required to get the network operational. 214.It Sy critical_filesystems_remote 215A string. 216File systems such as 217.Pa /usr 218that may require network services to be available to mount, 219that must be available early in the system boot for general services to use. 220.It Sy fsck_flags 221A string. 222A file system is checked with 223.Xr fsck 8 224during boot before mounting it. 225This option may be used to override the default command-line options 226passed to the 227.Xr fsck 8 228program. 229.Pp 230When set to 231.Fl y , 232.Xr fsck 8 233assumes yes as the answer to all operator questions during file system checks. 234This might be important with hosts where the administrator does not have 235access to the console and an unsuccessful shutdown must not make the host 236unbootable even if the file system checks would fail in preen mode. 237.It Sy no_swap 238.Sq YES 239or 240.Sq NO . 241Set the 242.Sy no_swap 243variable to 244.Sq YES 245if you have configured your system with no swap on purpose. 246If not set to 247.Sq YES , 248and no swap devices 249are configured, the system will warn you. 250.It Sy swapoff 251.Sq YES 252or 253.Sq NO . 254Remove block-type swap devices at shutdown time. 255Useful if swapping onto RAIDframe devices. 256.El 257.Ss One-time actions to perform or programs to run on boot-up 258.Bl -tag -width net_interfaces 259.It Sy accounting 260.Sq YES 261or 262.Sq NO . 263Enables process accounting with 264.Xr accton 8 . 265Requires 266.Pa /var/account/acct 267to exist. 268.It Sy clear_tmp 269.Sq YES 270or 271.Sq NO . 272Clear /tmp after reboot. 273.It Sy dmesg 274.Sq YES 275or 276.Sq NO . 277Create 278.Pa /var/run/dmesg.boot 279from the output of 280.Xr dmesg 8 . 281Passes 282.Sy dmesg_flags . 283.It Sy lkm 284.Sq YES 285or 286.Sq NO . 287Runs 288.Pa /etc/rc.lkm . 289.It Sy mixerctl 290.Sq YES 291or 292.Sq NO . 293Read 294.Xr mixerctl.conf 5 295for how to set mixer values. 296List in 297.Sy mixerctl_mixers 298the devices whose settings are to be saved at shutdown and 299restored at start-up. 300.It Sy newsyslog 301.Sq YES 302or 303.Sq NO . 304Run 305.Nm newsyslog 306to trim logfiles before syslogd starts. 307Intended for laptop users. 308Passes 309.Sy newsyslog_flags . 310.It Sy savecore 311.Sq YES 312or 313.Sq NO . 314Runs the 315.Xr savecore 8 316utility. 317Passes 318.Sy savecore_flags . 319The directory where crash dumps are stored is specified by 320.Sy savecore_dir . 321The default setting is 322.Dq Pa /var/crash . 323.It Sy tpctl 324.Sq YES 325or 326.Sq NO . 327Run 328.Xr tpctl 8 329to calibrate touch panel device. 330Passes 331.Sy tpctl_flags . 332.It Sy update_motd 333.Sq YES 334or 335.Sq NO . 336Updates the 337.Nx 338version string in the 339.Pa /etc/motd 340file to reflect the version of the running kernel. 341See 342.Xr motd 5 . 343.It Sy veriexec 344.Sq YES 345or 346.Sq NO . 347Load Veriexec fingerprints during startup. 348Read 349.Xr veriexecctl 8 350for more information. 351.It Sy virecover 352.Sq YES 353or 354.Sq NO . 355Send notification mail to users if any recoverable files exist in 356.Pa /var/tmp/vi.recover . 357See 358.Fl r 359option in 360.Xr vi 1 361for details. 362.El 363.Ss System security setting 364.Bl -tag -width net_interfaces 365.It Sy securelevel 366A number. 367The system securelevel is set to the specified value early 368in the boot process, before any external logins, or other programs 369that run users job, are started. 370If set to nothing, the default action is taken, as described in 371.Xr init 8 , 372which contains definitive information about the system securelevel. 373Note that setting 374.Sy securelevel 375to 0 in 376.Nm 377will actually result in the system booting with securelevel set to 1, as 378.Xr init 8 379will raise the level when 380.Xr rc 8 381completes. 382.It Sy permit_nonalpha 383Allow passwords to include non-alpha characters, usually to allow 384NIS/YP netgroups. 385.It Sy veriexec_strict 386A number. 387Controls the strict level of Veriexec. 388Level 0 is learning mode, used when building the signatures file. 389It will only output messages but will not enforce anything. 390Level 1 will only prevent access to files with a fingerprint 391mismatch. Level 2 will also deny writing to and removing of 392monitored files, as well as enforce access type (as specified in 393the signatures file). Level 3 will take a step further and prevent 394access to files that are not monitored. 395.It Sy veriexec_verbose 396A number. 397Controls the verbosity of Veriexec. 398Recommended operation is at level 0, verbose output (mostly used when 399building the signatures file) is at level 1. 400Level 2 is for debugging only and should not be used. 401.El 402.Ss Networking startup 403.Bl -tag -width net_interfaces 404.It Sy altqd 405.Sq YES 406or 407.Sq NO . 408ALTQ configuration/monitoring daemon. 409Passes 410.Sy altqd_flags . 411.It Sy auto_ifconfig 412.Sq YES 413or 414.Sq NO . 415Sets the 416.Sy net_interfaces 417variable (see below) to the output of 418.Xr ifconfig 8 419with the 420.Dq Li -l 421flag and suppresses warnings about interfaces in this list that 422do not have an ifconfig file or variable. 423.It Sy dhclient 424.Sq YES 425or 426.Sq NO . 427Set to 428.Sq YES 429to configure some or all network interfaces using 430the DHCP client. 431If you set 432.Sy dhclient 433to 434.Sq YES , 435you must either have 436.Pa /var 437in 438.Sy critical_filesystems_local , 439as part of 440.Pa / , 441or direct the DHCP client to store the leases file on the root 442file system by modifying the 443.Sy dhclient_flags 444variable. 445You must not provide ifconfig information or ifaliases 446information for any interface that is to be configured using the DHCP client. 447Interface aliases can be set up in the DHCP client configuration 448file if needed - see 449.Xr dhclient.conf 5 450for details. 451.Pp 452Passes 453.Sy dhclient_flags 454to the DHCP client. 455See 456.Xr dhclient 8 457for complete documentation. 458If you wish to configure all broadcast 459network interfaces using the DHCP client, you can leave this blank. 460To configure only specific interfaces, name the interfaces to be configured 461on the command line. 462.Pp 463If you must run the DHCP client before mounting critical file systems, 464then you should specify an alternate location for the DHCP client's lease 465file in the 466.Sy dhclient_flags 467variable - for example, "-lf /tmp/dhclient.leases". 468.It Sy flushroutes 469.Sq YES 470or 471.Sq NO . 472Flushes the route table on networking startup. 473Useful when coming up to multiuser mode after going down to 474single-user mode. 475.It Sy ifaliases_* 476A string. 477List of 478.Sq Em "address netmask" 479pairs to configure additional network addresses for the given 480configured interface 481.Dq * 482(e.g. 483.Sy ifaliases_le0 ) . 484If 485.Em netmask 486is 487.Dq - , 488then use the default netmask for the interface. 489.Pp 490.Sy ifaliases_* 491covers limited cases only and considered unrecommended. 492We recommend using 493.Pa /etc/ifconfig.xxN 494with multiple lines instead. 495.It Sy ifwatchd 496.Sq YES 497or 498.Sq NO . 499Monitor dynamic interfaces and perform actions upon address changes. 500Passes 501.Sy ifwatchd_flags . 502.It Sy ip6mode 503A string. 504An IPv6 node can be a router 505.Pq nodes that forward packet for others 506or a host 507.Pq nodes that do not forward . 508A host can be autoconfigured 509based on the information advertised by adjacent IPv6 routers. 510By setting 511.Sy ip6mode 512to 513.Dq Li router , 514.Dq Li host , 515or 516.Dq Li autohost , 517you can configure your node as a router, 518a non-autoconfigured host, or an autoconfigured host. 519Invalid values will be ignored, and the node will be configured as 520a non-autoconfigured host. 521You may want to check 522.Sy rtsol 523and 524.Sy rtsold 525as well, if you set the variable to 526.Dq Li autohost . 527.It Sy ip6uniquelocal 528.Sq YES 529or 530.Sq NO . 531If 532.Sy ip6mode 533is equal to 534.Dq Li router 535and 536.Sy ip6uniquelocal 537is set to 538.Sq NO 539a reject route will be installed on boot to avoid misconfiguration relating 540to unique-local addresses. 541If set to 542.Sq YES 543the reject route won't be installed. 544.It Sy ipfilter 545.Sq YES 546or 547.Sq NO . 548Runs 549.Xr ipf 8 550to load in packet filter specifications from 551.Pa /etc/ipf.conf 552at network boot time, before any interfaces are configured. 553See 554.Xr ipf.conf 5 . 555.It Sy ipfs 556.Sq YES 557or 558.Sq NO . 559Runs 560.Xr ipfs 8 561to save and restore information for ipnat and ipfilter state tables. 562The information is stored in 563.Pa /var/db/ipf/ipstate.ipf 564and 565.Pa /var/db/ipf/ipnat.ipf . 566Passes 567.Sy ipfs_flags . 568.It Sy ipmon 569.Sq YES 570or 571.Sq NO . 572Runs 573.Xr ipmon 8 574to read 575.Xr ipf 8 576packet log information and log it to a file or the system log. 577Passes 578.Sy ipmon_flags . 579.It Sy ipmon_flags 580A string. 581Specifies arguments to supply to 582.Xr ipmon 8 . 583Defaults to 584.Dq Li -ns . 585A typical example would be 586.Dq Fl nD Pa /var/log/ipflog 587to have 588.Xr ipmon 8 589log directly to a file bypassing 590.Xr syslogd 8 . 591If the 592.Dq -D 593argument is used, remember to modify 594.Pa /etc/newsyslog.conf 595accordingly; for example: 596.Bd -literal 597/var/log/ipflog 640 10 100 * Z /var/run/ipmon.pid 598.Ed 599.It Sy ipnat 600.Sq YES 601or 602.Sq NO . 603Runs 604.Xr ipnat 8 605to load in the IP network address translation (NAT) rules from 606.Pa /etc/ipnat.conf 607at network boot time, before any interfaces are configured. 608See 609.Xr ipnat.conf 5 . 610.It Sy ipsec 611.Sq YES 612or 613.Sq NO . 614Runs 615.Xr setkey 8 616to load in IPsec manual keys and policies from 617.Pa /etc/ipsec.conf 618at network boot time, before any interfaces are configured. 619.It Sy net_interfaces 620A string. 621The list of network interfaces to be configured at boot time. 622For each interface "xxN", the system first looks for ifconfig 623parameters in 624.Pa /etc/ifconfig.xxN 625and then in the variable 626.Sy ifconfig_xxN . 627The contents of the file or the variable are handed to ifconfig 628after the interface name. 629If 630.Sy auto_ifconfig 631is set to "NO" and neither the file nor the variable is found, 632a warning is printed. 633Refer to 634.Xr ifconfig.if 5 635for more details on 636.Pa /etc/ifconfig.xxN . 637.It Sy ntpdate 638.Sq YES 639or 640.Sq NO . 641Runs 642.Xr ntpdate 8 643to set the system time from one of the hosts in 644.Sy ntpdate_hosts . 645If 646.Sy ntpdate_hosts 647is empty, it will attempt to find a list of hosts in 648.Pa /etc/ntp.conf . 649Passes 650.Sy ntpdate_flags . 651.It Sy ppp_peers 652A string. 653If 654.Sy ppp_peers 655is not empty, then 656.Pa /etc/rc.d/ppp 657will check each word in 658.Sy ppp_peers 659for a corresponding ppp configuration file in 660.Pa /etc/ppp/peers 661and will call 662.Xr pppd 8 663with the 664.Dq call Sy peer 665option. 666.It Sy racoon 667.Sq YES 668or 669.Sq NO . 670Runs 671.Xr racoon 8 , 672the IKE (ISAKMP/Oakley) key management daemon. 673.It Sy rtsol 674.Sq YES 675or 676.Sq NO . 677Run 678.Xr rtsol 8 , 679router solicitation command for IPv6 hosts. 680On nomadic hosts like notebook computers, you may want to enable 681.Sy rtsold 682as well. 683Passes 684.Sy rtsol_flags . 685This is only for autoconfigured IPv6 hosts, so set 686.Sy ip6mode 687to 688.Dq Li autohost 689if you use it. 690.El 691.Ss Daemons required by other daemons 692.Bl -tag -width net_interfaces 693.It Sy inetd 694.Sq YES 695or 696.Sq NO . 697Runs the 698.Xr inetd 8 699daemon to start network server processes (as listed in 700.Pa /etc/inetd.conf ) 701as necessary. 702Passes 703.Sy inetd_flags . 704The 705.Dq Li -l 706flag turns on libwrap connection logging. 707.It Sy rpcbind 708.Sq YES 709or 710.Sq NO . 711The 712.Xr rpcbind 8 713daemon is required for any 714.Xr rpc 3 715services. 716These include NFS, 717.Tn NIS , 718.Xr bootparamd 8 , 719.Xr rstatd 8 , 720.Xr rusersd 8 , 721and 722.Xr rwalld 8 . 723Passes 724.Sy rpcbind_flags . 725.El 726.Ss Commonly used daemons 727.Bl -tag -width net_interfaces 728.It Sy cron 729.Sq YES 730or 731.Sq NO . 732Run 733.Xr cron 8 . 734.It Sy lpd 735.Sq YES 736or 737.Sq NO . 738Runs 739.Xr lpd 8 740and passes 741.Sy lpd_flags . 742The 743.Dq Li -l 744flag will turn on extra logging. 745.It Sy named 746.Sq YES 747or 748.Sq NO . 749Runs 750.Xr named 8 751and passes 752.Sy named_flags . 753.It Sy named_chrootdir 754A string. 755If non-blank and 756.Sy named 757is 758.Sq YES , 759run 760.Xr named 8 761as the unprivileged user and group 762.Sq named , 763.Xr chroot 2 Ns ed 764to 765.Sy named_chrootdir . 766.Sy named_chrootdir Ns Pa /var/run/log 767will be added to the list of log sockets that 768.Xr syslogd 8 769listens to. 770.It Sy ntpd 771.Sq YES 772or 773.Sq NO . 774Runs 775.Xr ntpd 8 776and passes 777.Sy ntpd_flags . 778.It Sy ntpd_chrootdir 779A string. 780If non-blank and 781.Sy ntpd 782is 783.Sq YES , 784run 785.Xr ntpd 8 786as the unprivileged user and group 787.Sq ntpd , 788.Xr chroot 2 Ns ed 789to 790.Sy ntpd_chrootdir . 791.Sy ntpd_chrootdir Ns Pa /var/run/log 792will be added to the list of log sockets that 793.Xr syslogd 8 794listens to. 795This option requires that the kernel has 796.Dl pseudo-device clockctl 797compiled in, and that 798.Pa /dev/clockctl 799is present. 800.It Sy postfix 801.Sq YES 802or 803.Sq NO . 804Starts 805.Xr postfix 1 806mail system. 807.It Sy sendmail 808.Sq YES 809or 810.Sq NO . 811Runs 812.Xr sendmail 8 813and passes 814.Sy sendmail_flags . 815The default setting for this calls on a function to determine if 816sendmail is actually needed, which means the 817.Xr rc.d 8 818script that starts sendmail will check to see if 819.Xr sendmail 8 820needs to run in order to facilitate local mail delivery. 821See 822.Pa /etc/defaults/rc.conf , 823.Pa /etc/mailer.conf , 824and 825.Xr mailer.conf 5 826for more details. 827.It Sy sendmail_suidroot 828.Sq YES 829or 830.Sq NO . 831Asserts that sendmail is being used as a setuid root binary and adjusts 832some precmd checks accordingly. 833If this is set to 834.Sq YES , 835you can remove the submit.cf file, and then turn off the 836.Sy smmsp 837process. 838Note that setting this to 839.Sq YES 840does not change or remove anything; you must still change the mode of 841the sendmail binary and remove the submit.cf file manually. 842.It Sy smmsp 843.Sq YES 844or 845.Sq NO . 846Runs 847.Xr sendmail 8 848as a client queue runner and passes 849.Sy smmsp_flags . 850Note that the smmsp process is not a full-featured SMTP daemon. 851Its main purpose is to flush locally collected mail from the queue, but 852it can also be used as a non-privileged 853.Dq nullclient 854that forwards to a more functional SMTP gateway. 855.It Sy sshd 856.Sq YES 857or 858.Sq NO . 859Runs 860.Xr sshd 8 861and passes 862.Sy sshd_flags . 863.It Sy syslogd 864.Sq YES 865or 866.Sq NO . 867Runs 868.Xr syslogd 8 869and passes 870.Sy syslogd_flags . 871.It Sy timed 872.Sq YES 873or 874.Sq NO . 875Runs 876.Xr timed 8 877and passes 878.Sy timed_flags . 879The 880.Dq Li -M 881option allows 882.Xr timed 8 883to be a master time source as well as a slave. 884If you are also running 885.Xr ntpd 8 , 886only one machine running both should have the 887.Dq Li -M 888flag given to 889.Xr timed 8 . 890.El 891.Ss Routing daemons 892.Bl -tag -width net_interfaces 893.It Sy mrouted 894.Sq YES 895or 896.Sq NO . 897Runs 898.Xr mrouted 8 , 899the DVMRP multicast routing protocol daemon. 900Passes 901.Sy mrouted_flags . 902.It Sy route6d 903.Sq YES 904or 905.Sq NO . 906Runs 907.Xr route6d 8 , 908the RIPng routing protocol daemon for IPv6. 909Passes 910.Sy route6d_flags . 911.It Sy routed 912.Sq YES 913or 914.Sq NO . 915Runs 916.Xr routed 8 , 917the RIP routing protocol daemon. 918Passes 919.Sy routed_flags . 920.\" This should be 921.\" .Sq NO 922.\" if 923.\" .Sy gated 924.\" is 925.\" .Sq YES . 926.It Sy rtsold 927.Sq YES 928or 929.Sq NO . 930Runs 931.Xr rtsold 8 , 932the IPv6 router solicitation daemon. 933.Xr rtsold 8 934periodically transmits router solicitation packets 935to find IPv6 routers on the network. 936This configuration is mainly for nomadic hosts like notebook computers. 937Stationary hosts should work fine with just 938.Sy rtsol . 939Passes 940.Sy rtsold_flags . 941This is only for autoconfigured IPv6 hosts, so set 942.Sy ip6mode 943to 944.Dq Li autohost 945if you use it. 946.El 947.Ss Daemons used to boot other hosts over a network 948.Bl -tag -width net_interfaces 949.It Sy bootparamd 950.Sq YES 951or 952.Sq NO . 953Runs 954.Xr bootparamd 8 , 955the boot parameter server, with 956.Sy bootparamd_flags 957as options. 958Used to boot 959.Nx 960and 961.Tn "SunOS 4.x" 962systems. 963.It Sy dhcpd 964.Sq YES 965or 966.Sq NO . 967Runs 968.Xr dhcpd 8 , 969the Dynamic Host Configuration Protocol (DHCP) daemon, 970for assigning IP addresses to hosts and passing boot information. 971Passes 972.Sy dhcpd_flags . 973.It Sy dhcrelay 974.Sq YES 975or 976.Sq NO . 977Runs 978.Xr dhcrelay 8 . 979Passes 980.Sy dhcrelay_flags . 981.It Sy mopd 982.Sq YES 983or 984.Sq NO . 985Runs 986.Xr mopd 8 , 987the 988.Tn DEC 989.Tn MOP 990protocol daemon; used for booting 991.Tn VAX 992and other 993.Tn DEC 994machines. 995Passes 996.Sy mopd_flags . 997.It Sy ndbootd 998.Sq YES 999or 1000.Sq NO . 1001Runs 1002.Xr ndbootd 8 , 1003the Sun Network Disk (ND) Protocol server. 1004Passes 1005.Sy ndbootd_flags . 1006.It Sy rarpd 1007.Sq YES 1008or 1009.Sq NO . 1010Runs 1011.Xr rarpd 8 , 1012the reverse ARP daemon, often used to boot 1013.Nx 1014and Sun workstations. 1015Passes 1016.Sy rarpd_flags . 1017.It Sy rbootd 1018.Sq YES 1019or 1020.Sq NO . 1021Runs 1022.Xr rbootd 8 , 1023the 1024.Tn HP 1025boot protocol daemon; used for booting 1026.Tn HP 1027workstations. 1028Passes 1029.Sy rbootd_flags . 1030.It Sy rtadvd 1031.Sq YES 1032or 1033.Sq NO . 1034Runs 1035.Xr rtadvd 8 , 1036the IPv6 router advertisement daemon, which is used to advertise 1037information about the subnet to IPv6 end hosts. 1038Passes 1039.Sy rtadvd_flags . 1040This is only for IPv6 routers, so set 1041.Sy ip6mode 1042to 1043.Dq Li router 1044if you use it. 1045.El 1046.Ss X Window System daemons 1047.Bl -tag -width net_interfaces 1048.It Sy xdm 1049.Sq YES 1050or 1051.Sq NO . 1052Runs the 1053.Xr xdm 1 1054X display manager. 1055These X daemons are available only with the optional X distribution of 1056.Nx . 1057.It Sy xfs 1058.Sq YES 1059or 1060.Sq NO . 1061Runs the 1062.Xr xfs 1 1063X11 font server, which supplies local X font files to X terminals. 1064.El 1065.Ss NIS (YP) daemons 1066.Bl -tag -width net_interfaces 1067.It Sy ypbind 1068.Sq YES 1069or 1070.Sq NO . 1071Runs 1072.Xr ypbind 8 , 1073which lets 1074.Tn NIS 1075(YP) clients use information from a 1076.Tn NIS 1077server. 1078Passes 1079.Sy ypbind_flags . 1080.It Sy yppasswdd 1081.Sq YES 1082or 1083.Sq NO . 1084Runs 1085.Xr yppasswdd 8 , 1086which allows remote 1087.Tn NIS 1088users to update password on master server. 1089Passes 1090.Sy yppasswdd_flags . 1091.It Sy ypserv 1092.Sq YES 1093or 1094.Sq NO . 1095Runs 1096.Xr ypserv 8 , 1097the 1098.Tn NIS 1099(YP) server for distributing information from certain files in 1100.Pa /etc . 1101Passes 1102.Sy ypserv_flags . 1103The 1104.Dq Li -d 1105flag causes it to use DNS for lookups in 1106.Pa /etc/hosts 1107that fail. 1108.El 1109.Ss NFS daemons and parameters 1110.Bl -tag -width net_interfaces 1111.It Sy amd 1112.Sq YES 1113or 1114.Sq NO . 1115Runs 1116.Xr amd 8 , 1117the automounter daemon, which automatically mounts NFS file systems 1118whenever a file or directory within that file system is accessed. 1119Passes 1120.Sy amd_flags . 1121.It Sy amd_dir 1122A string. 1123The 1124.Xr amd 8 1125mount directory. 1126Used only if 1127.Sy amd 1128is set to 1129.Sq YES . 1130.It Sy lockd 1131.Sq YES 1132or 1133.Sq NO . 1134Runs 1135.Xr rpc.lockd 8 1136if 1137.Sy nfs_server 1138and/or 1139.Sy nfs_client 1140are set to 1141.Sq YES . 1142Passes 1143.Sy lockd_flags . 1144.It Sy mountd 1145.Sq YES 1146or 1147.Sq NO . 1148Runs 1149.Xr mountd 8 1150and passes 1151.Sy mountd_flags . 1152.It Sy nfs_client 1153.Sq YES 1154or 1155.Sq NO . 1156The number of local NFS asynchronous I/O server is now controlled via 1157.Xr sysctl 8 . 1158.It Sy nfs_server 1159.Sq YES 1160or 1161.Sq NO . 1162Sets up a host to be a NFS server by running 1163.Xr nfsd 8 1164and passing 1165.Sy nfsd_flags . 1166.It Sy statd 1167.Sq YES 1168or 1169.Sq NO . 1170Runs 1171.Xr rpc.statd 8 , 1172a status monitoring daemon used when 1173.Xr rpc.lockd 8 1174is running, if 1175.Sy nfs_server 1176and/or 1177.Sy nfs_client 1178are set to 1179.Sq YES . 1180Passes 1181.Sy statd_flags . 1182.El 1183.Ss Other daemons 1184.Bl -tag -width net_interfaces 1185.It Sy isdnd 1186.Sq YES 1187or 1188.Sq NO . 1189Runs 1190.Xr isdnd 8 , 1191the isdn4bsd ISDN connection management daemon. 1192Passes 1193.Sy isdnd_flags . 1194.It Sy isdn_autoupdown 1195.Sq YES 1196or 1197.Sq NO . 1198Set all configured ISDN interfaces to 1199.Dq up . 1200If 1201.Sy isdn_interfaces 1202is not blank, only the listed interfaces will be modified. 1203Used only if 1204.Sy isdnd 1205is set to 1206.Sq YES . 1207.It Sy kdc 1208.Sq YES 1209or 1210.Sq NO . 1211Runs the 1212.Xr kdc 8 1213Kerberos v4 and v5 server. 1214This should be run on Kerberos master and slave servers. 1215.It Sy rwhod 1216.Sq YES 1217or 1218.Sq NO . 1219Runs 1220.Xr rwhod 8 1221to support the 1222.Xr rwho 1 1223and 1224.Xr ruptime 1 1225commands. 1226.El 1227.Ss Hardware daemons 1228.Bl -tag -width net_interfaces 1229.It Sy apmd 1230.Sq YES 1231or 1232.Sq NO . 1233Runs 1234.Xr apmd 8 1235and passes 1236.Sy apmd_flags . 1237.It Sy moused 1238.Sq YES 1239or 1240.Sq NO . 1241Runs 1242.Xr moused 8 , 1243to pass serial mouse data to the wscons mouse mux. 1244Passes 1245.Sy moused_flags . 1246.It Sy poffd 1247.Sq YES 1248or 1249.Sq NO . 1250Runs 1251.Xr poffd 8 1252x68k shutdown daemon 1253(only for 1254.Nx Ns /x68k ) . 1255Passes 1256.Sy poffd_flags . 1257.It Sy screenblank 1258.Sq YES 1259or 1260.Sq NO . 1261Runs 1262.Xr screenblank 1 1263and passes 1264.Sy screenblank_flags . 1265.It Sy wscons 1266.Sq YES 1267or 1268.Sq NO . 1269Configures the 1270.Xr wscons 4 1271console driver, from the configuration file 1272.Pa /etc/wscons.conf . 1273.It Sy wsmoused 1274.Sq YES 1275or 1276.Sq NO . 1277Runs 1278.Xr wsmoused 8 , 1279to provide copy and paste text support in wscons displays. 1280Passes 1281.Sy wsmoused_flags . 1282.El 1283.Sh FILES 1284.Bl -tag -width /etc/defaults/rc.conf -compact 1285.It Pa /etc/rc.conf 1286The file 1287.Nm 1288resides in 1289.Pa /etc . 1290.It Pa /etc/defaults/rc.conf 1291Default settings for 1292.Nm , 1293sourced by 1294.Nm 1295before the end-user configuration section. 1296.It Pa /etc/rc.conf.d/ Ns Ar foo 1297.Ar foo Ns No -specific 1298.Nm 1299overrides. 1300.El 1301.Sh SEE ALSO 1302.Xr boot 8 , 1303.Xr rc 8 , 1304.Xr rc.d 8 , 1305.Xr rc.subr 8 , 1306.Xr rcorder 8 1307.Sh HISTORY 1308The 1309.Nm 1310file appeared in 1311.Nx 1.3 . 1312