1.\" $NetBSD: rc.conf.5,v 1.98 2006/02/09 23:19:39 wiz Exp $ 2.\" 3.\" Copyright (c) 1996 Matthew R. Green 4.\" Copyright (c) 1997 Curt J. Sampson 5.\" Copyright (c) 1997 Michael W. Long 6.\" Copyright (c) 1998-2002 The NetBSD Foundation, Inc. 7.\" All rights reserved. 8.\" 9.\" This document is derived from works contributed to The NetBSD Foundation 10.\" by Luke Mewburn. 11.\" 12.\" Redistribution and use in source and binary forms, with or without 13.\" modification, are permitted provided that the following conditions 14.\" are met: 15.\" 1. Redistributions of source code must retain the above copyright 16.\" notice, this list of conditions and the following disclaimer. 17.\" 2. Redistributions in binary form must reproduce the above copyright 18.\" notice, this list of conditions and the following disclaimer in the 19.\" documentation and/or other materials provided with the distribution. 20.\" 3. The name of the author may not be used to endorse or promote products 21.\" derived from this software without specific prior written permission. 22.\" 23.\" THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR 24.\" IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES 25.\" OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. 26.\" IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT, 27.\" INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, 28.\" BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; 29.\" LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED 30.\" AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, 31.\" OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 32.\" OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 33.\" SUCH DAMAGE. 34.\" 35.Dd November 24, 2005 36.Dt RC.CONF 5 37.Os 38.Sh NAME 39.Nm rc.conf 40.Nd system startup configuration file 41.Sh DESCRIPTION 42The 43.Nm 44file specifies which services are enabled during system startup by 45the startup scripts invoked by 46.Pa /etc/rc 47(see 48.Xr rc 8 ) , 49and the shutdown scripts invoked by 50.Pa /etc/rc.shutdown . 51The 52.Nm 53file is a shell script that is sourced by 54.Xr rc 8 , 55meaning that 56.Nm 57must contain valid shell commands. 58.Pp 59Listed below are the standard 60.Nm 61variables that may be set, the values to which each may be set, 62a brief description of what each variable does, and a reference to 63relevant manual pages. 64Third party packages may test for additional variables. 65.Pp 66Most variables are one of two types: enabling variables or flags 67variables. 68Enabling variables, such as 69.Sy inetd , 70are generally named after the program or the system they enable, 71and are set to 72.Sq YES 73or 74.Sq NO . 75Flags variables, such as 76.Sy inetd_flags 77have the same name with "_flags" appended, and determine what 78arguments are passed to the program if it is enabled. 79.Pp 80If a variable that 81.Xr rc 8 82expects to be set is not set, or the value is not one of the allowed 83values, a warning will be printed. 84.Pp 85By default, 86.Nm 87reads 88.Pa /etc/defaults/rc.conf 89(if it is readable) 90to obtain default values for various variables, and the end-user 91may override these by appending appropriate entries to the end of 92.Nm . 93.Pp 94.Xr rc.d 8 95scripts that use 96.Ic load_rc_config 97from 98.Xr rc.subr 8 99also support sourcing an optional end-user provided per-script override 100file 101.Pa /etc/rc.conf.d/ Ns Ar service , 102(where 103.Ar service 104is the contents of the 105.Sy name 106variable in the 107.Xr rc.d 8 108script). 109This may contain variable overrides, including allowing the end-user 110to override various 111.Ic run_rc_command 112.Xr rc.d 8 113control variables, and thus changing the operation of the script 114without requiring editing of the script. 115.Ss Overall control 116.Bl -tag -width net_interfaces 117.It Sy do_rcshutdown 118.Sq YES 119or 120.Sq NO . 121If set to 122.Sq NO , 123.Xr shutdown 8 124will not run 125.Pa /etc/rc.shutdown . 126.It Sy rcshutdown_rcorder_flags 127A string. 128Extra arguments to the 129.Xr rcorder 8 130run by 131.Pa /etc/rc.shutdown . 132.It Sy rcshutdown_timeout 133A number. 134If non-blank, use this as the number of seconds to run a watchdog timer for 135which will terminate 136.Pa /etc/rc.shutdown 137if the timer expires before the shutdown script completes. 138.It Sy rc_configured 139.Sq YES 140or 141.Sq NO . 142If not set to 143.Sq YES 144then the system will drop into single-user mode during boot. 145.It Sy rc_fast_and_loose 146If set to a non-empty string, 147each script in 148.Pa /etc/rc.d 149will be executed in the current shell rather than a sub shell. 150This may be faster on slow machines that have an expensive 151.Xr fork 2 152operation. 153.Bl -hang 154.It Em Note : 155Use this at your own risk! 156A rogue command or script may inadvertently prevent boot to multiuser. 157.El 158.It Sy rc_rcorder_flags 159A string. 160Extra arguments to the 161.Xr rcorder 8 162run by 163.Pa /etc/rc . 164.El 165.Ss Basic network configuration 166.Bl -tag -width net_interfaces 167.It Sy defaultroute 168A string. 169Default network route. 170If empty or not set, then the contents of 171.Pa /etc/mygate 172(if it exists) are used. 173.It Sy domainname 174A string. 175.Tn NIS 176(YP) domain of host. 177If empty or not set, then the contents of 178.Pa /etc/defaultdomain 179(if it exists) are used. 180.It Sy force_down_interfaces 181A space separated list of interface names. 182These interfaces will be configured down when going from multiuser to singleuser 183mode or on system shutdown. 184.Pp 185This is important for some stateful interfaces, for example PPP over ISDN 186connections that cost money by connection time or PPPoE interfaces which 187have no direct means of noticing 188.Dq disconnect 189events. 190.Pp 191All active 192.Xr pppoe 4 193and 194.Xr ippp 4 195interfaces will be automatically added to this list. 196.It Sy hostname 197A string. 198Name of host. 199If empty or not set, then the contents of 200.Pa /etc/myname 201(if it exists) are used. 202.El 203.Ss Boottime file-system and swap configuration 204.Bl -tag -width net_interfaces 205.It Sy critical_filesystems_local 206A string. 207File systems mounted very early in the system boot before networking 208services are available. 209Usually 210.Pa /var 211is part of this, because it is needed by services such as 212.Xr dhclient 8 213which may be required to get the network operational. 214.It Sy critical_filesystems_remote 215A string. 216File systems such as 217.Pa /usr 218that may require network services to be available to mount, 219that must be available early in the system boot for general services to use. 220.It Sy fsck_flags 221A string. 222A file system is checked with 223.Xr fsck 8 224during boot before mounting it. 225This option may be used to override the default command-line options 226passed to the 227.Xr fsck 8 228program. 229.Pp 230When set to 231.Fl y , 232.Xr fsck 8 233assumes yes as the answer to all operator questions during file system checks. 234This might be important with hosts where the administrator does not have 235access to the console and an unsuccessful shutdown must not make the host 236unbootable even if the file system checks would fail in preen mode. 237.It Sy no_swap 238.Sq YES 239or 240.Sq NO . 241Set the 242.Sy no_swap 243variable to 244.Sq YES 245if you have configured your system with no swap on purpose. 246If not set to 247.Sq YES , 248and no swap devices 249are configured, the system will warn you. 250.It Sy swapoff 251.Sq YES 252or 253.Sq NO . 254Remove block-type swap devices at shutdown time. 255Useful if swapping onto RAIDframe devices. 256.El 257.Ss One-time actions to perform or programs to run on boot-up 258.Bl -tag -width net_interfaces 259.It Sy accounting 260.Sq YES 261or 262.Sq NO . 263Enables process accounting with 264.Xr accton 8 . 265Requires 266.Pa /var/account/acct 267to exist. 268.It Sy clear_tmp 269.Sq YES 270or 271.Sq NO . 272Clear /tmp after reboot. 273.It Sy dmesg 274.Sq YES 275or 276.Sq NO . 277Create 278.Pa /var/run/dmesg.boot 279from the output of 280.Xr dmesg 8 . 281Passes 282.Sy dmesg_flags . 283.It Sy lkm 284.Sq YES 285or 286.Sq NO . 287Runs 288.Pa /etc/rc.lkm . 289.It Sy mixerctl 290.Sq YES 291or 292.Sq NO . 293Read 294.Xr mixerctl.conf 5 295for how to set mixer values. 296List in 297.Sy mixerctl_mixers 298the devices whose settings are to be saved at shutdown and 299restored at start-up. 300.It Sy newsyslog 301.Sq YES 302or 303.Sq NO . 304Run 305.Nm newsyslog 306to trim logfiles before syslogd starts. 307Intended for laptop users. 308Passes 309.Sy newsyslog_flags . 310.It Sy savecore 311.Sq YES 312or 313.Sq NO . 314Runs the 315.Xr savecore 8 316utility. 317Passes 318.Sy savecore_flags . 319The directory where crash dumps are stored is specified by 320.Sy savecore_dir . 321The default setting is 322.Dq Pa /var/crash . 323.It Sy tpctl 324.Sq YES 325or 326.Sq NO . 327Run 328.Xr tpctl 8 329to calibrate touch panel device. 330Passes 331.Sy tpctl_flags . 332.It Sy update_motd 333.Sq YES 334or 335.Sq NO . 336Updates the 337.Nx 338version string in the 339.Pa /etc/motd 340file to reflect the version of the running kernel. 341See 342.Xr motd 5 . 343.It Sy veriexec 344.Sq YES 345or 346.Sq NO . 347Load Veriexec fingerprints during startup. 348Read 349.Xr veriexecctl 8 350for more information. 351.It Sy virecover 352.Sq YES 353or 354.Sq NO . 355Send notification mail to users if any recoverable files exist in 356.Pa /var/tmp/vi.recover . 357See 358.Fl r 359option in 360.Xr vi 1 361for details. 362.El 363.Ss System security setting 364.Bl -tag -width net_interfaces 365.It Sy securelevel 366A number. 367The system securelevel is set to the specified value early 368in the boot process, before any external logins, or other programs 369that run users job, are started. 370If set to nothing, the default action is taken, as described in 371.Xr init 8 , 372which contains definitive information about the system securelevel. 373Note that setting 374.Sy securelevel 375to 0 in 376.Nm 377will actually result in the system booting with securelevel set to 1, as 378.Xr init 8 379will raise the level when 380.Xr rc 8 381completes. 382.It Sy permit_nonalpha 383Allow passwords to include non-alpha characters, usually to allow 384NIS/YP netgroups. 385.It Sy veriexec_strict 386A number. 387Controls the strict level of Veriexec. 388Level 0 is learning mode, used when building the signatures file. 389It will only output messages but will not enforce anything. 390Level 1 will only prevent access to files with a fingerprint 391mismatch. 392Level 2 will also deny writing to and removing of 393monitored files, as well as enforce access type (as specified in 394the signatures file). 395Level 3 will take a step further and prevent 396access to files that are not monitored. 397.It Sy veriexec_verbose 398A number. 399Controls the verbosity of Veriexec. 400Recommended operation is at level 0, verbose output (mostly used when 401building the signatures file) is at level 1. 402Level 2 is for debugging only and should not be used. 403.El 404.Ss Networking startup 405.Bl -tag -width net_interfaces 406.It Sy altqd 407.Sq YES 408or 409.Sq NO . 410ALTQ configuration/monitoring daemon. 411Passes 412.Sy altqd_flags . 413.It Sy auto_ifconfig 414.Sq YES 415or 416.Sq NO . 417Sets the 418.Sy net_interfaces 419variable (see below) to the output of 420.Xr ifconfig 8 421with the 422.Dq Li -l 423flag and suppresses warnings about interfaces in this list that 424do not have an ifconfig file or variable. 425.It Sy dhclient 426.Sq YES 427or 428.Sq NO . 429Set to 430.Sq YES 431to configure some or all network interfaces using 432the DHCP client. 433If you set 434.Sy dhclient 435to 436.Sq YES , 437you must either have 438.Pa /var 439in 440.Sy critical_filesystems_local , 441as part of 442.Pa / , 443or direct the DHCP client to store the leases file on the root 444file system by modifying the 445.Sy dhclient_flags 446variable. 447You must not provide ifconfig information or ifaliases 448information for any interface that is to be configured using the DHCP client. 449Interface aliases can be set up in the DHCP client configuration 450file if needed - see 451.Xr dhclient.conf 5 452for details. 453.Pp 454Passes 455.Sy dhclient_flags 456to the DHCP client. 457See 458.Xr dhclient 8 459for complete documentation. 460If you wish to configure all broadcast 461network interfaces using the DHCP client, you can leave this blank. 462To configure only specific interfaces, name the interfaces to be configured 463on the command line. 464.Pp 465If you must run the DHCP client before mounting critical file systems, 466then you should specify an alternate location for the DHCP client's lease 467file in the 468.Sy dhclient_flags 469variable - for example, "-lf /tmp/dhclient.leases". 470.It Sy flushroutes 471.Sq YES 472or 473.Sq NO . 474Flushes the route table on networking startup. 475Useful when coming up to multiuser mode after going down to 476single-user mode. 477.It Sy ifaliases_* 478A string. 479List of 480.Sq Em "address netmask" 481pairs to configure additional network addresses for the given 482configured interface 483.Dq * 484(e.g. 485.Sy ifaliases_le0 ) . 486If 487.Em netmask 488is 489.Dq - , 490then use the default netmask for the interface. 491.Pp 492.Sy ifaliases_* 493covers limited cases only and considered unrecommended. 494We recommend using 495.Pa /etc/ifconfig.xxN 496with multiple lines instead. 497.It Sy ifwatchd 498.Sq YES 499or 500.Sq NO . 501Monitor dynamic interfaces and perform actions upon address changes. 502Passes 503.Sy ifwatchd_flags . 504.It Sy ip6mode 505A string. 506An IPv6 node can be a router 507.Pq nodes that forward packet for others 508or a host 509.Pq nodes that do not forward . 510A host can be autoconfigured 511based on the information advertised by adjacent IPv6 routers. 512By setting 513.Sy ip6mode 514to 515.Dq Li router , 516.Dq Li host , 517or 518.Dq Li autohost , 519you can configure your node as a router, 520a non-autoconfigured host, or an autoconfigured host. 521Invalid values will be ignored, and the node will be configured as 522a non-autoconfigured host. 523You may want to check 524.Sy rtsol 525and 526.Sy rtsold 527as well, if you set the variable to 528.Dq Li autohost . 529.It Sy ip6uniquelocal 530.Sq YES 531or 532.Sq NO . 533If 534.Sy ip6mode 535is equal to 536.Dq Li router 537and 538.Sy ip6uniquelocal 539is set to 540.Sq NO 541a reject route will be installed on boot to avoid misconfiguration relating 542to unique-local addresses. 543If set to 544.Sq YES 545the reject route won't be installed. 546.It Sy ipfilter 547.Sq YES 548or 549.Sq NO . 550Runs 551.Xr ipf 8 552to load in packet filter specifications from 553.Pa /etc/ipf.conf 554at network boot time, before any interfaces are configured. 555See 556.Xr ipf.conf 5 . 557.It Sy ipfs 558.Sq YES 559or 560.Sq NO . 561Runs 562.Xr ipfs 8 563to save and restore information for ipnat and ipfilter state tables. 564The information is stored in 565.Pa /var/db/ipf/ipstate.ipf 566and 567.Pa /var/db/ipf/ipnat.ipf . 568Passes 569.Sy ipfs_flags . 570.It Sy ipmon 571.Sq YES 572or 573.Sq NO . 574Runs 575.Xr ipmon 8 576to read 577.Xr ipf 8 578packet log information and log it to a file or the system log. 579Passes 580.Sy ipmon_flags . 581.It Sy ipmon_flags 582A string. 583Specifies arguments to supply to 584.Xr ipmon 8 . 585Defaults to 586.Dq Li -ns . 587A typical example would be 588.Dq Fl nD Pa /var/log/ipflog 589to have 590.Xr ipmon 8 591log directly to a file bypassing 592.Xr syslogd 8 . 593If the 594.Dq -D 595argument is used, remember to modify 596.Pa /etc/newsyslog.conf 597accordingly; for example: 598.Bd -literal 599/var/log/ipflog 640 10 100 * Z /var/run/ipmon.pid 600.Ed 601.It Sy ipnat 602.Sq YES 603or 604.Sq NO . 605Runs 606.Xr ipnat 8 607to load in the IP network address translation (NAT) rules from 608.Pa /etc/ipnat.conf 609at network boot time, before any interfaces are configured. 610See 611.Xr ipnat.conf 5 . 612.It Sy ipsec 613.Sq YES 614or 615.Sq NO . 616Runs 617.Xr setkey 8 618to load in IPsec manual keys and policies from 619.Pa /etc/ipsec.conf 620at network boot time, before any interfaces are configured. 621.It Sy net_interfaces 622A string. 623The list of network interfaces to be configured at boot time. 624For each interface "xxN", the system first looks for ifconfig 625parameters in 626.Pa /etc/ifconfig.xxN 627and then in the variable 628.Sy ifconfig_xxN . 629The contents of the file or the variable are handed to ifconfig 630after the interface name. 631If 632.Sy auto_ifconfig 633is set to "NO" and neither the file nor the variable is found, 634a warning is printed. 635Refer to 636.Xr ifconfig.if 5 637for more details on 638.Pa /etc/ifconfig.xxN . 639.It Sy ntpdate 640.Sq YES 641or 642.Sq NO . 643Runs 644.Xr ntpdate 8 645to set the system time from one of the hosts in 646.Sy ntpdate_hosts . 647If 648.Sy ntpdate_hosts 649is empty, it will attempt to find a list of hosts in 650.Pa /etc/ntp.conf . 651Passes 652.Sy ntpdate_flags . 653.It Sy ppp_peers 654A string. 655If 656.Sy ppp_peers 657is not empty, then 658.Pa /etc/rc.d/ppp 659will check each word in 660.Sy ppp_peers 661for a corresponding ppp configuration file in 662.Pa /etc/ppp/peers 663and will call 664.Xr pppd 8 665with the 666.Dq call Sy peer 667option. 668.It Sy racoon 669.Sq YES 670or 671.Sq NO . 672Runs 673.Xr racoon 8 , 674the IKE (ISAKMP/Oakley) key management daemon. 675.It Sy rtsol 676.Sq YES 677or 678.Sq NO . 679Run 680.Xr rtsol 8 , 681router solicitation command for IPv6 hosts. 682On nomadic hosts like notebook computers, you may want to enable 683.Sy rtsold 684as well. 685Passes 686.Sy rtsol_flags . 687This is only for autoconfigured IPv6 hosts, so set 688.Sy ip6mode 689to 690.Dq Li autohost 691if you use it. 692.El 693.Ss Daemons required by other daemons 694.Bl -tag -width net_interfaces 695.It Sy inetd 696.Sq YES 697or 698.Sq NO . 699Runs the 700.Xr inetd 8 701daemon to start network server processes (as listed in 702.Pa /etc/inetd.conf ) 703as necessary. 704Passes 705.Sy inetd_flags . 706The 707.Dq Li -l 708flag turns on libwrap connection logging. 709.It Sy rpcbind 710.Sq YES 711or 712.Sq NO . 713The 714.Xr rpcbind 8 715daemon is required for any 716.Xr rpc 3 717services. 718These include NFS, 719.Tn NIS , 720.Xr bootparamd 8 , 721.Xr rstatd 8 , 722.Xr rusersd 8 , 723and 724.Xr rwalld 8 . 725Passes 726.Sy rpcbind_flags . 727.El 728.Ss Commonly used daemons 729.Bl -tag -width net_interfaces 730.It Sy cron 731.Sq YES 732or 733.Sq NO . 734Run 735.Xr cron 8 . 736.It Sy lpd 737.Sq YES 738or 739.Sq NO . 740Runs 741.Xr lpd 8 742and passes 743.Sy lpd_flags . 744The 745.Dq Li -l 746flag will turn on extra logging. 747.It Sy named 748.Sq YES 749or 750.Sq NO . 751Runs 752.Xr named 8 753and passes 754.Sy named_flags . 755.It Sy named_chrootdir 756A string. 757If non-blank and 758.Sy named 759is 760.Sq YES , 761run 762.Xr named 8 763as the unprivileged user and group 764.Sq named , 765.Xr chroot 2 Ns ed 766to 767.Sy named_chrootdir . 768.Sy named_chrootdir Ns Pa /var/run/log 769will be added to the list of log sockets that 770.Xr syslogd 8 771listens to. 772.It Sy ntpd 773.Sq YES 774or 775.Sq NO . 776Runs 777.Xr ntpd 8 778and passes 779.Sy ntpd_flags . 780.It Sy ntpd_chrootdir 781A string. 782If non-blank and 783.Sy ntpd 784is 785.Sq YES , 786run 787.Xr ntpd 8 788as the unprivileged user and group 789.Sq ntpd , 790.Xr chroot 2 Ns ed 791to 792.Sy ntpd_chrootdir . 793.Sy ntpd_chrootdir Ns Pa /var/run/log 794will be added to the list of log sockets that 795.Xr syslogd 8 796listens to. 797This option requires that the kernel has 798.Dl pseudo-device clockctl 799compiled in, and that 800.Pa /dev/clockctl 801is present. 802.It Sy postfix 803.Sq YES 804or 805.Sq NO . 806Starts 807.Xr postfix 1 808mail system. 809.It Sy sendmail 810.Sq YES 811or 812.Sq NO . 813Runs 814.Xr sendmail 8 815and passes 816.Sy sendmail_flags . 817The default setting for this calls on a function to determine if 818sendmail is actually needed, which means the 819.Xr rc.d 8 820script that starts sendmail will check to see if 821.Xr sendmail 8 822needs to run in order to facilitate local mail delivery. 823See 824.Pa /etc/defaults/rc.conf , 825.Pa /etc/mailer.conf , 826and 827.Xr mailer.conf 5 828for more details. 829.It Sy sendmail_suidroot 830.Sq YES 831or 832.Sq NO . 833Asserts that sendmail is being used as a setuid root binary and adjusts 834some precmd checks accordingly. 835If this is set to 836.Sq YES , 837you can remove the submit.cf file, and then turn off the 838.Sy smmsp 839process. 840Note that setting this to 841.Sq YES 842does not change or remove anything; you must still change the mode of 843the sendmail binary and remove the submit.cf file manually. 844.It Sy smmsp 845.Sq YES 846or 847.Sq NO . 848Runs 849.Xr sendmail 8 850as a client queue runner and passes 851.Sy smmsp_flags . 852Note that the smmsp process is not a full-featured SMTP daemon. 853Its main purpose is to flush locally collected mail from the queue, but 854it can also be used as a non-privileged 855.Dq nullclient 856that forwards to a more functional SMTP gateway. 857.It Sy sshd 858.Sq YES 859or 860.Sq NO . 861Runs 862.Xr sshd 8 863and passes 864.Sy sshd_flags . 865.It Sy syslogd 866.Sq YES 867or 868.Sq NO . 869Runs 870.Xr syslogd 8 871and passes 872.Sy syslogd_flags . 873.It Sy timed 874.Sq YES 875or 876.Sq NO . 877Runs 878.Xr timed 8 879and passes 880.Sy timed_flags . 881The 882.Dq Li -M 883option allows 884.Xr timed 8 885to be a master time source as well as a slave. 886If you are also running 887.Xr ntpd 8 , 888only one machine running both should have the 889.Dq Li -M 890flag given to 891.Xr timed 8 . 892.El 893.Ss Routing daemons 894.Bl -tag -width net_interfaces 895.It Sy mrouted 896.Sq YES 897or 898.Sq NO . 899Runs 900.Xr mrouted 8 , 901the DVMRP multicast routing protocol daemon. 902Passes 903.Sy mrouted_flags . 904.It Sy route6d 905.Sq YES 906or 907.Sq NO . 908Runs 909.Xr route6d 8 , 910the RIPng routing protocol daemon for IPv6. 911Passes 912.Sy route6d_flags . 913.It Sy routed 914.Sq YES 915or 916.Sq NO . 917Runs 918.Xr routed 8 , 919the RIP routing protocol daemon. 920Passes 921.Sy routed_flags . 922.\" This should be 923.\" .Sq NO 924.\" if 925.\" .Sy gated 926.\" is 927.\" .Sq YES . 928.It Sy rtsold 929.Sq YES 930or 931.Sq NO . 932Runs 933.Xr rtsold 8 , 934the IPv6 router solicitation daemon. 935.Xr rtsold 8 936periodically transmits router solicitation packets 937to find IPv6 routers on the network. 938This configuration is mainly for nomadic hosts like notebook computers. 939Stationary hosts should work fine with just 940.Sy rtsol . 941Passes 942.Sy rtsold_flags . 943This is only for autoconfigured IPv6 hosts, so set 944.Sy ip6mode 945to 946.Dq Li autohost 947if you use it. 948.El 949.Ss Daemons used to boot other hosts over a network 950.Bl -tag -width net_interfaces 951.It Sy bootparamd 952.Sq YES 953or 954.Sq NO . 955Runs 956.Xr bootparamd 8 , 957the boot parameter server, with 958.Sy bootparamd_flags 959as options. 960Used to boot 961.Nx 962and 963.Tn "SunOS 4.x" 964systems. 965.It Sy dhcpd 966.Sq YES 967or 968.Sq NO . 969Runs 970.Xr dhcpd 8 , 971the Dynamic Host Configuration Protocol (DHCP) daemon, 972for assigning IP addresses to hosts and passing boot information. 973Passes 974.Sy dhcpd_flags . 975.It Sy dhcrelay 976.Sq YES 977or 978.Sq NO . 979Runs 980.Xr dhcrelay 8 . 981Passes 982.Sy dhcrelay_flags . 983.It Sy mopd 984.Sq YES 985or 986.Sq NO . 987Runs 988.Xr mopd 8 , 989the 990.Tn DEC 991.Tn MOP 992protocol daemon; used for booting 993.Tn VAX 994and other 995.Tn DEC 996machines. 997Passes 998.Sy mopd_flags . 999.It Sy ndbootd 1000.Sq YES 1001or 1002.Sq NO . 1003Runs 1004.Xr ndbootd 8 , 1005the Sun Network Disk (ND) Protocol server. 1006Passes 1007.Sy ndbootd_flags . 1008.It Sy rarpd 1009.Sq YES 1010or 1011.Sq NO . 1012Runs 1013.Xr rarpd 8 , 1014the reverse ARP daemon, often used to boot 1015.Nx 1016and Sun workstations. 1017Passes 1018.Sy rarpd_flags . 1019.It Sy rbootd 1020.Sq YES 1021or 1022.Sq NO . 1023Runs 1024.Xr rbootd 8 , 1025the 1026.Tn HP 1027boot protocol daemon; used for booting 1028.Tn HP 1029workstations. 1030Passes 1031.Sy rbootd_flags . 1032.It Sy rtadvd 1033.Sq YES 1034or 1035.Sq NO . 1036Runs 1037.Xr rtadvd 8 , 1038the IPv6 router advertisement daemon, which is used to advertise 1039information about the subnet to IPv6 end hosts. 1040Passes 1041.Sy rtadvd_flags . 1042This is only for IPv6 routers, so set 1043.Sy ip6mode 1044to 1045.Dq Li router 1046if you use it. 1047.El 1048.Ss X Window System daemons 1049.Bl -tag -width net_interfaces 1050.It Sy xdm 1051.Sq YES 1052or 1053.Sq NO . 1054Runs the 1055.Xr xdm 1 1056X display manager. 1057These X daemons are available only with the optional X distribution of 1058.Nx . 1059.It Sy xfs 1060.Sq YES 1061or 1062.Sq NO . 1063Runs the 1064.Xr xfs 1 1065X11 font server, which supplies local X font files to X terminals. 1066.El 1067.Ss NIS (YP) daemons 1068.Bl -tag -width net_interfaces 1069.It Sy ypbind 1070.Sq YES 1071or 1072.Sq NO . 1073Runs 1074.Xr ypbind 8 , 1075which lets 1076.Tn NIS 1077(YP) clients use information from a 1078.Tn NIS 1079server. 1080Passes 1081.Sy ypbind_flags . 1082.It Sy yppasswdd 1083.Sq YES 1084or 1085.Sq NO . 1086Runs 1087.Xr yppasswdd 8 , 1088which allows remote 1089.Tn NIS 1090users to update password on master server. 1091Passes 1092.Sy yppasswdd_flags . 1093.It Sy ypserv 1094.Sq YES 1095or 1096.Sq NO . 1097Runs 1098.Xr ypserv 8 , 1099the 1100.Tn NIS 1101(YP) server for distributing information from certain files in 1102.Pa /etc . 1103Passes 1104.Sy ypserv_flags . 1105The 1106.Dq Li -d 1107flag causes it to use DNS for lookups in 1108.Pa /etc/hosts 1109that fail. 1110.El 1111.Ss NFS daemons and parameters 1112.Bl -tag -width net_interfaces 1113.It Sy amd 1114.Sq YES 1115or 1116.Sq NO . 1117Runs 1118.Xr amd 8 , 1119the automounter daemon, which automatically mounts NFS file systems 1120whenever a file or directory within that file system is accessed. 1121Passes 1122.Sy amd_flags . 1123.It Sy amd_dir 1124A string. 1125The 1126.Xr amd 8 1127mount directory. 1128Used only if 1129.Sy amd 1130is set to 1131.Sq YES . 1132.It Sy lockd 1133.Sq YES 1134or 1135.Sq NO . 1136Runs 1137.Xr rpc.lockd 8 1138if 1139.Sy nfs_server 1140and/or 1141.Sy nfs_client 1142are set to 1143.Sq YES . 1144Passes 1145.Sy lockd_flags . 1146.It Sy mountd 1147.Sq YES 1148or 1149.Sq NO . 1150Runs 1151.Xr mountd 8 1152and passes 1153.Sy mountd_flags . 1154.It Sy nfs_client 1155.Sq YES 1156or 1157.Sq NO . 1158The number of local NFS asynchronous I/O server is now controlled via 1159.Xr sysctl 8 . 1160.It Sy nfs_server 1161.Sq YES 1162or 1163.Sq NO . 1164Sets up a host to be a NFS server by running 1165.Xr nfsd 8 1166and passing 1167.Sy nfsd_flags . 1168.It Sy statd 1169.Sq YES 1170or 1171.Sq NO . 1172Runs 1173.Xr rpc.statd 8 , 1174a status monitoring daemon used when 1175.Xr rpc.lockd 8 1176is running, if 1177.Sy nfs_server 1178and/or 1179.Sy nfs_client 1180are set to 1181.Sq YES . 1182Passes 1183.Sy statd_flags . 1184.El 1185.Ss Other daemons 1186.Bl -tag -width net_interfaces 1187.It Sy isdnd 1188.Sq YES 1189or 1190.Sq NO . 1191Runs 1192.Xr isdnd 8 , 1193the isdn4bsd ISDN connection management daemon. 1194Passes 1195.Sy isdnd_flags . 1196.It Sy isdn_autoupdown 1197.Sq YES 1198or 1199.Sq NO . 1200Set all configured ISDN interfaces to 1201.Dq up . 1202If 1203.Sy isdn_interfaces 1204is not blank, only the listed interfaces will be modified. 1205Used only if 1206.Sy isdnd 1207is set to 1208.Sq YES . 1209.It Sy kdc 1210.Sq YES 1211or 1212.Sq NO . 1213Runs the 1214.Xr kdc 8 1215Kerberos v4 and v5 server. 1216This should be run on Kerberos master and slave servers. 1217.It Sy rwhod 1218.Sq YES 1219or 1220.Sq NO . 1221Runs 1222.Xr rwhod 8 1223to support the 1224.Xr rwho 1 1225and 1226.Xr ruptime 1 1227commands. 1228.El 1229.Ss Hardware daemons 1230.Bl -tag -width net_interfaces 1231.It Sy apmd 1232.Sq YES 1233or 1234.Sq NO . 1235Runs 1236.Xr apmd 8 1237and passes 1238.Sy apmd_flags . 1239.It Sy moused 1240.Sq YES 1241or 1242.Sq NO . 1243Runs 1244.Xr moused 8 , 1245to pass serial mouse data to the wscons mouse mux. 1246Passes 1247.Sy moused_flags . 1248.It Sy poffd 1249.Sq YES 1250or 1251.Sq NO . 1252Runs 1253.Xr poffd 8 1254x68k shutdown daemon 1255(only for 1256.Nx Ns /x68k ) . 1257Passes 1258.Sy poffd_flags . 1259.It Sy screenblank 1260.Sq YES 1261or 1262.Sq NO . 1263Runs 1264.Xr screenblank 1 1265and passes 1266.Sy screenblank_flags . 1267.It Sy wscons 1268.Sq YES 1269or 1270.Sq NO . 1271Configures the 1272.Xr wscons 4 1273console driver, from the configuration file 1274.Pa /etc/wscons.conf . 1275.It Sy wsmoused 1276.Sq YES 1277or 1278.Sq NO . 1279Runs 1280.Xr wsmoused 8 , 1281to provide copy and paste text support in wscons displays. 1282Passes 1283.Sy wsmoused_flags . 1284.El 1285.Sh FILES 1286.Bl -tag -width /etc/defaults/rc.conf -compact 1287.It Pa /etc/rc.conf 1288The file 1289.Nm 1290resides in 1291.Pa /etc . 1292.It Pa /etc/defaults/rc.conf 1293Default settings for 1294.Nm , 1295sourced by 1296.Nm 1297before the end-user configuration section. 1298.It Pa /etc/rc.conf.d/ Ns Ar foo 1299.Ar foo Ns No -specific 1300.Nm 1301overrides. 1302.El 1303.Sh SEE ALSO 1304.Xr boot 8 , 1305.Xr rc 8 , 1306.Xr rc.d 8 , 1307.Xr rc.subr 8 , 1308.Xr rcorder 8 1309.Sh HISTORY 1310The 1311.Nm 1312file appeared in 1313.Nx 1.3 . 1314