1.\" Copyright (c) 1995 2.\" Jordan K. Hubbard 3.\" 4.\" Redistribution and use in source and binary forms, with or without 5.\" modification, are permitted provided that the following conditions 6.\" are met: 7.\" 1. Redistributions of source code must retain the above copyright 8.\" notice, this list of conditions and the following disclaimer. 9.\" 2. Redistributions in binary form must reproduce the above copyright 10.\" notice, this list of conditions and the following disclaimer in the 11.\" documentation and/or other materials provided with the distribution. 12.\" 13.\" THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND 14.\" ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 15.\" IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 16.\" ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR BE LIABLE 17.\" FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 18.\" DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 19.\" OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 20.\" HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 21.\" LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 22.\" OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 23.\" SUCH DAMAGE. 24.\" 25.\" $FreeBSD$ 26.\" 27.Dd August 3, 2010 28.Dt RC.CONF 5 29.Os 30.Sh NAME 31.Nm rc.conf 32.Nd system configuration information 33.Sh DESCRIPTION 34The file 35.Nm 36contains descriptive information about the local host name, configuration 37details for any potential network interfaces and which services should be 38started up at system initial boot time. 39In new installations, the 40.Nm 41file is generally initialized by the system installation utility, 42.Xr sysinstall 8 . 43.Pp 44The purpose of 45.Nm 46is not to run commands or perform system startup actions 47directly. 48Instead, it is included by the 49various generic startup scripts in 50.Pa /etc 51which conditionalize their 52internal actions according to the settings found there. 53.Pp 54The 55.Pa /etc/rc.conf 56file is included from the file 57.Pa /etc/defaults/rc.conf , 58which specifies the default settings for all the available options. 59Options need only be specified in 60.Pa /etc/rc.conf 61when the system administrator wishes to override these defaults. 62The file 63.Pa /etc/rc.conf.local 64is used to override settings in 65.Pa /etc/rc.conf 66for historical reasons. 67See the 68.Va rc_conf_files 69variable below. 70.Pp 71Options are set with 72.Dq Ar name Ns Li = Ns Ar value 73assignments that use 74.Xr sh 1 75syntax. 76The following list provides a name and short description for each 77variable that can be set in the 78.Nm 79file: 80.Bl -tag -width indent-two 81.It Va rc_debug 82.Pq Vt bool 83If set to 84.Dq Li YES , 85enable output of debug messages from rc scripts. 86This variable can be helpful in diagnosing mistakes when 87editing or integrating new scripts. 88Beware that this produces copious output to the terminal and 89.Xr syslog 3 . 90.It Va rc_info 91.Pq Vt bool 92If set to 93.Dq Li NO , 94disable informational messages from the rc scripts. 95Informational messages are displayed when 96a condition that is not serious enough to warrant a warning or 97an error occurs. 98.It Va rc_startmsgs 99.Pq Vt bool 100If set to 101.Dq Li YES , 102show 103.Dq Starting foo: 104when faststart is used (e.g., at boot time). 105.It Va early_late_divider 106.Pq Vt str 107The name of the script that should be used as the 108delimiter between the 109.Dq early 110and 111.Dq late 112stages of the boot process. 113The early stage should contain all the services needed to 114get the disks (local or remote) mounted so that the late 115stage can include scripts contained in the directories 116listed in the 117.Va local_startup 118variable (see below). 119Thus, the two likely candidates for this value are 120.Pa mountcritlocal 121for the typical system, and 122.Pa mountcritremote 123if the system needs remote file 124systems mounted to get access to the 125.Va local_startup 126directories; for example when 127.Pa /usr/local 128is NFS mounted. 129For 130.Pa rc.conf 131within a 132.Xr jail 8 133.Pa NETWORKING 134is likely to be an appropriate value. 135Extreme care should be taken when changing this value, 136and before changing it one should ensure that there are 137adequate provisions to recover from a failed boot 138(such as physical contact with the machine, 139or reliable remote console access). 140.It Va swapfile 141.Pq Vt str 142If set to 143.Dq Li NO , 144no swapfile is installed, otherwise the value is used as the full 145pathname to a file to use for additional swap space. 146.It Va apm_enable 147.Pq Vt bool 148If set to 149.Dq Li YES , 150enable support for Automatic Power Management with 151the 152.Xr apm 8 153command. 154.It Va apmd_enable 155.Pq Vt bool 156Run 157.Xr apmd 8 158to handle APM event from userland. 159This also enables support for APM. 160.It Va apmd_flags 161.Pq Vt str 162If 163.Va apmd_enable 164is set to 165.Dq Li YES , 166these are the flags to pass to the 167.Xr apmd 8 168daemon. 169.It Va devd_enable 170.Pq Vt bool 171Run 172.Xr devd 8 173to handle device added, removed or unknown events from the kernel. 174.It Va ddb_enable 175.Pq Vt bool 176Run 177.Xr ddb 8 178to install 179.Xr ddb 4 180scripts at boot time. 181.It Va ddb_config 182.Pq Vt str 183Configuration file for 184.Xr ddb 8 . 185Default 186.Pa /etc/ddb.conf . 187.It Va kldxref_enable 188.Pq Vt bool 189Set to 190.Dq Li NO 191by default. 192Set to 193.Dq Li YES 194to automatically rebuild 195.Pa linker.hints 196files with 197.Xr kldxref 8 198at boot time. 199.It Va kldxref_clobber 200.Pq Vt bool 201Set to 202.Dq Li NO 203by default. 204If 205.Va kldxref_enable 206is true, 207setting to 208.Dq Li YES 209will overwrite existing 210.Pa linker.hints 211files at boot time. 212Otherwise, 213only missing 214.Pa linker.hints 215files are generated. 216.It Va kldxref_module_path 217.Pq Vt str 218Empty by default. 219A semi-colon 220.Pq Ql \&; 221delimited list of paths containing 222.Xr kld 4 223modules. 224If empty, 225the contents of the 226.Va kern.module_path 227.Xr sysctl 8 228are used. 229.It Va powerd_enable 230.Pq Vt bool 231If set to 232.Dq Li YES , 233enable the system power control facility with the 234.Xr powerd 8 235daemon. 236.It Va powerd_flags 237.Pq Vt str 238If 239.Va powerd_enable 240is set to 241.Dq Li YES , 242these are the flags to pass to the 243.Xr powerd 8 244daemon. 245.It Va tmpmfs 246Controls the creation of a 247.Pa /tmp 248memory file system. 249Always happens if set to 250.Dq Li YES 251and never happens if set to 252.Dq Li NO . 253If set to anything else, a memory file system is created if 254.Pa /tmp 255is not writable. 256.It Va tmpsize 257Controls the size of a created 258.Pa /tmp 259memory file system. 260.It Va tmpmfs_flags 261Extra options passed to the 262.Xr mdmfs 8 263utility when the memory file system for 264.Pa /tmp 265is created. 266The default is 267.Dq Li "-S" , 268which inhibits the use of softupdates on 269.Pa /tmp 270so that file system space is freed without delay 271after file truncation or deletion. 272See 273.Xr mdmfs 8 274for other options you can use in 275.Va tmpmfs_flags . 276.It Va varmfs 277Controls the creation of a 278.Pa /var 279memory file system. 280Always happens if set to 281.Dq Li YES 282and never happens if set to 283.Dq Li NO . 284If set to anything else, a memory file system is created if 285.Pa /var 286is not writable. 287.It Va varsize 288Controls the size of a created 289.Pa /var 290memory file system. 291.It Va varmfs_flags 292Extra options passed to the 293.Xr mdmfs 8 294utility when the memory file system for 295.Pa /var 296is created. 297The default is 298.Dq Li "-S" , 299which inhibits the use of softupdates on 300.Pa /var 301so that file system space is freed without delay 302after file truncation or deletion. 303See 304.Xr mdmfs 8 305for other options you can use in 306.Va varmfs_flags . 307.It Va populate_var 308Controls the automatic population of the 309.Pa /var 310file system. 311Always happens if set to 312.Dq Li YES 313and never happens if set to 314.Dq Li NO . 315If set to anything else, a memory file system is created if 316.Pa /var 317is not writable. 318Note that this process requires access to certain commands in 319.Pa /usr 320before 321.Pa /usr 322is mounted on normal systems. 323.It Va cleanvar_enable 324.Pq Vt bool 325Clean the 326.Pa /var 327directory. 328.It Va local_startup 329.Pq Vt str 330List of directories to search for startup script files. 331.It Va script_name_sep 332.Pq Vt str 333The field separator to use for breaking down the list of startup script files 334into individual filenames. 335The default is a space. 336It is not necessary to change this unless there are startup scripts with names 337containing spaces. 338.It Va hostapd_enable 339.Pq Vt bool 340Set to 341.Dq Li YES 342to start 343.Xr hostapd 8 344at system boot time. 345.It Va hostname 346.Pq Vt str 347The fully qualified domain name (FQDN) of this host on the network. 348This should almost certainly be set to something meaningful, even if 349there is no network connection. 350If 351.Xr dhclient 8 352is used to set the hostname via DHCP, 353this variable should be set to an empty string. 354If this value remains unset when the system is done booting 355your console login will display the default hostname of 356.Dq Amnesiac. 357.It Va nisdomainname 358.Pq Vt str 359The NIS domain name of this host, or 360.Dq Li NO 361if NIS is not used. 362.It Va dhclient_program 363.Pq Vt str 364Path to the DHCP client program 365.Pa ( /sbin/dhclient , 366the 367.Ox 368DHCP client, 369is the default). 370.It Va dhclient_flags 371.Pq Vt str 372Additional flags to pass to the DHCP client program. 373For the 374.Ox 375DHCP client, see the 376.Xr dhclient 8 377manpage for a description of the command line options available. 378.It Va dhclient_flags_ Ns Aq Ar iface 379Additional flags to pass to the DHCP client program running on 380.Ar iface 381only. 382When specified, this variable overrides 383.Va dhclient_flags . 384.It Va background_dhclient 385.Pq Vt bool 386Set to 387.Dq Li YES 388to start the DHCP client in background. 389This can cause trouble with applications depending on 390a working network, but it will provide a faster startup 391in many cases. 392.It Va background_dhclient_ Ns Aq Ar iface 393When specified, this variable overrides the 394.Va background_dhclient 395variable for interface 396.Ar iface 397only. 398.It Va synchronous_dhclient 399.Pq Vt bool 400Set to 401.Dq Li YES 402to start 403.Xr dhclient 8 404synchronously at startup. 405This behavior can be overridden on a per-interface basis by replacing 406the 407.Dq Li DHCP 408keyword in the 409.Va ifconfig_ Ns Aq Ar interface 410variable with 411.Dq Li SYNCDHCP 412or 413.Dq Li NOSYNCDHCP . 414.It Va defaultroute_delay 415.Pq Vt int 416When set to a positive value, wait up to this long after configuring 417DHCP interfaces at startup to give the interfaces time to receive a lease. 418.It Va firewall_enable 419.Pq Vt bool 420Set to 421.Dq Li YES 422to load firewall rules at startup. 423If the kernel was not built with 424.Cd "options IPFIREWALL" , 425the 426.Pa ipfw.ko 427kernel module will be loaded. 428See also 429.Va ipfilter_enable . 430.It Va firewall_script 431.Pq Vt str 432This variable specifies the full path to the firewall script to run. 433The default is 434.Pa /etc/rc.firewall . 435.It Va firewall_type 436.Pq Vt str 437Names the firewall type from the selection in 438.Pa /etc/rc.firewall , 439or the file which contains the local firewall ruleset. 440Valid selections from 441.Pa /etc/rc.firewall 442are: 443.Pp 444.Bl -tag -width ".Li simple" -compact 445.It Li open 446unrestricted IP access 447.It Li closed 448all IP services disabled, except via 449.Dq Li lo0 450.It Li client 451basic protection for a workstation 452.It Li simple 453basic protection for a LAN. 454.El 455.Pp 456If a filename is specified, the full path 457must be given. 458.It Va firewall_quiet 459.Pq Vt bool 460Set to 461.Dq Li YES 462to disable the display of firewall rules on the console during boot. 463.It Va firewall_logging 464.Pq Vt bool 465Set to 466.Dq Li YES 467to enable firewall event logging. 468This is equivalent to the 469.Dv IPFIREWALL_VERBOSE 470kernel option. 471.It Va firewall_flags 472.Pq Vt str 473Flags passed to 474.Xr ipfw 8 475if 476.Va firewall_type 477specifies a filename. 478.It Va firewall_coscripts 479.Pq Vt str 480List of executables and/or rc scripts to run after firewall starts/stops. 481Default is empty. 482.\" ----- firewall_nat_enable setting -------------------------------- 483.It Va firewall_nat_enable 484.Pq Vt bool 485The 486.Xr ipfw 8 487equivalent of 488.Va natd_enable . 489Setting this to 490.Dq Li YES 491enables kernel NAT. 492.Va firewall_enable 493must also be set to 494.Dq Li YES . 495.It Va firewall_nat_interface 496.Pq Vt str 497The 498.Xr ipfw 8 499equivalent of 500.Va natd_interface . 501This is the name of the public interface or IP address on which 502kernel NAT should run. 503.It Va firewall_nat_flags 504.Pq Vt str 505Additional configuration parameters for kernel NAT should be placed here. 506.It Va dummynet_enable 507.Pq Vt bool 508Setting this to 509.Dq Li YES 510will automatically load the 511.Xr dummynet 4 512module if 513.Va firewall_enable 514is also set to 515.Dq Li YES . 516.\" ------------------------------------------------------------------- 517.It Va natd_program 518.Pq Vt str 519Path to 520.Xr natd 8 . 521.It Va natd_enable 522.Pq Vt bool 523Set to 524.Dq Li YES 525to enable 526.Xr natd 8 . 527.Va firewall_enable 528must also be set to 529.Dq Li YES , 530and 531.Xr divert 4 532sockets must be enabled in the kernel. 533If the kernel was not built with 534.Cd "options IPDIVERT" , 535the 536.Pa ipdivert.ko 537kernel module will be loaded. 538.It Va natd_interface 539.Pq Vt str 540This is the name of the public interface on which 541.Xr natd 8 542should run. 543The interface may be given as an interface name or as an IP address. 544.It Va natd_flags 545.Pq Vt str 546Additional 547.Xr natd 8 548flags should be placed here. 549The 550.Fl n 551or 552.Fl a 553flag is automatically added with the above 554.Va natd_interface 555as an argument. 556.\" ----- ipfilter_enable setting -------------------------------- 557.It Va ipfilter_enable 558.Pq Vt bool 559Set to 560.Dq Li NO 561by default. 562Setting this to 563.Dq Li YES 564enables 565.Xr ipf 8 566packet filtering. 567.Pp 568Typical usage will require putting 569.Bd -literal 570ipfilter_enable="YES" 571ipnat_enable="YES" 572ipmon_enable="YES" 573ipfs_enable="YES" 574.Ed 575.Pp 576into 577.Pa /etc/rc.conf 578and editing 579.Pa /etc/ipf.rules 580and 581.Pa /etc/ipnat.rules 582appropriately. 583.Pp 584Note that 585.Va ipfilter_enable 586and 587.Va ipnat_enable 588can be enabled independently. 589.Va ipmon_enable 590and 591.Va ipfs_enable 592both require at least one of 593.Va ipfilter_enable 594and 595.Va ipnat_enable 596to be enabled. 597.Pp 598Having 599.Bd -literal 600options IPFILTER 601options IPFILTER_LOG 602options IPFILTER_DEFAULT_BLOCK 603.Ed 604.Pp 605in the kernel configuration file is a good idea, too. 606.\" ----- ipfilter_program setting ------------------------------ 607.It Va ipfilter_program 608.Pq Vt str 609Path to 610.Xr ipf 8 611(default 612.Pa /sbin/ipf ) . 613.\" ----- ipfilter_rules setting -------------------------------- 614.It Va ipfilter_rules 615.Pq Vt str 616Set to 617.Pa /etc/ipf.rules 618by default. 619This variable contains the name of the filter rule definition file. 620The file is expected to be readable for the 621.Xr ipf 8 622command to execute. 623.\" ----- ipv6_ipfilter_rules setting --------------------------- 624.It Va ipv6_ipfilter_rules 625.Pq Vt str 626Set to 627.Pa /etc/ipf6.rules 628by default. 629This variable contains the IPv6 filter rule definition file. 630The file is expected to be readable for the 631.Xr ipf 8 632command to execute. 633.\" ----- ipfilter_flags setting -------------------------------- 634.It Va ipfilter_flags 635.Pq Vt str 636Empty by default. 637This variable contains flags passed to the 638.Xr ipf 8 639program. 640.\" ----- ipnat_enable setting ---------------------------------- 641.It Va ipnat_enable 642.Pq Vt bool 643Set to 644.Dq Li NO 645by default. 646Set it to 647.Dq Li YES 648to enable 649.Xr ipnat 8 650network address translation. 651See 652.Va ipfilter_enable 653for a detailed discussion. 654.\" ----- ipnat_program setting --------------------------------- 655.It Va ipnat_program 656.Pq Vt str 657Path to 658.Xr ipnat 8 659(default 660.Pa /sbin/ipnat ) . 661.\" ----- ipnat_rules setting ----------------------------------- 662.It Va ipnat_rules 663.Pq Vt str 664Set to 665.Pa /etc/ipnat.rules 666by default. 667This variable contains the name of the file 668holding the network address translation definition. 669This file is expected to be readable for the 670.Xr ipnat 8 671command to execute. 672.\" ----- ipnat_flags setting ----------------------------------- 673.It Va ipnat_flags 674.Pq Vt str 675Empty by default. 676This variable contains flags passed to the 677.Xr ipnat 8 678program. 679.\" ----- ipmon_enable setting ---------------------------------- 680.It Va ipmon_enable 681.Pq Vt bool 682Set to 683.Dq Li NO 684by default. 685Set it to 686.Dq Li YES 687to enable 688.Xr ipmon 8 689monitoring (logging 690.Xr ipf 8 691and 692.Xr ipnat 8 693events). 694Setting this variable needs setting 695.Va ipfilter_enable 696or 697.Va ipnat_enable 698too. 699See 700.Va ipfilter_enable 701for a detailed discussion. 702.\" ----- ipmon_program setting --------------------------------- 703.It Va ipmon_program 704.Pq Vt str 705Path to 706.Xr ipmon 8 707(default 708.Pa /sbin/ipmon ) . 709.\" ----- ipmon_flags setting ----------------------------------- 710.It Va ipmon_flags 711.Pq Vt str 712Set to 713.Dq Li -Ds 714by default. 715This variable contains flags passed to the 716.Xr ipmon 8 717program. 718Another typical example would be 719.Dq Fl D Pa /var/log/ipflog 720to have 721.Xr ipmon 8 722log directly to a file bypassing 723.Xr syslogd 8 . 724Make sure to adjust 725.Pa /etc/newsyslog.conf 726in such case like this: 727.Bd -literal 728/var/log/ipflog 640 10 100 * Z /var/run/ipmon.pid 729.Ed 730.\" ----- ipfs_enable setting ----------------------------------- 731.It Va ipfs_enable 732.Pq Vt bool 733Set to 734.Dq Li NO 735by default. 736Set it to 737.Dq Li YES 738to enable 739.Xr ipfs 8 740saving the filter and NAT state tables during shutdown 741and reloading them during startup again. 742Setting this variable needs setting 743.Va ipfilter_enable 744or 745.Va ipnat_enable 746to 747.Dq Li YES 748too. 749See 750.Va ipfilter_enable 751for a detailed discussion. 752Note that if 753.Va kern_securelevel 754is set to 3, 755.Va ipfs_enable 756cannot be used 757because the raised securelevel will prevent 758.Xr ipfs 8 759from saving the state tables at shutdown time. 760.\" ----- ipfs_program setting ---------------------------------- 761.It Va ipfs_program 762.Pq Vt str 763Path to 764.Xr ipfs 8 765(default 766.Pa /sbin/ipfs ) . 767.\" ----- ipfs_flags setting ------------------------------------ 768.It Va ipfs_flags 769.Pq Vt str 770Empty by default. 771This variable contains flags passed to the 772.Xr ipfs 8 773program. 774.\" ----- end of added ipf hook --------------------------------- 775.It Va pf_enable 776.Pq Vt bool 777Set to 778.Dq Li NO 779by default. 780Setting this to 781.Dq Li YES 782enables 783.Xr pf 4 784packet filtering. 785.Pp 786Typical usage will require putting 787.Pp 788.Dl pf_enable="YES" 789.Pp 790into 791.Pa /etc/rc.conf 792and editing 793.Pa /etc/pf.conf 794appropriately. 795Adding 796.Pp 797.Dl "device pf" 798.Pp 799builds support for 800.Xr pf 4 801into the kernel, otherwise the 802kernel module will be loaded. 803.It Va pf_rules 804.Pq Vt str 805Path to 806.Xr pf 4 807ruleset configuration file 808(default 809.Pa /etc/pf.conf ) . 810.It Va pf_program 811.Pq Vt str 812Path to 813.Xr pfctl 8 814(default 815.Pa /sbin/pfctl ) . 816.It Va pf_flags 817.Pq Vt str 818If 819.Va pf_enable 820is set to 821.Dq Li YES , 822these flags are passed to the 823.Xr pfctl 8 824program when loading the ruleset. 825.It Va pflog_enable 826.Pq Vt bool 827Set to 828.Dq Li NO 829by default. 830Setting this to 831.Dq Li YES 832enables 833.Xr pflogd 8 834which logs packets from the 835.Xr pf 4 836packet filter. 837.It Va pflog_logfile 838.Pq Vt str 839If 840.Va pflog_enable 841is set to 842.Dq Li YES 843this controls where 844.Xr pflogd 8 845stores the logfile 846(default 847.Pa /var/log/pflog ) . 848Check 849.Pa /etc/newsyslog.conf 850to adjust logfile rotation for this. 851.It Va pflog_program 852.Pq Vt str 853Path to 854.Xr pflogd 8 855(default 856.Pa /sbin/pflogd ) . 857.It Va pflog_flags 858.Pq Vt str 859Empty by default. 860This variable contains additional flags passed to the 861.Xr pflogd 8 862program. 863.It Va ftpproxy_enable 864.Pq Vt bool 865Set to 866.Dq Li NO 867by default. 868Setting this to 869.Dq Li YES 870enables 871.Xr ftp-proxy 8 872which supports the 873.Xr pf 4 874packet filter in translating ftp connections. 875.It Va ftpproxy_flags 876.Pq Vt str 877Empty by default. 878This variable contains additional flags passed to the 879.Xr ftp-proxy 8 880program. 881.It Va pfsync_enable 882.Pq Vt bool 883Set to 884.Dq Li NO 885by default. 886Setting this to 887.Dq Li YES 888enables exposing 889.Xr pf 4 890state changes to other hosts over the network by means of 891.Xr pfsync 4 . 892The 893.Va pfsync_syncdev 894variable 895must also be set then. 896.It Va pfsync_syncdev 897.Pq Vt str 898Empty by default. 899This variable specifies the name of the network interface 900.Xr pfsync 4 901should operate through. 902It must be set accordingly if 903.Va pfsync_enable 904is set to 905.Dq Li YES . 906.It Va pfsync_syncpeer 907.Pq Vt str 908Empty by default. 909This variable is optional. 910By default, state change messages are sent out on the synchronisation 911interface using IP multicast packets. 912The protocol is IP protocol 240, PFSYNC, and the multicast group used is 913224.0.0.240. 914When a peer address is specified using the 915.Va pfsync_syncpeer 916option, the peer address is used as a destination for the pfsync 917traffic, and the traffic can then be protected using 918.Xr ipsec 4 . 919See the 920.Xr pfsync 4 921manpage for more details about using 922.Xr ipsec 4 923with 924.Xr pfsync 4 925interfaces. 926.It Va pfsync_ifconfig 927.Pq Vt str 928Empty by default. 929This variable can contain additional options to be passed to the 930.Xr ifconfig 8 931command used to set up 932.Xr pfsync 4 . 933.It Va tcp_extensions 934.Pq Vt bool 935Set to 936.Dq Li YES 937by default. 938Setting this to 939.Dq Li NO 940disables certain TCP options as described by 941.Rs 942.%T "RFC 1323" 943.Re 944Setting this to 945.Dq Li NO 946might help remedy such problems with connections as randomly hanging 947or other weird behavior. 948Some network devices are known 949to be broken with respect to these options. 950.It Va log_in_vain 951.Pq Vt int 952Set to 0 by default. 953The 954.Xr sysctl 8 955variables, 956.Va net.inet.tcp.log_in_vain 957and 958.Va net.inet.udp.log_in_vain , 959as described in 960.Xr tcp 4 961and 962.Xr udp 4 , 963are set to the given value. 964.It Va tcp_keepalive 965.Pq Vt bool 966Set to 967.Dq Li YES 968by default. 969Setting to 970.Dq Li NO 971will disable probing idle TCP connections to verify that the 972peer is still up and reachable. 973.It Va tcp_drop_synfin 974.Pq Vt bool 975Set to 976.Dq Li NO 977by default. 978Setting to 979.Dq Li YES 980will cause the kernel to ignore TCP frames that have both 981the SYN and FIN flags set. 982This prevents OS fingerprinting, but may 983break some legitimate applications. 984.It Va icmp_drop_redirect 985.Pq Vt bool 986Set to 987.Dq Li NO 988by default. 989Setting to 990.Dq Li YES 991will cause the kernel to ignore ICMP REDIRECT packets. 992Refer to 993.Xr icmp 4 994for more information. 995.It Va icmp_log_redirect 996.Pq Vt bool 997Set to 998.Dq Li NO 999by default. 1000Setting to 1001.Dq Li YES 1002will cause the kernel to log ICMP REDIRECT packets. 1003Note that 1004the log messages are not rate-limited, so this option should only be used 1005for troubleshooting networks. 1006Refer to 1007.Xr icmp 4 1008for more information. 1009.It Va icmp_bmcastecho 1010.Pq Vt bool 1011Set to 1012.Dq Li YES 1013to respond to broadcast or multicast ICMP ping packets. 1014Refer to 1015.Xr icmp 4 1016for more information. 1017.It Va ip_portrange_first 1018.Pq Vt int 1019If not set to 1020.Dq Li NO , 1021this is the first port in the default portrange. 1022Refer to 1023.Xr ip 4 1024for more information. 1025.It Va ip_portrange_last 1026.Pq Vt int 1027If not set to 1028.Dq Li NO , 1029this is the last port in the default portrange. 1030Refer to 1031.Xr ip 4 1032for more information. 1033.It Va network_interfaces 1034.Pq Vt str 1035Set to the list of network interfaces to configure on this host or 1036.Dq Li AUTO 1037(the default) for all current interfaces. 1038Setting the 1039.Va network_interfaces 1040variable to anything other than the default is deprecated. 1041Interfaces that the administrator wishes to store configuration for, 1042but not start at boot should be configured with the 1043.Dq Li NOAUTO 1044keyword in their 1045.Va ifconfig_ Ns Aq Ar interface 1046variables as described below. 1047.Pp 1048An 1049.Va ifconfig_ Ns Aq Ar interface 1050variable is also assumed to exist for each value of 1051.Ar interface . 1052When an interface name contains any of the characters 1053.Dq Li .-/+ 1054they are translated to 1055.Dq Li _ 1056before lookup. 1057The variable can contain arguments to 1058.Xr ifconfig 8 , 1059as well as special case-insensitive keywords described below. 1060Such keywords are removed before passing the value to 1061.Xr ifconfig 8 1062while the order of the other arguments is preserved. 1063.Pp 1064One can configure more than one IPv4 address with the 1065.Va ipv4_addrs_ Ns Aq Ar interface 1066variable. 1067One or more IP addresses must be provided in Classless Inter-Domain 1068Routing (CIDR) address notation, whose last byte can be a range like 1069192.0.2.5-23/24. 1070In this case the address 192.0.2.5 will be configured with the 1071netmask /24 and the addresses 192.0.2.6 to 192.0.2.23 with 1072the non-conflicting netmask /32 as explained in the 1073.Xr ifconfig 8 1074alias section. 1075With the interface in question being 1076.Li ed0 , 1077an example could look like: 1078.Bd -literal 1079ipv4_addrs_ed0="192.0.2.129/27 192.0.2.1-5/28" 1080.Ed 1081.Pp 1082It is also possible to add IP alias entries using 1083.Xr ifconfig 8 1084syntax. 1085Assuming that the interface in question was 1086.Li ed0 , 1087it might look 1088something like this: 1089.Bd -literal 1090ifconfig_ed0_alias0="inet 127.0.0.253 netmask 0xffffffff" 1091ifconfig_ed0_alias1="inet 127.0.0.254 netmask 0xffffffff" 1092.Ed 1093.Pp 1094And so on. 1095For each 1096.Va ifconfig_ Ns Ao Ar interface Ac Ns Va _alias Ns Aq Ar n 1097entry that is found, 1098its contents are passed to 1099.Xr ifconfig 8 . 1100Execution stops at the first unsuccessful access, so if 1101something like this is present: 1102.Bd -literal 1103ifconfig_ed0_alias0="inet 127.0.0.251 netmask 0xffffffff" 1104ifconfig_ed0_alias1="inet 127.0.0.252 netmask 0xffffffff" 1105ifconfig_ed0_alias2="inet 127.0.0.253 netmask 0xffffffff" 1106ifconfig_ed0_alias4="inet 127.0.0.254 netmask 0xffffffff" 1107.Ed 1108.Pp 1109Then note that alias4 would 1110.Em not 1111be added since the search would 1112stop with the missing 1113.Dq Li alias3 1114entry. 1115Due to this difficult to manage behavior, the 1116.Va ifconfig_ Ns Ao Ar interface Ac Ns Va _alias Ns Aq Ar n 1117form is deprecated. 1118.Pp 1119If the 1120.Pa /etc/start_if. Ns Aq Ar interface 1121file is present, it is read and executed by the 1122.Xr sh 1 1123interpreter 1124before configuring the interface as specified in the 1125.Va ifconfig_ Ns Aq Ar interface 1126and 1127.Va ifconfig_ Ns Ao Ar interface Ac Ns Va _alias Ns Aq Ar n 1128variables. 1129.Pp 1130If a 1131.Va vlans_ Ns Aq Ar interface 1132variable is set, 1133a 1134.Xr vlan 4 1135interface will be created for each item in the list with the 1136.Ar vlandev 1137argument set to 1138.Ar interface . 1139If a vlan interface's name is a number, 1140then that number is used as the vlan tag and the new vlan interface is 1141named 1142.Ar interface . Ns Ar tag . 1143Otherwise, 1144the vlan tag must be specified via a 1145.Va vlan 1146parameter in the 1147.Va create_args_ Ns Aq Ar interface 1148variable. 1149.Pp 1150To create a vlan device named 1151.Li em0.101 1152on 1153.Li em0 1154with the vlan tag 101 and the optional the IPv4 address 192.0.2.1/24: 1155.Bd -literal 1156vlans_em0="101" 1157ifconfig_em0_101="inet 192.0.2.1/24" 1158.Ed 1159.Pp 1160To create a vlan device named 1161.Li myvlan 1162on 1163.Li em0 1164with the vlan tag 102: 1165.Bd -literal 1166vlans_em0="myvlan" 1167create_args_myvlan="vlan 102" 1168.Ed 1169.Pp 1170If a 1171.Va wlans_ Ns Aq Ar interface 1172variable is set, 1173an 1174.Xr wlan 4 1175interface will be created for each item in the list with the 1176.Ar wlandev 1177argument set to 1178.Ar interface . 1179Further wlan cloning arguments may be passed to the 1180.Xr ifconfig 8 1181.Cm create 1182command by setting the 1183.Va create_args_ Ns Aq Ar interface 1184variable. 1185One or more 1186.Xr wlan 4 1187devices must be created for each wireless devices as of 1188.Fx 8.0 . 1189Debugging flags for 1190.Xr wlan 4 1191devices as set by 1192.Xr wlandebug 8 1193may be specified with an 1194.Va wlandebug_ Ns Aq Ar interface 1195variable. 1196The contents of this variable will be passed directly to 1197.Xr wlandebug 8 . 1198.Pp 1199If the 1200.Va ifconfig_ Ns Aq Ar interface 1201contains the keyword 1202.Dq Li NOAUTO 1203then the interface will not be configured 1204at boot or by 1205.Pa /etc/pccard_ether 1206when 1207.Va network_interfaces 1208is set to 1209.Dq Li AUTO . 1210.Pp 1211It is possible to bring up an interface with DHCP by adding 1212.Dq Li DHCP 1213to the 1214.Va ifconfig_ Ns Aq Ar interface 1215variable. 1216For instance, to initialize the 1217.Li ed0 1218device via DHCP, 1219it is possible to use something like: 1220.Bd -literal 1221ifconfig_ed0="DHCP" 1222.Ed 1223.Pp 1224Also, if you want to configure your wireless interface with 1225.Xr wpa_supplicant 8 1226for use with WPA, EAP/LEAP or WEP, you need to add 1227.Dq Li WPA 1228to the 1229.Va ifconfig_ Ns Aq Ar interface 1230variable. 1231.Pp 1232Finally, you can add 1233.Xr ifconfig 8 1234options in this variable, in addition to the 1235.Pa /etc/start_if. Ns Aq Ar interface 1236file. 1237For instance, to configure an 1238.Xr ath 4 1239wireless device in station mode with an address obtained 1240via DHCP, using WPA authentication and 802.11b mode, it is 1241possible to use something like: 1242.Bd -literal 1243wlans_ath0="wlan0" 1244ifconfig_wlan0="DHCP WPA mode 11b" 1245.Ed 1246.Pp 1247In addition to the 1248.Va ifconfig_ Ns Aq Ar interface 1249form, a fallback variable 1250.Va ifconfig_DEFAULT 1251may be configured. 1252It will be used for all interfaces with no 1253.Va ifconfig_ Ns Aq Ar interface 1254variable. 1255This is intended to replace the no longer supported 1256.Va pccard_ifconfig 1257variable. 1258.Pp 1259It is also possible to rename an interface by doing: 1260.Bd -literal 1261ifconfig_ed0_name="net0" 1262ifconfig_net0="inet 192.0.2.1 netmask 0xffffff00" 1263.Ed 1264.\" Remove in FreeBSD 10.x 1265.It Va ipv6_enable 1266.Pq Vt bool 1267.Pp 1268This option is deprecated. 1269.Pp 1270If the variable is 1271.Dq Li YES 1272it has no effect. 1273To configure IPv6 for an interface see 1274.Va ipv6_network_interfaces 1275below. 1276.Pp 1277If the variable is 1278.Dq Li NO 1279then other than 1280.Dq Li lo0 1281IPv6 will be disabled for each interface, 1282however the same effect can be achieved by 1283not configuring the interface. 1284.It Va ipv6_network_interfaces 1285.Pq Vt str 1286This is the IPv6 equivalent of 1287.Va network_interfaces . 1288Normally configuration of this variable is not needed, 1289the value should be left as 1290.Dq Li AUTO . 1291.Pp 1292If 1293.Dq Li INET6 1294is configured in the kernel configuration for the 1295.Dq Li lo0 1296interface will always be performed. 1297It is not necessary to list it in 1298.Va ipv6_network_interfaces . 1299.Pp 1300Example configuration to accept Router Advertisements (RA) for the 1301.Dq Li ed0 1302interface: 1303.Bd -literal 1304ifconfig_ed0_ipv6="RTADV" 1305.Ed 1306.Pp 1307To configure only a link-local address on the 1308.Dq Li ed0 1309interface: 1310.Bd -literal 1311ifconfig_ed0_ipv6="inet6 auto_linklocal" 1312.Ed 1313.Pp 1314To disable RA the 1315.Dq Li NORTADV 1316option is available, although not required if manual 1317configuration is performed as described below. 1318.Pp 1319An IPv6 interface can be configured manually with 1320.Va ifconfig_ Ns Ao Ar interface Ac Ns _ipv6 . 1321For example: 1322.Bd -literal 1323ifconfig_ed0_ipv6="inet6 2001:db8:1::1 prefixlen 64" 1324.Ed 1325.Pp 1326Manual configuration of an IPv6 address will also 1327require configuration of the 1328.Va ipv6_defaultrouter 1329option. 1330.Pp 1331Aliases should be set by 1332.Va ifconfig_ Ns Ao Ar interface Ac Ns Va _alias Ns Aq Ar n 1333with the 1334.Dq Li inet6 1335keyword. 1336For example: 1337.Pp 1338.Bd -literal 1339ifconfig_ed0_alias0="inet6 2001:db8:2::1 prefixlen 64" 1340.Ed 1341.Pp 1342.It Va ipv6_prefer 1343.Pq Vt bool 1344If the variable is 1345.Dq Li YES , 1346the default policy of the source address selection set by 1347.Xr ip6addrctl 8 1348will be IPv6-preferred. 1349.Pp 1350If the variable is 1351.Dq Li NO , 1352the default policy of the source address selection set by 1353.Xr ip6addrctl 8 1354will be IPv4-preferred. 1355.Pp 1356.It Va ipv6_privacy 1357.Pq Vt bool 1358If the variable is 1359.Dq Li YES 1360privacy addresses will be generated for each IPv6 1361interface as described in RFC 4193. 1362.Pp 1363.It Va ipv6_prefix_ Ns Aq Ar interface 1364.Pq Vt str 1365If one or more prefixes are defined in 1366.Va ipv6_prefix_ Ns Aq Ar interface 1367addresses based on each prefix and the EUI-64 interface index will be 1368configured on that interface. 1369.It Va ipv6_default_interface 1370.Pq Vt str 1371If not set to 1372.Dq Li NO , 1373this is the default output interface for scoped addresses. 1374This works only with ipv6_gateway_enable="NO". 1375.It Va ip6addrctl_enable 1376.Pq Vt bool 1377If set to 1378.Dq Li YES , 1379install default address selection policy table 1380.Pq RFC 3484 . 1381If a file 1382.Pa /etc/ip6addrctl.conf 1383is found the 1384.Xr ip6addrctl 8 1385reads and installs it. 1386If not, a pre-defined policy table will be installed. 1387There are two pre-defined ones; IPv4-preferred and IPv6-preferred. 1388If set 1389.Va ipv6_prefer 1390variable to 1391.Dq Li YES 1392the IPv6-preferred one is used. Default is IPv4-preferred. 1393.It Va cloned_interfaces 1394.Pq Vt str 1395Set to the list of clonable network interfaces to create on this host. 1396Further cloning arguments may be passed to the 1397.Xr ifconfig 8 1398.Cm create 1399command for each interface by setting the 1400.Va create_args_ Ns Aq Ar interface 1401variable. 1402Entries in 1403.Va cloned_interfaces 1404are automatically appended to 1405.Va network_interfaces 1406for configuration. 1407.It Va fec_interfaces 1408.Pq Vt str 1409Set to the list of 1410.Xr ng_fec 4 1411Fast EtherChannel interfaces to configure on this host. 1412A 1413.Va fecconfig_ Ns Aq Ar interface 1414variable is assumed to exist for each value of 1415.Ar interface . 1416The value of this variable is used to configure link aggregated interfaces 1417according to the syntax of the 1418.Cm NGM_FEC_ADD_IFACE 1419to 1420.Xr ngctl 8 1421msg. 1422Additionally, this option ensures that each listed interface is created 1423via the 1424.Cm mkpeer 1425command to 1426.Xr ngctl 8 1427before attempting to configure it. 1428For example: 1429.Bd -literal 1430fec_interfaces="fec0" 1431fecconfig_fec0="em0 em1" 1432ifconfig_fec0="DHCP" 1433.Ed 1434.It Va gif_interfaces 1435.Pq Vt str 1436Set to the list of 1437.Xr gif 4 1438tunnel interfaces to configure on this host. 1439A 1440.Va gifconfig_ Ns Aq Ar interface 1441variable is assumed to exist for each value of 1442.Ar interface . 1443The value of this variable is used to configure the link layer of the 1444tunnel according to the syntax of the 1445.Cm tunnel 1446option to 1447.Xr ifconfig 8 . 1448Additionally, this option ensures that each listed interface is created 1449via the 1450.Cm create 1451option to 1452.Xr ifconfig 8 1453before attempting to configure it. 1454.It Va sppp_interfaces 1455.Pq Vt str 1456Set to the list of 1457.Xr sppp 4 1458interfaces to configure on this host. 1459A 1460.Va spppconfig_ Ns Aq Ar interface 1461variable is assumed to exist for each value of 1462.Ar interface . 1463Each interface should also be configured by a general 1464.Va ifconfig_ Ns Aq Ar interface 1465setting. 1466Refer to 1467.Xr spppcontrol 8 1468for more information about available options. 1469.It Va ppp_enable 1470.Pq Vt bool 1471If set to 1472.Dq Li YES , 1473run the 1474.Xr ppp 8 1475daemon. 1476.It Va ppp_profile 1477.Pq Vt str 1478The name of the profile to use from 1479.Pa /etc/ppp/ppp.conf . 1480Also used for per-profile overrides of 1481.Va ppp_mode 1482and 1483.Va ppp_nat , 1484and 1485.Va ppp_ Ns Ao Ar profile Ac Ns _unit . 1486When the profile name contains any of the characters 1487.Dq Li .-/+ 1488they are translated to 1489.Dq Li _ 1490for the proposes of the override variable names. 1491.It Va ppp_mode 1492.Pq Vt str 1493Mode in which to run the 1494.Xr ppp 8 1495daemon. 1496.It Va ppp_ Ns Ao Ar profile Ac Ns _mode 1497.Pq Vt str 1498Overrides the global 1499.Va ppp_mode 1500for 1501.Ar profile . 1502Accepted modes are 1503.Dq Li auto , 1504.Dq Li ddial , 1505.Dq Li direct 1506and 1507.Dq Li dedicated . 1508See the manual for a full description. 1509.It Va ppp_nat 1510.Pq Vt bool 1511If set to 1512.Dq Li YES , 1513enables network address translation. 1514Used in conjunction with 1515.Va gateway_enable 1516allows hosts on private network addresses access to the Internet using 1517this host as a network address translating router. 1518.It Va ppp_ Ns Ao Ar profile Ac Ns _nat 1519.Pq Vt str 1520Overrides the global 1521.Va ppp_nat 1522for 1523.Ar profile . 1524.It Va ppp_ Ns Ao Ar profile Ac Ns _unit 1525.Pq Vt int 1526Set the unit number to be used for this profile. 1527See the manual description of 1528.Fl unit Ns Ar N 1529for details. 1530.It Va ppp_user 1531.Pq Vt str 1532The name of the user under which 1533.Xr ppp 8 1534should be started. 1535By 1536default, 1537.Xr ppp 8 1538is started as 1539.Dq Li root . 1540.It Va rc_conf_files 1541.Pq Vt str 1542This option is used to specify a list of files that will override 1543the settings in 1544.Pa /etc/defaults/rc.conf . 1545The files will be read in the order in which they are specified and should 1546include the full path to the file. 1547By default, the files specified are 1548.Pa /etc/rc.conf 1549and 1550.Pa /etc/rc.conf.local 1551.It Va zfs_enable 1552.Pq Vt bool 1553If set to 1554.Dq Li YES , 1555.Pa /etc/rc.d/zfs 1556will attempt to automatically mount ZFS file systems and initialize ZFS volumes 1557(ZVOLs). 1558.It Va gbde_autoattach_all 1559.Pq Vt bool 1560If set to 1561.Dq Li YES , 1562.Pa /etc/rc.d/gbde 1563will attempt to automatically initialize your .bde devices in 1564.Pa /etc/fstab . 1565.It Va gbde_devices 1566.Pq Vt str 1567List the devices that the script should try to attach, 1568or 1569.Dq Li AUTO . 1570.It Va gbde_lockdir 1571.Pq Vt str 1572The directory where the 1573.Xr gbde 4 1574lockfiles are located. 1575The default lockfile directory is 1576.Pa /etc . 1577.Pp 1578The lockfile for each individual 1579.Xr gbde 4 1580device can be overridden by setting the variable 1581.Va gbde_lock_ Ns Aq Ar device , 1582where 1583.Ar device 1584is the encrypted device without the 1585.Dq Pa /dev/ 1586and 1587.Dq Pa .bde 1588parts. 1589.It Va gbde_attach_attempts 1590.Pq Vt int 1591Number of times to attempt attaching to a 1592.Xr gbde 4 1593device, i.e., how many times the user is asked for the pass-phrase. 1594Default is 3. 1595.It Va geli_devices 1596.Pq Vt str 1597List of devices to automatically attach on boot. 1598Note that .eli devices from 1599.Pa /etc/fstab 1600are automatically appended to this list. 1601.It Va geli_tries 1602.Pq Vt int 1603Number of times user is asked for the pass-phrase. 1604If empty, it will be taken from 1605.Va kern.geom.eli.tries 1606sysctl variable. 1607.It Va geli_default_flags 1608.Pq Vt str 1609Default flags to use by 1610.Xr geli 8 1611when configuring disk encryption. 1612Flags can be configured for every device separately by defining 1613.Va geli_ Ns Ao Ar device Ac Ns Va _flags 1614variable. 1615.It Va geli_autodetach 1616.Pq Vt str 1617Specifies if GELI devices should be marked for detach on last close after 1618file systems are mounted. 1619Default is 1620.Dq Li YES . 1621This can be changed for every device separately by defining 1622.Va geli_ Ns Ao Ar device Ac Ns Va _autodetach 1623variable. 1624.It Va geli_swap_flags 1625Options passed to the 1626.Xr geli 8 1627utility when encrypted GEOM providers for swap partitions are created. 1628The default is 1629.Dq Li "-e aes -l 256 -s 4096 -d" . 1630.It Va root_rw_mount 1631.Pq Vt bool 1632Set to 1633.Dq Li YES 1634by default. 1635After the file systems are checked at boot time, the root file system 1636is remounted as read-write if this is set to 1637.Dq Li YES . 1638Diskless systems that mount their root file system from a read-only remote 1639NFS share should set this to 1640.Dq Li NO 1641in their 1642.Pa rc.conf . 1643.It Va fsck_y_enable 1644.Pq Vt bool 1645If set to 1646.Dq Li YES , 1647.Xr fsck 8 1648will be run with the 1649.Fl y 1650flag if the initial preen 1651of the file systems fails. 1652.It Va background_fsck 1653.Pq Vt bool 1654If set to 1655.Dq Li YES , 1656the system will attempt to run 1657.Xr fsck 8 1658in the background where possible. 1659.It Va background_fsck_delay 1660.Pq Vt int 1661The amount of time in seconds to sleep before starting a background 1662.Xr fsck 8 . 1663It defaults to sixty seconds to allow large applications such as 1664the X server to start before disk I/O bandwidth is monopolized by 1665.Xr fsck 8 . 1666If set to a negative number, the background file system check will be 1667delayed indefinitely to allow the administrator to run it at a more 1668convenient time. 1669For example it may be run from 1670.Xr cron 8 1671by adding a line like 1672.Pp 1673.Dl "0 4 * * * root /etc/rc.d/bgfsck forcestart" 1674.Pp 1675to 1676.Pa /etc/crontab . 1677.It Va netfs_types 1678.Pq Vt str 1679List of file system types that are network-based. 1680This list should generally not be modified by end users. 1681Use 1682.Va extra_netfs_types 1683instead. 1684.It Va extra_netfs_types 1685.Pq Vt str 1686If set to something other than 1687.Dq Li NO 1688(the default), 1689this variable extends the list of file system types 1690for which automatic mounting at startup by 1691.Xr rc 8 1692should be delayed until the network is initialized. 1693It should contain 1694a whitespace-separated list of network file system descriptor pairs, 1695each consisting of a file system type as passed to 1696.Xr mount 8 1697and a human-readable, one-word description, 1698joined with a colon 1699.Pq Ql \&: . 1700Extending the default list in this way is only necessary 1701when third party file system types are used. 1702.It Va syslogd_enable 1703.Pq Vt bool 1704If set to 1705.Dq Li YES , 1706run the 1707.Xr syslogd 8 1708daemon. 1709.It Va syslogd_program 1710.Pq Vt str 1711Path to 1712.Xr syslogd 8 1713(default 1714.Pa /usr/sbin/syslogd ) . 1715.It Va syslogd_flags 1716.Pq Vt str 1717If 1718.Va syslogd_enable 1719is set to 1720.Dq Li YES , 1721these are the flags to pass to 1722.Xr syslogd 8 . 1723.It Va inetd_enable 1724.Pq Vt bool 1725If set to 1726.Dq Li YES , 1727run the 1728.Xr inetd 8 1729daemon. 1730.It Va inetd_program 1731.Pq Vt str 1732Path to 1733.Xr inetd 8 1734(default 1735.Pa /usr/sbin/inetd ) . 1736.It Va inetd_flags 1737.Pq Vt str 1738If 1739.Va inetd_enable 1740is set to 1741.Dq Li YES , 1742these are the flags to pass to 1743.Xr inetd 8 . 1744.It Va hastd_enable 1745.Pq Vt bool 1746If set to 1747.Dq Li YES , 1748run the 1749.Xr hastd 8 1750daemon. 1751.It Va hastd_program 1752.Pq Vt str 1753Path to 1754.Xr hastd 8 1755(default 1756.Pa /sbin/hastd ) . 1757.It Va hastd_flags 1758.Pq Vt str 1759If 1760.Va hastd_enable 1761is set to 1762.Dq Li YES , 1763these are the flags to pass to 1764.Xr hastd 8 . 1765.It Va named_enable 1766.Pq Vt bool 1767If set to 1768.Dq Li YES , 1769run the 1770.Xr named 8 1771daemon. 1772.It Va named_program 1773.Pq Vt str 1774Path to 1775.Xr named 8 1776(default 1777.Pa /usr/sbin/named ) . 1778.It Va named_conf 1779.Pq Vt str 1780Path to 1781.Xr named 8 1782configuration file, (default 1783.Pa /etc/namedb/named.conf ) . 1784.It Va named_flags 1785.Pq Vt str 1786If 1787.Va named_enable 1788is set to 1789.Dq Li YES , 1790these are the flags to pass to 1791.Xr named 8 . 1792.It Va named_pidfile 1793.Pq Vt str 1794This is the default path to the 1795.Xr named 8 1796daemon's PID file. 1797This must match the location in 1798.Xr named.conf 5 . 1799.It Va named_uid 1800.Pq Vt str 1801The user that the 1802.Xr named 8 1803process should be run as. 1804.It Va named_chrootdir 1805.Pq Vt str 1806The root directory for a name server run in a 1807.Xr chroot 8 1808environment (default 1809.Pa /var/named ) . 1810If left empty 1811.Xr named 8 1812will not be run in a 1813.Xr chroot 8 1814environment. 1815.It Va named_chroot_autoupdate 1816.Pq Vt bool 1817Set to 1818.Dq Li NO 1819to disable automatic update of the 1820.Xr chroot 8 1821environment. 1822.It Va named_symlink_enable 1823.Pq Vt bool 1824Set to 1825.Dq Li NO 1826to disable symlinking of 1827daemon's PID file 1828into the 1829.Xr chroot 8 1830environment. 1831.It Va named_wait 1832.Pq Vt bool 1833Set to have 1834.Pa /etc/rc.d/named 1835loop until working name service is established. 1836.It Va named_wait_host 1837.Pq Vt str 1838Name of host to lookup for the named_wait option. 1839(Default localhost) 1840.It Va named_auto_forward 1841.Pq Vt bool 1842Set to enable automatic creation of a forwarder 1843configuration file derived from 1844.Pa /etc/resolv.conf . 1845.It Va named_auto_forward_only 1846.Pq Vt bool 1847Set to change the default forwarder configuration from 1848.Dq forward first 1849to 1850.Dq forward only . 1851.It Va kerberos5_server_enable 1852.Pq Vt bool 1853Set to 1854.Dq Li YES 1855to start a Kerberos 5 authentication server 1856at boot time. 1857.It Va kerberos5_server 1858.Pq Vt str 1859If 1860.Va kerberos5_server_enable 1861is set to 1862.Dq Li YES 1863this is the path to Kerberos 5 Authentication Server. 1864.It Va kerberos5_server_flags 1865.Pq Vt str 1866Empty by default. 1867This variable contains additional flags to be passed to the Kerberos 5 1868authentication server. 1869.It Va kadmind5_server_enable 1870.Pq Vt bool 1871Set to 1872.Dq Li YES 1873to start 1874.Xr kadmind 8 , 1875the Kerberos 5 Administration Daemon; set to 1876.Dq Li NO 1877on a slave server. 1878.It Va kadmind5_server 1879.Pq Vt str 1880If 1881.Va kadmind5_server_enable 1882is set to 1883.Dq Li YES 1884this is the path to Kerberos 5 Administration Daemon. 1885.It Va kpasswdd_server_enable 1886.Pq Vt bool 1887Set to 1888.Dq Li YES 1889to start 1890.Xr kpasswdd 8 , 1891the Kerberos 5 Password-Changing Daemon; set to 1892.Dq Li NO 1893on a slave server. 1894.It Va kpasswdd_server 1895.Pq Vt str 1896If 1897.Va kpasswdd_server_enable 1898is set to 1899.Dq Li YES 1900this is the path to Kerberos 5 Password-Changing Daemon. 1901.It Va rwhod_enable 1902.Pq Vt bool 1903If set to 1904.Dq Li YES , 1905run the 1906.Xr rwhod 8 1907daemon at boot time. 1908.It Va rwhod_flags 1909.Pq Vt str 1910If 1911.Va rwhod_enable 1912is set to 1913.Dq Li YES , 1914these are the flags to pass to it. 1915.It Va amd_enable 1916.Pq Vt bool 1917If set to 1918.Dq Li YES , 1919run the 1920.Xr amd 8 1921daemon at boot time. 1922.It Va amd_flags 1923.Pq Vt str 1924If 1925.Va amd_enable 1926is set to 1927.Dq Li YES , 1928these are the flags to pass to it. 1929See the 1930.Xr amd 8 1931manpage for more information. 1932.It Va amd_map_program 1933.Pq Vt str 1934If set, 1935the specified program is run to get the list of 1936.Xr amd 8 1937maps. 1938For example, if the 1939.Xr amd 8 1940maps are stored in NIS, one can set this to 1941run 1942.Xr ypcat 1 1943to get a list of 1944.Xr amd 8 1945maps from the 1946.Pa amd.master 1947NIS map. 1948.It Va update_motd 1949.Pq Vt bool 1950If set to 1951.Dq Li YES , 1952.Pa /etc/motd 1953will be updated at boot time to reflect the kernel release 1954being run. 1955If set to 1956.Dq Li NO , 1957.Pa /etc/motd 1958will not be updated. 1959.It Va nfs_client_enable 1960.Pq Vt bool 1961If set to 1962.Dq Li YES , 1963run the NFS client daemons at boot time. 1964.It Va nfs_access_cache 1965.Pq Vt int 1966If 1967.Va nfs_client_enable 1968is set to 1969.Dq Li YES , 1970this can be set to 1971.Dq Li 0 1972to disable NFS ACCESS RPC caching, or to the number of seconds for which 1973NFS ACCESS 1974results should be cached. 1975A value of 2-10 seconds will substantially reduce network 1976traffic for many NFS operations. 1977.It Va nfs_server_enable 1978.Pq Vt bool 1979If set to 1980.Dq Li YES , 1981run the NFS server daemons at boot time. 1982.It Va nfs_server_flags 1983.Pq Vt str 1984If 1985.Va nfs_server_enable 1986is set to 1987.Dq Li YES , 1988these are the flags to pass to the 1989.Xr nfsd 8 1990daemon. 1991.It Va idmapd_enable 1992.Pq Vt bool 1993If set to 1994.Dq Li YES , 1995run the ID mapping daemon for NFS version 4. 1996.It Va idmapd_flags 1997.Pq Vt str 1998If 1999.Va idmapd_enable 2000is set to 2001.Dq Li YES , 2002these are the flags to pass to the 2003.Xr idmapd 8 2004daemon. 2005.It Va mountd_enable 2006.Pq Vt bool 2007If set to 2008.Dq Li YES , 2009and no 2010.Va nfs_server_enable 2011is set, start 2012.Xr mountd 8 , 2013but not 2014.Xr nfsd 8 2015daemon. 2016It is commonly needed to run CFS without real NFS used. 2017.It Va mountd_flags 2018.Pq Vt str 2019If 2020.Va mountd_enable 2021is set to 2022.Dq Li YES , 2023these are the flags to pass to the 2024.Xr mountd 8 2025daemon. 2026.It Va weak_mountd_authentication 2027.Pq Vt bool 2028If set to 2029.Dq Li YES , 2030allow services like PCNFSD to make non-privileged mount 2031requests. 2032.It Va nfs_reserved_port_only 2033.Pq Vt bool 2034If set to 2035.Dq Li YES , 2036provide NFS services only on a secure port. 2037.It Va nfs_bufpackets 2038.Pq Vt int 2039If set to a number, indicates the number of packets worth of 2040socket buffer space to reserve on an NFS client. 2041The kernel default is typically 4. 2042Using a higher number may be 2043useful on gigabit networks to improve performance. 2044The minimum value is 20452 and the maximum is 64. 2046.It Va rpc_lockd_enable 2047.Pq Vt bool 2048If set to 2049.Dq Li YES 2050and also an NFS server or client, run 2051.Xr rpc.lockd 8 2052at boot time. 2053.It Va rpc_lockd_flags 2054.Pq Vt str 2055If 2056.Va rpc_lockd_enable 2057is set to 2058.Dq Li YES , 2059these are the flags to pass to the 2060.Xr rpc.lockd 8 2061daemon. 2062.It Va rpc_statd_enable 2063.Pq Vt bool 2064If set to 2065.Dq Li YES 2066and also an NFS server or client, run 2067.Xr rpc.statd 8 2068at boot time. 2069.It Va rpc_statd_flags 2070.Pq Vt str 2071If 2072.Va rpc_statd_enable 2073is set to 2074.Dq Li YES , 2075these are the flags to pass to the 2076.Xr rpc.statd 8 2077daemon. 2078.It Va rpcbind_program 2079.Pq Vt str 2080Path to 2081.Xr rpcbind 8 2082(default 2083.Pa /usr/sbin/rpcbind ) . 2084.It Va rpcbind_enable 2085.Pq Vt bool 2086If set to 2087.Dq Li YES , 2088run the 2089.Xr rpcbind 8 2090service at boot time. 2091.It Va rpcbind_flags 2092.Pq Vt str 2093If 2094.Va rpcbind_enable 2095is set to 2096.Dq Li YES , 2097these are the flags to pass to the 2098.Xr rpcbind 8 2099daemon. 2100.It Va keyserv_enable 2101.Pq Vt bool 2102If set to 2103.Dq Li YES , 2104run the 2105.Xr keyserv 8 2106daemon on boot for running Secure RPC. 2107.It Va keyserv_flags 2108.Pq Vt str 2109If 2110.Va keyserv_enable 2111is set to 2112.Dq Li YES , 2113these are the flags to pass to 2114.Xr keyserv 8 2115daemon. 2116.It Va pppoed_enable 2117.Pq Vt bool 2118If set to 2119.Dq Li YES , 2120run the 2121.Xr pppoed 8 2122daemon at boot time to provide PPP over Ethernet services. 2123.It Va pppoed_ Ns Aq Ar provider 2124.Pq Vt str 2125.Xr pppoed 8 2126listens to requests to this 2127.Ar provider 2128and ultimately runs 2129.Xr ppp 8 2130with a 2131.Ar system 2132argument of the same name. 2133.It Va pppoed_flags 2134.Pq Vt str 2135Additional flags to pass to 2136.Xr pppoed 8 . 2137.It Va pppoed_interface 2138.Pq Vt str 2139The network interface to run 2140.Xr pppoed 8 2141on. 2142This is mandatory when 2143.Va pppoed_enable 2144is set to 2145.Dq Li YES . 2146.It Va timed_enable 2147.Pq Vt bool 2148If set to 2149.Dq Li YES , 2150run the 2151.Xr timed 8 2152service at boot time. 2153This command is intended for networks of 2154machines where a consistent 2155.Dq "network time" 2156for all hosts must be established. 2157This is often useful in large NFS 2158environments where time stamps on files are expected to be consistent 2159network-wide. 2160.It Va timed_flags 2161.Pq Vt str 2162If 2163.Va timed_enable 2164is set to 2165.Dq Li YES , 2166these are the flags to pass to the 2167.Xr timed 8 2168service. 2169.It Va ntpdate_enable 2170.Pq Vt bool 2171If set to 2172.Dq Li YES , 2173run 2174.Xr ntpdate 8 2175at system startup. 2176This command is intended to 2177synchronize the system clock only 2178.Em once 2179from some standard reference. 2180An option to set this up initially 2181(from a list of known servers) is also provided by the 2182.Xr sysinstall 8 2183program when the system is first installed. 2184.It Va ntpdate_config 2185.Pq Vt str 2186Configuration file for 2187.Xr ntpdate 8 . 2188Default 2189.Pa /etc/ntp.conf . 2190.It Va ntpdate_hosts 2191.Pq Vt str 2192A whitespace-separated list of NTP servers to synchronize with at startup. 2193The default is to use the servers listed in 2194.Va ntpdate_config , 2195if that file exists. 2196.It Va ntpdate_program 2197.Pq Vt str 2198Path to 2199.Xr ntpdate 8 2200(default 2201.Pa /usr/sbin/ntpdate ) . 2202.It Va ntpdate_flags 2203.Pq Vt str 2204If 2205.Va ntpdate_enable 2206is set to 2207.Dq Li YES , 2208these are the flags to pass to the 2209.Xr ntpdate 8 2210command (typically a hostname). 2211.It Va ntpd_enable 2212.Pq Vt bool 2213If set to 2214.Dq Li YES , 2215run the 2216.Xr ntpd 8 2217command at boot time. 2218.It Va ntpd_program 2219.Pq Vt str 2220Path to 2221.Xr ntpd 8 2222(default 2223.Pa /usr/sbin/ntpd ) . 2224.It Va ntpd_config 2225.Pq Vt str 2226Path to 2227.Xr ntpd 8 2228configuration file. 2229Default 2230.Pa /etc/ntp.conf . 2231.It Va ntpd_flags 2232.Pq Vt str 2233If 2234.Va ntpd_enable 2235is set to 2236.Dq Li YES , 2237these are the flags to pass to the 2238.Xr ntpd 8 2239daemon. 2240.It Va ntpd_sync_on_start 2241.Pq Vt bool 2242If set to 2243.Dq Li YES , 2244.Xr ntpd 8 2245is run with the 2246.Fl g 2247flag, which syncs the system's clock on startup. 2248See 2249.Xr ntpd 8 2250for more information regarding the 2251.Fl g 2252option. 2253This is a preferred alternative to using 2254.Xr ntpdate 8 2255or specifying the 2256.Va ntpdate_enable 2257variable. 2258.It Va nis_client_enable 2259.Pq Vt bool 2260If set to 2261.Dq Li YES , 2262run the 2263.Xr ypbind 8 2264service at system boot time. 2265.It Va nis_client_flags 2266.Pq Vt str 2267If 2268.Va nis_client_enable 2269is set to 2270.Dq Li YES , 2271these are the flags to pass to the 2272.Xr ypbind 8 2273service. 2274.It Va nis_ypset_enable 2275.Pq Vt bool 2276If set to 2277.Dq Li YES , 2278run the 2279.Xr ypset 8 2280daemon at system boot time. 2281.It Va nis_ypset_flags 2282.Pq Vt str 2283If 2284.Va nis_ypset_enable 2285is set to 2286.Dq Li YES , 2287these are the flags to pass to the 2288.Xr ypset 8 2289daemon. 2290.It Va nis_server_enable 2291.Pq Vt bool 2292If set to 2293.Dq Li YES , 2294run the 2295.Xr ypserv 8 2296daemon at system boot time. 2297.It Va nis_server_flags 2298.Pq Vt str 2299If 2300.Va nis_server_enable 2301is set to 2302.Dq Li YES , 2303these are the flags to pass to the 2304.Xr ypserv 8 2305daemon. 2306.It Va nis_ypxfrd_enable 2307.Pq Vt bool 2308If set to 2309.Dq Li YES , 2310run the 2311.Xr rpc.ypxfrd 8 2312daemon at system boot time. 2313.It Va nis_ypxfrd_flags 2314.Pq Vt str 2315If 2316.Va nis_ypxfrd_enable 2317is set to 2318.Dq Li YES , 2319these are the flags to pass to the 2320.Xr rpc.ypxfrd 8 2321daemon. 2322.It Va nis_yppasswdd_enable 2323.Pq Vt bool 2324If set to 2325.Dq Li YES , 2326run the 2327.Xr rpc.yppasswdd 8 2328daemon at system boot time. 2329.It Va nis_yppasswdd_flags 2330.Pq Vt str 2331If 2332.Va nis_yppasswdd_enable 2333is set to 2334.Dq Li YES , 2335these are the flags to pass to the 2336.Xr rpc.yppasswdd 8 2337daemon. 2338.It Va rpc_ypupdated_enable 2339.Pq Vt bool 2340If set to 2341.Dq Li YES , 2342run the 2343.Nm rpc.ypupdated 2344daemon at system boot time. 2345.It Va bsnmpd_enable 2346.Pq Vt bool 2347If set to 2348.Dq Li YES , 2349run the 2350.Xr bsnmpd 1 2351daemon at system boot time. 2352Be sure to understand the security implications of running SNMP daemon 2353on your host. 2354.It Va bsnmpd_flags 2355.Pq Vt str 2356If 2357.Va bsnmpd_enable 2358is set to 2359.Dq Li YES , 2360these are the flags to pass to the 2361.Xr bsnmpd 1 2362daemon. 2363.It Va defaultrouter 2364.Pq Vt str 2365If not set to 2366.Dq Li NO , 2367create a default route to this host name or IP address 2368(use an IP address if this router is also required to get to the 2369name server!). 2370.It Va ipv6_defaultrouter 2371.Pq Vt str 2372The IPv6 equivalent of 2373.Va defaultrouter . 2374.It Va static_arp_pairs 2375.Pq Vt str 2376Set to the list of static ARP pairs that are to be added at system 2377boot time. 2378For each whitespace separated 2379.Ar element 2380in the value, a 2381.Va static_arp_ Ns Aq Ar element 2382variable is assumed to exist whose contents will later be passed to a 2383.Dq Nm arp Cm -S 2384operation. 2385For example 2386.Bd -literal 2387static_arp_pairs="gw" 2388static_arp_gw="192.168.1.1 00:01:02:03:04:05" 2389.Ed 2390.It Va static_routes 2391.Pq Vt str 2392Set to the list of static routes that are to be added at system 2393boot time. 2394If not set to 2395.Dq Li NO 2396then for each whitespace separated 2397.Ar element 2398in the value, a 2399.Va route_ Ns Aq Ar element 2400variable is assumed to exist 2401whose contents will later be passed to a 2402.Dq Nm route Cm add 2403operation. 2404For example: 2405.Bd -literal 2406static_routes="mcast gif0local" 2407route_mcast="-net 224.0.0.0/4 -iface gif0" 2408route_gif0local="-host 169.254.1.1 -iface lo0" 2409.Ed 2410.It Va ipv6_static_routes 2411.Pq Vt str 2412The IPv6 equivalent of 2413.Va static_routes . 2414If not set to 2415.Dq Li NO 2416then for each whitespace separated 2417.Ar element 2418in the value, a 2419.Va ipv6_route_ Ns Aq Ar element 2420variable is assumed to exist 2421whose contents will later be passed to a 2422.Dq Nm route Cm add Fl inet6 2423operation. 2424.It Va natm_static_routes 2425.Pq Vt str 2426The 2427.Xr natmip 4 2428equivalent of 2429.Va static_routes . 2430If not empty then for each whitespace separated 2431.Ar element 2432in the value, a 2433.Va route_ Ns Aq Ar element 2434variable is assumed to exist whose contents will later be passed to a 2435.Dq Nm atmconfig Cm natm Cm add 2436operation. 2437.It Va gateway_enable 2438.Pq Vt bool 2439If set to 2440.Dq Li YES , 2441configure host to act as an IP router, e.g.\& to forward packets 2442between interfaces. 2443.It Va ipv6_gateway_enable 2444.Pq Vt bool 2445The IPv6 equivalent of 2446.Va gateway_enable . 2447.It Va routed_enable 2448.Pq Vt bool 2449If set to 2450.Dq Li YES , 2451run a routing daemon of some sort, based on the 2452settings of 2453.Va routed_program 2454and 2455.Va routed_flags . 2456.It Va route6d_enable 2457.Pq Vt bool 2458The IPv6 equivalent of 2459.Va routed_enable . 2460If set to 2461.Dq Li YES , 2462run a routing daemon of some sort, based on the 2463settings of 2464.Va route6d_program 2465and 2466.Va route6d_flags . 2467.It Va routed_program 2468.Pq Vt str 2469If 2470.Va routed_enable 2471is set to 2472.Dq Li YES , 2473this is the name of the routing daemon to use. 2474.It Va route6d_program 2475.Pq Vt str 2476The IPv6 equivalent of 2477.Va routed_program . 2478.It Va routed_flags 2479.Pq Vt str 2480If 2481.Va routed_enable 2482is set to 2483.Dq Li YES , 2484these are the flags to pass to the routing daemon. 2485.It Va route6d_flags 2486.Pq Vt str 2487The IPv6 equivalent of 2488.Va routed_flags . 2489.It Va mrouted_enable 2490.Pq Vt bool 2491If set to 2492.Dq Li YES , 2493run the multicast routing daemon, 2494.Xr mrouted 8 . 2495.It Va mroute6d_enable 2496.Pq Vt bool 2497The IPv6 equivalent of 2498.Va mrouted_enable . 2499If set to 2500.Dq Li YES , 2501run the IPv6 multicast routing daemon. 2502.Pp 2503Note that multicast routing daemons are no longer included in the 2504.Fx 2505base system, however, both 2506.Xr mrouted 8 2507and 2508.Xr pim6dd 8 2509may be installed from the 2510.Fx 2511Ports Collection. 2512.It Va mrouted_flags 2513.Pq Vt str 2514If 2515.Va mrouted_enable 2516is set to 2517.Dq Li YES , 2518these are the flags to pass to the 2519.Xr mrouted 8 2520daemon. 2521.It Va mroute6d_flags 2522.Pq Vt str 2523The IPv6 equivalent of 2524.Va mrouted_flags . 2525If 2526.Va mroute6d_enable 2527is set to 2528.Dq Li YES , 2529these are the flags passed to the IPv6 multicast routing daemon. 2530.It Va mroute6d_program 2531.Pq Vt str 2532If 2533.Va mroute6d_enable 2534is set to 2535.Dq Li YES , 2536this is the path to the IPv6 multicast routing daemon. 2537.It Va rtadvd_enable 2538.Pq Vt bool 2539If set to 2540.Dq Li YES , 2541run the 2542.Xr rtadvd 8 2543daemon at boot time. 2544.Xr rtadvd 8 2545will only run if 2546.Va ipv6_gateway_enable 2547is also set to 2548.Dq Li YES . 2549The 2550.Xr rtadvd 8 2551utility sends router advertisement packets to the interfaces specified in 2552.Va rtadvd_interfaces 2553and should only be enabled with great care. 2554You may want to fine-tune 2555.Xr rtadvd.conf 5 . 2556.It Va rtadvd_interfaces 2557.Pq Vt str 2558If 2559.Va rtadvd_enable 2560is set to 2561.Dq Li YES 2562this is the list of interfaces to use. 2563.It Va ipxgateway_enable 2564.Pq Vt bool 2565If set to 2566.Dq Li YES , 2567enable the routing of IPX traffic. 2568.It Va ipxrouted_enable 2569.Pq Vt bool 2570If set to 2571.Dq Li YES , 2572run the 2573.Xr IPXrouted 8 2574daemon at system boot time. 2575.It Va ipxrouted_flags 2576.Pq Vt str 2577If 2578.Va ipxrouted_enable 2579is set to 2580.Dq Li YES , 2581these are the flags to pass to the 2582.Xr IPXrouted 8 2583daemon. 2584.It Va arpproxy_all 2585.Pq Vt bool 2586If set to 2587.Dq Li YES , 2588enable global proxy ARP. 2589.It Va forward_sourceroute 2590.Pq Vt bool 2591If set to 2592.Dq Li YES 2593and 2594.Va gateway_enable 2595is also set to 2596.Dq Li YES , 2597source-routed packets are forwarded. 2598.It Va accept_sourceroute 2599.Pq Vt bool 2600If set to 2601.Dq Li YES , 2602the system will accept source-routed packets directed at it. 2603.It Va rarpd_enable 2604.Pq Vt bool 2605If set to 2606.Dq Li YES , 2607run the 2608.Xr rarpd 8 2609daemon at system boot time. 2610.It Va rarpd_flags 2611.Pq Vt str 2612If 2613.Va rarpd_enable 2614is set to 2615.Dq Li YES , 2616these are the flags to pass to the 2617.Xr rarpd 8 2618daemon. 2619.It Va bootparamd_enable 2620.Pq Vt bool 2621If set to 2622.Dq Li YES , 2623run the 2624.Xr bootparamd 8 2625daemon at system boot time. 2626.It Va bootparamd_flags 2627.Pq Vt str 2628If 2629.Va bootparamd_enable 2630is set to 2631.Dq Li YES , 2632these are the flags to pass to the 2633.Xr bootparamd 8 2634daemon. 2635.It Va stf_interface_ipv4addr 2636.Pq Vt str 2637If not set to 2638.Dq Li NO , 2639this is the local IPv4 address for 6to4 (IPv6 over IPv4 tunneling 2640interface). 2641Specify this entry to enable the 6to4 interface. 2642.It Va stf_interface_ipv4plen 2643.Pq Vt int 2644Prefix length for 6to4 IPv4 addresses, to limit peer address range. 2645An effective value is 0-31. 2646.It Va stf_interface_ipv6_ifid 2647.Pq Vt str 2648IPv6 interface ID for 2649.Xr stf 4 . 2650This can be set to 2651.Dq Li AUTO . 2652.It Va stf_interface_ipv6_slaid 2653.Pq Vt str 2654IPv6 Site Level Aggregator for 2655.Xr stf 4 . 2656.It Va ipv6_faith_prefix 2657.Pq Vt str 2658If not set to 2659.Dq Li NO , 2660this is the faith prefix to enable a FAITH IPv6-to-IPv4 TCP 2661translator. 2662You also need 2663.Xr faithd 8 2664setup. 2665.It Va ipv6_ipv4mapping 2666.Pq Vt bool 2667If set to 2668.Dq Li YES 2669this enables IPv4 mapped IPv6 address communication (like 2670.Li ::ffff:a.b.c.d ) . 2671.It Va atm_enable 2672.Pq Vt bool 2673Set to 2674.Dq Li YES 2675to enable the configuration of ATM interfaces at system boot time. 2676For all of the ATM variables described below, please refer to the 2677.Xr atm 8 2678manual page for further details on the available command parameters. 2679Also refer to the files in 2680.Pa /usr/share/examples/atm 2681for more detailed configuration information. 2682.It Va atm_load 2683.Pq Vt str 2684This is a list of physical ATM interface drivers to load. 2685Typical values are 2686.Dq Li hfa_pci 2687and/or 2688.Dq Li hea_pci . 2689.It Va atm_netif_ Ns Aq Ar intf 2690.Pq Vt str 2691For the ATM physical interface 2692.Ar intf , 2693this variable defines the name prefix and count for the ATM network 2694interfaces to be created. 2695The value will be passed as the parameters of an 2696.Dq Nm atm Cm "set netif" Ar intf 2697command. 2698.It Va atm_sigmgr_ Ns Aq Ar intf 2699.Pq Vt str 2700For the ATM physical interface 2701.Ar intf , 2702this variable defines the ATM signalling manager to be used. 2703The value will be passed as the parameters of an 2704.Dq Nm atm Cm attach Ar intf 2705command. 2706.It Va atm_prefix_ Ns Aq Ar intf 2707.Pq Vt str 2708For the ATM physical interface 2709.Ar intf , 2710this variable defines the NSAP prefix for interfaces using a UNI signalling 2711manager. 2712If set to 2713.Dq Li ILMI , 2714the prefix will automatically be set via the 2715.Xr ilmid 8 2716daemon. 2717Otherwise, the value will be passed as the parameters of an 2718.Dq Nm atm Cm "set prefix" Ar intf 2719command. 2720.It Va atm_macaddr_ Ns Aq Ar intf 2721.Pq Vt str 2722For the ATM physical interface 2723.Ar intf , 2724this variable defines the MAC address for interfaces using a UNI signalling 2725manager. 2726If set to 2727.Dq Li NO , 2728the hardware MAC address contained in the ATM interface card will be used. 2729Otherwise, the value will be passed as the parameters of an 2730.Dq Nm atm Cm "set mac" Ar intf 2731command. 2732.It Va atm_arpserver_ Ns Aq Ar netif 2733.Pq Vt str 2734For the ATM network interface 2735.Ar netif , 2736this variable defines the ATM address for a host which is to provide ATMARP 2737service. 2738This variable is only applicable to interfaces using a UNI signalling 2739manager. 2740If set to 2741.Dq Li local , 2742this host will become an ATMARP server. 2743The value will be passed as the parameters of an 2744.Dq Nm atm Cm "set arpserver" Ar netif 2745command. 2746.It Va atm_scsparp_ Ns Aq Ar netif 2747.Pq Vt bool 2748If set to 2749.Dq Li YES , 2750SCSP/ATMARP service for the network interface 2751.Ar netif 2752will be initiated using the 2753.Xr scspd 8 2754and 2755.Xr atmarpd 8 2756daemons. 2757This variable is only applicable if 2758.Va atm_arpserver_ Ns Aq Ar netif 2759is set to 2760.Dq Li local . 2761.It Va atm_pvcs 2762.Pq Vt str 2763Set to the list of ATM PVCs to be added at system 2764boot time. 2765For each whitespace separated 2766.Ar element 2767in the value, an 2768.Va atm_pvc_ Ns Aq Ar element 2769variable is assumed to exist. 2770The value of each of these variables 2771will be passed as the parameters of an 2772.Dq Nm atm Cm "add pvc" 2773command. 2774.It Va atm_arps 2775.Pq Vt str 2776Set to the list of permanent ATM ARP entries to be added 2777at system boot time. 2778For each whitespace separated 2779.Ar element 2780in the value, an 2781.Va atm_arp_ Ns Aq Ar element 2782variable is assumed to exist. 2783The value of each of these variables 2784will be passed as the parameters of an 2785.Dq Nm atm Cm "add arp" 2786command. 2787.It Va natm_interfaces 2788.Pq Vt str 2789Set to the list of 2790.Xr natm 4 2791interfaces that will also be used for HARP through 2792.Xr harp 4 . 2793If this list is not empty all interfaces in the list will be brought up 2794with 2795.Xr ifconfig 8 2796and 2797.Xr harp 4 2798will be loaded. 2799For this to work the interface drivers must be either compiled into the 2800kernel or must reside on the root partition. 2801.It Va keybell 2802.Pq Vt str 2803The keyboard bell sound. 2804Set to 2805.Dq Li normal , 2806.Dq Li visual , 2807.Dq Li off , 2808or 2809.Dq Li NO 2810if the default behavior is desired. 2811For details, refer to the 2812.Xr kbdcontrol 1 2813manpage. 2814.It Va keyboard 2815.Pq Vt str 2816If set to a non-null string, the virtual console's keyboard input is 2817set to this device. 2818.It Va keymap 2819.Pq Vt str 2820If set to 2821.Dq Li NO , 2822no keymap is installed, otherwise the value is used to install 2823the keymap file in 2824.Pa /usr/share/syscons/keymaps/ Ns Ao Ar value Ac Ns Pa .kbd . 2825.It Va keyrate 2826.Pq Vt str 2827The keyboard repeat speed. 2828Set to 2829.Dq Li slow , 2830.Dq Li normal , 2831.Dq Li fast , 2832or 2833.Dq Li NO 2834if the default behavior is desired. 2835.It Va keychange 2836.Pq Vt str 2837If not set to 2838.Dq Li NO , 2839attempt to program the function keys with the value. 2840The value should 2841be a single string of the form: 2842.Dq Ar funkey_number new_value Op Ar funkey_number new_value ... . 2843.It Va cursor 2844.Pq Vt str 2845Can be set to the value of 2846.Dq Li normal , 2847.Dq Li blink , 2848.Dq Li destructive , 2849or 2850.Dq Li NO 2851to set the cursor behavior explicitly or choose the default behavior. 2852.It Va scrnmap 2853.Pq Vt str 2854If set to 2855.Dq Li NO , 2856no screen map is installed, otherwise the value is used to install 2857the screen map file in 2858.Pa /usr/share/syscons/scrnmaps/ Ns Aq Ar value . 2859.It Va font8x16 2860.Pq Vt str 2861If set to 2862.Dq Li NO , 2863the default 8x16 font value is used for screen size requests, otherwise 2864the value in 2865.Pa /usr/share/syscons/fonts/ Ns Aq Ar value 2866is used. 2867.It Va font8x14 2868.Pq Vt str 2869If set to 2870.Dq Li NO , 2871the default 8x14 font value is used for screen size requests, otherwise 2872the value in 2873.Pa /usr/share/syscons/fonts/ Ns Aq Ar value 2874is used. 2875.It Va font8x8 2876.Pq Vt str 2877If set to 2878.Dq Li NO , 2879the default 8x8 font value is used for screen size requests, otherwise 2880the value in 2881.Pa /usr/share/syscons/fonts/ Ns Aq Ar value 2882is used. 2883.It Va blanktime 2884.Pq Vt int 2885If set to 2886.Dq Li NO , 2887the default screen blanking interval is used, otherwise it is set 2888to 2889.Ar value 2890seconds. 2891.It Va saver 2892.Pq Vt str 2893If not set to 2894.Dq Li NO , 2895this is the actual screen saver to use 2896.Li ( blank , snake , daemon , 2897etc). 2898.It Va moused_nondefault_enable 2899.Pq Vt str 2900If set to 2901.Dq Li NO , 2902the mouse device specified on 2903the command line is not automatically treated as enabled by the 2904.Pa /etc/rc.d/moused 2905script. 2906Having this variable set to 2907.Dq Li YES 2908allows a 2909.Xr usb 4 2910mouse, 2911for example, 2912to be enabled as soon as it is plugged in. 2913.It Va moused_enable 2914.Pq Vt str 2915If set to 2916.Dq Li YES , 2917the 2918.Xr moused 8 2919daemon is started for doing cut/paste selection on the console. 2920.It Va moused_type 2921.Pq Vt str 2922This is the protocol type of the mouse connected to this host. 2923This variable must be set if 2924.Va moused_enable 2925is set to 2926.Dq Li YES . 2927The 2928.Xr moused 8 2929daemon 2930is able to detect the appropriate mouse type automatically in many cases. 2931Set this variable to 2932.Dq Li auto 2933to let the daemon detect it, or 2934select one from the following list if the automatic detection fails. 2935.Pp 2936If the mouse is attached to the PS/2 mouse port, choose 2937.Dq Li auto 2938or 2939.Dq Li ps/2 , 2940regardless of the brand and model of the mouse. 2941Likewise, if the 2942mouse is attached to the bus mouse port, choose 2943.Dq Li auto 2944or 2945.Dq Li busmouse . 2946All other protocols are for serial mice and will not work with 2947the PS/2 and bus mice. 2948If this is a USB mouse, 2949.Dq Li auto 2950is the only protocol type which will work. 2951.Pp 2952.Bl -tag -width ".Li x10mouseremote" -compact 2953.It Li microsoft 2954Microsoft mouse (serial) 2955.It Li intellimouse 2956Microsoft IntelliMouse (serial) 2957.It Li mousesystems 2958Mouse systems Corp.\& mouse (serial) 2959.It Li mmseries 2960MM Series mouse (serial) 2961.It Li logitech 2962Logitech mouse (serial) 2963.It Li busmouse 2964A bus mouse 2965.It Li mouseman 2966Logitech MouseMan and TrackMan (serial) 2967.It Li glidepoint 2968ALPS GlidePoint (serial) 2969.It Li thinkingmouse 2970Kensington ThinkingMouse (serial) 2971.It Li ps/2 2972PS/2 mouse 2973.It Li mmhittab 2974MM HitTablet (serial) 2975.It Li x10mouseremote 2976X10 MouseRemote (serial) 2977.It Li versapad 2978Interlink VersaPad (serial) 2979.El 2980.Pp 2981Even if the mouse is not in the above list, it may be compatible 2982with one in the list. 2983Refer to the manual page for 2984.Xr moused 8 2985for compatibility information. 2986.Pp 2987It should also be noted that while this is enabled, any 2988other client of the mouse (such as an X server) should access 2989the mouse through the virtual mouse device, 2990.Pa /dev/sysmouse , 2991and configure it as a 2992.Dq Li sysmouse 2993type mouse, since all 2994mouse data is converted to this single canonical format when 2995using 2996.Xr moused 8 . 2997If the client program does not support the 2998.Dq Li sysmouse 2999type, 3000specify the 3001.Dq Li mousesystems 3002type. 3003It is the second preferred type. 3004.It Va moused_port 3005.Pq Vt str 3006If 3007.Va moused_enable 3008is set to 3009.Dq Li YES , 3010this is the actual port the mouse is on. 3011It might be 3012.Pa /dev/cuad0 3013for a COM1 serial mouse, 3014.Pa /dev/psm0 3015for a PS/2 mouse or 3016.Pa /dev/mse0 3017for a bus mouse, for example. 3018.It Va moused_flags 3019.Pq Vt str 3020If 3021.Va moused_flags 3022is set, its value is used as an additional set of flags to pass to the 3023.Xr moused 8 3024daemon. 3025.It Va "moused_" Ns Ar XXX Ns Va "_flags" 3026When 3027.Va moused_nondefault_enable 3028is enabled, and a 3029.Xr moused 8 3030daemon is started for a non-default port, the 3031.Va "moused_" Ns Ar XXX Ns Va "_flags" 3032set of options has precedence over and replaces the default 3033.Va moused_flags (where 3034.Ar XXX 3035is the name of the non-default port, i.e.\& 3036.Ar ums0 ) . 3037By setting 3038.Va "moused_" Ns Ar XXX Ns Va "_flags" 3039it is possible to set up a different set of default flags for each 3040.Xr moused 8 3041instance. 3042For example, you can use 3043.Dq Li "-3" 3044for the default 3045.Va moused_flags 3046to make your laptop's touchpad more comfortable to use, 3047but an empty set of options for 3048.Va moused_ums0_flags 3049when your 3050.Xr usb 4 3051mouse has three or more buttons. 3052.It Va mousechar_start 3053.Pq Vt int 3054If set to 3055.Dq Li NO , 3056the default mouse cursor character range 3057.Li 0xd0 Ns - Ns Li 0xd3 3058is used, 3059otherwise the range start is set 3060to 3061.Ar value 3062character, see 3063.Xr vidcontrol 1 . 3064Use if the default range is occupied in the language code table. 3065.It Va allscreens_flags 3066.Pq Vt str 3067If set, 3068.Xr vidcontrol 1 3069is run with these options for each of the virtual terminals 3070.Pq Pa /dev/ttyv* . 3071For example, 3072.Dq Fl m Cm on 3073will enable the mouse pointer on all virtual terminals 3074if 3075.Va moused_enable 3076is set to 3077.Dq Li YES . 3078.It Va allscreens_kbdflags 3079.Pq Vt str 3080If set, 3081.Xr kbdcontrol 1 3082is run with these options for each of the virtual terminals 3083.Pq Pa /dev/ttyv* . 3084For example, 3085.Dq Fl h Li 200 3086will set the 3087.Xr syscons 4 3088scrollback (history) buffer to 200 lines. 3089.It Va cron_enable 3090.Pq Vt bool 3091If set to 3092.Dq Li YES , 3093run the 3094.Xr cron 8 3095daemon at system boot time. 3096.It Va cron_program 3097.Pq Vt str 3098Path to 3099.Xr cron 8 3100(default 3101.Pa /usr/sbin/cron ) . 3102.It Va cron_flags 3103.Pq Vt str 3104If 3105.Va cron_enable 3106is set to 3107.Dq Li YES , 3108these are the flags to pass to 3109.Xr cron 8 . 3110.It Va cron_dst 3111.Pq Vt bool 3112If set to 3113.Dq Li YES , 3114enable the special handling of transitions to and from the 3115Daylight Saving Time in 3116.Xr cron 8 3117(equivalent to using the flag 3118.Fl s ) . 3119.It Va lpd_program 3120.Pq Vt str 3121Path to 3122.Xr lpd 8 3123(default 3124.Pa /usr/sbin/lpd ) . 3125.It Va lpd_enable 3126.Pq Vt bool 3127If set to 3128.Dq Li YES , 3129run the 3130.Xr lpd 8 3131daemon at system boot time. 3132.It Va lpd_flags 3133.Pq Vt str 3134If 3135.Va lpd_enable 3136is set to 3137.Dq Li YES , 3138these are the flags to pass to the 3139.Xr lpd 8 3140daemon. 3141.It Va chkprintcap_enable 3142.Pq Vt bool 3143If set to 3144.Dq Li YES , 3145run the 3146.Xr chkprintcap 8 3147command before starting the 3148.Xr lpd 8 3149daemon. 3150.It Va chkprintcap_flags 3151.Pq Vt str 3152If 3153.Va lpd_enable 3154and 3155.Va chkprintcap_enable 3156are set to 3157.Dq Li YES , 3158these are the flags to pass to the 3159.Xr chkprintcap 8 3160program. 3161The default is 3162.Dq Li -d , 3163which causes missing directories to be created. 3164.It Va mta_start_script 3165.Pq Vt str 3166This variable specifies the full path to the script to run to start 3167a mail transfer agent. 3168The default is 3169.Pa /etc/rc.sendmail . 3170The 3171.Va sendmail_* 3172variables which 3173.Pa /etc/rc.sendmail 3174uses are documented in the 3175.Xr rc.sendmail 8 3176manual page. 3177.It Va dumpdev 3178.Pq Vt str 3179Indicates the device (usually a swap partition) to which a crash dump 3180should be written in the event of a system crash. 3181If the value of this variable is 3182.Dq Li AUTO , 3183the first suitable swap device listed in 3184.Pa /etc/fstab 3185will be used as dump device. 3186Otherwise, the value of this variable is passed as the argument to 3187.Xr dumpon 8 . 3188To disable crash dumps, set this variable to 3189.Dq Li NO . 3190.It Va dumpdir 3191.Pq Vt str 3192When the system reboots after a crash and a crash dump is found on the 3193device specified by the 3194.Va dumpdev 3195variable, 3196.Xr savecore 8 3197will save that crash dump and a copy of the kernel to the directory 3198specified by the 3199.Va dumpdir 3200variable. 3201The default value is 3202.Pa /var/crash . 3203Set to 3204.Dq Li NO 3205to not run 3206.Xr savecore 8 3207at boot time when 3208.Va dumpdir 3209is set. 3210.It Va savecore_flags 3211.Pq Vt str 3212If crash dumps are enabled, these are the flags to pass to the 3213.Xr savecore 8 3214utility. 3215.It Va quota_enable 3216.Pq Vt bool 3217Set to 3218.Dq Li YES 3219to turn on user and group disk quotas on system startup via the 3220.Xr quotaon 8 3221command for all file systems marked as having quotas enabled in 3222.Pa /etc/fstab . 3223The kernel must be built with 3224.Cd "options QUOTA" 3225for disk quotas to function. 3226.It Va check_quotas 3227.Pq Vt bool 3228Set to 3229.Dq Li YES 3230to enable user and group disk quota checking via the 3231.Xr quotacheck 8 3232command. 3233.It Va quotacheck_flags 3234.Pq Vt str 3235If 3236.Va quota_enable 3237is set to 3238.Dq Li YES , 3239and 3240.Va check_quotas 3241is set to 3242.Dq Li YES , 3243these are the flags to pass to the 3244.Xr quotacheck 8 3245utility. 3246The default is 3247.Dq Li "-a" , 3248which checks quotas for all file systems with quotas enabled in 3249.Pa /etc/fstab . 3250.It Va quotaon_flags 3251.Pq Vt str 3252If 3253.Va quota_enable 3254is set to 3255.Dq Li YES , 3256these are the flags to pass to the 3257.Xr quotaon 8 3258utility. 3259The default is 3260.Dq Li "-a" , 3261which enables quotas for all file systems with quotas enabled in 3262.Pa /etc/fstab . 3263.It Va quotaoff_flags 3264.Pq Vt str 3265If 3266.Va quota_enable 3267is set to 3268.Dq Li YES , 3269these are the flags to pass to the 3270.Xr quotaoff 8 3271utility when shutting down the quota system. 3272The default is 3273.Dq Li "-a" , 3274which disables quotas for all file systems with quotas enabled in 3275.Pa /etc/fstab . 3276.It Va accounting_enable 3277.Pq Vt bool 3278Set to 3279.Dq Li YES 3280to enable system accounting through the 3281.Xr accton 8 3282facility. 3283.It Va ibcs2_enable 3284.Pq Vt bool 3285Set to 3286.Dq Li YES 3287to enable iBCS2 (SCO) binary emulation at system initial boot 3288time. 3289.It Va ibcs2_loaders 3290.Pq Vt str 3291If not set to 3292.Dq Li NO 3293and if 3294.Va ibcs2_enable 3295is set to 3296.Dq Li YES , 3297this specifies a list of additional iBCS2 loaders to enable. 3298.It Va linux_enable 3299.Pq Vt bool 3300Set to 3301.Dq Li YES 3302to enable Linux/ELF binary emulation at system initial 3303boot time. 3304.It Va svr4_enable 3305.Pq Vt bool 3306If set to 3307.Dq Li YES , 3308enable SysVR4 emulation at boot time. 3309.It Va sysvipc_enable 3310.Pq Vt bool 3311If set to 3312.Dq Li YES , 3313load System V IPC primitives at boot time. 3314.It Va clear_tmp_enable 3315.Pq Vt bool 3316Set to 3317.Dq Li YES 3318to have 3319.Pa /tmp 3320cleaned at startup. 3321.It Va clear_tmp_X 3322.Pq Vt bool 3323Set to 3324.Dq Li NO 3325to disable removing of X11 lock files, 3326and the removal and (secure) recreation 3327of the various socket directories for X11 3328related programs. 3329.It Va ldconfig_paths 3330.Pq Vt str 3331Set to the list of shared library paths to use with 3332.Xr ldconfig 8 . 3333NOTE: 3334.Pa /usr/lib 3335will always be added first, so it need not appear in this list. 3336.It Va ldconfig32_paths 3337.Pq Vt str 3338Set to the list of 32-bit compatibility shared library paths to 3339use with 3340.Xr ldconfig 8 . 3341.It Va ldconfig_paths_aout 3342.Pq Vt str 3343Set to the list of shared library paths to use with 3344.Xr ldconfig 8 3345legacy 3346.Xr a.out 5 3347support. 3348.It Va ldconfig_insecure 3349.Pq Vt bool 3350The 3351.Xr ldconfig 8 3352utility normally refuses to use directories 3353which are writable by anyone except root. 3354Set this variable to 3355.Dq Li YES 3356to disable that security check during system startup. 3357.It Va ldconfig_local_dirs 3358.Pq Vt str 3359Set to the list of local 3360.Xr ldconfig 8 3361directories. 3362The names of all files in the directories listed will be 3363passed as arguments to 3364.Xr ldconfig 8 . 3365.It Va ldconfig_local32_dirs 3366.Pq Vt str 3367Set to the list of local 32-bit compatibility 3368.Xr ldconfig 8 3369directories. 3370The names of all files in the directories listed will be 3371passed as arguments to 3372.Dq Nm ldconfig Fl 32 . 3373.It Va kern_securelevel_enable 3374.Pq Vt bool 3375Set to 3376.Dq Li YES 3377to set the kernel security level at system startup. 3378.It Va kern_securelevel 3379.Pq Vt int 3380The kernel security level to set at startup. 3381The allowed range of 3382.Ar value 3383ranges from \-1 (the compile time default) to 3 (the 3384most secure). 3385See 3386.Xr security 7 3387for the list of possible security levels and their effect 3388on system operation. 3389.It Va sshd_program 3390.Pq Vt str 3391Path to the SSH server program 3392.Pa ( /usr/sbin/sshd 3393is the default). 3394.It Va sshd_enable 3395.Pq Vt bool 3396Set to 3397.Dq Li YES 3398to start 3399.Xr sshd 8 3400at system boot time. 3401.It Va sshd_flags 3402.Pq Vt str 3403If 3404.Va sshd_enable 3405is set to 3406.Dq Li YES , 3407these are the flags to pass to the 3408.Xr sshd 8 3409daemon. 3410.It Va ftpd_program 3411.Pq Vt str 3412Path to the FTP server program 3413.Pa ( /usr/libexec/ftpd 3414is the default). 3415.It Va ftpd_enable 3416.Pq Vt bool 3417Set to 3418.Dq Li YES 3419to start 3420.Xr ftpd 8 3421as a stand-alone daemon at system boot time. 3422.It Va ftpd_flags 3423.Pq Vt str 3424If 3425.Va ftpd_enable 3426is set to 3427.Dq Li YES , 3428these are the additional flags to pass to the 3429.Xr ftpd 8 3430daemon. 3431.It Va watchdogd_enable 3432.Pq Vt bool 3433If set to 3434.Dq Li YES , 3435start the 3436.Xr watchdogd 8 3437daemon at boot time. 3438This requires that the kernel have been compiled with a 3439.Xr watchdog 4 3440compatible device. 3441.It Va watchdogd_flags 3442.Pq Vt str 3443If 3444.Va watchdogd_enable 3445is set to 3446.Dq Li YES , 3447these are the flags passed to the 3448.Xr watchdogd 8 3449daemon. 3450.It Va performance_cx_lowest 3451.Pq Vt str 3452CPU idle state to use while on AC power. 3453The string 3454.Dq Li LOW 3455indicates that 3456.Xr acpi 4 3457should use the lowest power state available while 3458.Dq Li HIGH 3459indicates that the lowest latency state (less power savings) should be used. 3460.It Va performance_cpu_freq 3461.Pq Vt str 3462CPU clock frequency to use while on AC power. 3463The string 3464.Dq Li LOW 3465indicates that 3466.Xr cpufreq 4 3467should use the lowest frequency available while 3468.Dq Li HIGH 3469indicates that the highest frequency (less power savings) should be used. 3470.It Va economy_cx_lowest 3471.Pq Vt str 3472CPU idle state to use when off AC power. 3473The string 3474.Dq Li LOW 3475indicates that 3476.Xr acpi 4 3477should use the lowest power state available while 3478.Dq Li HIGH 3479indicates that the lowest latency state (less power savings) should be used. 3480.It Va economy_cpu_freq 3481.Pq Vt str 3482CPU clock frequency to use when off AC power. 3483The string 3484.Dq Li LOW 3485indicates that 3486.Xr cpufreq 4 3487should use the lowest frequency available while 3488.Dq Li HIGH 3489indicates that the highest frequency (less power savings) should be used. 3490.It Va jail_enable 3491.Pq Vt bool 3492If set to 3493.Dq Li NO , 3494any configured jails will not be started. 3495.It jail_parallel_start 3496.Pq Vt bool 3497If set to 3498.Dq Li YES 3499all configured jails will be started in the background (= in parallel). 3500.It Va jail_list 3501.Pq Vt str 3502A space separated list of names for jails. 3503This is purely a configuration aid to help identify and 3504configure multiple jails. 3505The names specified in this list will be used to 3506identify settings common to an instance of a jail. 3507Assuming that the jail in question was named 3508.Li vjail , 3509you would have the following dependent variables: 3510.Bd -literal 3511jail_vjail_hostname="jail.example.com" 3512jail_vjail_ip="192.0.2.100" 3513jail_vjail_rootdir="/var/jails/vjail/root" 3514.Ed 3515.Pp 3516.It Va jail_flags 3517.Pq Vt str 3518Unset by default. 3519When set, use as default value for 3520.Va jail_ Ns Ao Ar jname Ac Ns Va _flags 3521for every jail in 3522.Va jail_list . 3523.It Va jail_interface 3524.Pq Vt str 3525Unset by default. 3526When set, use as default value for 3527.Va jail_ Ns Ao Ar jname Ac Ns Va _interface 3528for every jail in 3529.Va jail_list . 3530.It Va jail_fstab 3531.Pq Vt str 3532Unset by default. 3533When set, use as default value for 3534.Va jail_ Ns Ao Ar jname Ac Ns Va _fstab 3535for every jail in 3536.Va jail_list . 3537.It Va jail_mount_enable 3538.Pq Vt bool 3539Set to 3540.Dq Li NO 3541by default. 3542When set to 3543.Dq Li YES , 3544sets 3545.Va jail_ Ns Ao Ar jname Ac Ns Va _mount_enable 3546to 3547.Dq Li YES 3548by default for every jail in 3549.Va jail_list . 3550.It Va jail_devfs_ruleset 3551.Pq Vt str 3552Unset by default. 3553When set, sets 3554.Va jail_ Ns Ao Ar jname Ac Ns Va _devfs_ruleset 3555to given value for every jail in 3556.Va jail_list . 3557.It Va jail_devfs_enable 3558.Pq Vt bool 3559Set to 3560.Dq Li NO 3561by default. 3562When set to 3563.Dq Li YES , 3564sets 3565.Va jail_ Ns Ao Ar jname Ac Ns Va _devfs_enable 3566to 3567.Dq Li YES 3568by default for every jail in 3569.Va jail_list . 3570.It Va jail_fdescfs_enable 3571.Pq Vt bool 3572Set to 3573.Dq Li NO 3574by default. 3575When set to 3576.Dq Li YES , 3577sets 3578.Va jail_ Ns Ao Ar jname Ac Ns Va _fdescfs_enable 3579to 3580.Dq Li YES 3581by default for every jail in 3582.Va jail_list . 3583.It Va jail_procfs_enable 3584.Pq Vt bool 3585Set to 3586.Dq Li NO 3587by default. 3588When set to 3589.Dq Li YES , 3590sets 3591.Va jail_ Ns Ao Ar jname Ac Ns Va _fdescfs_enable 3592to 3593.Dq Li YES 3594by default for every jail in 3595.Va jail_list . 3596.It Va jail_exec_prestart Ns Aq Ar N 3597.Pq Vt str 3598Unset by default. 3599When set, use as default value for 3600.Va jail_ Ns Ao Ar jname Ac Ns Va _exec_prestart Ns Aq Ar N 3601for every jail in 3602.Va jail_list . 3603.It Va jail_exec_start 3604.Pq Vt str 3605Unset by default. 3606When set, use as default value for 3607.Va jail_ Ns Ao Ar jname Ac Ns Va _exec_start 3608for every jail in 3609.Va jail_list . 3610.It Va jail_exec_afterstart Ns Aq Ar N 3611.Pq Vt str 3612Unset by default. 3613When set, use as default value for 3614.Va jail_ Ns Ao Ar jname Ac Ns Va _exec_afterstart Ns Aq Ar N 3615for every jail in 3616.Va jail_list . 3617.It Va jail_exec_poststart Ns Aq Ar N 3618.Pq Vt str 3619Unset by default. 3620When set, use as default value for 3621.Va jail_ Ns Ao Ar jname Ac Ns Va _exec_poststart Ns Aq Ar N 3622for every jail in 3623.Va jail_list . 3624.It Va jail_exec_prestop Ns Aq Ar N 3625.Pq Vt str 3626Unset by default. 3627When set, use as default value for 3628.Va jail_ Ns Ao Ar jname Ac Ns Va _exec_prestop Ns Aq Ar N 3629for every jail in 3630.Va jail_list . 3631.It Va jail_exec_stop 3632Unset by default. 3633When set, use as default value for 3634.Va jail_ Ns Ao Ar jname Ac Ns Va _exec_stop 3635for every jail in 3636.Va jail_list . 3637.It Va jail_exec_poststop Ns Aq Ar N 3638.Pq Vt str 3639Unset by default. 3640When set, use as default value for 3641.Va jail_ Ns Ao Ar jname Ac Ns Va _exec_poststop Ns Aq Ar N 3642for every jail in 3643.Va jail_list . 3644.It Va jail_ Ns Ao Ar jname Ac Ns Va _rootdir 3645.Pq Vt str 3646Unset by default. 3647Set to the root directory used by jail 3648.Va jname . 3649.It Va jail_ Ns Ao Ar jname Ac Ns Va _hostname 3650.Pq Vt str 3651Unset by default. 3652Set to the fully qualified domain name (FQDN) assigned to jail 3653.Va jname . 3654.It Va jail_ Ns Ao Ar jname Ac Ns Va _ip 3655.Pq Vt str 3656Unset by default. 3657Set to the (primary) IPv4 and/or IPv6 address(es) assigned to the jail. 3658The argument can be a sole address or a comma separated list of addresses. 3659Additionally each address can be prefixed by the name of an interface 3660followed by a pipe to overwrite 3661.Va jail_ Ns Ao Ar jname Ac Ns Va _interface 3662or 3663.Va jail_interface 3664and/or suffixed by a netmask, prefixlen or prefix. 3665In case no netmask, prefixlen or prefix is given, 3666.Sq /32 3667will be used for IPv4 and 3668.Sq /128 3669will be used for an IPv6 address. 3670If no address is given for the jail then the jail will be started with 3671no networking support. 3672.It Va jail_ Ns Ao Ar jname Ac Ns Va _ip_multi Ns Aq Ar n 3673.Pq Vt str 3674Unset by default. 3675Set additional IPv4 and/or IPv6 address(es) assigned to the jail. 3676The sequence starts with 3677.Dq Li _multi0 3678and the numbers have to be strictly ascending. 3679These entries follow the same syntax as their primary 3680.Va jail_ Ns Ao Ar jname Ac Ns Va _ip 3681entry. 3682The order of the entries can be important as the first address for 3683each address family found will be the primary address of the jail. 3684See 3685.Va ip-addresses 3686option in 3687.Xr jail 8 3688for more details. 3689.It Va jail_ Ns Ao Ar jname Ac Ns Va _flags 3690.Pq Vt str 3691Set to 3692.Dq Li -l -U root 3693by default. 3694These are flags to pass to 3695.Xr jail . 3696.It Va jail_ Ns Ao Ar jname Ac Ns Va _interface 3697.Pq Vt str 3698Unset by default. 3699When set, sets the interface to use when setting IP address alias. 3700Note that the alias is created at jail startup and removed at jail shutdown. 3701.It Va jail_ Ns Ao Ar jname Ac Ns Va _fib 3702.Pq Vt str 3703Unset by default. 3704When set, the jail is started with the specified forwarding table (sometimes 3705referred to as a routing table) via 3706.Xr setfib 1 . 3707.It Va jail_ Ns Ao Ar jname Ac Ns Va _fstab 3708.Pq Vt str 3709Set to 3710.Pa /etc/fstab. Ns Aq Ar jname 3711by default. 3712This is the file system information file to use for jail 3713.Va jname . 3714.It Va jail_ Ns Ao Ar jname Ac Ns Va _mount_enable 3715.Pq Vt bool 3716Set to 3717.Dq Li NO 3718by default. 3719When set to 3720.Dq Li YES , 3721mount all file systems from 3722.Va jail_ Ns Ao Ar jname Ac Ns Va _fstab 3723at jail startup. 3724.It Va jail_ Ns Ao Ar jname Ac Ns Va _devfs_ruleset 3725.Pq Vt str 3726Unset by default. 3727When set, defines the device file system ruleset file to use for jail 3728.Va jname . 3729.It Va jail_ Ns Ao Ar jname Ac Ns Va _devfs_enable 3730.Pq Vt bool 3731Set to 3732.Dq Li NO 3733by default. 3734When set to 3735.Dq Li YES , 3736mount the device file system inside jail 3737.Ar jname 3738at jail startup. 3739.It Va jail_ Ns Ao Ar jname Ac Ns Va _fdescfs_enable 3740.Pq Vt bool 3741Set to 3742.Dq Li NO 3743by default. 3744When set to 3745.Dq Li YES , 3746mount the file-descriptor file system inside jail 3747.Ar jname 3748at jail startup. 3749.It Va jail_ Ns Ao Ar jname Ac Ns Va _procfs_enable 3750.Pq Vt bool 3751Set to 3752.Dq Li NO 3753by default. 3754When set to 3755.Dq Li YES , 3756mount the process file system inside jail 3757.Ar jname 3758at jail startup. 3759.It Va jail_ Ns Ao Ar jname Ac Ns Va _exec_prestart Ns Aq Ar N 3760.Pq Vt str 3761Unset by default. 3762This is the command run as 3763.Ar N Ns 3764th command 3765before jail startup, where 3766.Ar N 3767is 0, 1, and so on. 3768It is run outside the jail. 3769.It Va jail_ Ns Ao Ar jname Ac Ns Va _exec_start 3770.Pq Vt str 3771Set to 3772.Dq Li /bin/sh /etc/rc 3773by default. 3774This is the command executed in a jail at jail startup. 3775.It Va jail_ Ns Ao Ar jname Ac Ns Va _exec_afterstart Ns Aq Ar N 3776.Pq Vt str 3777Unset by default. 3778This is the command run as 3779.Ar N Ns 3780th command 3781in a jail 3782after jail startup, where 3783.Ar N 3784is 1, 2, and so on. 3785.It Va jail_ Ns Ao Ar jname Ac Ns Va _exec_poststart Ns Aq Ar N 3786.Pq Vt str 3787Unset by default. 3788This is the command run as 3789.Ar N Ns 3790th command 3791after jail startup, where 3792.Ar N 3793is 0, 1, and so on. 3794It is run outside the jail. 3795.It Va jail_ Ns Ao Ar jname Ac Ns Va _exec_prestop Ns Aq Ar N 3796.Pq Vt str 3797Unset by default. 3798This is the command run as 3799.Ar N Ns 3800th command 3801before jail shutdown, where 3802.Ar N 3803is 0, 1, and so on. 3804It is run outside the jail. 3805.It Va jail_ Ns Ao Ar jname Ac Ns Va _exec_stop 3806.Pq Vt str 3807Set to 3808.Dq Li /bin/sh /etc/rc.shutdown 3809by default. 3810This is the command executed in a jail at jail shutdown. 3811.It Va jail_ Ns Ao Ar jname Ac Ns Va _exec_poststop Ns Aq Ar N 3812.Pq Vt str 3813Unset by default. 3814This is the command run as 3815.Ar N Ns 3816th command 3817after jail shutdown, where 3818.Ar N 3819is 0, 1, and so on. 3820It is run outside the jail. 3821.It Va jail_set_hostname_allow 3822.Pq Vt bool 3823If set to 3824.Dq Li NO , 3825do not allow the root user in a jail to set its hostname. 3826.It Va jail_socket_unixiproute_only 3827.Pq Vt bool 3828If set to 3829.Dq Li YES , 3830do not allow any sockets, 3831besides UNIX/IP/route sockets, 3832to be used within a jail. 3833.It Va jail_sysvipc_allow 3834.Pq Vt bool 3835If set to 3836.Dq Li YES , 3837allow applications within a jail to use System V IPC. 3838.\" ----------------------------------------------------- 3839.It Va harvest_interrupt 3840.Pq Vt bool 3841Set to 3842.Dq Li YES 3843to use hardware interrupts as an entropy source. 3844Refer to 3845.Xr random 4 3846for more information. 3847.It Va harvest_ethernet 3848.Pq Vt bool 3849Set to 3850.Dq Li YES 3851to use LAN traffic as an entropy source. 3852Refer to 3853.Xr random 4 3854for more information. 3855.It Va harvest_p_to_p 3856.Pq Vt bool 3857Set to 3858.Dq Li YES 3859to use serial line traffic as an entropy source. 3860Refer to 3861.Xr random 4 3862for more information. 3863.It Va entropy_dir 3864.Pq Vt str 3865Set to 3866.Dq Li NO 3867to disable caching entropy via 3868.Xr cron 8 . 3869Otherwise set to the directory used to store entropy files in. 3870.It Va entropy_file 3871.Pq Vt str 3872Set to 3873.Dq Li NO 3874to disable caching entropy through reboots. 3875Otherwise set to the filename used to store cached entropy through 3876reboots. 3877This file should be located on the root file system to seed the 3878.Xr random 4 3879device as early as possible in the boot process. 3880.It Va entropy_save_sz 3881.Pq Vt int 3882Size of the entropy cache files saved by 3883.Nm save-entropy 3884periodically. 3885.It Va entropy_save_num 3886.Pq Vt int 3887Number of entropy cache files to save by 3888.Nm save-entropy 3889periodically. 3890.It Va ipsec_enable 3891.Pq Vt bool 3892Set to 3893.Dq Li YES 3894to run 3895.Xr setkey 8 3896on 3897.Va ipsec_file 3898at boot time. 3899.It Va ipsec_file 3900.Pq Vt str 3901Configuration file for 3902.Xr setkey 8 . 3903.It Va dmesg_enable 3904.Pq Vt bool 3905Set to 3906.Dq Li YES 3907to save 3908.Xr dmesg 8 3909to 3910.Pa /var/run/dmesg.boot 3911on boot. 3912.It Va rcshutdown_timeout 3913.Pq Vt int 3914If set, start a watchdog timer in the background which will terminate 3915.Pa rc.shutdown 3916if 3917.Xr shutdown 8 3918has not completed within the specified time (in seconds). 3919Notice that in addition to this soft timeout, 3920.Xr init 8 3921also applies a hard timeout for the execution of 3922.Pa rc.shutdown . 3923This is configured via 3924.Xr sysctl 8 3925variable 3926.Va kern.init_shutdown_timeout 3927and defaults to 120 seconds. 3928Setting the value of 3929.Va rcshutdown_timeout 3930to more than 120 seconds will have no effect until the 3931.Xr sysctl 8 3932variable 3933.Va kern.init_shutdown_timeout 3934is also increased. 3935.It Va virecover_enable 3936.Pq Vt bool 3937Set to 3938.Dq Li NO 3939to prevent the system from trying to 3940recover pre-maturely terminated 3941.Xr vi 1 3942sessions. 3943.It Va ugidfw_enable 3944.Pq Vt bool 3945Set to 3946.Dq Li YES 3947to load the 3948.Xr mac_bsdextended 4 3949module upon system initialization and load a default 3950ruleset file. 3951.It Va bsdextended_script 3952.Pq Vt str 3953The default 3954.Xr mac_bsdextended 4 3955ruleset file to load. 3956The default value of this variable is 3957.Pa /etc/rc.bsdextended . 3958.It Va newsyslog_enable 3959.Pq Vt bool 3960If set to 3961.Dq Li YES , 3962run 3963.Xr newsyslog 8 3964command at startup. 3965.It Va newsyslog_flags 3966.Pq Vt str 3967If 3968.Va newsyslog_enable 3969is set to 3970.Dq Li YES , 3971these are the flags to pass to the 3972.Xr newsyslog 8 3973program. 3974The default is 3975.Dq Li -CN , 3976which causes log files flagged with a 3977.Cm C 3978to be created. 3979.It Va mdconfig_md Ns Aq Ar X 3980.Pq Vt str 3981Arguments to 3982.Xr mdconfig 8 3983for 3984.Xr md 4 3985device 3986.Ar X . 3987At minimum a 3988.Fl t Ar type 3989must be specified and either a 3990.Fl s Ar size 3991for malloc or swap backed 3992.Xr md 4 3993devices or a 3994.Fl f Ar file 3995for vnode backed 3996.Xr md 4 3997devices. 3998Note that 3999.Va mdconfig_md Ns Aq Ar X 4000variables are evaluated until one variable is unset or null. 4001.It Va mdconfig_md Ns Ao Ar X Ac Ns Va _newfs 4002.Pq Vt str 4003Optional arguments passed to 4004.Xr newfs 8 4005to initialize 4006.Xr md 4 4007device 4008.Ar X . 4009.It Va mdconfig_md Ns Ao Ar X Ac Ns Va _owner 4010.Pq Vt str 4011An ownership specification passed to 4012.Xr chown 8 4013after the specified 4014.Xr md 4 4015device 4016.Ar X 4017has been mounted. 4018Both the 4019.Xr md 4 4020device and the mount point will be changed. 4021.It Va mdconfig_md Ns Ao Ar X Ac Ns Va _perms 4022.Pq Vt str 4023A mode string passed to 4024.Xr chmod 1 4025after the specified 4026.Xr md 4 4027device 4028.Ar X 4029has been mounted. 4030Both the 4031.Xr md 4 4032device and the mount point will be changed. 4033.It Va mdconfig_md Ns Ao Ar X Ac Ns Va _files 4034.Pq Vt str 4035Files to be copied to the mount point of the 4036.Xr md 4 4037device 4038.Ar X 4039after it has been mounted. 4040.It Va mdconfig_md Ns Ao Ar X Ac Ns Va _cmd 4041.Pq Vt str 4042Command to execute after the specified 4043.Xr md 4 4044device 4045.Ar X 4046has been mounted. 4047Note that the command is passed to 4048.Ic eval 4049and that both 4050.Va _dev 4051and 4052.Va _mp 4053variables can be used to reference respectively the 4054.Xr md 4 4055device and the mount point. 4056Assuming that the 4057.Xr md 4 4058device is 4059.Li md0 , 4060one could set the following: 4061.Bd -literal 4062mdconfig_md0_cmd="tar xfzC /var/file.tgz \e${_mp}" 4063.Ed 4064.It Va ramdisk_units 4065.Pq Vt str 4066A list of one or more ramdisk units to configure with 4067.Xr mdconfig 8 4068and 4069.Xr newfs 8 4070in time to be mounted from 4071.Xr fstab 5 . 4072Each listed unit 4073.Ar X 4074must specify at least a 4075.Ar type 4076in a 4077.Va ramdisk_ Ns Ao Ar X Ac Ns Va _config 4078variable. 4079Note that this way to configure ramdisks has been deprecated 4080in favor of new 4081.Va mdconfig_md* 4082variables (see above). 4083.It Va ramdisk_ Ns Ao Ar X Ac Ns Va _config 4084.Pq Vt str 4085Arguments to 4086.Xr mdconfig 8 4087for ramdisk 4088.Ar X . 4089At minimum a 4090.Fl t Ar type 4091must be specified, where 4092.Ar type 4093must be one of 4094.Cm malloc 4095or 4096.Cm swap . 4097.It Va ramdisk_ Ns Ao Ar X Ac Ns Va _newfs 4098.Pq Vt str 4099Optional arguments passed to 4100.Xr newfs 8 4101to initialize ramdisk 4102.Ar X . 4103.It Va ramdisk_ Ns Ao Ar X Ac Ns Va _owner 4104.Pq Vt str 4105An ownership specification passed to 4106.Xr chown 8 4107after the specified ramdisk unit 4108.Ar X 4109has been mounted. 4110Both the 4111.Xr md 4 4112device and the mount point will be changed. 4113.It Va ramdisk_ Ns Ao Ar X Ac Ns Va _perms 4114.Pq Vt str 4115A mode string passed to 4116.Xr chmod 1 4117after the specified ramdisk unit 4118.Ar X 4119has been mounted. 4120Both the 4121.Xr md 4 4122device and the mount point will be changed. 4123.It Va autobridge_interfaces 4124.Pq Vt str 4125Set to the list of bridge interfaces that will have newly arriving interfaces 4126checked against to be automatically added. 4127If not set to 4128.Dq Li NO 4129then for each whitespace separated 4130.Ar element 4131in the value, a 4132.Va autobridge_ Ns Aq Ar element 4133variable is assumed to exist which has a whitespace separated list of interface 4134names to match, these names can use wildcards. 4135For example: 4136.Bd -literal 4137autobridge_interfaces="bridge0" 4138autobridge_bridge0="tap* dc0 vlan[345]" 4139.Ed 4140.It Va mixer_enable 4141.Pq Vt bool 4142If set to 4143.Dq Li YES , 4144enable support for sound mixer. 4145.It Va hcsecd_enable 4146.Pq Vt bool 4147If set to 4148.Dq Li YES , 4149enable Bluetooth security daemon. 4150.It Va hcsecd_config 4151.Pq Vt str 4152Configuration file for 4153.Xr hcsecd 8 . 4154Default 4155.Pa /etc/bluetooth/hcsecd.conf . 4156.It Va sdpd_enable 4157.Pq Vt bool 4158If set to 4159.Dq Li YES , 4160enable Bluetooth Service Discovery Protocol daemon. 4161.It Va sdpd_control 4162.Pq Vt str 4163Path to 4164.Xr sdpd 8 4165control socket. 4166Default 4167.Pa /var/run/sdp . 4168.It Va sdpd_groupname 4169.Pq Vt str 4170Sets 4171.Xr sdpd 8 4172group to run as after it initializes. 4173Default 4174.Dq Li nobody . 4175.It Va sdpd_username 4176.Pq Vt str 4177Sets 4178.Xr sdpd 8 4179user to run as after it initializes. 4180Default 4181.Dq Li nobody . 4182.It Va bthidd_enable 4183.Pq Vt bool 4184If set to 4185.Dq Li YES , 4186enable Bluetooth Human Interface Device daemon. 4187.It Va bthidd_config 4188.Pq Vt str 4189Configuration file for 4190.Xr bthidd 8 . 4191Default 4192.Pa /etc/bluetooth/bthidd.conf . 4193.It Va bthidd_hids 4194.Pq Vt str 4195Path to a file, where 4196.Xr bthidd 8 4197will store information about known HID devices. 4198Default 4199.Pa /var/db/bthidd.hids . 4200.It Va rfcomm_pppd_server_enable 4201.Pq Vt bool 4202If set to 4203.Dq Li YES , 4204enable Bluetooth RFCOMM PPP wrapper daemon. 4205.It Va rfcomm_pppd_server_profile 4206.Pq Vt str 4207The name of the profile to use from 4208.Pa /etc/ppp/ppp.conf . 4209Multiple profiles can be specified here. 4210Also used to specify per-profile overrides. 4211When the profile name contains any of the characters 4212.Dq Li .-/+ 4213they are translated to 4214.Dq Li _ 4215for the proposes of the override variable names. 4216.It Va rfcomm_pppd_server_ Ns Ao Ar profile Ac Ns _bdaddr 4217.Pq Vt str 4218Overrides local address to listen on. 4219By default 4220.Xr rfcomm_pppd 8 4221will listen on 4222.Dq Li ANY 4223address. 4224The address can be specified as BD_ADDR or name. 4225.It Va rfcomm_pppd_server_ Ns Ao Ar profile Ac Ns _channel 4226.Pq Vt str 4227Overrides local RFCOMM channel to listen on. 4228By default 4229.Xr rfcomm_pppd 8 4230will listen on RFCOMM channel 1. 4231Must set properly if multiple profiles used in the same time. 4232.It Va rfcomm_pppd_server_ Ns Ao Ar profile Ac Ns _register_sp 4233.Pq Vt bool 4234Tells 4235.Xr rfcomm_pppd 8 4236if it should register Serial Port service on the specified RFCOMM channel. 4237Default 4238.Dq Li NO . 4239.It Va rfcomm_pppd_server_ Ns Ao Ar profile Ac Ns _register_dun 4240.Pq Vt bool 4241Tells 4242.Xr rfcomm_pppd 8 4243if it should register Dial-Up Networking service on the specified 4244RFCOMM channel. 4245Default 4246.Dq Li NO . 4247.It Va ubthidhci_enable 4248.Pq Vt bool 4249If set to 4250.Dq Li YES , 4251change the USB Bluetooth controller from HID mode to HCI mode. 4252You also need to specify the location of USB Bluetooth controller with the 4253.Va ubthidhci_busnum 4254and 4255.Va ubthidhci_addr 4256variables. 4257.It Va ubthidhci_busnum 4258Bus number where the USB Bluetooth controller is located. 4259Check the output of 4260.Xr usbconfig 8 4261on your system to find this information. 4262.It Va ubthidhci_addr 4263Bus address of the USB Bluetooth controller. 4264Check the output of 4265.Xr usbconfig 8 4266on your system to find this information. 4267.El 4268.Sh FILES 4269.Bl -tag -width ".Pa /etc/defaults/rc.conf" -compact 4270.It Pa /etc/defaults/rc.conf 4271.It Pa /etc/rc.conf 4272.It Pa /etc/rc.conf.local 4273.El 4274.Sh SEE ALSO 4275.Xr catman 1 , 4276.Xr chmod 1 , 4277.Xr gdb 1 , 4278.Xr info 1 , 4279.Xr kbdcontrol 1 , 4280.Xr makewhatis 1 , 4281.Xr sh 1 , 4282.Xr vi 1 , 4283.Xr vidcontrol 1 , 4284.Xr bridge 4 , 4285.Xr dummynet 4 , 4286.Xr ip 4 , 4287.Xr ipf 4 , 4288.Xr ipfw 4 , 4289.Xr ipnat 4 , 4290.Xr kld 4 , 4291.Xr pf 4 , 4292.Xr pflog 4 , 4293.Xr pfsync 4 , 4294.Xr tcp 4 , 4295.Xr udp 4 , 4296.Xr exports 5 , 4297.Xr fstab 5 , 4298.Xr ipf 5 , 4299.Xr ipnat 5 , 4300.Xr motd 5 , 4301.Xr newsyslog.conf 5 , 4302.Xr pf.conf 5 , 4303.Xr security 7 , 4304.Xr accton 8 , 4305.Xr amd 8 , 4306.Xr apm 8 , 4307.Xr atm 8 , 4308.Xr bthidd 8 , 4309.Xr chkprintcap 8 , 4310.Xr chown 8 , 4311.Xr cron 8 , 4312.Xr dhclient 8 , 4313.Xr ftpd 8 , 4314.Xr geli 8 , 4315.Xr hcsecd 8 , 4316.Xr ifconfig 8 , 4317.Xr inetd 8 , 4318.Xr ipf 8 , 4319.Xr ipfw 8 , 4320.Xr ipnat 8 , 4321.Xr jail 8 , 4322.Xr kldxref 8 , 4323.Xr lpd 8 , 4324.Xr mdconfig 8 , 4325.Xr mdmfs 8 , 4326.Xr mixer 8 , 4327.Xr mountd 8 , 4328.Xr moused 8 , 4329.Xr mrouted 8 , 4330.Xr named 8 , 4331.Xr newfs 8 , 4332.Xr newsyslog 8 , 4333.Xr nfsd 8 , 4334.Xr ntpd 8 , 4335.Xr ntpdate 8 , 4336.Xr pfctl 8 , 4337.Xr pflogd 8 , 4338.Xr powerd 8 , 4339.Xr quotacheck 8 , 4340.Xr quotaon 8 , 4341.Xr rc 8 , 4342.Xr rc.sendmail 8 , 4343.Xr rfcomm_pppd 8 , 4344.Xr route 8 , 4345.Xr routed 8 , 4346.Xr rpcbind 8 , 4347.Xr rpc.lockd 8 , 4348.Xr rpc.statd 8 , 4349.Xr rwhod 8 , 4350.Xr savecore 8 , 4351.Xr sdpd 8 , 4352.Xr sshd 8 , 4353.Xr swapon 8 , 4354.Xr sysctl 8 , 4355.Xr syslogd 8 , 4356.Xr timed 8 , 4357.Xr usbconfig 8 , 4358.Xr wlandebug 8 , 4359.Xr yp 8 , 4360.Xr ypbind 8 , 4361.Xr ypserv 8 , 4362.Xr ypset 8 4363.Sh HISTORY 4364The 4365.Nm 4366file appeared in 4367.Fx 2.2.2 . 4368.Sh AUTHORS 4369.An Jordan K. Hubbard . 4370