1.\" Copyright (c) 1995 2.\" Jordan K. Hubbard 3.\" 4.\" Redistribution and use in source and binary forms, with or without 5.\" modification, are permitted provided that the following conditions 6.\" are met: 7.\" 1. Redistributions of source code must retain the above copyright 8.\" notice, this list of conditions and the following disclaimer. 9.\" 2. Redistributions in binary form must reproduce the above copyright 10.\" notice, this list of conditions and the following disclaimer in the 11.\" documentation and/or other materials provided with the distribution. 12.\" 13.\" THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND 14.\" ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 15.\" IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 16.\" ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR BE LIABLE 17.\" FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 18.\" DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 19.\" OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 20.\" HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 21.\" LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 22.\" OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 23.\" SUCH DAMAGE. 24.\" 25.\" $FreeBSD$ 26.\" 27.Dd March 3, 2002 28.Dt RC.CONF 5 29.Os 30.Sh NAME 31.Nm rc.conf 32.Nd system configuration information 33.Sh DESCRIPTION 34The file 35.Nm 36contains descriptive information about the local host name, configuration 37details for any potential network interfaces and which services should be 38started up at system initial boot time. 39In new installations, the 40.Nm 41file is generally initialized by the system installation utility, 42.Xr sysinstall 8 . 43.Pp 44The purpose of 45.Nm 46is not to run commands or perform system startup actions 47directly. 48Instead, it is included by the 49various generic startup scripts in 50.Pa /etc 51which conditionalize their 52internal actions according to the settings found there. 53.Pp 54The 55.Pa /etc/rc.conf 56file is included from the file 57.Pa /etc/defaults/rc.conf , 58which specifies the default settings for all the available options. 59Options need only be specified in 60.Pa /etc/rc.conf 61when the system administrator wishes to override these defaults. 62The file 63.Pa /etc/rc.conf.local 64is used to override settings in 65.Pa /etc/rc.conf 66for historical reasons. 67See the 68.Va rc_conf_files 69variable below. 70.Pp 71The following list provides a name and short description for each 72variable that can be set in the 73.Nm 74file: 75.Bl -tag -width indent-two 76.It Va rc_debug 77.Pq Vt bool 78If set to 79.Dq Li YES , 80enable output of debug messages from rc scripts. 81This variable can be helpful in diagnosing mistakes when 82editing or integrating new scripts. 83Beware that this produces copious output to the terminal and 84.Xr syslog 3 . 85.It Va rc_info 86.Pq Vt bool 87If set to 88.Dq Li NO , 89disable informational messages from the rc scripts. 90Informational messages are displayed when 91a condition that is not serious enough to warrant a warning or 92an error occurs. 93.It Va swapfile 94.Pq Vt str 95If set to 96.Dq Li NO , 97no swapfile is installed, otherwise the value is used as the full 98pathname to a file to use for additional swap space. 99.It Va apm_enable 100.Pq Vt bool 101If set to 102.Dq Li YES , 103enable support for Automatic Power Management with 104the 105.Xr apm 8 106command. 107.It Va apmd_enable 108.Pq Vt bool 109Run 110.Xr apmd 8 111to handle APM event from userland. 112This also enables support for APM. 113.It Va apmd_flags 114.Pq Vt str 115If 116.Va apmd_enable 117is set to 118.Dq Li YES , 119these are the flags to pass to the 120.Xr apmd 8 121daemon. 122.It Va devd_enable 123.Pq Vt bool 124Run 125.Xr devd 8 126to handle device added, removed or unknown events from the kernel. 127.It Va pccard_enable 128.Pq Vt bool 129If set to 130.Dq Li YES , 131enable PCCARD support at boot time. 132.It Va pccard_mem 133.Pq Vt str 134Set to PCCARD controller memory address or 135.Dq Li DEFAULT 136for the default value. 137.It Va pccard_ifconfig 138.Pq Vt str 139List of arguments to be passed to 140.Xr ifconfig 8 141at boot time or on 142insertion of the card (e.g.\& 143.Dq Cm inet Li 192.168.1.1 Cm netmask Li 255.255.255.0 144for a fixed address or 145.Dq Li DHCP 146for a DHCP client). 147.It Va pccard_beep 148.Pq Vt int 149If 0, 150set the PCCARD controller to silent mode. 151If 1, 152set it to beep mode. 153If 2, 154set it to melody mode. 155.It Va pccard_conf 156.Pq Vt str 157Path to the configuration file for the 158.Xr pccardd 8 159daemon (e.g.\& 160.Pa /etc/pccard.conf.sample ) . 161.It Va pccardd_flags 162.Pq Vt str 163If 164.Va pccard_enable 165is set to 166.Dq Li YES , 167these are the flags to pass to the 168.Xr pccardd 8 169daemon. 170.It Va pccard_ether_delay 171.Pq Vt str 172Set the delay before starting 173.Xr dhclient 8 174in 175.Xr pccard_ether 8 176script. 177This defaults to 5 seconds to work around a bug in the 178.Xr ed 4 179driver which can lead to system hangs when using some newer 180.Xr ed 4 181based cards. 182.It Va removable_interfaces 183.Pq Vt str 184List of removable network interfaces to be supported by 185.Pa /etc/pccard_ether . 186.It Va local_startup 187.Pq Vt str 188List of directories to search for startup script files. 189.It Va script_name_sep 190.Pq Vt str 191The field separator to use for breaking down the list of startup script files 192into individual filenames. 193The default is a space. 194It is not necessary to change this unless there are startup scripts with names 195containing spaces. 196.It Va hostname 197.Pq Vt str 198The fully qualified domain name (FQDN) of this host on the network. 199This should almost certainly be set to something meaningful, even if 200there is no network connection. 201If 202.Xr dhclient 8 203is used to set the hostname via DHCP, 204this variable should be set to an empty string. 205.It Va nisdomainname 206.Pq Vt str 207The NIS domain name of this host, or 208.Dq Li NO 209if NIS is not used. 210.It Va dhcp_program 211.Pq Vt str 212Path to the DHCP client program 213.Pa ( /sbin/dhclient , 214the ISC DHCP client, 215is the default). 216.It Va dhcp_flags 217.Pq Vt str 218Additional flags to pass to the DHCP client program. 219For the ISC DHCP client, see the 220.Xr dhclient 8 221manpage for a description of the command line options available. 222.It Va firewall_enable 223.Pq Vt bool 224Set to 225.Dq Li YES 226to load firewall rules at startup. 227If the kernel was not built with 228.Cd "options IPFIREWALL" , 229the 230.Pa ipfw.ko 231kernel module will be loaded. 232See also 233.Va ipfilter_enable . 234.It Va firewall_script 235.Pq Vt str 236This variable specifies the full path to the firewall script to run. 237The default is 238.Pa /etc/rc.firewall . 239.It Va firewall_type 240.Pq Vt str 241Names the firewall type from the selection in 242.Pa /etc/rc.firewall , 243or the file which contains the local firewall ruleset. 244Valid selections from 245.Pa /etc/rc.firewall 246are: 247.Pp 248.Bl -tag -width ".Li simple" -compact 249.It Li open 250unrestricted IP access 251.It Li closed 252all IP services disabled, except via 253.Dq Li lo0 254.It Li client 255basic protection for a workstation 256.It Li simple 257basic protection for a LAN. 258.El 259.Pp 260If a filename is specified, the full path 261must be given. 262.It Va firewall_quiet 263.Pq Vt bool 264Set to 265.Dq Li YES 266to disable the display of firewall rules on the console during boot. 267.It Va firewall_logging 268.Pq Vt bool 269Set to 270.Dq Li YES 271to enable firewall event logging. 272This is equivalent to the 273.Dv IPFIREWALL_VERBOSE 274kernel option. 275.It Va firewall_flags 276.Pq Vt str 277Flags passed to 278.Xr ipfw 8 279if 280.Va firewall_type 281specifies a filename. 282.It Va natd_program 283.Pq Vt str 284Path to 285.Xr natd 8 . 286.It Va natd_enable 287.Pq Vt bool 288Set to 289.Dq Li YES 290to enable 291.Xr natd 8 . 292.Va firewall_enable 293must also be set to 294.Dq Li YES , 295and 296.Xr divert 4 297sockets must be enabled in the kernel. 298.It Va natd_interface 299.Pq Vt str 300This is the name of the public interface on which 301.Xr natd 8 302should run. 303The interface may be given as an interface name or as an IP address. 304.It Va natd_flags 305.Pq Vt str 306Additional 307.Xr natd 8 308flags should be placed here. 309The 310.Fl n 311or 312.Fl a 313flag is automatically added with the above 314.Va natd_interface 315as an argument. 316.\" ----- ipfilter_enable setting -------------------------------- 317.It Va ipfilter_enable 318.Pq Vt bool 319Set to 320.Dq Li NO 321by default. 322Setting this to 323.Dq Li YES 324enables 325.Xr ipf 8 326packet filtering. 327.Pp 328Typical usage will require putting 329.Bd -literal 330ipfilter_enable="YES" 331ipnat_enable="YES" 332ipmon_enable="YES" 333ipfs_enable="YES" 334.Ed 335.Pp 336into 337.Pa /etc/rc.conf 338and editing 339.Pa /etc/ipf.rules 340and 341.Pa /etc/ipnat.rules 342appropriately. 343.Pp 344Note that 345.Va ipfilter_enable 346and 347.Va ipnat_enable 348can be enabled independently. 349.Va ipmon_enable 350and 351.Va ipfs_enable 352both require at least one of 353.Va ipfilter_enable 354and 355.Va ipnat_enable 356to be enabled. 357.Pp 358Having 359.Bd -literal 360options IPFILTER 361options IPFILTER_LOG 362options IPFILTER_DEFAULT_BLOCK 363.Ed 364.Pp 365in the kernel configuration file is a good idea, too. 366.\" ----- ipfilter_program setting ------------------------------ 367.It Va ipfilter_program 368.Pq Vt str 369Path to 370.Xr ipf 8 371(default 372.Pa /sbin/ipf ) . 373.\" ----- ipfilter_rules setting -------------------------------- 374.It Va ipfilter_rules 375.Pq Vt str 376Set to 377.Pa /etc/ipf.rules 378by default. 379This variable contains the name of the filter rule definition file. 380The file is expected to be readable for the 381.Xr ipf 8 382command to execute. 383.\" ----- ipfilter_flags setting -------------------------------- 384.It Va ipfilter_flags 385.Pq Vt str 386Empty by default. 387This variable contains flags passed to the 388.Xr ipf 8 389program. 390.\" ----- ipnat_enable setting ---------------------------------- 391.It Va ipnat_enable 392.Pq Vt bool 393Set to 394.Dq Li NO 395by default. 396Set it to 397.Dq Li YES 398to enable 399.Xr ipnat 1 400network address translation. 401See 402.Va ipfilter_enable 403for a detailed discussion. 404.\" ----- ipnat_program setting --------------------------------- 405.It Va ipnat_program 406.Pq Vt str 407Path to 408.Xr ipnat 1 409(default 410.Pa /sbin/ipnat ) . 411.\" ----- ipnat_rules setting ----------------------------------- 412.It Va ipnat_rules 413.Pq Vt str 414Set to 415.Pa /etc/ipnat.rules 416by default. 417This variable contains the name of the file 418holding the network address translation definition. 419This file is expected to be readable for the 420.Xr ipnat 1 421command to execute. 422.\" ----- ipnat_flags setting ----------------------------------- 423.It Va ipnat_flags 424.Pq Vt str 425Empty by default. 426This variable contains flags passed to the 427.Xr ipnat 1 428program. 429.\" ----- ipmon_enable setting ---------------------------------- 430.It Va ipmon_enable 431.Pq Vt bool 432Set to 433.Dq Li NO 434by default. 435Set it to 436.Dq Li YES 437to enable 438.Xr ipmon 8 439monitoring (logging 440.Xr ipf 8 441and 442.Xr ipnat 1 443events). 444Setting this variable needs setting 445.Va ipfilter_enable 446or 447.Va ipnat_enable 448too. 449See 450.Va ipfilter_enable 451for a detailed discussion. 452.\" ----- ipmon_program setting --------------------------------- 453.It Va ipmon_program 454.Pq Vt str 455Path to 456.Xr ipmon 8 457(default 458.Pa /sbin/ipmon ) . 459.\" ----- ipmon_flags setting ----------------------------------- 460.It Va ipmon_flags 461.Pq Vt str 462Set to 463.Dq Li -Ds 464by default. 465This variable contains flags passed to the 466.Xr ipmon 8 467program. 468Another typical example would be 469.Dq Fl D Pa /var/log/ipflog 470to have 471.Xr ipmon 8 472log directly to a file bypassing 473.Xr syslogd 8 . 474Make sure to adjust 475.Pa /etc/newsyslog.conf 476in such case like this: 477.Bd -literal 478/var/log/ipflog 640 10 100 * Z /var/run/ipmon.pid 479.Ed 480.\" ----- ipfs_enable setting ----------------------------------- 481.It Va ipfs_enable 482.Pq Vt bool 483Set to 484.Dq Li NO 485by default. 486Set it to 487.Dq Li YES 488to enable 489.Xr ipfs 8 490saving the filter and NAT state tables during shutdown 491and reloading them during startup again. 492Setting this variable needs setting 493.Va ipfilter_enable 494or 495.Va ipnat_enable 496to 497.Dq Li YES 498too. 499See 500.Va ipfilter_enable 501for a detailed discussion. 502Note that if 503.Va kern_securelevel 504is set to 3, 505.Va ipfs_enable 506cannot be used 507because the raised securelevel will prevent 508.Xr ipfs 8 509from saving the state tables at shutdown time. 510.\" ----- ipfs_program setting ---------------------------------- 511.It Va ipfs_program 512.Pq Vt str 513Path to 514.Xr ipfs 8 515(default 516.Pa /sbin/ipfs ) . 517.\" ----- ipfs_flags setting ------------------------------------ 518.It Va ipfs_flags 519.Pq Vt str 520Empty by default. 521This variable contains flags passed to the 522.Xr ipfs 8 523program. 524.\" ----- end of added ipf hook --------------------------------- 525.It Va tcp_extensions 526.Pq Vt bool 527Set to 528.Dq Li YES 529by default. 530Setting this to 531.Dq Li NO 532disables certain TCP options as described by 533.Rs 534.%T "RFC 1323" 535.Re 536Setting this to 537.Dq Li NO 538might help remedy such problems with connections as randomly hanging 539or other weird behavior. 540Some network devices are known 541to be broken with respect to these options. 542.It Va log_in_vain 543.Pq Vt int 544Set to 0 by default. 545The 546.Xr sysctl 8 547variables, 548.Va net.inet.tcp.log_in_vain 549and 550.Va net.inet.udp.log_in_vain , 551as described in 552.Xr tcp 4 553and 554.Xr udp 4 , 555are set to the given value. 556.It Va tcp_keepalive 557.Pq Vt bool 558Set to 559.Dq Li YES 560by default. 561Setting to 562.Dq Li NO 563will disable probing idle TCP connections to verify that the 564peer is still up and reachable. 565.It Va tcp_drop_synfin 566.Pq Vt bool 567Set to 568.Dq Li NO 569by default. 570Setting to 571.Dq Li YES 572will cause the kernel to ignore TCP frames that have both 573the SYN and FIN flags set. 574This prevents OS fingerprinting, but may 575break some legitimate applications. 576This option is only available if the 577kernel was built with the 578.Dv TCP_DROP_SYNFIN 579option. 580.It Va icmp_drop_redirect 581.Pq Vt bool 582Set to 583.Dq Li NO 584by default. 585Setting to 586.Dq Li YES 587will cause the kernel to ignore ICMP REDIRECT packets. 588.It Va icmp_log_redirect 589.Pq Vt bool 590Set to 591.Dq Li NO 592by default. 593Setting to 594.Dq Li YES 595will cause the kernel to log ICMP REDIRECT packets. 596Note that 597the log messages are not rate-limited, so this option should only be used 598for troubleshooting networks. 599.It Va network_interfaces 600.Pq Vt str 601Set to the list of network interfaces to configure on this host. 602For example, if the only network devices in the system are the loopback 603device 604.Pq Li lo0 605and a NIC using the 606.Xr ed 4 607driver, 608this could be set to 609.Dq Li "lo0 ed0" . 610An 611.Va ifconfig_ Ns Aq Ar interface 612variable is also assumed to exist for each value of 613.Ar interface . 614It is also possible to add IP alias entries here in cases where 615multiple IP addresses registered against a single interface 616are desired. 617Assuming that the interface in question was 618.Li ed0 , 619it might look 620something like this: 621.Bd -literal 622ifconfig_ed0_alias0="inet 127.0.0.253 netmask 0xffffffff" 623ifconfig_ed0_alias1="inet 127.0.0.254 netmask 0xffffffff" 624.Ed 625.Pp 626And so on. 627For each 628.Va ifconfig_ Ns Ao Ar interface Ac Ns Va _alias Ns Aq Ar n 629entry that is found, 630its contents are passed to 631.Xr ifconfig 8 . 632Execution stops at the first unsuccessful access, so if 633something like this is present: 634.Bd -literal 635ifconfig_ed0_alias0="inet 127.0.0.251 netmask 0xffffffff" 636ifconfig_ed0_alias1="inet 127.0.0.252 netmask 0xffffffff" 637ifconfig_ed0_alias2="inet 127.0.0.253 netmask 0xffffffff" 638ifconfig_ed0_alias4="inet 127.0.0.254 netmask 0xffffffff" 639.Ed 640.Pp 641Then note that alias4 would 642.Em not 643be added since the search would 644stop with the missing alias3 entry. 645.Pp 646It is possible to bring up an interface with DHCP by setting the 647.Va ifconfig_ Ns Aq Ar interface 648variable to 649.Dq Li DHCP . 650For instance, to initialize the 651.Li ed0 652device via DHCP, 653it is possible to use something like: 654.Bd -literal 655ifconfig_ed0="DHCP" 656.Ed 657.It Va cloned_interfaces 658.Pq Vt str 659Set to the list of clonable network interfaces to create on this host. 660Entries in 661.Va cloned_interfaces 662are automatically appended to 663.Va network_interfaces 664for configuration. 665.It Va gif_interfaces 666.Pq Vt str 667Set to the list of 668.Xr gif 4 669tunnel interfaces to configure on this host. 670A 671.Va gifconfig_ Ns Aq Ar interface 672variable is assumed to exist for each value of 673.Ar interface . 674The value of this variable is used to configure the link layer of the 675tunnel according to the syntax of the 676.Cm tunnel 677option to 678.Xr ifconfig 8 . 679Additionally, this option ensures that each listed interface is created 680via the 681.Cm create 682option to 683.Xr ifconfig 8 684before attempting to configure it. 685.It Va ppp_enable 686.Pq Vt bool 687If set to 688.Dq Li YES , 689run the 690.Xr ppp 8 691daemon. 692.It Va ppp_mode 693.Pq Vt str 694Mode in which to run the 695.Xr ppp 8 696daemon. 697Accepted modes are 698.Dq Li auto , 699.Dq Li ddial , 700.Dq Li direct 701and 702.Dq Li dedicated . 703See the manual for a full description. 704.It Va ppp_nat 705.Pq Vt bool 706If set to 707.Dq Li YES , 708enables network address translation. 709Used in conjunction with 710.Va gateway_enable 711allows hosts on private network addresses access to the Internet using 712this host as a network address translating router. 713.It Va ppp_profile 714.Pq Vt str 715The name of the profile to use from 716.Pa /etc/ppp/ppp.conf . 717.It Va ppp_user 718.Pq Vt str 719The name of the user under which 720.Xr ppp 8 721should be started. 722By 723default, 724.Xr ppp 8 725is started as 726.Dq Li root . 727.It Va rc_conf_files 728.Pq Vt str 729This option is used to specify a list of files that will override 730the settings in 731.Pa /etc/defaults/rc.conf . 732The files will be read in the order in which they are specified and should 733include the full path to the file. 734By default, the files specified are 735.Pa /etc/rc.conf 736and 737.Pa /etc/rc.conf.local 738.It Va fsck_y_enable 739.Pq Vt bool 740If set to 741.Dq Li YES , 742.Xr fsck 8 743will be run with the 744.Fl y 745flag if the initial preen 746of the file systems fails. 747.It Va background_fsck 748.Pq Vt bool 749If set to 750.Dq Li YES , 751the system will attempt to run 752.Xr fsck 8 753in the background where possible. 754.It Va background_fsck_delay 755.Pq Vt int 756The amount of time in seconds to sleep before starting a background 757.Xr fsck 8 . 758It defaults to sixty seconds to allow large applications such as 759the X server to start before disk I/O bandwidth is monopolized by 760.Xr fsck 8 . 761.It Va extra_netfs_types 762.Pq Vt str 763If set to something other than 764.Dq Li NO 765(the default), 766this variable extends the list of file system types 767for which automatic mounting at startup by 768.Xr rc 8 769should be delayed until the network is initialized. 770It should contain 771a whitespace-separated list of network file system descriptor pairs, 772each consisting of a file system type as passed to 773.Xr mount 8 774and a human-readable, one-word description, 775joined with a colon 776.Pq Ql \&: . 777Extending the default list in this way is only necessary 778when third party file system types are used. 779.It Va syslogd_enable 780.Pq Vt bool 781If set to 782.Dq Li YES , 783run the 784.Xr syslogd 8 785daemon. 786.It Va syslogd_program 787.Pq Vt str 788Path to 789.Xr syslogd 8 790(default 791.Pa /usr/sbin/syslogd ) . 792.It Va syslogd_flags 793.Pq Vt str 794If 795.Va syslogd_enable 796is set to 797.Dq Li YES , 798these are the flags to pass to 799.Xr syslogd 8 . 800.It Va inetd_enable 801.Pq Vt bool 802If set to 803.Dq Li YES , 804run the 805.Xr inetd 8 806daemon. 807.It Va inetd_program 808.Pq Vt str 809Path to 810.Xr inetd 8 811(default 812.Pa /usr/sbin/inetd ) . 813.It Va inetd_flags 814.Pq Vt str 815If 816.Va inetd_enable 817is set to 818.Dq Li YES , 819these are the flags to pass to 820.Xr inetd 8 . 821.It Va named_rcng 822.Pq Vt bool 823If set to 824.Dq Li YES 825use new functionality provided in the 826.Pa /etc/rc.d/named 827script to facilitate a 828.Xr chroot 8 829instance of 830.Xr named 8 . 831This variable is experimental. 832It may be removed or changed in the near future. 833.It Va named_enable 834.Pq Vt bool 835If set to 836.Dq Li YES , 837run the 838.Xr named 8 839daemon. 840.It Va named_program 841.Pq Vt str 842Path to 843.Xr named 8 844(default 845.Pa /usr/sbin/named ) . 846.It Va named_flags 847.Pq Vt str 848If 849.Va named_enable 850is set to 851.Dq Li YES , 852these are the flags to pass to 853.Xr named 8 . 854.It Va named_pidfile 855.Pq Vt str 856This is the default path to the 857.Xr named 8 858daemon's PID file. 859Change it if you change the location in 860.Xr named.conf 5 . 861.It Va named_chrootdir 862.Pq Vt str 863The root directory for a name server run in a 864.Xr chroot 8 865environment. 866If left empty 867.Xr named 8 868will not be run in a 869.Xr chroot 8 870environment. 871This variable has no effect if 872.Va named_rcng 873is not enabled. 874This variable is experimental. 875It may be removed or changed in the near future. 876.It Va named_chroot_autoupdate 877.Pq Vt bool 878Set to 879.Dq Li NO 880to disable automatic syncing of libraries and 881other system files between the root file system and the 882.Xr chroot 8 . 883This variable has no effect if 884.Va named_rcng 885is not enabled. 886This variable is experimental. 887It may be removed or changed in the near future. 888.It Va named_symlink_enable 889.Pq Vt bool 890Set to 891.Dq Li NO 892to disable symlinking of 893.Pa /var/run/named.pid 894and 895.Pa /var/run/ndc 896into the 897.Xr chroot 8 898environment in which 899.Xr named 8 900is running. 901This variable has no effect if 902.Va named_rcng 903is not enabled. 904This variable is experimental. 905It may be removed or changed in the near future. 906.It Va kerberos4_server_enable 907.Pq Vt bool 908Set to 909.Dq Li YES 910to start a Kerberos IV authentication server 911at boot time. 912.It Va kadmind4_server_enable 913.Pq Vt bool 914Set to 915.Dq Li YES 916to start 917.Xr kadmind 8 , 918the Kerberos IV Administration Daemon; set to 919.Dq Li NO 920on a slave server. 921.It Va kerberos_stash 922.Pq Vt str 923If 924.Dq Li YES , 925instruct the Kerberos servers to use the stashed master key instead of 926prompting for it (only if 927.Va kerberos_server_enable 928is set to 929.Dq Li YES , 930and is used for both 931.Xr kerberos 1 932and 933.Xr kadmind 8 ) . 934.It Va kerberos5_server_enable 935.Pq Vt bool 936Set to 937.Dq Li YES 938to start a Kerberos 5 authentication server 939at boot time. 940.It Va kadmind5_server_enable 941.Pq Vt bool 942Set to 943.Dq Li YES 944to start 945.Xr k5admind 8 , 946the Kerberos 5 Administration Daemon; set to 947.Dq Li NO 948on a slave server. 949.It Va rwhod_enable 950.Pq Vt bool 951If set to 952.Dq Li YES , 953run the 954.Xr rwhod 8 955daemon at boot time. 956.It Va rwhod_flags 957.Pq Vt str 958If 959.Va rwhod_enable 960is set to 961.Dq Li YES , 962these are the flags to pass to it. 963.It Va amd_enable 964.Pq Vt bool 965If set to 966.Dq Li YES , 967run the 968.Xr amd 8 969daemon at boot time. 970.It Va amd_flags 971.Pq Vt str 972If 973.Va amd_enable 974is set to 975.Dq Li YES , 976these are the flags to pass to it. 977See the 978.Xr amd 8 979manpage for more information. 980.It Va amd_map_program 981.Pq Vt str 982If set, 983the specified program is run to get the list of 984.Xr amd 8 985maps. 986For example, if the 987.Xr amd 8 988maps are stored in NIS, one can set this to 989run 990.Xr ypcat 1 991to get a list of 992.Xr amd 8 993maps from the 994.Pa amd.master 995NIS map. 996.It Va update_motd 997.Pq Vt bool 998If set to 999.Dq Li YES , 1000.Pa /etc/motd 1001will be updated at boot time to reflect the kernel release 1002being run. 1003If set to 1004.Dq Li NO , 1005.Pa /etc/motd 1006will not be updated. 1007.It Va nfs_client_enable 1008.Pq Vt bool 1009If set to 1010.Dq Li YES , 1011run the NFS client daemons at boot time. 1012.It Va nfs_access_cache 1013.Pq Vt int 1014If 1015.Va nfs_client_enable 1016is set to 1017.Dq Li YES , 1018this can be set to 1019.Dq Li 0 1020to disable NFS ACCESS RPC caching, or to the number of seconds for which 1021NFS ACCESS 1022results should be cached. 1023A value of 2-10 seconds will substantially reduce network 1024traffic for many NFS operations. 1025.It Va nfs_server_enable 1026.Pq Vt bool 1027If set to 1028.Dq Li YES , 1029run the NFS server daemons at boot time. 1030.It Va nfs_server_flags 1031.Pq Vt str 1032If 1033.Va nfs_server_enable 1034is set to 1035.Dq Li YES , 1036these are the flags to pass to the 1037.Xr nfsd 8 1038daemon. 1039.It Va mountd_enable 1040.Pq Vt bool 1041If set to 1042.Dq Li YES , 1043and no 1044.Va nfs_server_enable 1045is set, start 1046.Xr mountd 8 , 1047but not 1048.Xr nfsd 8 1049daemon. 1050It is commonly needed to run CFS without real NFS used. 1051.It Va weak_mountd_authentication 1052.Pq Vt bool 1053If set to 1054.Dq Li YES , 1055allow services like PCNFSD to make non-privileged mount 1056requests. 1057.It Va nfs_privport 1058.Pq Vt bool 1059If set to 1060.Dq Li YES , 1061provide NFS services only on a secure port. 1062.It Va nfs_bufpackets 1063.Pq Vt int 1064If set to a number, indicates the number of packets worth of 1065socket buffer space to reserve on an NFS client. 1066If set to 1067.Dq Li DEFAULT , 1068the kernel default is used (typically 4). 1069Using a higher number may be 1070useful on gigabit networks to improve performance. 1071The minimum value is 10722 and the maximum is 64. 1073.It Va rpc_lockd_enable 1074.Pq Vt bool 1075If set to 1076.Dq Li YES 1077and also an NFS server, run 1078.Xr rpc.lockd 8 1079at boot time. 1080.It Va rpc_statd_enable 1081.Pq Vt bool 1082If set to 1083.Dq Li YES 1084and also an NFS server, run 1085.Xr rpc.statd 8 1086at boot time. 1087.It Va rpcbind_program 1088.Pq Vt str 1089Path to 1090.Xr rpcbind 8 1091(default 1092.Pa /usr/sbin/rpcbind ) . 1093.It Va rpcbind_enable 1094.Pq Vt bool 1095If set to 1096.Dq Li YES , 1097run the 1098.Xr rpcbind 8 1099service at boot time. 1100.It Va rpcbind_flags 1101.Pq Vt str 1102If 1103.Va rpcbind_enable 1104is set to 1105.Dq Li YES , 1106these are the flags to pass to the 1107.Xr rpcbind 8 1108daemon. 1109.It Va xtend_enable 1110.Pq Vt bool 1111If set to 1112.Dq Li YES , 1113run the 1114.Xr xtend 8 1115daemon at boot time. 1116.It Va xtend_flags 1117.Pq Vt str 1118If 1119.Va xtend_enable 1120is set to 1121.Dq Li YES , 1122these are the flags to pass to the 1123.Xr xtend 8 1124daemon. 1125.It Va pppoed_enable 1126.Pq Vt bool 1127If set to 1128.Dq Li YES , 1129run the 1130.Xr pppoed 8 1131daemon at boot time to provide PPP over Ethernet services. 1132.It Va pppoed_ Ns Ar provider 1133.Pq Vt str 1134.Xr pppoed 8 1135listens to requests to this 1136.Ar provider 1137and ultimately runs 1138.Xr ppp 8 1139with a 1140.Ar system 1141argument of the same name. 1142.It Va pppoed_flags 1143.Pq Vt str 1144Additional flags to pass to 1145.Xr pppoed 8 . 1146.It Va pppoed_interface 1147.Pq Vt str 1148The network interface to run 1149.Xr pppoed 8 1150on. 1151This is mandatory when 1152.Va pppoed_enable 1153is set to 1154.Dq Li YES . 1155.It Va timed_enable 1156.Pq Vt boot 1157If set to 1158.Dq Li YES , 1159run the 1160.Xr timed 8 1161service at boot time. 1162This command is intended for networks of 1163machines where a consistent 1164.Dq "network time" 1165for all hosts must be established. 1166This is often useful in large NFS 1167environments where time stamps on files are expected to be consistent 1168network-wide. 1169.It Va timed_flags 1170.Pq Vt str 1171If 1172.Va timed_enable 1173is set to 1174.Dq Li YES , 1175these are the flags to pass to the 1176.Xr timed 8 1177service. 1178.It Va ntpdate_enable 1179.Pq Vt bool 1180If set to 1181.Dq Li YES , 1182run 1183.Xr ntpdate 8 1184at system startup. 1185This command is intended to 1186synchronize the system clock only 1187.Em once 1188from some standard reference. 1189An option to set this up initially 1190(from a list of known servers) is also provided by the 1191.Xr sysinstall 8 1192program when the system is first installed. 1193.It Va ntpdate_program 1194.Pq Vt str 1195Path to 1196.Xr ntpdate 8 1197(default 1198.Pa /usr/sbin/ntpdate ) . 1199.It Va ntpdate_flags 1200.Pq Vt str 1201If 1202.Va ntpdate_enable 1203is set to 1204.Dq Li YES , 1205these are the flags to pass to the 1206.Xr ntpdate 8 1207command (typically a hostname). 1208.It Va ntpd_enable 1209.Pq Vt bool 1210If set to 1211.Dq Li YES , 1212run the 1213.Xr ntpd 8 1214command at boot time. 1215.It Va ntpd_program 1216.Pq Vt str 1217Path to 1218.Xr ntpd 8 1219(default 1220.Pa /usr/sbin/ntpd ) . 1221.It Va ntpd_flags 1222.Pq Vt str 1223If 1224.Va ntpd_enable 1225is set to 1226.Dq Li YES , 1227these are the flags to pass to the 1228.Xr ntpd 8 1229daemon. 1230.It Va nis_client_enable 1231.Pq Vt bool 1232If set to 1233.Dq Li YES , 1234run the 1235.Xr ypbind 8 1236service at system boot time. 1237.It Va nis_client_flags 1238.Pq Vt str 1239If 1240.Va nis_client_enable 1241is set to 1242.Dq Li YES , 1243these are the flags to pass to the 1244.Xr ypbind 8 1245service. 1246.It Va nis_ypset_enable 1247.Pq Vt bool 1248If set to 1249.Dq Li YES , 1250run the 1251.Xr ypset 8 1252daemon at system boot time. 1253.It Va nis_ypset_flags 1254.Pq Vt str 1255If 1256.Va nis_ypset_enable 1257is set to 1258.Dq Li YES , 1259these are the flags to pass to the 1260.Xr ypset 8 1261daemon. 1262.It Va nis_server_enable 1263.Pq Vt bool 1264If set to 1265.Dq Li YES , 1266run the 1267.Xr ypserv 8 1268daemon at system boot time. 1269.It Va nis_server_flags 1270.Pq Vt str 1271If 1272.Va nis_server_enable 1273is set to 1274.Dq Li YES , 1275these are the flags to pass to the 1276.Xr ypserv 8 1277daemon. 1278.It Va nis_ypxfrd_enable 1279.Pq Vt bool 1280If set to 1281.Dq Li YES , 1282run the 1283.Xr rpc.ypxfrd 8 1284daemon at system boot time. 1285.It Va nis_ypxfrd_flags 1286.Pq Vt str 1287If 1288.Va nis_ypxfrd_enable 1289is set to 1290.Dq Li YES , 1291these are the flags to pass to the 1292.Xr rpc.ypxfrd 8 1293daemon. 1294.It Va nis_yppasswdd_enable 1295.Pq Vt bool 1296If set to 1297.Dq Li YES , 1298run the 1299.Xr rpc.yppasswdd 8 1300daemon at system boot time. 1301.It Va nis_yppasswdd_flags 1302.Pq Vt str 1303If 1304.Va nis_yppasswdd_enable 1305is set to 1306.Dq Li YES , 1307these are the flags to pass to the 1308.Xr rpc.yppasswdd 8 1309daemon. 1310.It Va defaultrouter 1311.Pq Vt str 1312If not set to 1313.Dq Li NO , 1314create a default route to this host name or IP address 1315(use an IP address if this router is also required to get to the 1316name server!). 1317.It Va static_routes 1318.Pq Vt str 1319Set to the list of static routes that are to be added at system 1320boot time. 1321If not set to 1322.Dq Li NO 1323then for each whitespace separated 1324.Ar element 1325in the value, a 1326.Va route_ Ns Aq Ar element 1327variable is assumed to exist 1328whose contents will later be passed to a 1329.Dq Nm route Cm add 1330operation. 1331.It Va gateway_enable 1332.Pq Vt bool 1333If set to 1334.Dq Li YES , 1335configure host to act as an IP router, e.g. to forward packets 1336between interfaces. 1337.It Va router_enable 1338.Pq Vt bool 1339If set to 1340.Dq Li YES , 1341run a routing daemon of some sort, based on the 1342settings of 1343.Va router 1344and 1345.Va router_flags . 1346.It Va router 1347.Pq Vt str 1348If 1349.Va router_enable 1350is set to 1351.Dq Li YES , 1352this is the name of the routing daemon to use. 1353.It Va router_flags 1354.Pq Vt str 1355If 1356.Va router_enable 1357is set to 1358.Dq Li YES , 1359these are the flags to pass to the routing daemon. 1360.It Va mrouted_enable 1361.Pq Vt bool 1362If set to 1363.Dq Li YES , 1364run the multicast routing daemon, 1365.Xr mrouted 8 . 1366.It Va mrouted_flags 1367.Pq Vt str 1368If 1369.Va mrouted_enable 1370is set to 1371.Dq Li YES , 1372these are the flags to pass to the 1373.Xr mrouted 8 1374daemon. 1375.It Va ipxgateway_enable 1376.Pq Vt bool 1377If set to 1378.Dq Li YES , 1379enable the routing of IPX traffic. 1380.It Va ipxrouted_enable 1381.Pq Vt bool 1382If set to 1383.Dq Li YES , 1384run the 1385.Xr IPXrouted 8 1386daemon at system boot time. 1387.It Va ipxrouted_flags 1388.Pq Vt str 1389If 1390.Va ipxrouted_enable 1391is set to 1392.Dq Li YES , 1393these are the flags to pass to the 1394.Xr IPXrouted 8 1395daemon. 1396.It Va arpproxy_all 1397.Pq Vt bool 1398If set to 1399.Dq Li YES , 1400enable global proxy ARP. 1401.It Va forward_sourceroute 1402.Pq Vt bool 1403If set to 1404.Dq Li YES 1405and 1406.Va gateway_enable 1407is also set to 1408.Dq Li YES , 1409source-routed packets are forwarded. 1410.It Va accept_sourceroute 1411.Pq Vt bool 1412If set to 1413.Dq Li YES , 1414the system will accept source-routed packets directed at it. 1415.It Va rarpd_enable 1416.Pq Vt bool 1417If set to 1418.Dq Li YES , 1419run the 1420.Xr rarpd 8 1421daemon at system boot time. 1422.It Va rarpd_flags 1423.Pq Vt str 1424If 1425.Va rarpd_enable 1426is set to 1427.Dq Li YES , 1428these are the flags to pass to the 1429.Xr rarpd 8 1430daemon. 1431.It Va bootparamd_enable 1432.Pq Vt bool 1433If set to 1434.Dq Li YES , 1435run the 1436.Xr bootparamd 8 1437daemon at system boot time. 1438.It Va bootparamd_flags 1439.Pq Vt str 1440If 1441.Va bootparamd_enable 1442is set to 1443.Dq Li YES , 1444these are the flags to pass to the 1445.Xr bootparamd 8 1446daemon. 1447.It Va atm_enable 1448.Pq Vt bool 1449Set to 1450.Dq Li YES 1451to enable the configuration of ATM interfaces at system boot time. 1452For all of the ATM variables described below, please refer to the 1453.Xr atm 8 1454man page for further details on the available command parameters. 1455Also refer to the files in 1456.Pa /usr/share/examples/atm 1457for more detailed configuration information. 1458.It Va atm_netif_ Ns Aq Ar intf 1459.Pq Vt str 1460For the ATM physical interface 1461.Ar intf , 1462this variable defines the name prefix and count for the ATM network 1463interfaces to be created. 1464The value will be passed as the parameters of an 1465.Dq Nm atm Cm "set netif" Ar intf 1466command. 1467.It Va atm_sigmgr_ Ns Aq Ar intf 1468.Pq Vt str 1469For the ATM physical interface 1470.Ar intf , 1471this variable defines the ATM signalling manager to be used. 1472The value will be passed as the parameters of an 1473.Dq Nm atm Cm attach Ar intf 1474command. 1475.It Va atm_prefix_ Ns Aq Ar intf 1476.Pq Vt str 1477For the ATM physical interface 1478.Ar intf , 1479this variable defines the NSAP prefix for interfaces using a UNI signalling 1480manager. 1481If set to 1482.Dq Li ILMI , 1483the prefix will automatically be set via the 1484.Xr ilmid 8 1485daemon. 1486Otherwise, the value will be passed as the parameters of an 1487.Dq Nm atm Cm "set prefix" Ar intf 1488command. 1489.It Va atm_macaddr_ Ns Aq Ar intf 1490.Pq Vt str 1491For the ATM physical interface 1492.Ar intf , 1493this variable defines the MAC address for interfaces using a UNI signalling 1494manager. 1495If set to 1496.Dq Li NO , 1497the hardware MAC address contained in the ATM interface card will be used. 1498Otherwise, the value will be passed as the parameters of an 1499.Dq Nm atm Cm "set mac" Ar intf 1500command. 1501.It Va atm_arpserver_ Ns Aq Ar netif 1502.Pq Vt str 1503For the ATM network interface 1504.Ar netif , 1505this variable defines the ATM address for a host which is to provide ATMARP 1506service. 1507This variable is only applicable to interfaces using a UNI signalling 1508manager. 1509If set to 1510.Dq Li local , 1511this host will become an ATMARP server. 1512The value will be passed as the parameters of an 1513.Dq Nm atm Cm "set arpserver" Ar netif 1514command. 1515.It Va atm_scsparp_ Ns Aq Ar netif 1516.Pq Vt bool 1517If set to 1518.Dq Li YES , 1519SCSP/ATMARP service for the network interface 1520.Ar netif 1521will be initiated using the 1522.Xr scspd 8 1523and 1524.Xr atmarpd 8 1525daemons. 1526This variable is only applicable if 1527.Va atm_arpserver_ Ns Aq Ar netif 1528is set to 1529.Dq Li local . 1530.It Va atm_pvcs 1531.Pq Vt str 1532Set to the list of ATM PVCs to be added at system 1533boot time. 1534For each whitespace separated 1535.Ar element 1536in the value, an 1537.Va atm_pvc_ Ns Aq Ar element 1538variable is assumed to exist. 1539The value of each of these variables 1540will be passed as the parameters of an 1541.Dq Nm atm Cm "add pvc" 1542command. 1543.It Va atm_arps 1544.Pq Vt str 1545Set to the list of permanent ATM ARP entries to be added 1546at system boot time. 1547For each whitespace separated 1548.Ar element 1549in the value, an 1550.Va atm_arp_ Ns Aq Ar element 1551variable is assumed to exist. 1552The value of each of these variables 1553will be passed as the parameters of an 1554.Dq Nm atm Cm "add arp" 1555command. 1556.It Va keymap 1557.Pq Vt str 1558If set to 1559.Dq Li NO , 1560no keymap is installed, otherwise the value is used to install 1561the keymap file in 1562.Pa /usr/share/syscons/keymaps/ Ns Ao Ar value Ac Ns Pa .kbd . 1563.It Va keyrate 1564.Pq Vt str 1565The keyboard repeat speed. 1566Set to 1567.Dq Li slow , 1568.Dq Li normal , 1569.Dq Li fast , 1570or 1571.Dq Li NO 1572if the default behavior is desired. 1573.It Va keychange 1574.Pq Vt str 1575If not set to 1576.Dq Li NO , 1577attempt to program the function keys with the value. 1578The value should 1579be a single string of the form: 1580.Dq Ar funkey_number new_value Op Ar funkey_number new_value ... . 1581.It Va cursor 1582.Pq Vt str 1583Can be set to the value of 1584.Dq Li normal , 1585.Dq Li blink , 1586.Dq Li destructive , 1587or 1588.Dq Li NO 1589to set the cursor behavior explicitly or choose the default behavior. 1590.It Va scrnmap 1591.Pq Vt str 1592If set to 1593.Dq Li NO , 1594no screen map is installed, otherwise the value is used to install 1595the screen map file in 1596.Pa /usr/share/syscons/scrnmaps/ Ns Aq Ar value . 1597.It Va font8x16 1598.Pq Vt str 1599If set to 1600.Dq Li NO , 1601the default 8x16 font value is used for screen size requests, otherwise 1602the value in 1603.Pa /usr/share/syscons/fonts/ Ns Aq Ar value 1604is used. 1605.It Va font8x14 1606.Pq Vt str 1607If set to 1608.Dq Li NO , 1609the default 8x14 font value is used for screen size requests, otherwise 1610the value in 1611.Pa /usr/share/syscons/fonts/ Ns Aq Ar value 1612is used. 1613.It Va font8x8 1614.Pq Vt str 1615If set to 1616.Dq Li NO , 1617the default 8x8 font value is used for screen size requests, otherwise 1618the value in 1619.Pa /usr/share/syscons/fonts/ Ns Aq Ar value 1620is used. 1621.It Va blanktime 1622.Pq Vt int 1623If set to 1624.Dq Li NO , 1625the default screen blanking interval is used, otherwise it is set 1626to 1627.Ar value 1628seconds. 1629.It Va saver 1630.Pq Vt str 1631If not set to 1632.Dq Li NO , 1633this is the actual screen saver to use 1634.Li ( blank , snake , daemon , 1635etc). 1636.It Va moused_enable 1637.Pq Vt str 1638If set to 1639.Dq Li YES , 1640the 1641.Xr moused 8 1642daemon is started for doing cut/paste selection on the console. 1643.It Va moused_type 1644.Pq Vt str 1645This is the protocol type of the mouse connected to this host. 1646This variable must be set if 1647.Va moused_enable 1648is set to 1649.Dq Li YES . 1650The 1651.Xr moused 8 1652daemon 1653is able to detect the appropriate mouse type automatically in many cases. 1654Set this variable to 1655.Dq Li auto 1656to let the daemon detect it, or 1657select one from the following list if the automatic detection fails. 1658.Pp 1659If the mouse is attached to the PS/2 mouse port, choose 1660.Dq Li auto 1661or 1662.Dq Li ps/2 , 1663regardless of the brand and model of the mouse. 1664Likewise, if the 1665mouse is attached to the bus mouse port, choose 1666.Dq Li auto 1667or 1668.Dq Li busmouse . 1669All other protocols are for serial mice and will not work with 1670the PS/2 and bus mice. 1671If this is a USB mouse, 1672.Dq Li auto 1673is the only protocol type which will work. 1674.Pp 1675.Bl -tag -width ".Li x10mouseremote" -compact 1676.It Li microsoft 1677Microsoft mouse (serial) 1678.It Li intellimouse 1679Microsoft IntelliMouse (serial) 1680.It Li mousesystems 1681Mouse systems Corp. mouse (serial) 1682.It Li mmseries 1683MM Series mouse (serial) 1684.It Li logitech 1685Logitech mouse (serial) 1686.It Li busmouse 1687A bus mouse 1688.It Li mouseman 1689Logitech MouseMan and TrackMan (serial) 1690.It Li glidepoint 1691ALPS GlidePoint (serial) 1692.It Li thinkingmouse 1693Kensington ThinkingMouse (serial) 1694.It Li ps/2 1695PS/2 mouse 1696.It Li mmhittab 1697MM HitTablet (serial) 1698.It Li x10mouseremote 1699X10 MouseRemote (serial) 1700.It Li versapad 1701Interlink VersaPad (serial) 1702.El 1703.Pp 1704Even if the mouse is not in the above list, it may be compatible 1705with one in the list. 1706Refer to the man page for 1707.Xr moused 8 1708for compatibility information. 1709.Pp 1710It should also be noted that while this is enabled, any 1711other client of the mouse (such as an X server) should access 1712the mouse through the virtual mouse device, 1713.Pa /dev/sysmouse , 1714and configure it as a 1715.Dq Li sysmouse 1716type mouse, since all 1717mouse data is converted to this single canonical format when 1718using 1719.Xr moused 8 . 1720If the client program does not support the 1721.Dq Li sysmouse 1722type, 1723specify the 1724.Dq Li mousesystems 1725type. 1726It is the second preferred type. 1727.It Va moused_port 1728.Pq Vt str 1729If 1730.Va moused_enable 1731is set to 1732.Dq Li YES , 1733this is the actual port the mouse is on. 1734It might be 1735.Pa /dev/cuaa0 1736for a COM1 serial mouse, 1737.Pa /dev/psm0 1738for a PS/2 mouse or 1739.Pa /dev/mse0 1740for a bus mouse, for example. 1741.It Va moused_flags 1742.Pq Vt str 1743If 1744.Va moused_type 1745is set, these are the additional flags to pass to the 1746.Xr moused 8 1747daemon. 1748.It Va mousechar_start 1749.Pq Vt int 1750If set to 1751.Dq Li NO , 1752the default mouse cursor character range 1753.Li 0xd0 Ns - Ns Li 0xd3 1754is used, 1755otherwise the range start is set 1756to 1757.Ar value 1758character, see 1759.Xr vidcontrol 1 . 1760Use if the default range is occupied in the language code table. 1761.It Va allscreens_flags 1762.Pq Vt str 1763If set, 1764.Xr vidcontrol 1 1765is run with these options for each of the virtual terminals 1766.Pq Pa /dev/ttyv* . 1767For example, 1768.Dq Fl m Cm on 1769will enable the mouse pointer on all virtual terminals 1770if 1771.Va moused_enable 1772is set to 1773.Dq Li YES . 1774.It Va allscreens_kbdflags 1775.Pq Vt str 1776If set, 1777.Xr kbdcontrol 1 1778is run with these options for each of the virtual terminals 1779.Pq Pa /dev/ttyv* . 1780For example, 1781.Dq Fl h Li 200 1782will set the 1783.Xr syscons 4 1784scrollback (history) buffer to 200 lines. 1785.It Va cron_enable 1786.Pq Vt bool 1787If set to 1788.Dq Li YES , 1789run the 1790.Xr cron 8 1791daemon at system boot time. 1792.It Va cron_program 1793.Pq Vt str 1794Path to 1795.Xr cron 8 1796(default 1797.Pa /usr/sbin/cron ) . 1798.It Va cron_flags 1799.Pq Vt str 1800If 1801.Va cron_enable 1802is set to 1803.Dq Li YES , 1804these are the flags to pass to 1805.Xr cron 8 . 1806.It Va lpd_program 1807.Pq Vt str 1808Path to 1809.Xr lpd 8 1810(default 1811.Pa /usr/sbin/lpd ) . 1812.It Va lpd_enable 1813.Pq Vt bool 1814If set to 1815.Dq Li YES , 1816run the 1817.Xr lpd 8 1818daemon at system boot time. 1819.It Va lpd_flags 1820.Pq Vt str 1821If 1822.Va lpd_enable 1823is set to 1824.Dq Li YES , 1825these are the flags to pass to the 1826.Xr lpd 8 1827daemon. 1828.It Va mta_start_script 1829.Pq Vt str 1830This variable specifies the full path to the script to run to start 1831a mail transfer agent. 1832The default is 1833.Pa /etc/rc.sendmail . 1834The 1835.Va sendmail_* 1836variables which 1837.Pa /etc/rc.sendmail 1838uses are documented in the 1839.Xr rc.sendmail 8 1840man page. 1841.It Va dumpdev 1842.Pq Vt str 1843Indicates the device (usually a swap partition) to which a crash dump 1844should be written in the event of a system crash. 1845The value of this variable is passed as the argument to 1846.Xr dumpon 8 . 1847To disable crash dumps, set this variable to 1848.Dq Li NO . 1849.It Va dumpdir 1850.Pq Vt str 1851When the system reboots after a crash and a crash dump is found on the 1852device specified by the 1853.Va dumpdev 1854variable, 1855.Xr savecore 8 1856will save that crash dump and a copy of the kernel to the directory 1857specified by the 1858.Va dumpdir 1859variable. 1860The default value is 1861.Pa /var/crash . 1862Set to 1863.Dq Li NO 1864to not run 1865.Xr savecore 8 1866at boot time when 1867.Va dumpdir 1868is set. 1869.It Va savecore_flags 1870.Pq Vt str 1871If crash dumps are enabled, these are the flags to pass to the 1872.Xr savecore 8 1873utility. 1874.It Va enable_quotas 1875.Pq Vt bool 1876Set to 1877.Dq Li YES 1878to turn on user disk quotas on system startup via the 1879.Xr quotaon 8 1880command. 1881.It Va check_quotas 1882.Pq Vt bool 1883Set to 1884.Dq Li YES 1885to enable user disk quota checking via the 1886.Xr quotacheck 8 1887command. 1888.It Va accounting_enable 1889.Pq Vt bool 1890Set to 1891.Dq Li YES 1892to enable system accounting through the 1893.Xr accton 8 1894facility. 1895.It Va ibcs2_enable 1896.Pq Vt bool 1897Set to 1898.Dq Li YES 1899to enable iBCS2 (SCO) binary emulation at system initial boot 1900time. 1901.It Va ibcs2_loaders 1902.Pq Vt str 1903If not set to 1904.Dq Li NO 1905and if 1906.Va ibcs2_enable 1907is set to 1908.Dq Li YES , 1909this specifies a list of additional iBCS2 loaders to enable. 1910.It Va linux_enable 1911.Pq Vt bool 1912Set to 1913.Dq Li YES 1914to enable Linux/ELF binary emulation at system initial 1915boot time. 1916.It Va osf1_enable 1917.Pq Vt bool 1918Set to 1919.Dq Li YES 1920to enable OSF/1 (Digital UNIX) binary emulation at system 1921initial boot time. 1922(alpha) 1923.It Va clear_tmp_enable 1924.Pq Vt bool 1925Set to 1926.Dq Li YES 1927to have 1928.Pa /tmp 1929cleaned at startup. 1930.It Va ldconfig_paths 1931.Pq Vt str 1932Set to the list of shared library paths to use with 1933.Xr ldconfig 8 . 1934NOTE: 1935.Pa /usr/lib 1936will always be added first, so it need not appear in this list. 1937.It Va ldconfig_insecure 1938.Pq Vt bool 1939The 1940.Xr ldconfig 8 1941utility normally refuses to use directories 1942which are writable by anyone except root. 1943Set this variable to 1944.Dq Li YES 1945to disable that security check during system startup. 1946.It Va kern_securelevel_enable 1947.Pq Vt bool 1948Set to 1949.Dq Li YES 1950to set the kernel security level at system startup. 1951.It Va kern_securelevel 1952.Pq Vt int 1953The kernel security level to set at startup. 1954The allowed range of 1955.Ar value 1956ranges from \-1 (the compile time default) to 3 (the 1957most secure). 1958See 1959.Xr init 8 1960for the list of possible security levels and their effect 1961on system operation. 1962.It Va lomac_enable 1963.Pq Vt bool 1964Set to 1965.Dq Li YES 1966to enable Low Watermark Mandatory Access Control (LOMAC) at boot time. 1967This security model enforces integrity constraints for system processes; 1968see 1969.Xr lomac 4 1970for a complete description of the LOMAC model, as well as its impact 1971on system operation. 1972.It Va start_vinum 1973.Pq Vt bool 1974Set to 1975.Dq Li YES 1976to start 1977.Xr vinum 8 1978at system boot time. 1979.It Va sshd_program 1980.Pq Vt str 1981Path to the SSH server program 1982.Pa ( /usr/sbin/sshd 1983is the default). 1984.It Va sshd_enable 1985.Pq Vt bool 1986Set to 1987.Dq Li YES 1988to start 1989.Xr sshd 8 1990at system boot time. 1991.It Va sshd_flags 1992.Pq Vt str 1993If 1994.Va sshd_enable 1995is set to 1996.Dq Li YES , 1997these are the flags to pass to the 1998.Xr sshd 8 1999daemon. 2000.It Va unaligned_print 2001.Pq Vt bool 2002If set to 2003.Dq Li NO , 2004unaligned access warnings will not be printed. 2005(alpha) 2006.\" ----- isdn settings --------------------------------- 2007.It Va isdn_enable 2008.Pq Vt bool 2009Set to 2010.Dq Li NO 2011by default. 2012When set to 2013.Dq Li YES , 2014starts the 2015.Xr isdnd 8 2016daemon 2017at system boot time. 2018.It Va isdn_flags 2019.Pq Vt str 2020Set to 2021.Dq Fl d Ns Cm n Fl d Ns Li 0x1f9 2022by default. 2023Additional flags to pass to 2024.Xr isdnd 8 2025(but see 2026.Va isdn_fsdev 2027and 2028.Va isdn_ttype 2029for certain tunable parameters). 2030.It Va isdn_ttype 2031.Pq Vt str 2032Set to 2033.Dq Li cons25 2034by default. 2035The terminal type of the output device when 2036.Xr isdnd 8 2037operates in full-screen mode. 2038.It Va isdn_screenflags 2039.Pq Vt str 2040Set to 2041.Dq Li NO 2042by default. 2043The video mode for full-screen mode (only for 2044.Xr syscons 4 2045console driver, see 2046.Xr vidcontrol 1 2047for valid modes). 2048.It Va isdn_fsdev 2049.Pq Vt str 2050Set to 2051.Dq Li NO 2052by default. 2053The output device for 2054.Xr isdnd 8 2055in full-screen mode (or 2056.Dq Li NO 2057for daemon mode). 2058.It Va isdn_trace 2059.Pq Vt bool 2060Set to 2061.Dq Li NO 2062by default. 2063When set to 2064.Dq Li YES , 2065enables the ISDN protocol trace utility 2066.Xr isdntrace 8 2067at system boot time. 2068.It Va isdn_traceflags 2069.Pq Vt str 2070Set to 2071.Dq Fl f Pa /var/tmp/isdntrace0 2072by default. 2073Flags for 2074.Xr isdntrace 8 . 2075.\" ----------------------------------------------------- 2076.It Va pcvt_verbose 2077.Pq Vt bool 2078Set to 2079.Dq Li NO 2080by default. 2081When set to 2082.Dq Li YES , 2083verbose messages about the actions done by the start script are displayed. 2084.Em Note : 2085the 2086.Xr pcvt 4 2087driver must be compiled into the kernel before the 2088.Xr pcvt 4 2089related 2090options described here take any effect. 2091.It Va pcvt_keymap 2092.Pq Vt str 2093Set to 2094.Dq Li NO 2095by default. 2096Use this to configure a national keyboard mapping found in the 2097.Pa /usr/share/misc/keycap.pcvt 2098file of keyboard mappings. 2099(See also the manual pages 2100.Xr keycap 5 2101and 2102.Xr keycap 3 2103for usage of 2104.Xr pcvt 4 Ns 's 2105keycap database and the manual page 2106.Xr kcon 1 2107option 2108.Fl m 2109for national keyboard mapping configuration.) 2110.It Va pcvt_keydel 2111.Pq Vt int 2112Set to 2113.Dq Li NO 2114by default. 2115Used to set the keyboard key repeat delay value. 2116Valid values are 2117in the range 0..3 for delay values of 250, 500, 750 and 1000 msec. 2118(See also the 2119.Xr kcon 1 2120manual page.) 2121.It Va pcvt_keyrate 2122.Pq Vt int 2123Set to 2124.Dq Li NO 2125by default. 2126Used to set the keyboard key repetition rate value. 2127Valid values are 2128in the range 0..31 for repetition values of 2..30 characters per second. 2129.It Va pcvt_keyrepeat 2130.Pq Vt bool 2131Set to 2132.Dq Li NO 2133by default. 2134Set to 2135.Dq Li YES 2136to enable automatic keyboard key repeating. 2137.It Va pcvt_force24 2138.Pq Vt bool 2139Set to 2140.Dq Li NO 2141by default. 2142Set to 2143.Dq Li YES 2144to force 2145.Xr pcvt 4 2146to use 24 lines only (in 25 lines mode) for compatibility 2147with the original 2148.Tn VT220 2149terminal. 2150.It Va pcvt_hpext 2151.Pq Vt bool 2152Set to 2153.Dq Li NO 2154by default. 2155Set to 2156.Dq Li YES 2157to enable the display and functionality of function key labels (as found 2158on 2159.Tn Hewlett-Packard 2160terminals such as the 2161.Tn HP2392A 2162and the 2163.Tn HP700/92 2164in 2165.Tn ANSI 2166mode). 2167.It Va pcvt_lines 2168.Pq Vt int 2169Set to 2170.Dq Li NO 2171by default resulting in a value of 25. 2172Used to set the number of lines on the screen. 2173For VGA displays, valid 2174values are 25, 28, 40 and 50 lines. 2175(See also the 2176.Xr scon 1 2177manual page.) 2178.It Va pcvt_blanktime 2179.Pq Vt int 2180Set to 2181.Dq Li NO 2182by default. 2183Used to set the screen saver timeout in seconds for values greater than 2184zero. 2185.It Va pcvt_cursorh 2186.Pq Vt int 2187Set to 2188.Dq Li NO 2189by default. 2190Used to set the cursor top scanline. 2191(See also the 2192.Xr cursor 1 2193manual page.) 2194.It Va pcvt_cursorl 2195.Pq Vt int 2196Set to 2197.Dq Li NO 2198by default. 2199Used to set the cursor bottom scanline. 2200.It Va pcvt_monohigh 2201.Pq Vt bool 2202Set to 2203.Dq Li NO 2204by default. 2205Set to 2206.Dq Li YES 2207to set intensity to high on monochrome monitors. 2208(See also the 2209.Xr scon 1 2210manual page, option 2211.Fl p , 2212for more information on changing VGA palette 2213values.) 2214.El 2215.Sh FILES 2216.Bl -tag -width ".Pa /etc/defaults/rc.conf" -compact 2217.It Pa /etc/defaults/rc.conf 2218.It Pa /etc/rc.conf 2219.It Pa /etc/rc.conf.local 2220.El 2221.Sh SEE ALSO 2222.Xr catman 1 , 2223.Xr gdb 1 , 2224.Xr info 1 , 2225.Xr makewhatis 1 , 2226.Xr vidcontrol 1 , 2227.Xr tcp 4 , 2228.Xr udp 4 , 2229.Xr exports 5 , 2230.Xr motd 5 , 2231.Xr accton 8 , 2232.Xr amd 8 , 2233.Xr apm 8 , 2234.Xr atm 8 , 2235.Xr cron 8 , 2236.Xr dhclient 8 , 2237.Xr gated 8 , 2238.Xr ifconfig 8 , 2239.Xr inetd 8 , 2240.Xr isdnd 8 , 2241.Xr isdntrace 8 , 2242.Xr lpd 8 , 2243.Xr mdconfig 8 , 2244.Xr moused 8 , 2245.Xr mrouted 8 , 2246.Xr named 8 , 2247.Xr nfsd 8 , 2248.Xr ntpd 8 , 2249.Xr ntpdate 8 , 2250.Xr pcnfsd 8 , 2251.Xr quotacheck 8 , 2252.Xr quotaon 8 , 2253.Xr rc 8 , 2254.Xr rc.sendmail 8 , 2255.Xr route 8 , 2256.Xr routed 8 , 2257.Xr rpc.lockd 8 , 2258.Xr rpc.statd 8 , 2259.Xr rpcbind 8 , 2260.Xr rwhod 8 , 2261.Xr savecore 8 , 2262.Xr sshd 8 , 2263.Xr swapon 8 , 2264.Xr sysctl 8 , 2265.Xr syslogd 8 , 2266.Xr timed 8 , 2267.Xr vinum 8 , 2268.Xr xtend 8 , 2269.Xr yp 8 , 2270.Xr ypbind 8 , 2271.Xr ypserv 8 , 2272.Xr ypset 8 2273.Sh HISTORY 2274The 2275.Nm 2276file appeared in 2277.Fx 2.2.2 . 2278.Sh AUTHORS 2279.An Jordan K. Hubbard . 2280