1.\" Copyright (c) 1995 2.\" Jordan K. Hubbard 3.\" 4.\" Redistribution and use in source and binary forms, with or without 5.\" modification, are permitted provided that the following conditions 6.\" are met: 7.\" 1. Redistributions of source code must retain the above copyright 8.\" notice, this list of conditions and the following disclaimer. 9.\" 2. Redistributions in binary form must reproduce the above copyright 10.\" notice, this list of conditions and the following disclaimer in the 11.\" documentation and/or other materials provided with the distribution. 12.\" 13.\" THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND 14.\" ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 15.\" IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 16.\" ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR BE LIABLE 17.\" FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 18.\" DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 19.\" OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 20.\" HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 21.\" LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 22.\" OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 23.\" SUCH DAMAGE. 24.\" 25.\" $FreeBSD$ 26.\" 27.Dd February 12, 2010 28.Dt RC.CONF 5 29.Os 30.Sh NAME 31.Nm rc.conf 32.Nd system configuration information 33.Sh DESCRIPTION 34The file 35.Nm 36contains descriptive information about the local host name, configuration 37details for any potential network interfaces and which services should be 38started up at system initial boot time. 39In new installations, the 40.Nm 41file is generally initialized by the system installation utility, 42.Xr sysinstall 8 . 43.Pp 44The purpose of 45.Nm 46is not to run commands or perform system startup actions 47directly. 48Instead, it is included by the 49various generic startup scripts in 50.Pa /etc 51which conditionalize their 52internal actions according to the settings found there. 53.Pp 54The 55.Pa /etc/rc.conf 56file is included from the file 57.Pa /etc/defaults/rc.conf , 58which specifies the default settings for all the available options. 59Options need only be specified in 60.Pa /etc/rc.conf 61when the system administrator wishes to override these defaults. 62The file 63.Pa /etc/rc.conf.local 64is used to override settings in 65.Pa /etc/rc.conf 66for historical reasons. 67See the 68.Va rc_conf_files 69variable below. 70.Pp 71Options are set with 72.Dq Ar name Ns Li = Ns Ar value 73assignments that use 74.Xr sh 1 75syntax. 76The following list provides a name and short description for each 77variable that can be set in the 78.Nm 79file: 80.Bl -tag -width indent-two 81.It Va rc_debug 82.Pq Vt bool 83If set to 84.Dq Li YES , 85enable output of debug messages from rc scripts. 86This variable can be helpful in diagnosing mistakes when 87editing or integrating new scripts. 88Beware that this produces copious output to the terminal and 89.Xr syslog 3 . 90.It Va rc_info 91.Pq Vt bool 92If set to 93.Dq Li NO , 94disable informational messages from the rc scripts. 95Informational messages are displayed when 96a condition that is not serious enough to warrant a warning or 97an error occurs. 98.It Va rc_startmsgs 99.Pq Vt bool 100If set to 101.Dq Li YES , 102show 103.Dq Starting foo: 104when faststart is used (e.g., at boot time). 105.It Va early_late_divider 106.Pq Vt str 107The name of the script that should be used as the 108delimiter between the 109.Dq early 110and 111.Dq late 112stages of the boot process. 113The early stage should contain all the services needed to 114get the disks (local or remote) mounted so that the late 115stage can include scripts contained in the directories 116listed in the 117.Va local_startup 118variable (see below). 119Thus, the two likely candidates for this value are 120.Pa mountcritlocal 121for the typical system, and 122.Pa mountcritremote 123if the system needs remote file 124systems mounted to get access to the 125.Va local_startup 126directories; for example when 127.Pa /usr/local 128is NFS mounted. 129For 130.Pa rc.conf 131within a 132.Xr jail 8 133.Pa NETWORKING 134is likely to be an appropriate value. 135Extreme care should be taken when changing this value, 136and before changing it one should ensure that there are 137adequate provisions to recover from a failed boot 138(such as physical contact with the machine, 139or reliable remote console access). 140.It Va swapfile 141.Pq Vt str 142If set to 143.Dq Li NO , 144no swapfile is installed, otherwise the value is used as the full 145pathname to a file to use for additional swap space. 146.It Va apm_enable 147.Pq Vt bool 148If set to 149.Dq Li YES , 150enable support for Automatic Power Management with 151the 152.Xr apm 8 153command. 154.It Va apmd_enable 155.Pq Vt bool 156Run 157.Xr apmd 8 158to handle APM event from userland. 159This also enables support for APM. 160.It Va apmd_flags 161.Pq Vt str 162If 163.Va apmd_enable 164is set to 165.Dq Li YES , 166these are the flags to pass to the 167.Xr apmd 8 168daemon. 169.It Va devd_enable 170.Pq Vt bool 171Run 172.Xr devd 8 173to handle device added, removed or unknown events from the kernel. 174.It Va ddb_enable 175.Pq Vt bool 176Run 177.Xr ddb 8 178to install 179.Xr ddb 4 180scripts at boot time. 181.It Va ddb_config 182.Pq Vt str 183Configuration file for 184.Xr ddb 8 . 185Default 186.Pa /etc/ddb.conf . 187.It Va kldxref_enable 188.Pq Vt bool 189Set to 190.Dq Li NO 191by default. 192Set to 193.Dq Li YES 194to automatically rebuild 195.Pa linker.hints 196files with 197.Xr kldxref 8 198at boot time. 199.It Va kldxref_clobber 200.Pq Vt bool 201Set to 202.Dq Li NO 203by default. 204If 205.Va kldxref_enable 206is true, 207setting to 208.Dq Li YES 209will overwrite existing 210.Pa linker.hints 211files at boot time. 212Otherwise, 213only missing 214.Pa linker.hints 215files are generated. 216.It Va kldxref_module_path 217.Pq Vt str 218Empty by default. 219A semi-colon 220.Pq Ql \&; 221delimited list of paths containing 222.Xr kld 4 223modules. 224If empty, 225the contents of the 226.Va kern.module_path 227.Xr sysctl 8 228are used. 229.It Va powerd_enable 230.Pq Vt bool 231If set to 232.Dq Li YES , 233enable the system power control facility with the 234.Xr powerd 8 235daemon. 236.It Va powerd_flags 237.Pq Vt str 238If 239.Va powerd_enable 240is set to 241.Dq Li YES , 242these are the flags to pass to the 243.Xr powerd 8 244daemon. 245.It Va tmpmfs 246Controls the creation of a 247.Pa /tmp 248memory file system. 249Always happens if set to 250.Dq Li YES 251and never happens if set to 252.Dq Li NO . 253If set to anything else, a memory file system is created if 254.Pa /tmp 255is not writable. 256.It Va tmpsize 257Controls the size of a created 258.Pa /tmp 259memory file system. 260.It Va tmpmfs_flags 261Extra options passed to the 262.Xr mdmfs 8 263utility when the memory file system for 264.Pa /tmp 265is created. 266The default is 267.Dq Li "-S" , 268which inhibits the use of softupdates on 269.Pa /tmp 270so that file system space is freed without delay 271after file truncation or deletion. 272See 273.Xr mdmfs 8 274for other options you can use in 275.Va tmpmfs_flags . 276.It Va varmfs 277Controls the creation of a 278.Pa /var 279memory file system. 280Always happens if set to 281.Dq Li YES 282and never happens if set to 283.Dq Li NO . 284If set to anything else, a memory file system is created if 285.Pa /var 286is not writable. 287.It Va varsize 288Controls the size of a created 289.Pa /var 290memory file system. 291.It Va varmfs_flags 292Extra options passed to the 293.Xr mdmfs 8 294utility when the memory file system for 295.Pa /var 296is created. 297The default is 298.Dq Li "-S" , 299which inhibits the use of softupdates on 300.Pa /var 301so that file system space is freed without delay 302after file truncation or deletion. 303See 304.Xr mdmfs 8 305for other options you can use in 306.Va varmfs_flags . 307.It Va populate_var 308Controls the automatic population of the 309.Pa /var 310file system. 311Always happens if set to 312.Dq Li YES 313and never happens if set to 314.Dq Li NO . 315If set to anything else, a memory file system is created if 316.Pa /var 317is not writable. 318Note that this process requires access to certain commands in 319.Pa /usr 320before 321.Pa /usr 322is mounted on normal systems. 323.It Va cleanvar_enable 324.Pq Vt bool 325Clean the 326.Pa /var 327directory. 328.It Va local_startup 329.Pq Vt str 330List of directories to search for startup script files. 331.It Va script_name_sep 332.Pq Vt str 333The field separator to use for breaking down the list of startup script files 334into individual filenames. 335The default is a space. 336It is not necessary to change this unless there are startup scripts with names 337containing spaces. 338.It Va hostapd_enable 339.Pq Vt bool 340Set to 341.Dq Li YES 342to start 343.Xr hostapd 8 344at system boot time. 345.It Va hostname 346.Pq Vt str 347The fully qualified domain name (FQDN) of this host on the network. 348This should almost certainly be set to something meaningful, even if 349there is no network connection. 350If 351.Xr dhclient 8 352is used to set the hostname via DHCP, 353this variable should be set to an empty string. 354If this value remains unset when the system is done booting 355your console login will display the default hostname of 356.Dq Amnesiac. 357.It Va nisdomainname 358.Pq Vt str 359The NIS domain name of this host, or 360.Dq Li NO 361if NIS is not used. 362.It Va dhclient_program 363.Pq Vt str 364Path to the DHCP client program 365.Pa ( /sbin/dhclient , 366the 367.Ox 368DHCP client, 369is the default). 370.It Va dhclient_flags 371.Pq Vt str 372Additional flags to pass to the DHCP client program. 373For the 374.Ox 375DHCP client, see the 376.Xr dhclient 8 377manpage for a description of the command line options available. 378.It Va dhclient_flags_ Ns Aq Ar iface 379Additional flags to pass to the DHCP client program running on 380.Ar iface 381only. 382When specified, this variable overrides 383.Va dhclient_flags . 384.It Va background_dhclient 385.Pq Vt bool 386Set to 387.Dq Li YES 388to start the DHCP client in background. 389This can cause trouble with applications depending on 390a working network, but it will provide a faster startup 391in many cases. 392.It Va background_dhclient_ Ns Aq Ar iface 393When specified, this variable overrides the 394.Va background_dhclient 395variable for interface 396.Ar iface 397only. 398.It Va synchronous_dhclient 399.Pq Vt bool 400Set to 401.Dq Li YES 402to start 403.Xr dhclient 8 404synchronously at startup. 405This behavior can be overridden on a per-interface basis by replacing 406the 407.Dq Li DHCP 408keyword in the 409.Va ifconfig_ Ns Aq Ar interface 410variable with 411.Dq Li SYNCDHCP 412or 413.Dq Li NOSYNCDHCP . 414.It Va defaultroute_delay 415.Pq Vt int 416When set to a positive value, wait up to this long after configuring 417DHCP interfaces at startup to give the interfaces time to receive a lease. 418.It Va firewall_enable 419.Pq Vt bool 420Set to 421.Dq Li YES 422to load firewall rules at startup. 423If the kernel was not built with 424.Cd "options IPFIREWALL" , 425the 426.Pa ipfw.ko 427kernel module will be loaded. 428See also 429.Va ipfilter_enable . 430.It Va ipv6_firewall_enable 431.Pq Vt bool 432The IPv6 equivalent of 433.Va firewall_enable . 434Set to 435.Dq Li YES 436to load IPv6 firewall rules at startup. 437If the kernel was not built with 438.Cd "options IPV6FIREWALL" , 439the 440.Pa ipfw.ko 441kernel module will be loaded. 442.It Va firewall_script 443.Pq Vt str 444This variable specifies the full path to the firewall script to run. 445The default is 446.Pa /etc/rc.firewall . 447.It Va ipv6_firewall_script 448.Pq Vt str 449The IPv6 equivalent of 450.Va firewall_script . 451.It Va firewall_type 452.Pq Vt str 453Names the firewall type from the selection in 454.Pa /etc/rc.firewall , 455or the file which contains the local firewall ruleset. 456Valid selections from 457.Pa /etc/rc.firewall 458are: 459.Pp 460.Bl -tag -width ".Li simple" -compact 461.It Li open 462unrestricted IP access 463.It Li closed 464all IP services disabled, except via 465.Dq Li lo0 466.It Li client 467basic protection for a workstation 468.It Li simple 469basic protection for a LAN. 470.El 471.Pp 472If a filename is specified, the full path 473must be given. 474.It Va ipv6_firewall_type 475.Pq Vt str 476The IPv6 equivalent of 477.Va firewall_type . 478.It Va firewall_quiet 479.Pq Vt bool 480Set to 481.Dq Li YES 482to disable the display of firewall rules on the console during boot. 483.It Va ipv6_firewall_quiet 484.Pq Vt bool 485The IPv6 equivalent of 486.Va firewall_quiet . 487.It Va firewall_logging 488.Pq Vt bool 489Set to 490.Dq Li YES 491to enable firewall event logging. 492This is equivalent to the 493.Dv IPFIREWALL_VERBOSE 494kernel option. 495.It Va ipv6_firewall_logging 496.Pq Vt bool 497The IPv6 equivalent of 498.Va firewall_logging . 499.It Va firewall_flags 500.Pq Vt str 501Flags passed to 502.Xr ipfw 8 503if 504.Va firewall_type 505specifies a filename. 506.It Va ipv6_firewall_flags 507.Pq Vt str 508The IPv6 equivalent of 509.Va firewall_flags . 510.It Va firewall_coscripts 511.Pq Vt str 512List of executables and/or rc scripts to run after firewall starts/stops. 513Default is empty. 514.\" ----- firewall_nat_enable setting -------------------------------- 515.It Va firewall_nat_enable 516.Pq Vt bool 517The 518.Xr ipfw 8 519equivalent of 520.Va natd_enable . 521Setting this to 522.Dq Li YES 523enables kernel NAT. 524.Va firewall_enable 525must also be set to 526.Dq Li YES . 527.It Va firewall_nat_interface 528.Pq Vt str 529The 530.Xr ipfw 8 531equivalent of 532.Va natd_interface . 533This is the name of the public interface or IP address on which 534kernel NAT should run. 535.It Va firewall_nat_flags 536.Pq Vt str 537Additional configuration parameters for kernel NAT should be placed here. 538.It Va dummynet_enable 539.Pq Vt bool 540Setting this to 541.Dq Li YES 542will automatically load the 543.Xr dummynet 4 544module if 545.Va firewall_enable 546is also set to 547.Dq Li YES . 548.\" ------------------------------------------------------------------- 549.It Va natd_program 550.Pq Vt str 551Path to 552.Xr natd 8 . 553.It Va natd_enable 554.Pq Vt bool 555Set to 556.Dq Li YES 557to enable 558.Xr natd 8 . 559.Va firewall_enable 560must also be set to 561.Dq Li YES , 562and 563.Xr divert 4 564sockets must be enabled in the kernel. 565If the kernel was not built with 566.Cd "options IPDIVERT" , 567the 568.Pa ipdivert.ko 569kernel module will be loaded. 570.It Va natd_interface 571.Pq Vt str 572This is the name of the public interface on which 573.Xr natd 8 574should run. 575The interface may be given as an interface name or as an IP address. 576.It Va natd_flags 577.Pq Vt str 578Additional 579.Xr natd 8 580flags should be placed here. 581The 582.Fl n 583or 584.Fl a 585flag is automatically added with the above 586.Va natd_interface 587as an argument. 588.\" ----- ipfilter_enable setting -------------------------------- 589.It Va ipfilter_enable 590.Pq Vt bool 591Set to 592.Dq Li NO 593by default. 594Setting this to 595.Dq Li YES 596enables 597.Xr ipf 8 598packet filtering. 599.Pp 600Typical usage will require putting 601.Bd -literal 602ipfilter_enable="YES" 603ipnat_enable="YES" 604ipmon_enable="YES" 605ipfs_enable="YES" 606.Ed 607.Pp 608into 609.Pa /etc/rc.conf 610and editing 611.Pa /etc/ipf.rules 612and 613.Pa /etc/ipnat.rules 614appropriately. 615.Pp 616Note that 617.Va ipfilter_enable 618and 619.Va ipnat_enable 620can be enabled independently. 621.Va ipmon_enable 622and 623.Va ipfs_enable 624both require at least one of 625.Va ipfilter_enable 626and 627.Va ipnat_enable 628to be enabled. 629.Pp 630Having 631.Bd -literal 632options IPFILTER 633options IPFILTER_LOG 634options IPFILTER_DEFAULT_BLOCK 635.Ed 636.Pp 637in the kernel configuration file is a good idea, too. 638.\" ----- ipfilter_program setting ------------------------------ 639.It Va ipfilter_program 640.Pq Vt str 641Path to 642.Xr ipf 8 643(default 644.Pa /sbin/ipf ) . 645.\" ----- ipfilter_rules setting -------------------------------- 646.It Va ipfilter_rules 647.Pq Vt str 648Set to 649.Pa /etc/ipf.rules 650by default. 651This variable contains the name of the filter rule definition file. 652The file is expected to be readable for the 653.Xr ipf 8 654command to execute. 655.\" ----- ipv6_ipfilter_rules setting --------------------------- 656.It Va ipv6_ipfilter_rules 657.Pq Vt str 658Set to 659.Pa /etc/ipf6.rules 660by default. 661This variable contains the IPv6 filter rule definition file. 662The file is expected to be readable for the 663.Xr ipf 8 664command to execute. 665.\" ----- ipfilter_flags setting -------------------------------- 666.It Va ipfilter_flags 667.Pq Vt str 668Empty by default. 669This variable contains flags passed to the 670.Xr ipf 8 671program. 672.\" ----- ipnat_enable setting ---------------------------------- 673.It Va ipnat_enable 674.Pq Vt bool 675Set to 676.Dq Li NO 677by default. 678Set it to 679.Dq Li YES 680to enable 681.Xr ipnat 8 682network address translation. 683See 684.Va ipfilter_enable 685for a detailed discussion. 686.\" ----- ipnat_program setting --------------------------------- 687.It Va ipnat_program 688.Pq Vt str 689Path to 690.Xr ipnat 8 691(default 692.Pa /sbin/ipnat ) . 693.\" ----- ipnat_rules setting ----------------------------------- 694.It Va ipnat_rules 695.Pq Vt str 696Set to 697.Pa /etc/ipnat.rules 698by default. 699This variable contains the name of the file 700holding the network address translation definition. 701This file is expected to be readable for the 702.Xr ipnat 8 703command to execute. 704.\" ----- ipnat_flags setting ----------------------------------- 705.It Va ipnat_flags 706.Pq Vt str 707Empty by default. 708This variable contains flags passed to the 709.Xr ipnat 8 710program. 711.\" ----- ipmon_enable setting ---------------------------------- 712.It Va ipmon_enable 713.Pq Vt bool 714Set to 715.Dq Li NO 716by default. 717Set it to 718.Dq Li YES 719to enable 720.Xr ipmon 8 721monitoring (logging 722.Xr ipf 8 723and 724.Xr ipnat 8 725events). 726Setting this variable needs setting 727.Va ipfilter_enable 728or 729.Va ipnat_enable 730too. 731See 732.Va ipfilter_enable 733for a detailed discussion. 734.\" ----- ipmon_program setting --------------------------------- 735.It Va ipmon_program 736.Pq Vt str 737Path to 738.Xr ipmon 8 739(default 740.Pa /sbin/ipmon ) . 741.\" ----- ipmon_flags setting ----------------------------------- 742.It Va ipmon_flags 743.Pq Vt str 744Set to 745.Dq Li -Ds 746by default. 747This variable contains flags passed to the 748.Xr ipmon 8 749program. 750Another typical example would be 751.Dq Fl D Pa /var/log/ipflog 752to have 753.Xr ipmon 8 754log directly to a file bypassing 755.Xr syslogd 8 . 756Make sure to adjust 757.Pa /etc/newsyslog.conf 758in such case like this: 759.Bd -literal 760/var/log/ipflog 640 10 100 * Z /var/run/ipmon.pid 761.Ed 762.\" ----- ipfs_enable setting ----------------------------------- 763.It Va ipfs_enable 764.Pq Vt bool 765Set to 766.Dq Li NO 767by default. 768Set it to 769.Dq Li YES 770to enable 771.Xr ipfs 8 772saving the filter and NAT state tables during shutdown 773and reloading them during startup again. 774Setting this variable needs setting 775.Va ipfilter_enable 776or 777.Va ipnat_enable 778to 779.Dq Li YES 780too. 781See 782.Va ipfilter_enable 783for a detailed discussion. 784Note that if 785.Va kern_securelevel 786is set to 3, 787.Va ipfs_enable 788cannot be used 789because the raised securelevel will prevent 790.Xr ipfs 8 791from saving the state tables at shutdown time. 792.\" ----- ipfs_program setting ---------------------------------- 793.It Va ipfs_program 794.Pq Vt str 795Path to 796.Xr ipfs 8 797(default 798.Pa /sbin/ipfs ) . 799.\" ----- ipfs_flags setting ------------------------------------ 800.It Va ipfs_flags 801.Pq Vt str 802Empty by default. 803This variable contains flags passed to the 804.Xr ipfs 8 805program. 806.\" ----- end of added ipf hook --------------------------------- 807.It Va pf_enable 808.Pq Vt bool 809Set to 810.Dq Li NO 811by default. 812Setting this to 813.Dq Li YES 814enables 815.Xr pf 4 816packet filtering. 817.Pp 818Typical usage will require putting 819.Pp 820.Dl pf_enable="YES" 821.Pp 822into 823.Pa /etc/rc.conf 824and editing 825.Pa /etc/pf.conf 826appropriately. 827Adding 828.Pp 829.Dl "device pf" 830.Pp 831builds support for 832.Xr pf 4 833into the kernel, otherwise the 834kernel module will be loaded. 835.It Va pf_rules 836.Pq Vt str 837Path to 838.Xr pf 4 839ruleset configuration file 840(default 841.Pa /etc/pf.conf ) . 842.It Va pf_program 843.Pq Vt str 844Path to 845.Xr pfctl 8 846(default 847.Pa /sbin/pfctl ) . 848.It Va pf_flags 849.Pq Vt str 850If 851.Va pf_enable 852is set to 853.Dq Li YES , 854these flags are passed to the 855.Xr pfctl 8 856program when loading the ruleset. 857.It Va pflog_enable 858.Pq Vt bool 859Set to 860.Dq Li NO 861by default. 862Setting this to 863.Dq Li YES 864enables 865.Xr pflogd 8 866which logs packets from the 867.Xr pf 4 868packet filter. 869.It Va pflog_logfile 870.Pq Vt str 871If 872.Va pflog_enable 873is set to 874.Dq Li YES 875this controls where 876.Xr pflogd 8 877stores the logfile 878(default 879.Pa /var/log/pflog ) . 880Check 881.Pa /etc/newsyslog.conf 882to adjust logfile rotation for this. 883.It Va pflog_program 884.Pq Vt str 885Path to 886.Xr pflogd 8 887(default 888.Pa /sbin/pflogd ) . 889.It Va pflog_flags 890.Pq Vt str 891Empty by default. 892This variable contains additional flags passed to the 893.Xr pflogd 8 894program. 895.It Va ftpproxy_enable 896.Pq Vt bool 897Set to 898.Dq Li NO 899by default. 900Setting this to 901.Dq Li YES 902enables 903.Xr ftp-proxy 8 904which supports the 905.Xr pf 4 906packet filter in translating ftp connections. 907.It Va ftpproxy_flags 908.Pq Vt str 909Empty by default. 910This variable contains additional flags passed to the 911.Xr ftp-proxy 8 912program. 913.It Va pfsync_enable 914.Pq Vt bool 915Set to 916.Dq Li NO 917by default. 918Setting this to 919.Dq Li YES 920enables exposing 921.Xr pf 4 922state changes to other hosts over the network by means of 923.Xr pfsync 4 . 924The 925.Va pfsync_syncdev 926variable 927must also be set then. 928.It Va pfsync_syncdev 929.Pq Vt str 930Empty by default. 931This variable specifies the name of the network interface 932.Xr pfsync 4 933should operate through. 934It must be set accordingly if 935.Va pfsync_enable 936is set to 937.Dq Li YES . 938.It Va pfsync_syncpeer 939.Pq Vt str 940Empty by default. 941This variable is optional. 942By default, state change messages are sent out on the synchronisation 943interface using IP multicast packets. 944The protocol is IP protocol 240, PFSYNC, and the multicast group used is 945224.0.0.240. 946When a peer address is specified using the 947.Va pfsync_syncpeer 948option, the peer address is used as a destination for the pfsync 949traffic, and the traffic can then be protected using 950.Xr ipsec 4 . 951See the 952.Xr pfsync 4 953manpage for more details about using 954.Xr ipsec 4 955with 956.Xr pfsync 4 957interfaces. 958.It Va pfsync_ifconfig 959.Pq Vt str 960Empty by default. 961This variable can contain additional options to be passed to the 962.Xr ifconfig 8 963command used to set up 964.Xr pfsync 4 . 965.It Va tcp_extensions 966.Pq Vt bool 967Set to 968.Dq Li YES 969by default. 970Setting this to 971.Dq Li NO 972disables certain TCP options as described by 973.Rs 974.%T "RFC 1323" 975.Re 976Setting this to 977.Dq Li NO 978might help remedy such problems with connections as randomly hanging 979or other weird behavior. 980Some network devices are known 981to be broken with respect to these options. 982.It Va log_in_vain 983.Pq Vt int 984Set to 0 by default. 985The 986.Xr sysctl 8 987variables, 988.Va net.inet.tcp.log_in_vain 989and 990.Va net.inet.udp.log_in_vain , 991as described in 992.Xr tcp 4 993and 994.Xr udp 4 , 995are set to the given value. 996.It Va tcp_keepalive 997.Pq Vt bool 998Set to 999.Dq Li YES 1000by default. 1001Setting to 1002.Dq Li NO 1003will disable probing idle TCP connections to verify that the 1004peer is still up and reachable. 1005.It Va tcp_drop_synfin 1006.Pq Vt bool 1007Set to 1008.Dq Li NO 1009by default. 1010Setting to 1011.Dq Li YES 1012will cause the kernel to ignore TCP frames that have both 1013the SYN and FIN flags set. 1014This prevents OS fingerprinting, but may 1015break some legitimate applications. 1016.It Va icmp_drop_redirect 1017.Pq Vt bool 1018Set to 1019.Dq Li NO 1020by default. 1021Setting to 1022.Dq Li YES 1023will cause the kernel to ignore ICMP REDIRECT packets. 1024Refer to 1025.Xr icmp 4 1026for more information. 1027.It Va icmp_log_redirect 1028.Pq Vt bool 1029Set to 1030.Dq Li NO 1031by default. 1032Setting to 1033.Dq Li YES 1034will cause the kernel to log ICMP REDIRECT packets. 1035Note that 1036the log messages are not rate-limited, so this option should only be used 1037for troubleshooting networks. 1038Refer to 1039.Xr icmp 4 1040for more information. 1041.It Va icmp_bmcastecho 1042.Pq Vt bool 1043Set to 1044.Dq Li YES 1045to respond to broadcast or multicast ICMP ping packets. 1046Refer to 1047.Xr icmp 4 1048for more information. 1049.It Va ip_portrange_first 1050.Pq Vt int 1051If not set to 1052.Dq Li NO , 1053this is the first port in the default portrange. 1054Refer to 1055.Xr ip 4 1056for more information. 1057.It Va ip_portrange_last 1058.Pq Vt int 1059If not set to 1060.Dq Li NO , 1061this is the last port in the default portrange. 1062Refer to 1063.Xr ip 4 1064for more information. 1065.It Va network_interfaces 1066.Pq Vt str 1067Set to the list of network interfaces to configure on this host or 1068.Dq Li AUTO 1069(the default) for all current interfaces. 1070Setting the 1071.Va network_interfaces 1072variable to anything other than the default is deprecated. 1073Interfaces that the administrator wishes to store configuration for, 1074but not start at boot should be configured with the 1075.Dq Li NOAUTO 1076keyword in their 1077.Va ifconfig_ Ns Aq Ar interface 1078variables as described below. 1079.Pp 1080An 1081.Va ifconfig_ Ns Aq Ar interface 1082variable is also assumed to exist for each value of 1083.Ar interface . 1084When an interface name contains any of the characters 1085.Dq Li .-/+ 1086they are translated to 1087.Dq Li _ 1088before lookup. 1089The variable can contain arguments to 1090.Xr ifconfig 8 , 1091as well as special case-insensitive keywords described below. 1092Such keywords are removed before passing the value to 1093.Xr ifconfig 8 1094while the order of the other arguments is preserved. 1095.Pp 1096One can configure more than one IPv4 address with the 1097.Va ipv4_addrs_ Ns Aq Ar interface 1098variable. 1099One or more IP addresses must be provided in Classless Inter-Domain 1100Routing (CIDR) address notation, whose last byte can be a range like 1101192.0.2.5-23/24. 1102In this case the address 192.0.2.5 will be configured with the 1103netmask /24 and the addresses 192.0.2.6 to 192.0.2.23 with 1104the non-conflicting netmask /32 as explained in the 1105.Xr ifconfig 8 1106alias section. 1107With the interface in question being 1108.Li ed0 , 1109an example could look like: 1110.Bd -literal 1111ipv4_addrs_ed0="192.0.2.129/27 192.0.2.1-5/28" 1112.Ed 1113.Pp 1114It is also possible to add IP alias entries using 1115.Xr ifconfig 8 1116syntax. 1117Assuming that the interface in question was 1118.Li ed0 , 1119it might look 1120something like this: 1121.Bd -literal 1122ifconfig_ed0_alias0="inet 127.0.0.253 netmask 0xffffffff" 1123ifconfig_ed0_alias1="inet 127.0.0.254 netmask 0xffffffff" 1124.Ed 1125.Pp 1126And so on. 1127For each 1128.Va ifconfig_ Ns Ao Ar interface Ac Ns Va _alias Ns Aq Ar n 1129entry that is found, 1130its contents are passed to 1131.Xr ifconfig 8 . 1132Execution stops at the first unsuccessful access, so if 1133something like this is present: 1134.Bd -literal 1135ifconfig_ed0_alias0="inet 127.0.0.251 netmask 0xffffffff" 1136ifconfig_ed0_alias1="inet 127.0.0.252 netmask 0xffffffff" 1137ifconfig_ed0_alias2="inet 127.0.0.253 netmask 0xffffffff" 1138ifconfig_ed0_alias4="inet 127.0.0.254 netmask 0xffffffff" 1139.Ed 1140.Pp 1141Then note that alias4 would 1142.Em not 1143be added since the search would 1144stop with the missing 1145.Dq Li alias3 1146entry. 1147Due to this difficult to manage behavior, the 1148.Va ifconfig_ Ns Ao Ar interface Ac Ns Va _alias Ns Aq Ar n 1149form is deprecated. 1150.Pp 1151If the 1152.Pa /etc/start_if. Ns Aq Ar interface 1153file is present, it is read and executed by the 1154.Xr sh 1 1155interpreter 1156before configuring the interface as specified in the 1157.Va ifconfig_ Ns Aq Ar interface 1158and 1159.Va ifconfig_ Ns Ao Ar interface Ac Ns Va _alias Ns Aq Ar n 1160variables. 1161.Pp 1162If a 1163.Va vlans_ Ns Aq Ar interface 1164variable is set, 1165a 1166.Xr vlan 4 1167interface will be created for each item in the list with the 1168.Ar vlandev 1169argument set to 1170.Ar interface . 1171If a vlan interface's name is a number, 1172then that number is used as the vlan tag and the new vlan interface is 1173named 1174.Ar interface . Ns Ar tag . 1175Otherwise, 1176the vlan tag must be specified via a 1177.Va vlan 1178parameter in the 1179.Va create_args_ Ns Aq Ar interface 1180variable. 1181.Pp 1182To create a vlan device named 1183.Li em0.101 1184on 1185.Li em0 1186with the vlan tag 101: 1187.Bd -literal 1188vlans_em0="101" 1189.Ed 1190.Pp 1191To create a vlan device named 1192.Li myvlan 1193on 1194.Li em0 1195with the vlan tag 102: 1196.Bd -literal 1197vlans_em0="myvlan" 1198create_args_myvlan="vlan 102" 1199.Ed 1200.Pp 1201If a 1202.Va wlans_ Ns Aq Ar interface 1203variable is set, 1204an 1205.Xr wlan 4 1206interface will be created for each item in the list with the 1207.Ar wlandev 1208argument set to 1209.Ar interface . 1210Further wlan cloning arguments may be passed to the 1211.Xr ifconfig 8 1212.Cm create 1213command by setting the 1214.Va create_args_ Ns Aq Ar interface 1215variable. 1216One or more 1217.Xr wlan 4 1218devices must be created for each wireless devices as of 1219.Fx 8.0 . 1220Debugging flags for 1221.Xr wlan 4 1222devices as set by 1223.Xr wlandebug 8 1224may be specified with an 1225.Va wlandebug_ Ns Aq Ar interface 1226variable. 1227The contents of this variable will be passed directly to 1228.Xr wlandebug 8 . 1229.Pp 1230If the 1231.Va ifconfig_ Ns Aq Ar interface 1232contains the keyword 1233.Dq Li NOAUTO 1234then the interface will not be configured 1235at boot or by 1236.Pa /etc/pccard_ether 1237when 1238.Va network_interfaces 1239is set to 1240.Dq Li AUTO . 1241.Pp 1242It is possible to bring up an interface with DHCP by adding 1243.Dq Li DHCP 1244to the 1245.Va ifconfig_ Ns Aq Ar interface 1246variable. 1247For instance, to initialize the 1248.Li ed0 1249device via DHCP, 1250it is possible to use something like: 1251.Bd -literal 1252ifconfig_ed0="DHCP" 1253.Ed 1254.Pp 1255Also, if you want to configure your wireless interface with 1256.Xr wpa_supplicant 8 1257for use with WPA, EAP/LEAP or WEP, you need to add 1258.Dq Li WPA 1259to the 1260.Va ifconfig_ Ns Aq Ar interface 1261variable. 1262.Pp 1263Finally, you can add 1264.Xr ifconfig 8 1265options in this variable, in addition to the 1266.Pa /etc/start_if. Ns Aq Ar interface 1267file. 1268For instance, to configure an 1269.Xr ath 4 1270wireless device in station mode with an address obtained 1271via DHCP, using WPA authentication and 802.11b mode, it is 1272possible to use something like: 1273.Bd -literal 1274wlans_ath0="wlan0" 1275ifconfig_wlan0="DHCP WPA mode 11b" 1276.Ed 1277.Pp 1278In addition to the 1279.Va ifconfig_ Ns Aq Ar interface 1280form, a fallback variable 1281.Va ifconfig_DEFAULT 1282may be configured. 1283It will be used for all interfaces with no 1284.Va ifconfig_ Ns Aq Ar interface 1285variable. 1286This is intended to replace the no longer supported 1287.Va pccard_ifconfig 1288variable. 1289.Pp 1290It is also possible to rename an interface by doing: 1291.Bd -literal 1292ifconfig_ed0_name="net0" 1293ifconfig_net0="inet 192.0.2.1 netmask 0xffffff00" 1294.Ed 1295.It Va ipv6_enable 1296.Pq Vt bool 1297If the variable is 1298.Dq Li YES , 1299.Dq Li inet6 accept_rtadv 1300is added to all of 1301.Va ifconfig_ Ns Ao Ar interface Ac Ns _ipv6 1302and the 1303.Va ipv6_prefer 1304is defined as 1305.Dq Li YES . 1306.Pp 1307This variable is deprecated. Use 1308.Va ipv6_prefer 1309and 1310.Va ifconfig_ Ns Ao Ar interface Ac Ns _ipv6 . 1311.It Va ipv6_prefer 1312.Pq Vt bool 1313This variable does the following: 1314.Pp 1315If the variable is 1316.Dq Li YES , 1317the default policy of the source address selection set by 1318.Xr ip6addrctl 8 1319will be IPv6-preferred. 1320.Pp 1321If the variable is 1322.Dq Li NO , 1323the default policy of the source address selection set by 1324.Xr ip6addrctl 8 1325will be IPv4-preferred, and all of interfaces which does not have the 1326corrsponding 1327.Va ifconfig_ Ns Ao Ar interface Ac Ns _ipv6 1328variable will be marked as 1329.Dq Li IFDISABLED . 1330This means only IPv6 functionality on that interface is completely 1331disabled. For more details of 1332.Dq Li IFDISABLED 1333flag and keywords 1334.Dq Li inet6 ifdisabled , 1335see 1336.Xr ifconfig 8 . 1337.Pp 1338.It Va ipv6_network_interfaces 1339.Pq Vt str 1340This is the IPv6 equivalent of 1341.Va network_interfaces . 1342Normally manual configuration of this variable is not needed. 1343.Pp 1344IPv6 functionality on an interface should be configured by 1345.Va ifconfig_ Ns Ao Ar interface Ac Ns _ipv6 , 1346instead of setting ifconfig parameters in 1347.Va ifconfig_ Ns Aq Ar interface . 1348Aliases should be set by 1349.Va ifconfig_ Ns Ao Ar interface Ac Ns Va _alias Ns Aq Ar n 1350with 1351.Dq Li inet6 1352keyword. For example: 1353.Bd -literal 1354ifconfig_ed0_ipv6="inet6 2001:db8:1::1 prefixlen 64" 1355ifconfig_ed0_alias0="inet6 2001:db8:2::1 prefixlen 64" 1356.Ed 1357.Pp 1358Interfaces that have an 1359.Dq Li inet6 accept_rtadv 1360keyword in 1361.Va ifconfig_ Ns Ao Ar interface Ac Ns _ipv6 1362setting will be automatically configured by 1363.Xr rtsol 8 . 1364Note that this automatic configuration is disabled if the 1365.Va ipv6_gateway_enable 1366is set to 1367.Dq Li YES . 1368.It Va ipv6_prefix_ Ns Aq Ar interface 1369.Pq Vt str 1370If one or more prefixes are defined in 1371.Va ipv6_prefix_ Ns Aq Ar interface 1372addresses based on each prefix and the EUI-64 interface index will be 1373configured on that interface. 1374.It Va ipv6_default_interface 1375.Pq Vt str 1376If not set to 1377.Dq Li NO , 1378this is the default output interface for scoped addresses. 1379Now this works only for IPv6 link local multicast addresses. 1380.It Va ip6addrctl_enable 1381.Pq Vt bool 1382If set to 1383.Dq Li YES , 1384install default address selection policy table 1385.Pq RFC 3484 . 1386If a file 1387.Pa /etc/ip6addrctl.conf 1388is found the 1389.Xr ip6addrctl 8 1390reads and installs it. 1391If not, a pre-defined policy table will be installed. 1392There are two pre-defined ones; IPv4-preferred and IPv6-preferred. 1393If set 1394.Va ipv6_prefer 1395variable to 1396.Dq Li YES 1397the IPv6-preferred one is used. Default is IPv4-preferred. 1398.It Va cloned_interfaces 1399.Pq Vt str 1400Set to the list of clonable network interfaces to create on this host. 1401Further cloning arguments may be passed to the 1402.Xr ifconfig 8 1403.Cm create 1404command for each interface by setting the 1405.Va create_args_ Ns Aq Ar interface 1406variable. 1407Entries in 1408.Va cloned_interfaces 1409are automatically appended to 1410.Va network_interfaces 1411for configuration. 1412.It Va fec_interfaces 1413.Pq Vt str 1414Set to the list of 1415.Xr ng_fec 4 1416Fast EtherChannel interfaces to configure on this host. 1417A 1418.Va fecconfig_ Ns Aq Ar interface 1419variable is assumed to exist for each value of 1420.Ar interface . 1421The value of this variable is used to configure link aggregated interfaces 1422according to the syntax of the 1423.Cm NGM_FEC_ADD_IFACE 1424to 1425.Xr ngctl 8 1426msg. 1427Additionally, this option ensures that each listed interface is created 1428via the 1429.Cm mkpeer 1430command to 1431.Xr ngctl 8 1432before attempting to configure it. 1433For example: 1434.Bd -literal 1435fec_interfaces="fec0" 1436fecconfig_fec0="em0 em1" 1437ifconfig_fec0="DHCP" 1438.Ed 1439.It Va gif_interfaces 1440.Pq Vt str 1441Set to the list of 1442.Xr gif 4 1443tunnel interfaces to configure on this host. 1444A 1445.Va gifconfig_ Ns Aq Ar interface 1446variable is assumed to exist for each value of 1447.Ar interface . 1448The value of this variable is used to configure the link layer of the 1449tunnel according to the syntax of the 1450.Cm tunnel 1451option to 1452.Xr ifconfig 8 . 1453Additionally, this option ensures that each listed interface is created 1454via the 1455.Cm create 1456option to 1457.Xr ifconfig 8 1458before attempting to configure it. 1459.It Va sppp_interfaces 1460.Pq Vt str 1461Set to the list of 1462.Xr sppp 4 1463interfaces to configure on this host. 1464A 1465.Va spppconfig_ Ns Aq Ar interface 1466variable is assumed to exist for each value of 1467.Ar interface . 1468Each interface should also be configured by a general 1469.Va ifconfig_ Ns Aq Ar interface 1470setting. 1471Refer to 1472.Xr spppcontrol 8 1473for more information about available options. 1474.It Va ppp_enable 1475.Pq Vt bool 1476If set to 1477.Dq Li YES , 1478run the 1479.Xr ppp 8 1480daemon. 1481.It Va ppp_profile 1482.Pq Vt str 1483The name of the profile to use from 1484.Pa /etc/ppp/ppp.conf . 1485Also used for per-profile overrides of 1486.Va ppp_mode 1487and 1488.Va ppp_nat , 1489and 1490.Va ppp_ Ns Ao Ar profile Ac Ns _unit . 1491When the profile name contains any of the characters 1492.Dq Li .-/+ 1493they are translated to 1494.Dq Li _ 1495for the proposes of the override variable names. 1496.It Va ppp_mode 1497.Pq Vt str 1498Mode in which to run the 1499.Xr ppp 8 1500daemon. 1501.It Va ppp_ Ns Ao Ar profile Ac Ns _mode 1502.Pq Vt str 1503Overrides the global 1504.Va ppp_mode 1505for 1506.Ar profile . 1507Accepted modes are 1508.Dq Li auto , 1509.Dq Li ddial , 1510.Dq Li direct 1511and 1512.Dq Li dedicated . 1513See the manual for a full description. 1514.It Va ppp_nat 1515.Pq Vt bool 1516If set to 1517.Dq Li YES , 1518enables network address translation. 1519Used in conjunction with 1520.Va gateway_enable 1521allows hosts on private network addresses access to the Internet using 1522this host as a network address translating router. 1523.It Va ppp_ Ns Ao Ar profile Ac Ns _nat 1524.Pq Vt str 1525Overrides the global 1526.Va ppp_nat 1527for 1528.Ar profile . 1529.It Va ppp_ Ns Ao Ar profile Ac Ns _unit 1530.Pq Vt int 1531Set the unit number to be used for this profile. 1532See the manual description of 1533.Fl unit Ns Ar N 1534for details. 1535.It Va ppp_user 1536.Pq Vt str 1537The name of the user under which 1538.Xr ppp 8 1539should be started. 1540By 1541default, 1542.Xr ppp 8 1543is started as 1544.Dq Li root . 1545.It Va rc_conf_files 1546.Pq Vt str 1547This option is used to specify a list of files that will override 1548the settings in 1549.Pa /etc/defaults/rc.conf . 1550The files will be read in the order in which they are specified and should 1551include the full path to the file. 1552By default, the files specified are 1553.Pa /etc/rc.conf 1554and 1555.Pa /etc/rc.conf.local 1556.It Va zfs_enable 1557.Pq Vt bool 1558If set to 1559.Dq Li YES , 1560.Pa /etc/rc.d/zfs 1561will attempt to automatically mount ZFS file systems and initialize ZFS volumes 1562(ZVOLs). 1563.It Va gbde_autoattach_all 1564.Pq Vt bool 1565If set to 1566.Dq Li YES , 1567.Pa /etc/rc.d/gbde 1568will attempt to automatically initialize your .bde devices in 1569.Pa /etc/fstab . 1570.It Va gbde_devices 1571.Pq Vt str 1572List the devices that the script should try to attach, 1573or 1574.Dq Li AUTO . 1575.It Va gbde_lockdir 1576.Pq Vt str 1577The directory where the 1578.Xr gbde 4 1579lockfiles are located. 1580The default lockfile directory is 1581.Pa /etc . 1582.Pp 1583The lockfile for each individual 1584.Xr gbde 4 1585device can be overridden by setting the variable 1586.Va gbde_lock_ Ns Aq Ar device , 1587where 1588.Ar device 1589is the encrypted device without the 1590.Dq Pa /dev/ 1591and 1592.Dq Pa .bde 1593parts. 1594.It Va gbde_attach_attempts 1595.Pq Vt int 1596Number of times to attempt attaching to a 1597.Xr gbde 4 1598device, i.e., how many times the user is asked for the pass-phrase. 1599Default is 3. 1600.It Va geli_devices 1601.Pq Vt str 1602List of devices to automatically attach on boot. 1603Note that .eli devices from 1604.Pa /etc/fstab 1605are automatically appended to this list. 1606.It Va geli_tries 1607.Pq Vt int 1608Number of times user is asked for the pass-phrase. 1609If empty, it will be taken from 1610.Va kern.geom.eli.tries 1611sysctl variable. 1612.It Va geli_default_flags 1613.Pq Vt str 1614Default flags to use by 1615.Xr geli 8 1616when configuring disk encryption. 1617Flags can be configured for every device separately by defining 1618.Va geli_ Ns Ao Ar device Ac Ns Va _flags 1619variable. 1620.It Va geli_autodetach 1621.Pq Vt str 1622Specifies if GELI devices should be marked for detach on last close after 1623file systems are mounted. 1624Default is 1625.Dq Li YES . 1626This can be changed for every device separately by defining 1627.Va geli_ Ns Ao Ar device Ac Ns Va _autodetach 1628variable. 1629.It Va geli_swap_flags 1630Options passed to the 1631.Xr geli 8 1632utility when encrypted GEOM providers for swap partitions are created. 1633The default is 1634.Dq Li "-e aes -l 256 -s 4096 -d" . 1635.It Va root_rw_mount 1636.Pq Vt bool 1637Set to 1638.Dq Li YES 1639by default. 1640After the file systems are checked at boot time, the root file system 1641is remounted as read-write if this is set to 1642.Dq Li YES . 1643Diskless systems that mount their root file system from a read-only remote 1644NFS share should set this to 1645.Dq Li NO 1646in their 1647.Pa rc.conf . 1648.It Va fsck_y_enable 1649.Pq Vt bool 1650If set to 1651.Dq Li YES , 1652.Xr fsck 8 1653will be run with the 1654.Fl y 1655flag if the initial preen 1656of the file systems fails. 1657.It Va background_fsck 1658.Pq Vt bool 1659If set to 1660.Dq Li YES , 1661the system will attempt to run 1662.Xr fsck 8 1663in the background where possible. 1664.It Va background_fsck_delay 1665.Pq Vt int 1666The amount of time in seconds to sleep before starting a background 1667.Xr fsck 8 . 1668It defaults to sixty seconds to allow large applications such as 1669the X server to start before disk I/O bandwidth is monopolized by 1670.Xr fsck 8 . 1671If set to a negative number, the background file system check will be 1672delayed indefinitely to allow the administrator to run it at a more 1673convenient time. 1674For example it may be run from 1675.Xr cron 8 1676by adding a line like 1677.Pp 1678.Dl "0 4 * * * root /etc/rc.d/bgfsck forcestart" 1679.Pp 1680to 1681.Pa /etc/crontab . 1682.It Va netfs_types 1683.Pq Vt str 1684List of file system types that are network-based. 1685This list should generally not be modified by end users. 1686Use 1687.Va extra_netfs_types 1688instead. 1689.It Va extra_netfs_types 1690.Pq Vt str 1691If set to something other than 1692.Dq Li NO 1693(the default), 1694this variable extends the list of file system types 1695for which automatic mounting at startup by 1696.Xr rc 8 1697should be delayed until the network is initialized. 1698It should contain 1699a whitespace-separated list of network file system descriptor pairs, 1700each consisting of a file system type as passed to 1701.Xr mount 8 1702and a human-readable, one-word description, 1703joined with a colon 1704.Pq Ql \&: . 1705Extending the default list in this way is only necessary 1706when third party file system types are used. 1707.It Va syslogd_enable 1708.Pq Vt bool 1709If set to 1710.Dq Li YES , 1711run the 1712.Xr syslogd 8 1713daemon. 1714.It Va syslogd_program 1715.Pq Vt str 1716Path to 1717.Xr syslogd 8 1718(default 1719.Pa /usr/sbin/syslogd ) . 1720.It Va syslogd_flags 1721.Pq Vt str 1722If 1723.Va syslogd_enable 1724is set to 1725.Dq Li YES , 1726these are the flags to pass to 1727.Xr syslogd 8 . 1728.It Va inetd_enable 1729.Pq Vt bool 1730If set to 1731.Dq Li YES , 1732run the 1733.Xr inetd 8 1734daemon. 1735.It Va inetd_program 1736.Pq Vt str 1737Path to 1738.Xr inetd 8 1739(default 1740.Pa /usr/sbin/inetd ) . 1741.It Va inetd_flags 1742.Pq Vt str 1743If 1744.Va inetd_enable 1745is set to 1746.Dq Li YES , 1747these are the flags to pass to 1748.Xr inetd 8 . 1749.It Va hastd_enable 1750.Pq Vt bool 1751If set to 1752.Dq Li YES , 1753run the 1754.Xr hastd 8 1755daemon. 1756.It Va hastd_program 1757.Pq Vt str 1758Path to 1759.Xr hastd 8 1760(default 1761.Pa /sbin/hastd ) . 1762.It Va hastd_flags 1763.Pq Vt str 1764If 1765.Va hastd_enable 1766is set to 1767.Dq Li YES , 1768these are the flags to pass to 1769.Xr hastd 8 . 1770.It Va named_enable 1771.Pq Vt bool 1772If set to 1773.Dq Li YES , 1774run the 1775.Xr named 8 1776daemon. 1777.It Va named_program 1778.Pq Vt str 1779Path to 1780.Xr named 8 1781(default 1782.Pa /usr/sbin/named ) . 1783.It Va named_conf 1784.Pq Vt str 1785Path to 1786.Xr named 8 1787configuration file, (default 1788.Pa /etc/namedb/named.conf ) . 1789.It Va named_flags 1790.Pq Vt str 1791If 1792.Va named_enable 1793is set to 1794.Dq Li YES , 1795these are the flags to pass to 1796.Xr named 8 . 1797.It Va named_pidfile 1798.Pq Vt str 1799This is the default path to the 1800.Xr named 8 1801daemon's PID file. 1802This must match the location in 1803.Xr named.conf 5 . 1804.It Va named_uid 1805.Pq Vt str 1806The user that the 1807.Xr named 8 1808process should be run as. 1809.It Va named_chrootdir 1810.Pq Vt str 1811The root directory for a name server run in a 1812.Xr chroot 8 1813environment (default 1814.Pa /var/named ) . 1815If left empty 1816.Xr named 8 1817will not be run in a 1818.Xr chroot 8 1819environment. 1820.It Va named_chroot_autoupdate 1821.Pq Vt bool 1822Set to 1823.Dq Li NO 1824to disable automatic update of the 1825.Xr chroot 8 1826environment. 1827.It Va named_symlink_enable 1828.Pq Vt bool 1829Set to 1830.Dq Li NO 1831to disable symlinking of 1832daemon's PID file 1833into the 1834.Xr chroot 8 1835environment. 1836.It Va named_wait 1837.Pq Vt bool 1838Set to have 1839.Pa /etc/rc.d/named 1840loop until working name service is established. 1841.It Va named_wait_host 1842.Pq Vt str 1843Name of host to lookup for the named_wait option. 1844(Default localhost) 1845.It Va named_auto_forward 1846.Pq Vt bool 1847Set to enable automatic creation of a forwarder 1848configuration file derived from 1849.Pa /etc/resolv.conf . 1850.It Va named_auto_forward_only 1851.Pq Vt bool 1852Set to change the default forwarder configuration from 1853.Dq forward first 1854to 1855.Dq forward only . 1856.It Va kerberos5_server_enable 1857.Pq Vt bool 1858Set to 1859.Dq Li YES 1860to start a Kerberos 5 authentication server 1861at boot time. 1862.It Va kerberos5_server 1863.Pq Vt str 1864If 1865.Va kerberos5_server_enable 1866is set to 1867.Dq Li YES 1868this is the path to Kerberos 5 Authentication Server. 1869.It Va kerberos5_server_flags 1870.Pq Vt str 1871Empty by default. 1872This variable contains additional flags to be passed to the Kerberos 5 1873authentication server. 1874.It Va kadmind5_server_enable 1875.Pq Vt bool 1876Set to 1877.Dq Li YES 1878to start 1879.Xr kadmind 8 , 1880the Kerberos 5 Administration Daemon; set to 1881.Dq Li NO 1882on a slave server. 1883.It Va kadmind5_server 1884.Pq Vt str 1885If 1886.Va kadmind5_server_enable 1887is set to 1888.Dq Li YES 1889this is the path to Kerberos 5 Administration Daemon. 1890.It Va kpasswdd_server_enable 1891.Pq Vt bool 1892Set to 1893.Dq Li YES 1894to start 1895.Xr kpasswdd 8 , 1896the Kerberos 5 Password-Changing Daemon; set to 1897.Dq Li NO 1898on a slave server. 1899.It Va kpasswdd_server 1900.Pq Vt str 1901If 1902.Va kpasswdd_server_enable 1903is set to 1904.Dq Li YES 1905this is the path to Kerberos 5 Password-Changing Daemon. 1906.It Va rwhod_enable 1907.Pq Vt bool 1908If set to 1909.Dq Li YES , 1910run the 1911.Xr rwhod 8 1912daemon at boot time. 1913.It Va rwhod_flags 1914.Pq Vt str 1915If 1916.Va rwhod_enable 1917is set to 1918.Dq Li YES , 1919these are the flags to pass to it. 1920.It Va amd_enable 1921.Pq Vt bool 1922If set to 1923.Dq Li YES , 1924run the 1925.Xr amd 8 1926daemon at boot time. 1927.It Va amd_flags 1928.Pq Vt str 1929If 1930.Va amd_enable 1931is set to 1932.Dq Li YES , 1933these are the flags to pass to it. 1934See the 1935.Xr amd 8 1936manpage for more information. 1937.It Va amd_map_program 1938.Pq Vt str 1939If set, 1940the specified program is run to get the list of 1941.Xr amd 8 1942maps. 1943For example, if the 1944.Xr amd 8 1945maps are stored in NIS, one can set this to 1946run 1947.Xr ypcat 1 1948to get a list of 1949.Xr amd 8 1950maps from the 1951.Pa amd.master 1952NIS map. 1953.It Va update_motd 1954.Pq Vt bool 1955If set to 1956.Dq Li YES , 1957.Pa /etc/motd 1958will be updated at boot time to reflect the kernel release 1959being run. 1960If set to 1961.Dq Li NO , 1962.Pa /etc/motd 1963will not be updated. 1964.It Va nfs_client_enable 1965.Pq Vt bool 1966If set to 1967.Dq Li YES , 1968run the NFS client daemons at boot time. 1969.It Va nfs_access_cache 1970.Pq Vt int 1971If 1972.Va nfs_client_enable 1973is set to 1974.Dq Li YES , 1975this can be set to 1976.Dq Li 0 1977to disable NFS ACCESS RPC caching, or to the number of seconds for which 1978NFS ACCESS 1979results should be cached. 1980A value of 2-10 seconds will substantially reduce network 1981traffic for many NFS operations. 1982.It Va nfs_server_enable 1983.Pq Vt bool 1984If set to 1985.Dq Li YES , 1986run the NFS server daemons at boot time. 1987.It Va nfs_server_flags 1988.Pq Vt str 1989If 1990.Va nfs_server_enable 1991is set to 1992.Dq Li YES , 1993these are the flags to pass to the 1994.Xr nfsd 8 1995daemon. 1996.It Va idmapd_enable 1997.Pq Vt bool 1998If set to 1999.Dq Li YES , 2000run the ID mapping daemon for NFS version 4. 2001.It Va idmapd_flags 2002.Pq Vt str 2003If 2004.Va idmapd_enable 2005is set to 2006.Dq Li YES , 2007these are the flags to pass to the 2008.Xr idmapd 8 2009daemon. 2010.It Va mountd_enable 2011.Pq Vt bool 2012If set to 2013.Dq Li YES , 2014and no 2015.Va nfs_server_enable 2016is set, start 2017.Xr mountd 8 , 2018but not 2019.Xr nfsd 8 2020daemon. 2021It is commonly needed to run CFS without real NFS used. 2022.It Va mountd_flags 2023.Pq Vt str 2024If 2025.Va mountd_enable 2026is set to 2027.Dq Li YES , 2028these are the flags to pass to the 2029.Xr mountd 8 2030daemon. 2031.It Va weak_mountd_authentication 2032.Pq Vt bool 2033If set to 2034.Dq Li YES , 2035allow services like PCNFSD to make non-privileged mount 2036requests. 2037.It Va nfs_reserved_port_only 2038.Pq Vt bool 2039If set to 2040.Dq Li YES , 2041provide NFS services only on a secure port. 2042.It Va nfs_bufpackets 2043.Pq Vt int 2044If set to a number, indicates the number of packets worth of 2045socket buffer space to reserve on an NFS client. 2046The kernel default is typically 4. 2047Using a higher number may be 2048useful on gigabit networks to improve performance. 2049The minimum value is 20502 and the maximum is 64. 2051.It Va rpc_lockd_enable 2052.Pq Vt bool 2053If set to 2054.Dq Li YES 2055and also an NFS server or client, run 2056.Xr rpc.lockd 8 2057at boot time. 2058.It Va rpc_lockd_flags 2059.Pq Vt str 2060If 2061.Va rpc_lockd_enable 2062is set to 2063.Dq Li YES , 2064these are the flags to pass to the 2065.Xr rpc.lockd 8 2066daemon. 2067.It Va rpc_statd_enable 2068.Pq Vt bool 2069If set to 2070.Dq Li YES 2071and also an NFS server or client, run 2072.Xr rpc.statd 8 2073at boot time. 2074.It Va rpc_statd_flags 2075.Pq Vt str 2076If 2077.Va rpc_statd_enable 2078is set to 2079.Dq Li YES , 2080these are the flags to pass to the 2081.Xr rpc.statd 8 2082daemon. 2083.It Va rpcbind_program 2084.Pq Vt str 2085Path to 2086.Xr rpcbind 8 2087(default 2088.Pa /usr/sbin/rpcbind ) . 2089.It Va rpcbind_enable 2090.Pq Vt bool 2091If set to 2092.Dq Li YES , 2093run the 2094.Xr rpcbind 8 2095service at boot time. 2096.It Va rpcbind_flags 2097.Pq Vt str 2098If 2099.Va rpcbind_enable 2100is set to 2101.Dq Li YES , 2102these are the flags to pass to the 2103.Xr rpcbind 8 2104daemon. 2105.It Va keyserv_enable 2106.Pq Vt bool 2107If set to 2108.Dq Li YES , 2109run the 2110.Xr keyserv 8 2111daemon on boot for running Secure RPC. 2112.It Va keyserv_flags 2113.Pq Vt str 2114If 2115.Va keyserv_enable 2116is set to 2117.Dq Li YES , 2118these are the flags to pass to 2119.Xr keyserv 8 2120daemon. 2121.It Va pppoed_enable 2122.Pq Vt bool 2123If set to 2124.Dq Li YES , 2125run the 2126.Xr pppoed 8 2127daemon at boot time to provide PPP over Ethernet services. 2128.It Va pppoed_ Ns Aq Ar provider 2129.Pq Vt str 2130.Xr pppoed 8 2131listens to requests to this 2132.Ar provider 2133and ultimately runs 2134.Xr ppp 8 2135with a 2136.Ar system 2137argument of the same name. 2138.It Va pppoed_flags 2139.Pq Vt str 2140Additional flags to pass to 2141.Xr pppoed 8 . 2142.It Va pppoed_interface 2143.Pq Vt str 2144The network interface to run 2145.Xr pppoed 8 2146on. 2147This is mandatory when 2148.Va pppoed_enable 2149is set to 2150.Dq Li YES . 2151.It Va timed_enable 2152.Pq Vt bool 2153If set to 2154.Dq Li YES , 2155run the 2156.Xr timed 8 2157service at boot time. 2158This command is intended for networks of 2159machines where a consistent 2160.Dq "network time" 2161for all hosts must be established. 2162This is often useful in large NFS 2163environments where time stamps on files are expected to be consistent 2164network-wide. 2165.It Va timed_flags 2166.Pq Vt str 2167If 2168.Va timed_enable 2169is set to 2170.Dq Li YES , 2171these are the flags to pass to the 2172.Xr timed 8 2173service. 2174.It Va ntpdate_enable 2175.Pq Vt bool 2176If set to 2177.Dq Li YES , 2178run 2179.Xr ntpdate 8 2180at system startup. 2181This command is intended to 2182synchronize the system clock only 2183.Em once 2184from some standard reference. 2185An option to set this up initially 2186(from a list of known servers) is also provided by the 2187.Xr sysinstall 8 2188program when the system is first installed. 2189.It Va ntpdate_config 2190.Pq Vt str 2191Configuration file for 2192.Xr ntpdate 8 . 2193Default 2194.Pa /etc/ntp.conf . 2195.It Va ntpdate_hosts 2196.Pq Vt str 2197A whitespace-separated list of NTP servers to synchronize with at startup. 2198The default is to use the servers listed in 2199.Va ntpdate_config , 2200if that file exists. 2201.It Va ntpdate_program 2202.Pq Vt str 2203Path to 2204.Xr ntpdate 8 2205(default 2206.Pa /usr/sbin/ntpdate ) . 2207.It Va ntpdate_flags 2208.Pq Vt str 2209If 2210.Va ntpdate_enable 2211is set to 2212.Dq Li YES , 2213these are the flags to pass to the 2214.Xr ntpdate 8 2215command (typically a hostname). 2216.It Va ntpd_enable 2217.Pq Vt bool 2218If set to 2219.Dq Li YES , 2220run the 2221.Xr ntpd 8 2222command at boot time. 2223.It Va ntpd_program 2224.Pq Vt str 2225Path to 2226.Xr ntpd 8 2227(default 2228.Pa /usr/sbin/ntpd ) . 2229.It Va ntpd_config 2230.Pq Vt str 2231Path to 2232.Xr ntpd 8 2233configuration file. 2234Default 2235.Pa /etc/ntp.conf . 2236.It Va ntpd_flags 2237.Pq Vt str 2238If 2239.Va ntpd_enable 2240is set to 2241.Dq Li YES , 2242these are the flags to pass to the 2243.Xr ntpd 8 2244daemon. 2245.It Va ntpd_sync_on_start 2246.Pq Vt bool 2247If set to 2248.Dq Li YES , 2249.Xr ntpd 8 2250is run with the 2251.Fl g 2252flag, which syncs the system's clock on startup. 2253See 2254.Xr ntpd 8 2255for more information regarding the 2256.Fl g 2257option. 2258This is a preferred alternative to using 2259.Xr ntpdate 8 2260or specifying the 2261.Va ntpdate_enable 2262variable. 2263.It Va nis_client_enable 2264.Pq Vt bool 2265If set to 2266.Dq Li YES , 2267run the 2268.Xr ypbind 8 2269service at system boot time. 2270.It Va nis_client_flags 2271.Pq Vt str 2272If 2273.Va nis_client_enable 2274is set to 2275.Dq Li YES , 2276these are the flags to pass to the 2277.Xr ypbind 8 2278service. 2279.It Va nis_ypset_enable 2280.Pq Vt bool 2281If set to 2282.Dq Li YES , 2283run the 2284.Xr ypset 8 2285daemon at system boot time. 2286.It Va nis_ypset_flags 2287.Pq Vt str 2288If 2289.Va nis_ypset_enable 2290is set to 2291.Dq Li YES , 2292these are the flags to pass to the 2293.Xr ypset 8 2294daemon. 2295.It Va nis_server_enable 2296.Pq Vt bool 2297If set to 2298.Dq Li YES , 2299run the 2300.Xr ypserv 8 2301daemon at system boot time. 2302.It Va nis_server_flags 2303.Pq Vt str 2304If 2305.Va nis_server_enable 2306is set to 2307.Dq Li YES , 2308these are the flags to pass to the 2309.Xr ypserv 8 2310daemon. 2311.It Va nis_ypxfrd_enable 2312.Pq Vt bool 2313If set to 2314.Dq Li YES , 2315run the 2316.Xr rpc.ypxfrd 8 2317daemon at system boot time. 2318.It Va nis_ypxfrd_flags 2319.Pq Vt str 2320If 2321.Va nis_ypxfrd_enable 2322is set to 2323.Dq Li YES , 2324these are the flags to pass to the 2325.Xr rpc.ypxfrd 8 2326daemon. 2327.It Va nis_yppasswdd_enable 2328.Pq Vt bool 2329If set to 2330.Dq Li YES , 2331run the 2332.Xr rpc.yppasswdd 8 2333daemon at system boot time. 2334.It Va nis_yppasswdd_flags 2335.Pq Vt str 2336If 2337.Va nis_yppasswdd_enable 2338is set to 2339.Dq Li YES , 2340these are the flags to pass to the 2341.Xr rpc.yppasswdd 8 2342daemon. 2343.It Va rpc_ypupdated_enable 2344.Pq Vt bool 2345If set to 2346.Dq Li YES , 2347run the 2348.Nm rpc.ypupdated 2349daemon at system boot time. 2350.It Va bsnmpd_enable 2351.Pq Vt bool 2352If set to 2353.Dq Li YES , 2354run the 2355.Xr bsnmpd 1 2356daemon at system boot time. 2357Be sure to understand the security implications of running SNMP daemon 2358on your host. 2359.It Va bsnmpd_flags 2360.Pq Vt str 2361If 2362.Va bsnmpd_enable 2363is set to 2364.Dq Li YES , 2365these are the flags to pass to the 2366.Xr bsnmpd 1 2367daemon. 2368.It Va defaultrouter 2369.Pq Vt str 2370If not set to 2371.Dq Li NO , 2372create a default route to this host name or IP address 2373(use an IP address if this router is also required to get to the 2374name server!). 2375.It Va ipv6_defaultrouter 2376.Pq Vt str 2377The IPv6 equivalent of 2378.Va defaultrouter . 2379.It Va static_arp_pairs 2380.Pq Vt str 2381Set to the list of static ARP pairs that are to be added at system 2382boot time. 2383For each whitespace separated 2384.Ar element 2385in the value, a 2386.Va static_arp_ Ns Aq Ar element 2387variable is assumed to exist whose contents will later be passed to a 2388.Dq Nm arp Cm -S 2389operation. 2390For example 2391.Bd -literal 2392static_arp_pairs="gw" 2393static_arp_gw="192.168.1.1 00:01:02:03:04:05" 2394.Ed 2395.It Va static_routes 2396.Pq Vt str 2397Set to the list of static routes that are to be added at system 2398boot time. 2399If not set to 2400.Dq Li NO 2401then for each whitespace separated 2402.Ar element 2403in the value, a 2404.Va route_ Ns Aq Ar element 2405variable is assumed to exist 2406whose contents will later be passed to a 2407.Dq Nm route Cm add 2408operation. 2409For example: 2410.Bd -literal 2411static_routes="mcast gif0local" 2412route_mcast="-net 224.0.0.0/4 -iface gif0" 2413route_gif0local="-host 169.254.1.1 -iface lo0" 2414.Ed 2415.It Va ipv6_static_routes 2416.Pq Vt str 2417The IPv6 equivalent of 2418.Va static_routes . 2419If not set to 2420.Dq Li NO 2421then for each whitespace separated 2422.Ar element 2423in the value, a 2424.Va ipv6_route_ Ns Aq Ar element 2425variable is assumed to exist 2426whose contents will later be passed to a 2427.Dq Nm route Cm add Fl inet6 2428operation. 2429.It Va natm_static_routes 2430.Pq Vt str 2431The 2432.Xr natmip 4 2433equivalent of 2434.Va static_routes . 2435If not empty then for each whitespace separated 2436.Ar element 2437in the value, a 2438.Va route_ Ns Aq Ar element 2439variable is assumed to exist whose contents will later be passed to a 2440.Dq Nm atmconfig Cm natm Cm add 2441operation. 2442.It Va gateway_enable 2443.Pq Vt bool 2444If set to 2445.Dq Li YES , 2446configure host to act as an IP router, e.g.\& to forward packets 2447between interfaces. 2448.It Va ipv6_gateway_enable 2449.Pq Vt bool 2450The IPv6 equivalent of 2451.Va gateway_enable . 2452.It Va routed_enable 2453.Pq Vt bool 2454If set to 2455.Dq Li YES , 2456run a routing daemon of some sort, based on the 2457settings of 2458.Va routed_program 2459and 2460.Va routed_flags . 2461.It Va route6d_enable 2462.Pq Vt bool 2463The IPv6 equivalent of 2464.Va routed_enable . 2465If set to 2466.Dq Li YES , 2467run a routing daemon of some sort, based on the 2468settings of 2469.Va route6d_program 2470and 2471.Va route6d_flags . 2472.It Va routed_program 2473.Pq Vt str 2474If 2475.Va routed_enable 2476is set to 2477.Dq Li YES , 2478this is the name of the routing daemon to use. 2479.It Va route6d_program 2480.Pq Vt str 2481The IPv6 equivalent of 2482.Va routed_program . 2483.It Va routed_flags 2484.Pq Vt str 2485If 2486.Va routed_enable 2487is set to 2488.Dq Li YES , 2489these are the flags to pass to the routing daemon. 2490.It Va route6d_flags 2491.Pq Vt str 2492The IPv6 equivalent of 2493.Va routed_flags . 2494.It Va mrouted_enable 2495.Pq Vt bool 2496If set to 2497.Dq Li YES , 2498run the multicast routing daemon, 2499.Xr mrouted 8 . 2500.It Va mroute6d_enable 2501.Pq Vt bool 2502The IPv6 equivalent of 2503.Va mrouted_enable . 2504If set to 2505.Dq Li YES , 2506run the IPv6 multicast routing daemon. 2507.Pp 2508Note that multicast routing daemons are no longer included in the 2509.Fx 2510base system, however, both 2511.Xr mrouted 8 2512and 2513.Xr pim6dd 8 2514may be installed from the 2515.Fx 2516Ports Collection. 2517.It Va mrouted_flags 2518.Pq Vt str 2519If 2520.Va mrouted_enable 2521is set to 2522.Dq Li YES , 2523these are the flags to pass to the 2524.Xr mrouted 8 2525daemon. 2526.It Va mroute6d_flags 2527.Pq Vt str 2528The IPv6 equivalent of 2529.Va mrouted_flags . 2530If 2531.Va mroute6d_enable 2532is set to 2533.Dq Li YES , 2534these are the flags passed to the IPv6 multicast routing daemon. 2535.It Va mroute6d_program 2536.Pq Vt str 2537If 2538.Va mroute6d_enable 2539is set to 2540.Dq Li YES , 2541this is the path to the IPv6 multicast routing daemon. 2542.It Va rtadvd_enable 2543.Pq Vt bool 2544If set to 2545.Dq Li YES , 2546run the 2547.Xr rtadvd 8 2548daemon at boot time. 2549.Xr rtadvd 8 2550will only run if 2551.Va ipv6_gateway_enable 2552is also set to 2553.Dq Li YES . 2554The 2555.Xr rtadvd 8 2556utility sends router advertisement packets to the interfaces specified in 2557.Va rtadvd_interfaces 2558and should only be enabled with great care. 2559You may want to fine-tune 2560.Xr rtadvd.conf 5 . 2561.It Va rtadvd_interfaces 2562.Pq Vt str 2563If 2564.Va rtadvd_enable 2565is set to 2566.Dq Li YES 2567this is the list of interfaces to use. 2568.It Va ipxgateway_enable 2569.Pq Vt bool 2570If set to 2571.Dq Li YES , 2572enable the routing of IPX traffic. 2573.It Va ipxrouted_enable 2574.Pq Vt bool 2575If set to 2576.Dq Li YES , 2577run the 2578.Xr IPXrouted 8 2579daemon at system boot time. 2580.It Va ipxrouted_flags 2581.Pq Vt str 2582If 2583.Va ipxrouted_enable 2584is set to 2585.Dq Li YES , 2586these are the flags to pass to the 2587.Xr IPXrouted 8 2588daemon. 2589.It Va arpproxy_all 2590.Pq Vt bool 2591If set to 2592.Dq Li YES , 2593enable global proxy ARP. 2594.It Va forward_sourceroute 2595.Pq Vt bool 2596If set to 2597.Dq Li YES 2598and 2599.Va gateway_enable 2600is also set to 2601.Dq Li YES , 2602source-routed packets are forwarded. 2603.It Va accept_sourceroute 2604.Pq Vt bool 2605If set to 2606.Dq Li YES , 2607the system will accept source-routed packets directed at it. 2608.It Va rarpd_enable 2609.Pq Vt bool 2610If set to 2611.Dq Li YES , 2612run the 2613.Xr rarpd 8 2614daemon at system boot time. 2615.It Va rarpd_flags 2616.Pq Vt str 2617If 2618.Va rarpd_enable 2619is set to 2620.Dq Li YES , 2621these are the flags to pass to the 2622.Xr rarpd 8 2623daemon. 2624.It Va bootparamd_enable 2625.Pq Vt bool 2626If set to 2627.Dq Li YES , 2628run the 2629.Xr bootparamd 8 2630daemon at system boot time. 2631.It Va bootparamd_flags 2632.Pq Vt str 2633If 2634.Va bootparamd_enable 2635is set to 2636.Dq Li YES , 2637these are the flags to pass to the 2638.Xr bootparamd 8 2639daemon. 2640.It Va stf_interface_ipv4addr 2641.Pq Vt str 2642If not set to 2643.Dq Li NO , 2644this is the local IPv4 address for 6to4 (IPv6 over IPv4 tunneling 2645interface). 2646Specify this entry to enable the 6to4 interface. 2647.It Va stf_interface_ipv4plen 2648.Pq Vt int 2649Prefix length for 6to4 IPv4 addresses, to limit peer address range. 2650An effective value is 0-31. 2651.It Va stf_interface_ipv6_ifid 2652.Pq Vt str 2653IPv6 interface ID for 2654.Xr stf 4 . 2655This can be set to 2656.Dq Li AUTO . 2657.It Va stf_interface_ipv6_slaid 2658.Pq Vt str 2659IPv6 Site Level Aggregator for 2660.Xr stf 4 . 2661.It Va ipv6_faith_prefix 2662.Pq Vt str 2663If not set to 2664.Dq Li NO , 2665this is the faith prefix to enable a FAITH IPv6-to-IPv4 TCP 2666translator. 2667You also need 2668.Xr faithd 8 2669setup. 2670.It Va ipv6_ipv4mapping 2671.Pq Vt bool 2672If set to 2673.Dq Li YES 2674this enables IPv4 mapped IPv6 address communication (like 2675.Li ::ffff:a.b.c.d ) . 2676.It Va atm_enable 2677.Pq Vt bool 2678Set to 2679.Dq Li YES 2680to enable the configuration of ATM interfaces at system boot time. 2681For all of the ATM variables described below, please refer to the 2682.Xr atm 8 2683manual page for further details on the available command parameters. 2684Also refer to the files in 2685.Pa /usr/share/examples/atm 2686for more detailed configuration information. 2687.It Va atm_load 2688.Pq Vt str 2689This is a list of physical ATM interface drivers to load. 2690Typical values are 2691.Dq Li hfa_pci 2692and/or 2693.Dq Li hea_pci . 2694.It Va atm_netif_ Ns Aq Ar intf 2695.Pq Vt str 2696For the ATM physical interface 2697.Ar intf , 2698this variable defines the name prefix and count for the ATM network 2699interfaces to be created. 2700The value will be passed as the parameters of an 2701.Dq Nm atm Cm "set netif" Ar intf 2702command. 2703.It Va atm_sigmgr_ Ns Aq Ar intf 2704.Pq Vt str 2705For the ATM physical interface 2706.Ar intf , 2707this variable defines the ATM signalling manager to be used. 2708The value will be passed as the parameters of an 2709.Dq Nm atm Cm attach Ar intf 2710command. 2711.It Va atm_prefix_ Ns Aq Ar intf 2712.Pq Vt str 2713For the ATM physical interface 2714.Ar intf , 2715this variable defines the NSAP prefix for interfaces using a UNI signalling 2716manager. 2717If set to 2718.Dq Li ILMI , 2719the prefix will automatically be set via the 2720.Xr ilmid 8 2721daemon. 2722Otherwise, the value will be passed as the parameters of an 2723.Dq Nm atm Cm "set prefix" Ar intf 2724command. 2725.It Va atm_macaddr_ Ns Aq Ar intf 2726.Pq Vt str 2727For the ATM physical interface 2728.Ar intf , 2729this variable defines the MAC address for interfaces using a UNI signalling 2730manager. 2731If set to 2732.Dq Li NO , 2733the hardware MAC address contained in the ATM interface card will be used. 2734Otherwise, the value will be passed as the parameters of an 2735.Dq Nm atm Cm "set mac" Ar intf 2736command. 2737.It Va atm_arpserver_ Ns Aq Ar netif 2738.Pq Vt str 2739For the ATM network interface 2740.Ar netif , 2741this variable defines the ATM address for a host which is to provide ATMARP 2742service. 2743This variable is only applicable to interfaces using a UNI signalling 2744manager. 2745If set to 2746.Dq Li local , 2747this host will become an ATMARP server. 2748The value will be passed as the parameters of an 2749.Dq Nm atm Cm "set arpserver" Ar netif 2750command. 2751.It Va atm_scsparp_ Ns Aq Ar netif 2752.Pq Vt bool 2753If set to 2754.Dq Li YES , 2755SCSP/ATMARP service for the network interface 2756.Ar netif 2757will be initiated using the 2758.Xr scspd 8 2759and 2760.Xr atmarpd 8 2761daemons. 2762This variable is only applicable if 2763.Va atm_arpserver_ Ns Aq Ar netif 2764is set to 2765.Dq Li local . 2766.It Va atm_pvcs 2767.Pq Vt str 2768Set to the list of ATM PVCs to be added at system 2769boot time. 2770For each whitespace separated 2771.Ar element 2772in the value, an 2773.Va atm_pvc_ Ns Aq Ar element 2774variable is assumed to exist. 2775The value of each of these variables 2776will be passed as the parameters of an 2777.Dq Nm atm Cm "add pvc" 2778command. 2779.It Va atm_arps 2780.Pq Vt str 2781Set to the list of permanent ATM ARP entries to be added 2782at system boot time. 2783For each whitespace separated 2784.Ar element 2785in the value, an 2786.Va atm_arp_ Ns Aq Ar element 2787variable is assumed to exist. 2788The value of each of these variables 2789will be passed as the parameters of an 2790.Dq Nm atm Cm "add arp" 2791command. 2792.It Va natm_interfaces 2793.Pq Vt str 2794Set to the list of 2795.Xr natm 4 2796interfaces that will also be used for HARP through 2797.Xr harp 4 . 2798If this list is not empty all interfaces in the list will be brought up 2799with 2800.Xr ifconfig 8 2801and 2802.Xr harp 4 2803will be loaded. 2804For this to work the interface drivers must be either compiled into the 2805kernel or must reside on the root partition. 2806.It Va keybell 2807.Pq Vt str 2808The keyboard bell sound. 2809Set to 2810.Dq Li normal , 2811.Dq Li visual , 2812.Dq Li off , 2813or 2814.Dq Li NO 2815if the default behavior is desired. 2816For details, refer to the 2817.Xr kbdcontrol 1 2818manpage. 2819.It Va keyboard 2820.Pq Vt str 2821If set to a non-null string, the virtual console's keyboard input is 2822set to this device. 2823.It Va keymap 2824.Pq Vt str 2825If set to 2826.Dq Li NO , 2827no keymap is installed, otherwise the value is used to install 2828the keymap file in 2829.Pa /usr/share/syscons/keymaps/ Ns Ao Ar value Ac Ns Pa .kbd . 2830.It Va keyrate 2831.Pq Vt str 2832The keyboard repeat speed. 2833Set to 2834.Dq Li slow , 2835.Dq Li normal , 2836.Dq Li fast , 2837or 2838.Dq Li NO 2839if the default behavior is desired. 2840.It Va keychange 2841.Pq Vt str 2842If not set to 2843.Dq Li NO , 2844attempt to program the function keys with the value. 2845The value should 2846be a single string of the form: 2847.Dq Ar funkey_number new_value Op Ar funkey_number new_value ... . 2848.It Va cursor 2849.Pq Vt str 2850Can be set to the value of 2851.Dq Li normal , 2852.Dq Li blink , 2853.Dq Li destructive , 2854or 2855.Dq Li NO 2856to set the cursor behavior explicitly or choose the default behavior. 2857.It Va scrnmap 2858.Pq Vt str 2859If set to 2860.Dq Li NO , 2861no screen map is installed, otherwise the value is used to install 2862the screen map file in 2863.Pa /usr/share/syscons/scrnmaps/ Ns Aq Ar value . 2864.It Va font8x16 2865.Pq Vt str 2866If set to 2867.Dq Li NO , 2868the default 8x16 font value is used for screen size requests, otherwise 2869the value in 2870.Pa /usr/share/syscons/fonts/ Ns Aq Ar value 2871is used. 2872.It Va font8x14 2873.Pq Vt str 2874If set to 2875.Dq Li NO , 2876the default 8x14 font value is used for screen size requests, otherwise 2877the value in 2878.Pa /usr/share/syscons/fonts/ Ns Aq Ar value 2879is used. 2880.It Va font8x8 2881.Pq Vt str 2882If set to 2883.Dq Li NO , 2884the default 8x8 font value is used for screen size requests, otherwise 2885the value in 2886.Pa /usr/share/syscons/fonts/ Ns Aq Ar value 2887is used. 2888.It Va blanktime 2889.Pq Vt int 2890If set to 2891.Dq Li NO , 2892the default screen blanking interval is used, otherwise it is set 2893to 2894.Ar value 2895seconds. 2896.It Va saver 2897.Pq Vt str 2898If not set to 2899.Dq Li NO , 2900this is the actual screen saver to use 2901.Li ( blank , snake , daemon , 2902etc). 2903.It Va moused_nondefault_enable 2904.Pq Vt str 2905If set to 2906.Dq Li NO , 2907the mouse device specified on 2908the command line is not automatically treated as enabled by the 2909.Pa /etc/rc.d/moused 2910script. 2911Having this variable set to 2912.Dq Li YES 2913allows a 2914.Xr usb 4 2915mouse, 2916for example, 2917to be enabled as soon as it is plugged in. 2918.It Va moused_enable 2919.Pq Vt str 2920If set to 2921.Dq Li YES , 2922the 2923.Xr moused 8 2924daemon is started for doing cut/paste selection on the console. 2925.It Va moused_type 2926.Pq Vt str 2927This is the protocol type of the mouse connected to this host. 2928This variable must be set if 2929.Va moused_enable 2930is set to 2931.Dq Li YES . 2932The 2933.Xr moused 8 2934daemon 2935is able to detect the appropriate mouse type automatically in many cases. 2936Set this variable to 2937.Dq Li auto 2938to let the daemon detect it, or 2939select one from the following list if the automatic detection fails. 2940.Pp 2941If the mouse is attached to the PS/2 mouse port, choose 2942.Dq Li auto 2943or 2944.Dq Li ps/2 , 2945regardless of the brand and model of the mouse. 2946Likewise, if the 2947mouse is attached to the bus mouse port, choose 2948.Dq Li auto 2949or 2950.Dq Li busmouse . 2951All other protocols are for serial mice and will not work with 2952the PS/2 and bus mice. 2953If this is a USB mouse, 2954.Dq Li auto 2955is the only protocol type which will work. 2956.Pp 2957.Bl -tag -width ".Li x10mouseremote" -compact 2958.It Li microsoft 2959Microsoft mouse (serial) 2960.It Li intellimouse 2961Microsoft IntelliMouse (serial) 2962.It Li mousesystems 2963Mouse systems Corp.\& mouse (serial) 2964.It Li mmseries 2965MM Series mouse (serial) 2966.It Li logitech 2967Logitech mouse (serial) 2968.It Li busmouse 2969A bus mouse 2970.It Li mouseman 2971Logitech MouseMan and TrackMan (serial) 2972.It Li glidepoint 2973ALPS GlidePoint (serial) 2974.It Li thinkingmouse 2975Kensington ThinkingMouse (serial) 2976.It Li ps/2 2977PS/2 mouse 2978.It Li mmhittab 2979MM HitTablet (serial) 2980.It Li x10mouseremote 2981X10 MouseRemote (serial) 2982.It Li versapad 2983Interlink VersaPad (serial) 2984.El 2985.Pp 2986Even if the mouse is not in the above list, it may be compatible 2987with one in the list. 2988Refer to the manual page for 2989.Xr moused 8 2990for compatibility information. 2991.Pp 2992It should also be noted that while this is enabled, any 2993other client of the mouse (such as an X server) should access 2994the mouse through the virtual mouse device, 2995.Pa /dev/sysmouse , 2996and configure it as a 2997.Dq Li sysmouse 2998type mouse, since all 2999mouse data is converted to this single canonical format when 3000using 3001.Xr moused 8 . 3002If the client program does not support the 3003.Dq Li sysmouse 3004type, 3005specify the 3006.Dq Li mousesystems 3007type. 3008It is the second preferred type. 3009.It Va moused_port 3010.Pq Vt str 3011If 3012.Va moused_enable 3013is set to 3014.Dq Li YES , 3015this is the actual port the mouse is on. 3016It might be 3017.Pa /dev/cuad0 3018for a COM1 serial mouse, 3019.Pa /dev/psm0 3020for a PS/2 mouse or 3021.Pa /dev/mse0 3022for a bus mouse, for example. 3023.It Va moused_flags 3024.Pq Vt str 3025If 3026.Va moused_flags 3027is set, its value is used as an additional set of flags to pass to the 3028.Xr moused 8 3029daemon. 3030.It Va "moused_" Ns Ar XXX Ns Va "_flags" 3031When 3032.Va moused_nondefault_enable 3033is enabled, and a 3034.Xr moused 8 3035daemon is started for a non-default port, the 3036.Va "moused_" Ns Ar XXX Ns Va "_flags" 3037set of options has precedence over and replaces the default 3038.Va moused_flags (where 3039.Ar XXX 3040is the name of the non-default port, i.e.\& 3041.Ar ums0 ) . 3042By setting 3043.Va "moused_" Ns Ar XXX Ns Va "_flags" 3044it is possible to set up a different set of default flags for each 3045.Xr moused 8 3046instance. 3047For example, you can use 3048.Dq Li "-3" 3049for the default 3050.Va moused_flags 3051to make your laptop's touchpad more comfortable to use, 3052but an empty set of options for 3053.Va moused_ums0_flags 3054when your 3055.Xr usb 4 3056mouse has three or more buttons. 3057.It Va mousechar_start 3058.Pq Vt int 3059If set to 3060.Dq Li NO , 3061the default mouse cursor character range 3062.Li 0xd0 Ns - Ns Li 0xd3 3063is used, 3064otherwise the range start is set 3065to 3066.Ar value 3067character, see 3068.Xr vidcontrol 1 . 3069Use if the default range is occupied in the language code table. 3070.It Va allscreens_flags 3071.Pq Vt str 3072If set, 3073.Xr vidcontrol 1 3074is run with these options for each of the virtual terminals 3075.Pq Pa /dev/ttyv* . 3076For example, 3077.Dq Fl m Cm on 3078will enable the mouse pointer on all virtual terminals 3079if 3080.Va moused_enable 3081is set to 3082.Dq Li YES . 3083.It Va allscreens_kbdflags 3084.Pq Vt str 3085If set, 3086.Xr kbdcontrol 1 3087is run with these options for each of the virtual terminals 3088.Pq Pa /dev/ttyv* . 3089For example, 3090.Dq Fl h Li 200 3091will set the 3092.Xr syscons 4 3093scrollback (history) buffer to 200 lines. 3094.It Va cron_enable 3095.Pq Vt bool 3096If set to 3097.Dq Li YES , 3098run the 3099.Xr cron 8 3100daemon at system boot time. 3101.It Va cron_program 3102.Pq Vt str 3103Path to 3104.Xr cron 8 3105(default 3106.Pa /usr/sbin/cron ) . 3107.It Va cron_flags 3108.Pq Vt str 3109If 3110.Va cron_enable 3111is set to 3112.Dq Li YES , 3113these are the flags to pass to 3114.Xr cron 8 . 3115.It Va cron_dst 3116.Pq Vt bool 3117If set to 3118.Dq Li YES , 3119enable the special handling of transitions to and from the 3120Daylight Saving Time in 3121.Xr cron 8 3122(equivalent to using the flag 3123.Fl s ) . 3124.It Va lpd_program 3125.Pq Vt str 3126Path to 3127.Xr lpd 8 3128(default 3129.Pa /usr/sbin/lpd ) . 3130.It Va lpd_enable 3131.Pq Vt bool 3132If set to 3133.Dq Li YES , 3134run the 3135.Xr lpd 8 3136daemon at system boot time. 3137.It Va lpd_flags 3138.Pq Vt str 3139If 3140.Va lpd_enable 3141is set to 3142.Dq Li YES , 3143these are the flags to pass to the 3144.Xr lpd 8 3145daemon. 3146.It Va chkprintcap_enable 3147.Pq Vt bool 3148If set to 3149.Dq Li YES , 3150run the 3151.Xr chkprintcap 8 3152command before starting the 3153.Xr lpd 8 3154daemon. 3155.It Va chkprintcap_flags 3156.Pq Vt str 3157If 3158.Va lpd_enable 3159and 3160.Va chkprintcap_enable 3161are set to 3162.Dq Li YES , 3163these are the flags to pass to the 3164.Xr chkprintcap 8 3165program. 3166The default is 3167.Dq Li -d , 3168which causes missing directories to be created. 3169.It Va mta_start_script 3170.Pq Vt str 3171This variable specifies the full path to the script to run to start 3172a mail transfer agent. 3173The default is 3174.Pa /etc/rc.sendmail . 3175The 3176.Va sendmail_* 3177variables which 3178.Pa /etc/rc.sendmail 3179uses are documented in the 3180.Xr rc.sendmail 8 3181manual page. 3182.It Va dumpdev 3183.Pq Vt str 3184Indicates the device (usually a swap partition) to which a crash dump 3185should be written in the event of a system crash. 3186If the value of this variable is 3187.Dq Li AUTO , 3188the first suitable swap device listed in 3189.Pa /etc/fstab 3190will be used as dump device. 3191Otherwise, the value of this variable is passed as the argument to 3192.Xr dumpon 8 . 3193To disable crash dumps, set this variable to 3194.Dq Li NO . 3195.It Va dumpdir 3196.Pq Vt str 3197When the system reboots after a crash and a crash dump is found on the 3198device specified by the 3199.Va dumpdev 3200variable, 3201.Xr savecore 8 3202will save that crash dump and a copy of the kernel to the directory 3203specified by the 3204.Va dumpdir 3205variable. 3206The default value is 3207.Pa /var/crash . 3208Set to 3209.Dq Li NO 3210to not run 3211.Xr savecore 8 3212at boot time when 3213.Va dumpdir 3214is set. 3215.It Va savecore_flags 3216.Pq Vt str 3217If crash dumps are enabled, these are the flags to pass to the 3218.Xr savecore 8 3219utility. 3220.It Va quota_enable 3221.Pq Vt bool 3222Set to 3223.Dq Li YES 3224to turn on user and group disk quotas on system startup via the 3225.Xr quotaon 8 3226command for all file systems marked as having quotas enabled in 3227.Pa /etc/fstab . 3228The kernel must be built with 3229.Cd "options QUOTA" 3230for disk quotas to function. 3231.It Va check_quotas 3232.Pq Vt bool 3233Set to 3234.Dq Li YES 3235to enable user and group disk quota checking via the 3236.Xr quotacheck 8 3237command. 3238.It Va quotacheck_flags 3239.Pq Vt str 3240If 3241.Va quota_enable 3242is set to 3243.Dq Li YES , 3244and 3245.Va check_quotas 3246is set to 3247.Dq Li YES , 3248these are the flags to pass to the 3249.Xr quotacheck 8 3250utility. 3251The default is 3252.Dq Li "-a" , 3253which checks quotas for all file systems with quotas enabled in 3254.Pa /etc/fstab . 3255.It Va quotaon_flags 3256.Pq Vt str 3257If 3258.Va quota_enable 3259is set to 3260.Dq Li YES , 3261these are the flags to pass to the 3262.Xr quotaon 8 3263utility. 3264The default is 3265.Dq Li "-a" , 3266which enables quotas for all file systems with quotas enabled in 3267.Pa /etc/fstab . 3268.It Va quotaoff_flags 3269.Pq Vt str 3270If 3271.Va quota_enable 3272is set to 3273.Dq Li YES , 3274these are the flags to pass to the 3275.Xr quotaoff 8 3276utility when shutting down the quota system. 3277The default is 3278.Dq Li "-a" , 3279which disables quotas for all file systems with quotas enabled in 3280.Pa /etc/fstab . 3281.It Va accounting_enable 3282.Pq Vt bool 3283Set to 3284.Dq Li YES 3285to enable system accounting through the 3286.Xr accton 8 3287facility. 3288.It Va ibcs2_enable 3289.Pq Vt bool 3290Set to 3291.Dq Li YES 3292to enable iBCS2 (SCO) binary emulation at system initial boot 3293time. 3294.It Va ibcs2_loaders 3295.Pq Vt str 3296If not set to 3297.Dq Li NO 3298and if 3299.Va ibcs2_enable 3300is set to 3301.Dq Li YES , 3302this specifies a list of additional iBCS2 loaders to enable. 3303.It Va linux_enable 3304.Pq Vt bool 3305Set to 3306.Dq Li YES 3307to enable Linux/ELF binary emulation at system initial 3308boot time. 3309.It Va svr4_enable 3310.Pq Vt bool 3311If set to 3312.Dq Li YES , 3313enable SysVR4 emulation at boot time. 3314.It Va sysvipc_enable 3315.Pq Vt bool 3316If set to 3317.Dq Li YES , 3318load System V IPC primitives at boot time. 3319.It Va clear_tmp_enable 3320.Pq Vt bool 3321Set to 3322.Dq Li YES 3323to have 3324.Pa /tmp 3325cleaned at startup. 3326.It Va clear_tmp_X 3327.Pq Vt bool 3328Set to 3329.Dq Li NO 3330to disable removing of X11 lock files, 3331and the removal and (secure) recreation 3332of the various socket directories for X11 3333related programs. 3334.It Va ldconfig_paths 3335.Pq Vt str 3336Set to the list of shared library paths to use with 3337.Xr ldconfig 8 . 3338NOTE: 3339.Pa /usr/lib 3340will always be added first, so it need not appear in this list. 3341.It Va ldconfig32_paths 3342.Pq Vt str 3343Set to the list of 32-bit compatibility shared library paths to 3344use with 3345.Xr ldconfig 8 . 3346.It Va ldconfig_paths_aout 3347.Pq Vt str 3348Set to the list of shared library paths to use with 3349.Xr ldconfig 8 3350legacy 3351.Xr a.out 5 3352support. 3353.It Va ldconfig_insecure 3354.Pq Vt bool 3355The 3356.Xr ldconfig 8 3357utility normally refuses to use directories 3358which are writable by anyone except root. 3359Set this variable to 3360.Dq Li YES 3361to disable that security check during system startup. 3362.It Va ldconfig_local_dirs 3363.Pq Vt str 3364Set to the list of local 3365.Xr ldconfig 8 3366directories. 3367The names of all files in the directories listed will be 3368passed as arguments to 3369.Xr ldconfig 8 . 3370.It Va ldconfig_local32_dirs 3371.Pq Vt str 3372Set to the list of local 32-bit compatibility 3373.Xr ldconfig 8 3374directories. 3375The names of all files in the directories listed will be 3376passed as arguments to 3377.Dq Nm ldconfig Fl 32 . 3378.It Va kern_securelevel_enable 3379.Pq Vt bool 3380Set to 3381.Dq Li YES 3382to set the kernel security level at system startup. 3383.It Va kern_securelevel 3384.Pq Vt int 3385The kernel security level to set at startup. 3386The allowed range of 3387.Ar value 3388ranges from \-1 (the compile time default) to 3 (the 3389most secure). 3390See 3391.Xr security 7 3392for the list of possible security levels and their effect 3393on system operation. 3394.It Va sshd_program 3395.Pq Vt str 3396Path to the SSH server program 3397.Pa ( /usr/sbin/sshd 3398is the default). 3399.It Va sshd_enable 3400.Pq Vt bool 3401Set to 3402.Dq Li YES 3403to start 3404.Xr sshd 8 3405at system boot time. 3406.It Va sshd_flags 3407.Pq Vt str 3408If 3409.Va sshd_enable 3410is set to 3411.Dq Li YES , 3412these are the flags to pass to the 3413.Xr sshd 8 3414daemon. 3415.It Va ftpd_program 3416.Pq Vt str 3417Path to the FTP server program 3418.Pa ( /usr/libexec/ftpd 3419is the default). 3420.It Va ftpd_enable 3421.Pq Vt bool 3422Set to 3423.Dq Li YES 3424to start 3425.Xr ftpd 8 3426as a stand-alone daemon at system boot time. 3427.It Va ftpd_flags 3428.Pq Vt str 3429If 3430.Va ftpd_enable 3431is set to 3432.Dq Li YES , 3433these are the additional flags to pass to the 3434.Xr ftpd 8 3435daemon. 3436.It Va watchdogd_enable 3437.Pq Vt bool 3438If set to 3439.Dq Li YES , 3440start the 3441.Xr watchdogd 8 3442daemon at boot time. 3443This requires that the kernel have been compiled with a 3444.Xr watchdog 4 3445compatible device. 3446.It Va watchdogd_flags 3447.Pq Vt str 3448If 3449.Va watchdogd_enable 3450is set to 3451.Dq Li YES , 3452these are the flags passed to the 3453.Xr watchdogd 8 3454daemon. 3455.It Va performance_cx_lowest 3456.Pq Vt str 3457CPU idle state to use while on AC power. 3458The string 3459.Dq Li LOW 3460indicates that 3461.Xr acpi 4 3462should use the lowest power state available while 3463.Dq Li HIGH 3464indicates that the lowest latency state (less power savings) should be used. 3465.It Va performance_cpu_freq 3466.Pq Vt str 3467CPU clock frequency to use while on AC power. 3468The string 3469.Dq Li LOW 3470indicates that 3471.Xr cpufreq 4 3472should use the lowest frequency available while 3473.Dq Li HIGH 3474indicates that the highest frequency (less power savings) should be used. 3475.It Va economy_cx_lowest 3476.Pq Vt str 3477CPU idle state to use when off AC power. 3478The string 3479.Dq Li LOW 3480indicates that 3481.Xr acpi 4 3482should use the lowest power state available while 3483.Dq Li HIGH 3484indicates that the lowest latency state (less power savings) should be used. 3485.It Va economy_cpu_freq 3486.Pq Vt str 3487CPU clock frequency to use when off AC power. 3488The string 3489.Dq Li LOW 3490indicates that 3491.Xr cpufreq 4 3492should use the lowest frequency available while 3493.Dq Li HIGH 3494indicates that the highest frequency (less power savings) should be used. 3495.It Va jail_enable 3496.Pq Vt bool 3497If set to 3498.Dq Li NO , 3499any configured jails will not be started. 3500.It Va jail_list 3501.Pq Vt str 3502A space separated list of names for jails. 3503This is purely a configuration aid to help identify and 3504configure multiple jails. 3505The names specified in this list will be used to 3506identify settings common to an instance of a jail. 3507Assuming that the jail in question was named 3508.Li vjail , 3509you would have the following dependent variables: 3510.Bd -literal 3511jail_vjail_hostname="jail.example.com" 3512jail_vjail_ip="192.0.2.100" 3513jail_vjail_rootdir="/var/jails/vjail/root" 3514.Ed 3515.Pp 3516.It Va jail_flags 3517.Pq Vt str 3518Unset by default. 3519When set, use as default value for 3520.Va jail_ Ns Ao Ar jname Ac Ns Va _flags 3521for every jail in 3522.Va jail_list . 3523.It Va jail_interface 3524.Pq Vt str 3525Unset by default. 3526When set, use as default value for 3527.Va jail_ Ns Ao Ar jname Ac Ns Va _interface 3528for every jail in 3529.Va jail_list . 3530.It Va jail_fstab 3531.Pq Vt str 3532Unset by default. 3533When set, use as default value for 3534.Va jail_ Ns Ao Ar jname Ac Ns Va _fstab 3535for every jail in 3536.Va jail_list . 3537.It Va jail_mount_enable 3538.Pq Vt bool 3539Set to 3540.Dq Li NO 3541by default. 3542When set to 3543.Dq Li YES , 3544sets 3545.Va jail_ Ns Ao Ar jname Ac Ns Va _mount_enable 3546to 3547.Dq Li YES 3548by default for every jail in 3549.Va jail_list . 3550.It Va jail_devfs_ruleset 3551.Pq Vt str 3552Unset by default. 3553When set, sets 3554.Va jail_ Ns Ao Ar jname Ac Ns Va _devfs_ruleset 3555to given value for every jail in 3556.Va jail_list . 3557.It Va jail_devfs_enable 3558.Pq Vt bool 3559Set to 3560.Dq Li NO 3561by default. 3562When set to 3563.Dq Li YES , 3564sets 3565.Va jail_ Ns Ao Ar jname Ac Ns Va _devfs_enable 3566to 3567.Dq Li YES 3568by default for every jail in 3569.Va jail_list . 3570.It Va jail_fdescfs_enable 3571.Pq Vt bool 3572Set to 3573.Dq Li NO 3574by default. 3575When set to 3576.Dq Li YES , 3577sets 3578.Va jail_ Ns Ao Ar jname Ac Ns Va _fdescfs_enable 3579to 3580.Dq Li YES 3581by default for every jail in 3582.Va jail_list . 3583.It Va jail_procfs_enable 3584.Pq Vt bool 3585Set to 3586.Dq Li NO 3587by default. 3588When set to 3589.Dq Li YES , 3590sets 3591.Va jail_ Ns Ao Ar jname Ac Ns Va _fdescfs_enable 3592to 3593.Dq Li YES 3594by default for every jail in 3595.Va jail_list . 3596.It Va jail_exec_prestart Ns Aq Ar N 3597.Pq Vt str 3598Unset by default. 3599When set, use as default value for 3600.Va jail_ Ns Ao Ar jname Ac Ns Va _exec_prestart Ns Aq Ar N 3601for every jail in 3602.Va jail_list . 3603.It Va jail_exec_start 3604.Pq Vt str 3605Unset by default. 3606When set, use as default value for 3607.Va jail_ Ns Ao Ar jname Ac Ns Va _exec_start 3608for every jail in 3609.Va jail_list . 3610.It Va jail_exec_afterstart Ns Aq Ar N 3611.Pq Vt str 3612Unset by default. 3613When set, use as default value for 3614.Va jail_ Ns Ao Ar jname Ac Ns Va _exec_afterstart Ns Aq Ar N 3615for every jail in 3616.Va jail_list . 3617.It Va jail_exec_poststart Ns Aq Ar N 3618.Pq Vt str 3619Unset by default. 3620When set, use as default value for 3621.Va jail_ Ns Ao Ar jname Ac Ns Va _exec_poststart Ns Aq Ar N 3622for every jail in 3623.Va jail_list . 3624.It Va jail_exec_prestop Ns Aq Ar N 3625.Pq Vt str 3626Unset by default. 3627When set, use as default value for 3628.Va jail_ Ns Ao Ar jname Ac Ns Va _exec_prestop Ns Aq Ar N 3629for every jail in 3630.Va jail_list . 3631.It Va jail_exec_stop 3632Unset by default. 3633When set, use as default value for 3634.Va jail_ Ns Ao Ar jname Ac Ns Va _exec_stop 3635for every jail in 3636.Va jail_list . 3637.It Va jail_exec_poststop Ns Aq Ar N 3638.Pq Vt str 3639Unset by default. 3640When set, use as default value for 3641.Va jail_ Ns Ao Ar jname Ac Ns Va _exec_poststop Ns Aq Ar N 3642for every jail in 3643.Va jail_list . 3644.It Va jail_ Ns Ao Ar jname Ac Ns Va _rootdir 3645.Pq Vt str 3646Unset by default. 3647Set to the root directory used by jail 3648.Va jname . 3649.It Va jail_ Ns Ao Ar jname Ac Ns Va _hostname 3650.Pq Vt str 3651Unset by default. 3652Set to the fully qualified domain name (FQDN) assigned to jail 3653.Va jname . 3654.It Va jail_ Ns Ao Ar jname Ac Ns Va _ip 3655.Pq Vt str 3656Unset by default. 3657Set to the (primary) IPv4 and/or IPv6 address(es) assigned to the jail. 3658The argument can be a sole address or a comma separated list of addresses. 3659Additionally each address can be prefixed by the name of an interface 3660followed by a pipe to overwrite 3661.Va jail_ Ns Ao Ar jname Ac Ns Va _interface 3662or 3663.Va jail_interface 3664and/or suffixed by a netmask, prefixlen or prefix. 3665In case no netmask, prefixlen or prefix is given, 3666.Sq /32 3667will be used for IPv4 and 3668.Sq /128 3669will be used for an IPv6 address. 3670If no address is given for the jail then the jail will be started with 3671no networking support. 3672.It Va jail_ Ns Ao Ar jname Ac Ns Va _ip_multi Ns Aq Ar n 3673.Pq Vt str 3674Unset by default. 3675Set additional IPv4 and/or IPv6 address(es) assigned to the jail. 3676The sequence starts with 3677.Dq Li _multi0 3678and the numbers have to be strictly ascending. 3679These entries follow the same syntax as their primary 3680.Va jail_ Ns Ao Ar jname Ac Ns Va _ip 3681entry. 3682The order of the entries can be important as the first address for 3683each address family found will be the primary address of the jail. 3684See 3685.Va ip-addresses 3686option in 3687.Xr jail 8 3688for more details. 3689.It Va jail_ Ns Ao Ar jname Ac Ns Va _flags 3690.Pq Vt str 3691Set to 3692.Dq Li -l -U root 3693by default. 3694These are flags to pass to 3695.Xr jail . 3696.It Va jail_ Ns Ao Ar jname Ac Ns Va _interface 3697.Pq Vt str 3698Unset by default. 3699When set, sets the interface to use when setting IP address alias. 3700Note that the alias is created at jail startup and removed at jail shutdown. 3701.It Va jail_ Ns Ao Ar jname Ac Ns Va _fib 3702.Pq Vt str 3703Unset by default. 3704When set, the jail is started with the specified forwarding table (sometimes 3705referred to as a routing table) via 3706.Xr setfib 1 . 3707.It Va jail_ Ns Ao Ar jname Ac Ns Va _fstab 3708.Pq Vt str 3709Set to 3710.Pa /etc/fstab. Ns Aq Ar jname 3711by default. 3712This is the file system information file to use for jail 3713.Va jname . 3714.It Va jail_ Ns Ao Ar jname Ac Ns Va _mount_enable 3715.Pq Vt bool 3716Set to 3717.Dq Li NO 3718by default. 3719When set to 3720.Dq Li YES , 3721mount all file systems from 3722.Va jail_ Ns Ao Ar jname Ac Ns Va _fstab 3723at jail startup. 3724.It Va jail_ Ns Ao Ar jname Ac Ns Va _devfs_ruleset 3725.Pq Vt str 3726Unset by default. 3727When set, defines the device file system ruleset file to use for jail 3728.Va jname . 3729.It Va jail_ Ns Ao Ar jname Ac Ns Va _devfs_enable 3730.Pq Vt bool 3731Set to 3732.Dq Li NO 3733by default. 3734When set to 3735.Dq Li YES , 3736mount the device file system inside jail 3737.Ar jname 3738at jail startup. 3739.It Va jail_ Ns Ao Ar jname Ac Ns Va _fdescfs_enable 3740.Pq Vt bool 3741Set to 3742.Dq Li NO 3743by default. 3744When set to 3745.Dq Li YES , 3746mount the file-descriptor file system inside jail 3747.Ar jname 3748at jail startup. 3749.It Va jail_ Ns Ao Ar jname Ac Ns Va _procfs_enable 3750.Pq Vt bool 3751Set to 3752.Dq Li NO 3753by default. 3754When set to 3755.Dq Li YES , 3756mount the process file system inside jail 3757.Ar jname 3758at jail startup. 3759.It Va jail_ Ns Ao Ar jname Ac Ns Va _exec_prestart Ns Aq Ar N 3760.Pq Vt str 3761Unset by default. 3762This is the command run as 3763.Ar N Ns 3764th command 3765before jail startup, where 3766.Ar N 3767is 0, 1, and so on. 3768It is run outside the jail. 3769.It Va jail_ Ns Ao Ar jname Ac Ns Va _exec_start 3770.Pq Vt str 3771Set to 3772.Dq Li /bin/sh /etc/rc 3773by default. 3774This is the command executed in a jail at jail startup. 3775.It Va jail_ Ns Ao Ar jname Ac Ns Va _exec_afterstart Ns Aq Ar N 3776.Pq Vt str 3777Unset by default. 3778This is the command run as 3779.Ar N Ns 3780th command 3781in a jail 3782after jail startup, where 3783.Ar N 3784is 1, 2, and so on. 3785.It Va jail_ Ns Ao Ar jname Ac Ns Va _exec_poststart Ns Aq Ar N 3786.Pq Vt str 3787Unset by default. 3788This is the command run as 3789.Ar N Ns 3790th command 3791after jail startup, where 3792.Ar N 3793is 0, 1, and so on. 3794It is run outside the jail. 3795.It Va jail_ Ns Ao Ar jname Ac Ns Va _exec_prestop Ns Aq Ar N 3796.Pq Vt str 3797Unset by default. 3798This is the command run as 3799.Ar N Ns 3800th command 3801before jail shutdown, where 3802.Ar N 3803is 0, 1, and so on. 3804It is run outside the jail. 3805.It Va jail_ Ns Ao Ar jname Ac Ns Va _exec_stop 3806.Pq Vt str 3807Set to 3808.Dq Li /bin/sh /etc/rc.shutdown 3809by default. 3810This is the command executed in a jail at jail shutdown. 3811.It Va jail_ Ns Ao Ar jname Ac Ns Va _exec_poststop Ns Aq Ar N 3812.Pq Vt str 3813Unset by default. 3814This is the command run as 3815.Ar N Ns 3816th command 3817after jail shutdown, where 3818.Ar N 3819is 0, 1, and so on. 3820It is run outside the jail. 3821.It Va jail_set_hostname_allow 3822.Pq Vt bool 3823If set to 3824.Dq Li NO , 3825do not allow the root user in a jail to set its hostname. 3826.It Va jail_socket_unixiproute_only 3827.Pq Vt bool 3828If set to 3829.Dq Li YES , 3830do not allow any sockets, 3831besides UNIX/IP/route sockets, 3832to be used within a jail. 3833.It Va jail_sysvipc_allow 3834.Pq Vt bool 3835If set to 3836.Dq Li YES , 3837allow applications within a jail to use System V IPC. 3838.\" ----------------------------------------------------- 3839.It Va harvest_interrupt 3840.Pq Vt bool 3841Set to 3842.Dq Li YES 3843to use hardware interrupts as an entropy source. 3844Refer to 3845.Xr random 4 3846for more information. 3847.It Va harvest_ethernet 3848.Pq Vt bool 3849Set to 3850.Dq Li YES 3851to use LAN traffic as an entropy source. 3852Refer to 3853.Xr random 4 3854for more information. 3855.It Va harvest_p_to_p 3856.Pq Vt bool 3857Set to 3858.Dq Li YES 3859to use serial line traffic as an entropy source. 3860Refer to 3861.Xr random 4 3862for more information. 3863.It Va entropy_dir 3864.Pq Vt str 3865Set to 3866.Dq Li NO 3867to disable caching entropy via 3868.Xr cron 8 . 3869Otherwise set to the directory used to store entropy files in. 3870.It Va entropy_file 3871.Pq Vt str 3872Set to 3873.Dq Li NO 3874to disable caching entropy through reboots. 3875Otherwise set to the filename used to store cached entropy through 3876reboots. 3877This file should be located on the root file system to seed the 3878.Xr random 4 3879device as early as possible in the boot process. 3880.It Va entropy_save_sz 3881.Pq Vt int 3882Size of the entropy cache files saved by 3883.Nm save-entropy 3884periodically. 3885.It Va entropy_save_num 3886.Pq Vt int 3887Number of entropy cache files to save by 3888.Nm save-entropy 3889periodically. 3890.It Va ipsec_enable 3891.Pq Vt bool 3892Set to 3893.Dq Li YES 3894to run 3895.Xr setkey 8 3896on 3897.Va ipsec_file 3898at boot time. 3899.It Va ipsec_file 3900.Pq Vt str 3901Configuration file for 3902.Xr setkey 8 . 3903.It Va dmesg_enable 3904.Pq Vt bool 3905Set to 3906.Dq Li YES 3907to save 3908.Xr dmesg 8 3909to 3910.Pa /var/run/dmesg.boot 3911on boot. 3912.It Va rcshutdown_timeout 3913.Pq Vt int 3914If set, start a watchdog timer in the background which will terminate 3915.Pa rc.shutdown 3916if 3917.Xr shutdown 8 3918has not completed within the specified time (in seconds). 3919Notice that in addition to this soft timeout, 3920.Xr init 8 3921also applies a hard timeout for the execution of 3922.Pa rc.shutdown . 3923This is configured via 3924.Xr sysctl 8 3925variable 3926.Va kern.init_shutdown_timeout 3927and defaults to 120 seconds. 3928Setting the value of 3929.Va rcshutdown_timeout 3930to more than 120 seconds will have no effect until the 3931.Xr sysctl 8 3932variable 3933.Va kern.init_shutdown_timeout 3934is also increased. 3935.It Va virecover_enable 3936.Pq Vt bool 3937Set to 3938.Dq Li NO 3939to prevent the system from trying to 3940recover pre-maturely terminated 3941.Xr vi 1 3942sessions. 3943.It Va ugidfw_enable 3944.Pq Vt bool 3945Set to 3946.Dq Li YES 3947to load the 3948.Xr mac_bsdextended 4 3949module upon system initialization and load a default 3950ruleset file. 3951.It Va bsdextended_script 3952.Pq Vt str 3953The default 3954.Xr mac_bsdextended 4 3955ruleset file to load. 3956The default value of this variable is 3957.Pa /etc/rc.bsdextended . 3958.It Va newsyslog_enable 3959.Pq Vt bool 3960If set to 3961.Dq Li YES , 3962run 3963.Xr newsyslog 8 3964command at startup. 3965.It Va newsyslog_flags 3966.Pq Vt str 3967If 3968.Va newsyslog_enable 3969is set to 3970.Dq Li YES , 3971these are the flags to pass to the 3972.Xr newsyslog 8 3973program. 3974The default is 3975.Dq Li -CN , 3976which causes log files flagged with a 3977.Cm C 3978to be created. 3979.It Va mdconfig_md Ns Aq Ar X 3980.Pq Vt str 3981Arguments to 3982.Xr mdconfig 8 3983for 3984.Xr md 4 3985device 3986.Ar X . 3987At minimum a 3988.Fl t Ar type 3989must be specified and either a 3990.Fl s Ar size 3991for malloc or swap backed 3992.Xr md 4 3993devices or a 3994.Fl f Ar file 3995for vnode backed 3996.Xr md 4 3997devices. 3998Note that 3999.Va mdconfig_md Ns Aq Ar X 4000variables are evaluated until one variable is unset or null. 4001.It Va mdconfig_md Ns Ao Ar X Ac Ns Va _newfs 4002.Pq Vt str 4003Optional arguments passed to 4004.Xr newfs 8 4005to initialize 4006.Xr md 4 4007device 4008.Ar X . 4009.It Va mdconfig_md Ns Ao Ar X Ac Ns Va _owner 4010.Pq Vt str 4011An ownership specification passed to 4012.Xr chown 8 4013after the specified 4014.Xr md 4 4015device 4016.Ar X 4017has been mounted. 4018Both the 4019.Xr md 4 4020device and the mount point will be changed. 4021.It Va mdconfig_md Ns Ao Ar X Ac Ns Va _perms 4022.Pq Vt str 4023A mode string passed to 4024.Xr chmod 1 4025after the specified 4026.Xr md 4 4027device 4028.Ar X 4029has been mounted. 4030Both the 4031.Xr md 4 4032device and the mount point will be changed. 4033.It Va mdconfig_md Ns Ao Ar X Ac Ns Va _files 4034.Pq Vt str 4035Files to be copied to the mount point of the 4036.Xr md 4 4037device 4038.Ar X 4039after it has been mounted. 4040.It Va mdconfig_md Ns Ao Ar X Ac Ns Va _cmd 4041.Pq Vt str 4042Command to execute after the specified 4043.Xr md 4 4044device 4045.Ar X 4046has been mounted. 4047Note that the command is passed to 4048.Ic eval 4049and that both 4050.Va _dev 4051and 4052.Va _mp 4053variables can be used to reference respectively the 4054.Xr md 4 4055device and the mount point. 4056Assuming that the 4057.Xr md 4 4058device is 4059.Li md0 , 4060one could set the following: 4061.Bd -literal 4062mdconfig_md0_cmd="tar xfzC /var/file.tgz \e${_mp}" 4063.Ed 4064.It Va ramdisk_units 4065.Pq Vt str 4066A list of one or more ramdisk units to configure with 4067.Xr mdconfig 8 4068and 4069.Xr newfs 8 4070in time to be mounted from 4071.Xr fstab 5 . 4072Each listed unit 4073.Ar X 4074must specify at least a 4075.Ar type 4076in a 4077.Va ramdisk_ Ns Ao Ar X Ac Ns Va _config 4078variable. 4079Note that this way to configure ramdisks has been deprecated 4080in favor of new 4081.Va mdconfig_md* 4082variables (see above). 4083.It Va ramdisk_ Ns Ao Ar X Ac Ns Va _config 4084.Pq Vt str 4085Arguments to 4086.Xr mdconfig 8 4087for ramdisk 4088.Ar X . 4089At minimum a 4090.Fl t Ar type 4091must be specified, where 4092.Ar type 4093must be one of 4094.Cm malloc 4095or 4096.Cm swap . 4097.It Va ramdisk_ Ns Ao Ar X Ac Ns Va _newfs 4098.Pq Vt str 4099Optional arguments passed to 4100.Xr newfs 8 4101to initialize ramdisk 4102.Ar X . 4103.It Va ramdisk_ Ns Ao Ar X Ac Ns Va _owner 4104.Pq Vt str 4105An ownership specification passed to 4106.Xr chown 8 4107after the specified ramdisk unit 4108.Ar X 4109has been mounted. 4110Both the 4111.Xr md 4 4112device and the mount point will be changed. 4113.It Va ramdisk_ Ns Ao Ar X Ac Ns Va _perms 4114.Pq Vt str 4115A mode string passed to 4116.Xr chmod 1 4117after the specified ramdisk unit 4118.Ar X 4119has been mounted. 4120Both the 4121.Xr md 4 4122device and the mount point will be changed. 4123.It Va autobridge_interfaces 4124.Pq Vt str 4125Set to the list of bridge interfaces that will have newly arriving interfaces 4126checked against to be automatically added. 4127If not set to 4128.Dq Li NO 4129then for each whitespace separated 4130.Ar element 4131in the value, a 4132.Va autobridge_ Ns Aq Ar element 4133variable is assumed to exist which has a whitespace separated list of interface 4134names to match, these names can use wildcards. 4135For example: 4136.Bd -literal 4137autobridge_interfaces="bridge0" 4138autobridge_bridge0="tap* dc0 vlan[345]" 4139.Ed 4140.It Va mixer_enable 4141.Pq Vt bool 4142If set to 4143.Dq Li YES , 4144enable support for sound mixer. 4145.It Va hcsecd_enable 4146.Pq Vt bool 4147If set to 4148.Dq Li YES , 4149enable Bluetooth security daemon. 4150.It Va hcsecd_config 4151.Pq Vt str 4152Configuration file for 4153.Xr hcsecd 8 . 4154Default 4155.Pa /etc/bluetooth/hcsecd.conf . 4156.It Va sdpd_enable 4157.Pq Vt bool 4158If set to 4159.Dq Li YES , 4160enable Bluetooth Service Discovery Protocol daemon. 4161.It Va sdpd_control 4162.Pq Vt str 4163Path to 4164.Xr sdpd 8 4165control socket. 4166Default 4167.Pa /var/run/sdp . 4168.It Va sdpd_groupname 4169.Pq Vt str 4170Sets 4171.Xr sdpd 8 4172group to run as after it initializes. 4173Default 4174.Dq Li nobody . 4175.It Va sdpd_username 4176.Pq Vt str 4177Sets 4178.Xr sdpd 8 4179user to run as after it initializes. 4180Default 4181.Dq Li nobody . 4182.It Va bthidd_enable 4183.Pq Vt bool 4184If set to 4185.Dq Li YES , 4186enable Bluetooth Human Interface Device daemon. 4187.It Va bthidd_config 4188.Pq Vt str 4189Configuration file for 4190.Xr bthidd 8 . 4191Default 4192.Pa /etc/bluetooth/bthidd.conf . 4193.It Va bthidd_hids 4194.Pq Vt str 4195Path to a file, where 4196.Xr bthidd 8 4197will store information about known HID devices. 4198Default 4199.Pa /var/db/bthidd.hids . 4200.It Va rfcomm_pppd_server_enable 4201.Pq Vt bool 4202If set to 4203.Dq Li YES , 4204enable Bluetooth RFCOMM PPP wrapper daemon. 4205.It Va rfcomm_pppd_server_profile 4206.Pq Vt str 4207The name of the profile to use from 4208.Pa /etc/ppp/ppp.conf . 4209Multiple profiles can be specified here. 4210Also used to specify per-profile overrides. 4211When the profile name contains any of the characters 4212.Dq Li .-/+ 4213they are translated to 4214.Dq Li _ 4215for the proposes of the override variable names. 4216.It Va rfcomm_pppd_server_ Ns Ao Ar profile Ac Ns _bdaddr 4217.Pq Vt str 4218Overrides local address to listen on. 4219By default 4220.Xr rfcomm_pppd 8 4221will listen on 4222.Dq Li ANY 4223address. 4224The address can be specified as BD_ADDR or name. 4225.It Va rfcomm_pppd_server_ Ns Ao Ar profile Ac Ns _channel 4226.Pq Vt str 4227Overrides local RFCOMM channel to listen on. 4228By default 4229.Xr rfcomm_pppd 8 4230will listen on RFCOMM channel 1. 4231Must set properly if multiple profiles used in the same time. 4232.It Va rfcomm_pppd_server_ Ns Ao Ar profile Ac Ns _register_sp 4233.Pq Vt bool 4234Tells 4235.Xr rfcomm_pppd 8 4236if it should register Serial Port service on the speficied RFCOMM channel. 4237Default 4238.Dq Li NO . 4239.It Va rfcomm_pppd_server_ Ns Ao Ar profile Ac Ns _register_dun 4240.Pq Vt bool 4241Tells 4242.Xr rfcomm_pppd 8 4243if it should register Dial-Up Networking service on the speficied 4244RFCOMM channel. 4245Default 4246.Dq Li NO . 4247.El 4248.Sh FILES 4249.Bl -tag -width ".Pa /etc/defaults/rc.conf" -compact 4250.It Pa /etc/defaults/rc.conf 4251.It Pa /etc/rc.conf 4252.It Pa /etc/rc.conf.local 4253.El 4254.Sh SEE ALSO 4255.Xr catman 1 , 4256.Xr chmod 1 , 4257.Xr gdb 1 , 4258.Xr info 1 , 4259.Xr kbdcontrol 1 , 4260.Xr makewhatis 1 , 4261.Xr sh 1 , 4262.Xr vi 1 , 4263.Xr vidcontrol 1 , 4264.Xr bridge 4 , 4265.Xr dummynet 4 , 4266.Xr ip 4 , 4267.Xr ipf 4 , 4268.Xr ipfw 4 , 4269.Xr ipnat 4 , 4270.Xr kld 4 , 4271.Xr pf 4 , 4272.Xr pflog 4 , 4273.Xr pfsync 4 , 4274.Xr tcp 4 , 4275.Xr udp 4 , 4276.Xr exports 5 , 4277.Xr fstab 5 , 4278.Xr ipf 5 , 4279.Xr ipnat 5 , 4280.Xr motd 5 , 4281.Xr newsyslog.conf 5 , 4282.Xr pf.conf 5 , 4283.Xr security 7 , 4284.Xr accton 8 , 4285.Xr amd 8 , 4286.Xr apm 8 , 4287.Xr atm 8 , 4288.Xr bthidd 8 , 4289.Xr chkprintcap 8 , 4290.Xr chown 8 , 4291.Xr cron 8 , 4292.Xr dhclient 8 , 4293.Xr ftpd 8 , 4294.Xr geli 8 , 4295.Xr hcsecd 8 , 4296.Xr ifconfig 8 , 4297.Xr inetd 8 , 4298.Xr ipf 8 , 4299.Xr ipfw 8 , 4300.Xr ipnat 8 , 4301.Xr jail 8 , 4302.Xr kldxref 8 , 4303.Xr lpd 8 , 4304.Xr mdconfig 8 , 4305.Xr mdmfs 8 , 4306.Xr mixer 8 , 4307.Xr mountd 8 , 4308.Xr moused 8 , 4309.Xr mrouted 8 , 4310.Xr named 8 , 4311.Xr newfs 8 , 4312.Xr newsyslog 8 , 4313.Xr nfsd 8 , 4314.Xr ntpd 8 , 4315.Xr ntpdate 8 , 4316.Xr pfctl 8 , 4317.Xr pflogd 8 , 4318.Xr powerd 8 , 4319.Xr quotacheck 8 , 4320.Xr quotaon 8 , 4321.Xr rc 8 , 4322.Xr rc.sendmail 8 , 4323.Xr rfcomm_pppd 8 , 4324.Xr route 8 , 4325.Xr routed 8 , 4326.Xr rpcbind 8 , 4327.Xr rpc.lockd 8 , 4328.Xr rpc.statd 8 , 4329.Xr rwhod 8 , 4330.Xr savecore 8 , 4331.Xr sdpd 8 , 4332.Xr sshd 8 , 4333.Xr swapon 8 , 4334.Xr sysctl 8 , 4335.Xr syslogd 8 , 4336.Xr timed 8 , 4337.Xr wlandebug 8 , 4338.Xr yp 8 , 4339.Xr ypbind 8 , 4340.Xr ypserv 8 , 4341.Xr ypset 8 4342.Sh HISTORY 4343The 4344.Nm 4345file appeared in 4346.Fx 2.2.2 . 4347.Sh AUTHORS 4348.An Jordan K. Hubbard . 4349