1.\" Copyright (c) 1995 2.\" Jordan K. Hubbard 3.\" 4.\" Redistribution and use in source and binary forms, with or without 5.\" modification, are permitted provided that the following conditions 6.\" are met: 7.\" 1. Redistributions of source code must retain the above copyright 8.\" notice, this list of conditions and the following disclaimer. 9.\" 2. Redistributions in binary form must reproduce the above copyright 10.\" notice, this list of conditions and the following disclaimer in the 11.\" documentation and/or other materials provided with the distribution. 12.\" 13.\" THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND 14.\" ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 15.\" IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 16.\" ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR BE LIABLE 17.\" FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 18.\" DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 19.\" OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 20.\" HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 21.\" LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 22.\" OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 23.\" SUCH DAMAGE. 24.\" 25.\" $FreeBSD$ 26.\" 27.Dd March 3, 2002 28.Dt RC.CONF 5 29.Os 30.Sh NAME 31.Nm rc.conf 32.Nd system configuration information 33.Sh DESCRIPTION 34The file 35.Nm 36contains descriptive information about the local host name, configuration 37details for any potential network interfaces and which services should be 38started up at system initial boot time. 39In new installations, the 40.Nm 41file is generally initialized by the system installation utility, 42.Xr sysinstall 8 . 43.Pp 44The purpose of 45.Nm 46is not to run commands or perform system startup actions 47directly. 48Instead, it is included by the 49various generic startup scripts in 50.Pa /etc 51which conditionalize their 52internal actions according to the settings found there. 53.Pp 54The 55.Pa /etc/rc.conf 56file is included from the file 57.Pa /etc/defaults/rc.conf , 58which specifies the default settings for all the available options. 59Options need only be specified in 60.Pa /etc/rc.conf 61when the system administrator wishes to override these defaults. 62The file 63.Pa /etc/rc.conf.local 64is used to override settings in 65.Pa /etc/rc.conf 66for historical reasons. 67See the 68.Va rc_conf_files 69variable below. 70.Pp 71The following list provides a name and short description for each 72variable that can be set in the 73.Nm 74file: 75.Bl -tag -width indent-two 76.It Va rc_debug 77.Pq Vt bool 78If set to 79.Dq Li YES , 80enable output of debug messages from rc scripts. 81This variable can be helpful in diagnosing mistakes when 82editing or integrating new scripts. 83Beware that this produces copious output to the terminal and 84.Xr syslog 3 . 85.It Va rc_info 86.Pq Vt bool 87If set to 88.Dq Li NO , 89disable informational messages from the rc scripts. 90Informational messages are displayed when 91a condition that is not serious enough to warrant a warning or 92an error occurs. 93.It Va swapfile 94.Pq Vt str 95If set to 96.Dq Li NO , 97no swapfile is installed, otherwise the value is used as the full 98pathname to a file to use for additional swap space. 99.It Va apm_enable 100.Pq Vt bool 101If set to 102.Dq Li YES , 103enable support for Automatic Power Management with 104the 105.Xr apm 8 106command. 107.It Va apmd_enable 108.Pq Vt bool 109Run 110.Xr apmd 8 111to handle APM event from userland. 112This also enables support for APM. 113.It Va apmd_flags 114.Pq Vt str 115If 116.Va apmd_enable 117is set to 118.Dq Li YES , 119these are the flags to pass to the 120.Xr apmd 8 121daemon. 122.It Va devd_enable 123.Pq Vt bool 124Run 125.Xr devd 8 126to handle device added, removed or unknown events from the kernel. 127.It Va kldxref_enable 128.Pq Vt bool 129Set to 130.Dq Li NO 131by default. 132Set to 133.Dq Li YES 134to automatically rebuild 135.Pa linker.hints 136files with 137.Xr kldxref 8 138at boot time. 139.It Va kldxref_clobber 140.Pq Vt bool 141Set to 142.Dq Li NO 143by default. 144If 145.Va kldxref_enable 146is true, 147setting to 148.Dq Li YES 149will overwrite existing 150.Pa linker.hints 151files at boot time. 152Otherwise, 153only missing 154.Pa linker.hints 155files are generated. 156.It Va kldxref_module_path 157.Pq Vt str 158Empty by default. 159A semi-colon 160.Pq Ql \&; 161delimited list of paths containing 162.Xr kld 4 163modules. 164If empty, 165the contents of the 166.Va kern.module_path 167.Xr sysctl 8 168are used. 169.It Va pccard_enable 170.Pq Vt bool 171If set to 172.Dq Li YES , 173enable PCCARD support at boot time. 174.It Va pccard_mem 175.Pq Vt str 176Set to PCCARD controller memory address or 177.Dq Li DEFAULT 178for the default value. 179.It Va pccard_ifconfig 180.Pq Vt str 181List of arguments to be passed to 182.Xr ifconfig 8 183at boot time or on 184insertion of the card (e.g.\& 185.Dq Cm inet Li 192.168.1.1 Cm netmask Li 255.255.255.0 186for a fixed address or 187.Dq Li DHCP 188for a DHCP client). 189.It Va pccard_beep 190.Pq Vt int 191If 0, 192set the PCCARD controller to silent mode. 193If 1, 194set it to beep mode. 195If 2, 196set it to melody mode. 197.It Va pccard_conf 198.Pq Vt str 199Path to the configuration file for the 200.Xr pccardd 8 201daemon (e.g.\& 202.Pa /etc/pccard.conf.sample ) . 203.It Va pccardd_flags 204.Pq Vt str 205If 206.Va pccard_enable 207is set to 208.Dq Li YES , 209these are the flags to pass to the 210.Xr pccardd 8 211daemon. 212.It Va pccard_ether_delay 213.Pq Vt str 214Set the delay before starting 215.Xr dhclient 8 216in the 217.Pa /etc/pccard_ether 218script. 219This defaults to 5 seconds to work around a bug in the 220.Xr ed 4 221driver which can lead to system hangs when using some newer 222.Xr ed 4 223based cards. 224.It Va removable_interfaces 225.Pq Vt str 226List of removable network interfaces to be supported by 227.Pa /etc/pccard_ether . 228.It Va local_startup 229.Pq Vt str 230List of directories to search for startup script files. 231.It Va script_name_sep 232.Pq Vt str 233The field separator to use for breaking down the list of startup script files 234into individual filenames. 235The default is a space. 236It is not necessary to change this unless there are startup scripts with names 237containing spaces. 238.It Va hostname 239.Pq Vt str 240The fully qualified domain name (FQDN) of this host on the network. 241This should almost certainly be set to something meaningful, even if 242there is no network connection. 243If 244.Xr dhclient 8 245is used to set the hostname via DHCP, 246this variable should be set to an empty string. 247.It Va ipv6_enable 248.Pq Vt bool 249Enable support for IPv6 networking. 250Note that this requires that the kernel have been compiled with 251.Cd "options INET6" . 252.It Va nisdomainname 253.Pq Vt str 254The NIS domain name of this host, or 255.Dq Li NO 256if NIS is not used. 257.It Va dhclient_program 258.Pq Vt str 259Path to the DHCP client program 260.Pa ( /sbin/dhclient , 261the ISC DHCP client, 262is the default). 263.It Va dhclient_flags 264.Pq Vt str 265Additional flags to pass to the DHCP client program. 266For the ISC DHCP client, see the 267.Xr dhclient 8 268manpage for a description of the command line options available. 269.It Va background_dhclient 270.Pq Vt bool 271Set to 272.Dq Li YES 273to start the dhcp client in background. 274This can cause trouble with applications depending on 275a working network, but it will provide a faster startup 276in many cases. 277.It Va firewall_enable 278.Pq Vt bool 279Set to 280.Dq Li YES 281to load firewall rules at startup. 282If the kernel was not built with 283.Cd "options IPFIREWALL" , 284the 285.Pa ipfw.ko 286kernel module will be loaded. 287See also 288.Va ipfilter_enable . 289.It Va ipv6_firewall_enable 290.Pq Vt bool 291The IPv6 equivalent of 292.Va firewall_enable . 293Set to 294.Dq Li YES 295to load IPv6 firewall rules at startup. 296If the kernel was not built with 297.Cd "options IPV6FIREWALL" , 298the 299.Pa ip6fw.ko 300kernel module will be loaded. 301.It Va firewall_script 302.Pq Vt str 303This variable specifies the full path to the firewall script to run. 304The default is 305.Pa /etc/rc.firewall . 306.It Va ipv6_firewall_script 307.Pq Vt str 308The IPv6 equivalent of 309.Va firewall_script . 310.It Va firewall_type 311.Pq Vt str 312Names the firewall type from the selection in 313.Pa /etc/rc.firewall , 314or the file which contains the local firewall ruleset. 315Valid selections from 316.Pa /etc/rc.firewall 317are: 318.Pp 319.Bl -tag -width ".Li simple" -compact 320.It Li open 321unrestricted IP access 322.It Li closed 323all IP services disabled, except via 324.Dq Li lo0 325.It Li client 326basic protection for a workstation 327.It Li simple 328basic protection for a LAN. 329.El 330.Pp 331If a filename is specified, the full path 332must be given. 333.It Va ipv6_firewall_type 334.Pq Vt str 335The IPv6 equivalent of 336.Va firewall_type . 337.It Va firewall_quiet 338.Pq Vt bool 339Set to 340.Dq Li YES 341to disable the display of firewall rules on the console during boot. 342.It Va ipv6_firewall_quiet 343.Pq Vt bool 344The IPv6 equivalent of 345.Va firewall_quiet . 346.It Va firewall_logging 347.Pq Vt bool 348Set to 349.Dq Li YES 350to enable firewall event logging. 351This is equivalent to the 352.Dv IPFIREWALL_VERBOSE 353kernel option. 354.It Va ipv6_firewall_logging 355.Pq Vt bool 356The IPv6 equivalent of 357.Va firewall_logging . 358.It Va firewall_flags 359.Pq Vt str 360Flags passed to 361.Xr ipfw 8 362if 363.Va firewall_type 364specifies a filename. 365.It Va ipv6_firewall_flags 366.Pq Vt str 367The IPv6 equivalent of 368.Va firewall_flags . 369.It Va natd_program 370.Pq Vt str 371Path to 372.Xr natd 8 . 373.It Va natd_enable 374.Pq Vt bool 375Set to 376.Dq Li YES 377to enable 378.Xr natd 8 . 379.Va firewall_enable 380must also be set to 381.Dq Li YES , 382and 383.Xr divert 4 384sockets must be enabled in the kernel. 385.It Va natd_interface 386.Pq Vt str 387This is the name of the public interface on which 388.Xr natd 8 389should run. 390The interface may be given as an interface name or as an IP address. 391.It Va natd_flags 392.Pq Vt str 393Additional 394.Xr natd 8 395flags should be placed here. 396The 397.Fl n 398or 399.Fl a 400flag is automatically added with the above 401.Va natd_interface 402as an argument. 403.\" ----- ipfilter_enable setting -------------------------------- 404.It Va ipfilter_enable 405.Pq Vt bool 406Set to 407.Dq Li NO 408by default. 409Setting this to 410.Dq Li YES 411enables 412.Xr ipf 8 413packet filtering. 414.Pp 415Typical usage will require putting 416.Bd -literal 417ipfilter_enable="YES" 418ipnat_enable="YES" 419ipmon_enable="YES" 420ipfs_enable="YES" 421.Ed 422.Pp 423into 424.Pa /etc/rc.conf 425and editing 426.Pa /etc/ipf.rules 427and 428.Pa /etc/ipnat.rules 429appropriately. 430.Pp 431Note that 432.Va ipfilter_enable 433and 434.Va ipnat_enable 435can be enabled independently. 436.Va ipmon_enable 437and 438.Va ipfs_enable 439both require at least one of 440.Va ipfilter_enable 441and 442.Va ipnat_enable 443to be enabled. 444.Pp 445Having 446.Bd -literal 447options IPFILTER 448options IPFILTER_LOG 449options IPFILTER_DEFAULT_BLOCK 450.Ed 451.Pp 452in the kernel configuration file is a good idea, too. 453.\" ----- ipfilter_program setting ------------------------------ 454.It Va ipfilter_program 455.Pq Vt str 456Path to 457.Xr ipf 8 458(default 459.Pa /sbin/ipf ) . 460.\" ----- ipfilter_rules setting -------------------------------- 461.It Va ipfilter_rules 462.Pq Vt str 463Set to 464.Pa /etc/ipf.rules 465by default. 466This variable contains the name of the filter rule definition file. 467The file is expected to be readable for the 468.Xr ipf 8 469command to execute. 470.\" ----- ipv6_ipfilter_rules setting --------------------------- 471.It Va ipv6_ipfilter_rules 472.Pq Vt str 473Set to 474.Pa /etc/ipf6.rules 475by default. 476This variable contains the IPv6 filter rule definition file. 477The file is expected to be readable for the 478.Xr ipf 8 479command to execute. 480.\" ----- ipfilter_flags setting -------------------------------- 481.It Va ipfilter_flags 482.Pq Vt str 483Empty by default. 484This variable contains flags passed to the 485.Xr ipf 8 486program. 487.\" ----- ipnat_enable setting ---------------------------------- 488.It Va ipnat_enable 489.Pq Vt bool 490Set to 491.Dq Li NO 492by default. 493Set it to 494.Dq Li YES 495to enable 496.Xr ipnat 1 497network address translation. 498See 499.Va ipfilter_enable 500for a detailed discussion. 501.\" ----- ipnat_program setting --------------------------------- 502.It Va ipnat_program 503.Pq Vt str 504Path to 505.Xr ipnat 1 506(default 507.Pa /sbin/ipnat ) . 508.\" ----- ipnat_rules setting ----------------------------------- 509.It Va ipnat_rules 510.Pq Vt str 511Set to 512.Pa /etc/ipnat.rules 513by default. 514This variable contains the name of the file 515holding the network address translation definition. 516This file is expected to be readable for the 517.Xr ipnat 1 518command to execute. 519.\" ----- ipnat_flags setting ----------------------------------- 520.It Va ipnat_flags 521.Pq Vt str 522Empty by default. 523This variable contains flags passed to the 524.Xr ipnat 1 525program. 526.\" ----- ipmon_enable setting ---------------------------------- 527.It Va ipmon_enable 528.Pq Vt bool 529Set to 530.Dq Li NO 531by default. 532Set it to 533.Dq Li YES 534to enable 535.Xr ipmon 8 536monitoring (logging 537.Xr ipf 8 538and 539.Xr ipnat 1 540events). 541Setting this variable needs setting 542.Va ipfilter_enable 543or 544.Va ipnat_enable 545too. 546See 547.Va ipfilter_enable 548for a detailed discussion. 549.\" ----- ipmon_program setting --------------------------------- 550.It Va ipmon_program 551.Pq Vt str 552Path to 553.Xr ipmon 8 554(default 555.Pa /sbin/ipmon ) . 556.\" ----- ipmon_flags setting ----------------------------------- 557.It Va ipmon_flags 558.Pq Vt str 559Set to 560.Dq Li -Ds 561by default. 562This variable contains flags passed to the 563.Xr ipmon 8 564program. 565Another typical example would be 566.Dq Fl D Pa /var/log/ipflog 567to have 568.Xr ipmon 8 569log directly to a file bypassing 570.Xr syslogd 8 . 571Make sure to adjust 572.Pa /etc/newsyslog.conf 573in such case like this: 574.Bd -literal 575/var/log/ipflog 640 10 100 * Z /var/run/ipmon.pid 576.Ed 577.\" ----- ipfs_enable setting ----------------------------------- 578.It Va ipfs_enable 579.Pq Vt bool 580Set to 581.Dq Li NO 582by default. 583Set it to 584.Dq Li YES 585to enable 586.Xr ipfs 8 587saving the filter and NAT state tables during shutdown 588and reloading them during startup again. 589Setting this variable needs setting 590.Va ipfilter_enable 591or 592.Va ipnat_enable 593to 594.Dq Li YES 595too. 596See 597.Va ipfilter_enable 598for a detailed discussion. 599Note that if 600.Va kern_securelevel 601is set to 3, 602.Va ipfs_enable 603cannot be used 604because the raised securelevel will prevent 605.Xr ipfs 8 606from saving the state tables at shutdown time. 607.\" ----- ipfs_program setting ---------------------------------- 608.It Va ipfs_program 609.Pq Vt str 610Path to 611.Xr ipfs 8 612(default 613.Pa /sbin/ipfs ) . 614.\" ----- ipfs_flags setting ------------------------------------ 615.It Va ipfs_flags 616.Pq Vt str 617Empty by default. 618This variable contains flags passed to the 619.Xr ipfs 8 620program. 621.\" ----- end of added ipf hook --------------------------------- 622.It Va tcp_extensions 623.Pq Vt bool 624Set to 625.Dq Li YES 626by default. 627Setting this to 628.Dq Li NO 629disables certain TCP options as described by 630.Rs 631.%T "RFC 1323" 632.Re 633Setting this to 634.Dq Li NO 635might help remedy such problems with connections as randomly hanging 636or other weird behavior. 637Some network devices are known 638to be broken with respect to these options. 639.It Va log_in_vain 640.Pq Vt int 641Set to 0 by default. 642The 643.Xr sysctl 8 644variables, 645.Va net.inet.tcp.log_in_vain 646and 647.Va net.inet.udp.log_in_vain , 648as described in 649.Xr tcp 4 650and 651.Xr udp 4 , 652are set to the given value. 653.It Va tcp_keepalive 654.Pq Vt bool 655Set to 656.Dq Li YES 657by default. 658Setting to 659.Dq Li NO 660will disable probing idle TCP connections to verify that the 661peer is still up and reachable. 662.It Va tcp_drop_synfin 663.Pq Vt bool 664Set to 665.Dq Li NO 666by default. 667Setting to 668.Dq Li YES 669will cause the kernel to ignore TCP frames that have both 670the SYN and FIN flags set. 671This prevents OS fingerprinting, but may 672break some legitimate applications. 673This option is only available if the 674kernel was built with the 675.Dv TCP_DROP_SYNFIN 676option. 677.It Va icmp_drop_redirect 678.Pq Vt bool 679Set to 680.Dq Li NO 681by default. 682Setting to 683.Dq Li YES 684will cause the kernel to ignore ICMP REDIRECT packets. 685Refer to 686.Xr icmp 4 687for more information. 688.It Va icmp_log_redirect 689.Pq Vt bool 690Set to 691.Dq Li NO 692by default. 693Setting to 694.Dq Li YES 695will cause the kernel to log ICMP REDIRECT packets. 696Note that 697the log messages are not rate-limited, so this option should only be used 698for troubleshooting networks. 699Refer to 700.Xr icmp 4 701for more information. 702.It Va icmp_bmcastecho 703.Pq Vt bool 704Set to 705.Dq Li YES 706to respond to broadcast or multicast ICMP ping packets. 707Refer to 708.Xr icmp 4 709for more information. 710.It Va ip_portrange_first 711.Pq Vt int 712If not set to 713.Dq Li NO , 714this is the first port in the default portrange. 715Refer to 716.Xr ip 4 717for more information. 718.It Va ip_portrange_last 719.Pq Vt int 720If not set to 721.Dq Li NO , 722this is the last port in the default portrange. 723Refer to 724.Xr ip 4 725for more information. 726.It Va network_interfaces 727.Pq Vt str 728Set to the list of network interfaces to configure on this host. 729For example, if the only network devices in the system are the loopback 730device 731.Pq Li lo0 732and a NIC using the 733.Xr ed 4 734driver, 735this could be set to 736.Dq Li "lo0 ed0" . 737An 738.Va ifconfig_ Ns Aq Ar interface 739variable is also assumed to exist for each value of 740.Ar interface . 741It is also possible to add IP alias entries here in cases where 742multiple IP addresses registered against a single interface 743are desired. 744Assuming that the interface in question was 745.Li ed0 , 746it might look 747something like this: 748.Bd -literal 749ifconfig_ed0_alias0="inet 127.0.0.253 netmask 0xffffffff" 750ifconfig_ed0_alias1="inet 127.0.0.254 netmask 0xffffffff" 751.Ed 752.Pp 753And so on. 754For each 755.Va ifconfig_ Ns Ao Ar interface Ac Ns Va _alias Ns Aq Ar n 756entry that is found, 757its contents are passed to 758.Xr ifconfig 8 . 759Execution stops at the first unsuccessful access, so if 760something like this is present: 761.Bd -literal 762ifconfig_ed0_alias0="inet 127.0.0.251 netmask 0xffffffff" 763ifconfig_ed0_alias1="inet 127.0.0.252 netmask 0xffffffff" 764ifconfig_ed0_alias2="inet 127.0.0.253 netmask 0xffffffff" 765ifconfig_ed0_alias4="inet 127.0.0.254 netmask 0xffffffff" 766.Ed 767.Pp 768Then note that alias4 would 769.Em not 770be added since the search would 771stop with the missing alias3 entry. 772.Pp 773If the 774.Pa /etc/start_if. Ns Aq Ar interface 775file is present, it is read and executed by the 776.Xr sh 1 777interpreter 778before configuring the interface as specified in the 779.Va ifconfig_ Ns Aq Ar interface 780and 781.Va ifconfig_ Ns Ao Ar interface Ac Ns Va _alias Ns Aq Ar n 782variables. 783.Pp 784It is possible to bring up an interface with DHCP by setting the 785.Va ifconfig_ Ns Aq Ar interface 786variable to 787.Dq Li DHCP . 788For instance, to initialize the 789.Li ed0 790device via DHCP, 791it is possible to use something like: 792.Bd -literal 793ifconfig_ed0="DHCP" 794.Ed 795.It Va ipv6_network_interfaces 796.Pq Vt str 797This is the IPv6 equivalent of 798.Va network_interfaces . 799Instead of setting the ifconfig variables as 800.Va ifconfig_ Ns Aq Ar interface 801they should be set as 802.Va ipv6_ifconfig_ Ns Aq Ar interface . 803Aliases should be set as 804.Va ipv6_ifconfig_ Ns Ao Ar interface Ac Ns Va _alias Ns Aq Ar n . 805.Va ipv6_prefix_ Ns Aq Ar interface 806does something. 807Interfaces that do not have a 808.Va ipv6_ifconfig_ Ns Aq Ar interface 809setting will be auto configured by 810.Xr rtsol 8 811if the 812.Va ipv6_gateway_enable 813is set to 814.Dq Li NO . 815Note that the IPv6 networking code does not support the 816.Pa /etc/start_if. Ns Aq Ar interface 817files. 818.It Va ipv6_default_interface 819.Pq Vt str 820If not set to 821.Dq Li NO , 822this is the default output interface for scoped addresses. 823Now this works only for IPv6 link local multicast addresses. 824.It Va cloned_interfaces 825.Pq Vt str 826Set to the list of clonable network interfaces to create on this host. 827Entries in 828.Va cloned_interfaces 829are automatically appended to 830.Va network_interfaces 831for configuration. 832.It Va gif_interfaces 833.Pq Vt str 834Set to the list of 835.Xr gif 4 836tunnel interfaces to configure on this host. 837A 838.Va gifconfig_ Ns Aq Ar interface 839variable is assumed to exist for each value of 840.Ar interface . 841The value of this variable is used to configure the link layer of the 842tunnel according to the syntax of the 843.Cm tunnel 844option to 845.Xr ifconfig 8 . 846Additionally, this option ensures that each listed interface is created 847via the 848.Cm create 849option to 850.Xr ifconfig 8 851before attempting to configure it. 852.It Va sppp_interfaces 853.Pq Vt str 854Set to the list of 855.Xr sppp 4 856interfaces to configure on this host. 857A 858.Va spppconfig_ Ns Aq Ar interface 859variable is assumed to exist for each value of 860.Ar interface . 861Each interface should also be configured by a general 862.Va ifconfig_ Ns Aq Ar interface 863setting. 864Refer to 865.Xr spppcontrol 8 866for more information about available options. 867.It Va ppp_enable 868.Pq Vt bool 869If set to 870.Dq Li YES , 871run the 872.Xr ppp 8 873daemon. 874.It Va ppp_mode 875.Pq Vt str 876Mode in which to run the 877.Xr ppp 8 878daemon. 879Accepted modes are 880.Dq Li auto , 881.Dq Li ddial , 882.Dq Li direct 883and 884.Dq Li dedicated . 885See the manual for a full description. 886.It Va ppp_nat 887.Pq Vt bool 888If set to 889.Dq Li YES , 890enables network address translation. 891Used in conjunction with 892.Va gateway_enable 893allows hosts on private network addresses access to the Internet using 894this host as a network address translating router. 895.It Va ppp_profile 896.Pq Vt str 897The name of the profile to use from 898.Pa /etc/ppp/ppp.conf . 899.It Va ppp_user 900.Pq Vt str 901The name of the user under which 902.Xr ppp 8 903should be started. 904By 905default, 906.Xr ppp 8 907is started as 908.Dq Li root . 909.It Va rc_conf_files 910.Pq Vt str 911This option is used to specify a list of files that will override 912the settings in 913.Pa /etc/defaults/rc.conf . 914The files will be read in the order in which they are specified and should 915include the full path to the file. 916By default, the files specified are 917.Pa /etc/rc.conf 918and 919.Pa /etc/rc.conf.local 920.It Va gbde_autoattach_all 921.Pq Vt bool 922If set to 923.Dq Li YES , 924.Pa /etc/rc.d/gbde 925will attempt to automatically initialize your .bde devices in 926.Pa /etc/fstab . 927.It Va gbde_devices 928.Pq Vt str 929List the devices that the script should try to attach, 930or 931.Dq Li AUTO . 932.It Va fsck_y_enable 933.Pq Vt bool 934If set to 935.Dq Li YES , 936.Xr fsck 8 937will be run with the 938.Fl y 939flag if the initial preen 940of the file systems fails. 941.It Va background_fsck 942.Pq Vt bool 943If set to 944.Dq Li YES , 945the system will attempt to run 946.Xr fsck 8 947in the background where possible. 948.It Va background_fsck_delay 949.Pq Vt int 950The amount of time in seconds to sleep before starting a background 951.Xr fsck 8 . 952It defaults to sixty seconds to allow large applications such as 953the X server to start before disk I/O bandwidth is monopolized by 954.Xr fsck 8 . 955.It Va netfs_types 956.Pq Vt str 957List of file system types that are network-based. 958This list should generally not be modified by end users. 959Use 960.Va extra_netfs_types 961instead. 962.It Va extra_netfs_types 963.Pq Vt str 964If set to something other than 965.Dq Li NO 966(the default), 967this variable extends the list of file system types 968for which automatic mounting at startup by 969.Xr rc 8 970should be delayed until the network is initialized. 971It should contain 972a whitespace-separated list of network file system descriptor pairs, 973each consisting of a file system type as passed to 974.Xr mount 8 975and a human-readable, one-word description, 976joined with a colon 977.Pq Ql \&: . 978Extending the default list in this way is only necessary 979when third party file system types are used. 980.It Va syslogd_enable 981.Pq Vt bool 982If set to 983.Dq Li YES , 984run the 985.Xr syslogd 8 986daemon. 987.It Va syslogd_program 988.Pq Vt str 989Path to 990.Xr syslogd 8 991(default 992.Pa /usr/sbin/syslogd ) . 993.It Va syslogd_flags 994.Pq Vt str 995If 996.Va syslogd_enable 997is set to 998.Dq Li YES , 999these are the flags to pass to 1000.Xr syslogd 8 . 1001.It Va inetd_enable 1002.Pq Vt bool 1003If set to 1004.Dq Li YES , 1005run the 1006.Xr inetd 8 1007daemon. 1008.It Va inetd_program 1009.Pq Vt str 1010Path to 1011.Xr inetd 8 1012(default 1013.Pa /usr/sbin/inetd ) . 1014.It Va inetd_flags 1015.Pq Vt str 1016If 1017.Va inetd_enable 1018is set to 1019.Dq Li YES , 1020these are the flags to pass to 1021.Xr inetd 8 . 1022.It Va named_rcng 1023.Pq Vt bool 1024If set to 1025.Dq Li YES 1026use new functionality provided in the 1027.Pa /etc/rc.d/named 1028script to facilitate a 1029.Xr chroot 8 1030instance of 1031.Xr named 8 . 1032This variable is experimental. 1033It may be removed or changed in the near future. 1034.It Va named_enable 1035.Pq Vt bool 1036If set to 1037.Dq Li YES , 1038run the 1039.Xr named 8 1040daemon. 1041.It Va named_program 1042.Pq Vt str 1043Path to 1044.Xr named 8 1045(default 1046.Pa /usr/sbin/named ) . 1047.It Va named_flags 1048.Pq Vt str 1049If 1050.Va named_enable 1051is set to 1052.Dq Li YES , 1053these are the flags to pass to 1054.Xr named 8 . 1055.It Va named_pidfile 1056.Pq Vt str 1057This is the default path to the 1058.Xr named 8 1059daemon's PID file. 1060Change it if you change the location in 1061.Xr named.conf 5 . 1062.It Va named_chrootdir 1063.Pq Vt str 1064The root directory for a name server run in a 1065.Xr chroot 8 1066environment. 1067If left empty 1068.Xr named 8 1069will not be run in a 1070.Xr chroot 8 1071environment. 1072This variable has no effect if 1073.Va named_rcng 1074is not enabled. 1075This variable is experimental. 1076It may be removed or changed in the near future. 1077.It Va named_chroot_autoupdate 1078.Pq Vt bool 1079Set to 1080.Dq Li NO 1081to disable automatic syncing of libraries and 1082other system files between the root file system and the 1083.Xr chroot 8 . 1084This variable has no effect if 1085.Va named_rcng 1086is not enabled. 1087This variable is experimental. 1088It may be removed or changed in the near future. 1089.It Va named_symlink_enable 1090.Pq Vt bool 1091Set to 1092.Dq Li NO 1093to disable symlinking of 1094.Va named_pidfile 1095and 1096.Pa /var/run/ndc 1097into the 1098.Xr chroot 8 1099environment in which 1100.Xr named 8 1101is running. 1102This variable has no effect if 1103.Va named_rcng 1104is not enabled. 1105This variable is experimental. 1106It may be removed or changed in the near future. 1107.It Va kerberos5_server_enable 1108.Pq Vt bool 1109Set to 1110.Dq Li YES 1111to start a Kerberos 5 authentication server 1112at boot time. 1113.It Va kerberos5_server 1114.Pq Vt str 1115If 1116.Va kerberos5_server_enable 1117is set to 1118.Dq Li YES 1119this is the path to Kerberos 5 Authentication Server. 1120.It Va kadmind5_server_enable 1121.Pq Vt bool 1122Set to 1123.Dq Li YES 1124to start 1125.Xr kadmind 8 , 1126the Kerberos 5 Administration Daemon; set to 1127.Dq Li NO 1128on a slave server. 1129.It Va kadmind5_server 1130.Pq Vt str 1131If 1132.Va kadmind5_server_enable 1133is set to 1134.Dq Li YES 1135this is the path to Kerberos 5 Administration Daemon. 1136.It Va kpasswdd_server_enable 1137.Pq Vt bool 1138Set to 1139.Dq Li YES 1140to start 1141.Xr kpasswdd 8 , 1142the Kerberos 5 Password-Changing Daemon; set to 1143.Dq Li NO 1144on a slave server. 1145.It Va kpasswdd_server 1146.Pq Vt str 1147If 1148.Va kpasswdd_server_enable 1149is set to 1150.Dq Li YES 1151this is the path to Kerberos 5 Password-Changing Daemon. 1152.It Va rwhod_enable 1153.Pq Vt bool 1154If set to 1155.Dq Li YES , 1156run the 1157.Xr rwhod 8 1158daemon at boot time. 1159.It Va rwhod_flags 1160.Pq Vt str 1161If 1162.Va rwhod_enable 1163is set to 1164.Dq Li YES , 1165these are the flags to pass to it. 1166.It Va amd_enable 1167.Pq Vt bool 1168If set to 1169.Dq Li YES , 1170run the 1171.Xr amd 8 1172daemon at boot time. 1173.It Va amd_flags 1174.Pq Vt str 1175If 1176.Va amd_enable 1177is set to 1178.Dq Li YES , 1179these are the flags to pass to it. 1180See the 1181.Xr amd 8 1182manpage for more information. 1183.It Va amd_map_program 1184.Pq Vt str 1185If set, 1186the specified program is run to get the list of 1187.Xr amd 8 1188maps. 1189For example, if the 1190.Xr amd 8 1191maps are stored in NIS, one can set this to 1192run 1193.Xr ypcat 1 1194to get a list of 1195.Xr amd 8 1196maps from the 1197.Pa amd.master 1198NIS map. 1199.It Va update_motd 1200.Pq Vt bool 1201If set to 1202.Dq Li YES , 1203.Pa /etc/motd 1204will be updated at boot time to reflect the kernel release 1205being run. 1206If set to 1207.Dq Li NO , 1208.Pa /etc/motd 1209will not be updated. 1210.It Va nfs_client_enable 1211.Pq Vt bool 1212If set to 1213.Dq Li YES , 1214run the NFS client daemons at boot time. 1215.It Va nfs_access_cache 1216.Pq Vt int 1217If 1218.Va nfs_client_enable 1219is set to 1220.Dq Li YES , 1221this can be set to 1222.Dq Li 0 1223to disable NFS ACCESS RPC caching, or to the number of seconds for which 1224NFS ACCESS 1225results should be cached. 1226A value of 2-10 seconds will substantially reduce network 1227traffic for many NFS operations. 1228.It Va nfs_server_enable 1229.Pq Vt bool 1230If set to 1231.Dq Li YES , 1232run the NFS server daemons at boot time. 1233.It Va nfs_server_flags 1234.Pq Vt str 1235If 1236.Va nfs_server_enable 1237is set to 1238.Dq Li YES , 1239these are the flags to pass to the 1240.Xr nfsd 8 1241daemon. 1242.It Va mountd_enable 1243.Pq Vt bool 1244If set to 1245.Dq Li YES , 1246and no 1247.Va nfs_server_enable 1248is set, start 1249.Xr mountd 8 , 1250but not 1251.Xr nfsd 8 1252daemon. 1253It is commonly needed to run CFS without real NFS used. 1254.It Va mountd_flags 1255.Pq Vt str 1256If 1257.Va mountd_enable 1258is set to 1259.Dq Li YES , 1260these are the flags to pass to the 1261.Xr mountd 8 1262daemon. 1263.It Va weak_mountd_authentication 1264.Pq Vt bool 1265If set to 1266.Dq Li YES , 1267allow services like PCNFSD to make non-privileged mount 1268requests. 1269.It Va nfs_reserved_port_only 1270.Pq Vt bool 1271If set to 1272.Dq Li YES , 1273provide NFS services only on a secure port. 1274.It Va nfs_bufpackets 1275.Pq Vt int 1276If set to a number, indicates the number of packets worth of 1277socket buffer space to reserve on an NFS client. 1278The kernel default is typically 4. 1279Using a higher number may be 1280useful on gigabit networks to improve performance. 1281The minimum value is 12822 and the maximum is 64. 1283.It Va rpc_lockd_enable 1284.Pq Vt bool 1285If set to 1286.Dq Li YES 1287and also an NFS server, run 1288.Xr rpc.lockd 8 1289at boot time. 1290.It Va rpc_statd_enable 1291.Pq Vt bool 1292If set to 1293.Dq Li YES 1294and also an NFS server, run 1295.Xr rpc.statd 8 1296at boot time. 1297.It Va rpcbind_program 1298.Pq Vt str 1299Path to 1300.Xr rpcbind 8 1301(default 1302.Pa /usr/sbin/rpcbind ) . 1303.It Va rpcbind_enable 1304.Pq Vt bool 1305If set to 1306.Dq Li YES , 1307run the 1308.Xr rpcbind 8 1309service at boot time. 1310.It Va rpcbind_flags 1311.Pq Vt str 1312If 1313.Va rpcbind_enable 1314is set to 1315.Dq Li YES , 1316these are the flags to pass to the 1317.Xr rpcbind 8 1318daemon. 1319.It Va keyserv_enable 1320.Pq Vt bool 1321If set to 1322.Dq Li YES , 1323run the 1324.Xr keyserv 8 1325daemon on boot for running Secure RPC. 1326.It Va keyserv_flags 1327.Pq Vt str 1328If 1329.Va keyserv_enable 1330is set to 1331.Dq Li YES , 1332these are the flags to pass to 1333.Xr keyserv 8 1334daemon. 1335.It Va pppoed_enable 1336.Pq Vt bool 1337If set to 1338.Dq Li YES , 1339run the 1340.Xr pppoed 8 1341daemon at boot time to provide PPP over Ethernet services. 1342.It Va pppoed_ Ns Ar provider 1343.Pq Vt str 1344.Xr pppoed 8 1345listens to requests to this 1346.Ar provider 1347and ultimately runs 1348.Xr ppp 8 1349with a 1350.Ar system 1351argument of the same name. 1352.It Va pppoed_flags 1353.Pq Vt str 1354Additional flags to pass to 1355.Xr pppoed 8 . 1356.It Va pppoed_interface 1357.Pq Vt str 1358The network interface to run 1359.Xr pppoed 8 1360on. 1361This is mandatory when 1362.Va pppoed_enable 1363is set to 1364.Dq Li YES . 1365.It Va timed_enable 1366.Pq Vt bool 1367If set to 1368.Dq Li YES , 1369run the 1370.Xr timed 8 1371service at boot time. 1372This command is intended for networks of 1373machines where a consistent 1374.Dq "network time" 1375for all hosts must be established. 1376This is often useful in large NFS 1377environments where time stamps on files are expected to be consistent 1378network-wide. 1379.It Va timed_flags 1380.Pq Vt str 1381If 1382.Va timed_enable 1383is set to 1384.Dq Li YES , 1385these are the flags to pass to the 1386.Xr timed 8 1387service. 1388.It Va ntpdate_enable 1389.Pq Vt bool 1390If set to 1391.Dq Li YES , 1392run 1393.Xr ntpdate 8 1394at system startup. 1395This command is intended to 1396synchronize the system clock only 1397.Em once 1398from some standard reference. 1399An option to set this up initially 1400(from a list of known servers) is also provided by the 1401.Xr sysinstall 8 1402program when the system is first installed. 1403.It Va ntpdate_program 1404.Pq Vt str 1405Path to 1406.Xr ntpdate 8 1407(default 1408.Pa /usr/sbin/ntpdate ) . 1409.It Va ntpdate_flags 1410.Pq Vt str 1411If 1412.Va ntpdate_enable 1413is set to 1414.Dq Li YES , 1415these are the flags to pass to the 1416.Xr ntpdate 8 1417command (typically a hostname). 1418.It Va ntpd_enable 1419.Pq Vt bool 1420If set to 1421.Dq Li YES , 1422run the 1423.Xr ntpd 8 1424command at boot time. 1425.It Va ntpd_program 1426.Pq Vt str 1427Path to 1428.Xr ntpd 8 1429(default 1430.Pa /usr/sbin/ntpd ) . 1431.It Va ntpd_flags 1432.Pq Vt str 1433If 1434.Va ntpd_enable 1435is set to 1436.Dq Li YES , 1437these are the flags to pass to the 1438.Xr ntpd 8 1439daemon. 1440.It Va nis_client_enable 1441.Pq Vt bool 1442If set to 1443.Dq Li YES , 1444run the 1445.Xr ypbind 8 1446service at system boot time. 1447.It Va nis_client_flags 1448.Pq Vt str 1449If 1450.Va nis_client_enable 1451is set to 1452.Dq Li YES , 1453these are the flags to pass to the 1454.Xr ypbind 8 1455service. 1456.It Va nis_ypset_enable 1457.Pq Vt bool 1458If set to 1459.Dq Li YES , 1460run the 1461.Xr ypset 8 1462daemon at system boot time. 1463.It Va nis_ypset_flags 1464.Pq Vt str 1465If 1466.Va nis_ypset_enable 1467is set to 1468.Dq Li YES , 1469these are the flags to pass to the 1470.Xr ypset 8 1471daemon. 1472.It Va nis_server_enable 1473.Pq Vt bool 1474If set to 1475.Dq Li YES , 1476run the 1477.Xr ypserv 8 1478daemon at system boot time. 1479.It Va nis_server_flags 1480.Pq Vt str 1481If 1482.Va nis_server_enable 1483is set to 1484.Dq Li YES , 1485these are the flags to pass to the 1486.Xr ypserv 8 1487daemon. 1488.It Va nis_ypxfrd_enable 1489.Pq Vt bool 1490If set to 1491.Dq Li YES , 1492run the 1493.Xr rpc.ypxfrd 8 1494daemon at system boot time. 1495.It Va nis_ypxfrd_flags 1496.Pq Vt str 1497If 1498.Va nis_ypxfrd_enable 1499is set to 1500.Dq Li YES , 1501these are the flags to pass to the 1502.Xr rpc.ypxfrd 8 1503daemon. 1504.It Va nis_yppasswdd_enable 1505.Pq Vt bool 1506If set to 1507.Dq Li YES , 1508run the 1509.Xr rpc.yppasswdd 8 1510daemon at system boot time. 1511.It Va nis_yppasswdd_flags 1512.Pq Vt str 1513If 1514.Va nis_yppasswdd_enable 1515is set to 1516.Dq Li YES , 1517these are the flags to pass to the 1518.Xr rpc.yppasswdd 8 1519daemon. 1520.It Va rpc_ypupdated_enable 1521.Pq Vt bool 1522If set to 1523.Dq Li YES , 1524run the 1525.Nm rpc.ypupdated 1526daemon at system boot time. 1527.It Va defaultrouter 1528.Pq Vt str 1529If not set to 1530.Dq Li NO , 1531create a default route to this host name or IP address 1532(use an IP address if this router is also required to get to the 1533name server!). 1534.It Va ipv6_defaultrouter 1535.Pq Vt str 1536The IPv6 equivalent of 1537.Va defaultrouter . 1538.It Va static_routes 1539.Pq Vt str 1540Set to the list of static routes that are to be added at system 1541boot time. 1542If not set to 1543.Dq Li NO 1544then for each whitespace separated 1545.Ar element 1546in the value, a 1547.Va route_ Ns Aq Ar element 1548variable is assumed to exist 1549whose contents will later be passed to a 1550.Dq Nm route Cm add 1551operation. 1552.It Va ipv6_static_routes 1553.Pq Vt str 1554The IPv6 equivalent of 1555.Va static_routes . 1556If not set to 1557.Dq Li NO 1558then for each whitespace separated 1559.Ar element 1560in the value, a 1561.Va ipv6_route_ Ns Aq Ar element 1562variable is assumed to exist 1563whose contents will later be passed to a 1564.Dq Nm route Cm add Fl inet6 1565operation. 1566.It Va natm_static_routes 1567.Pq Vt str 1568The 1569.Xr natmip 4 1570equivalent of 1571.Va static_routes . 1572If not empty then for each whitespace separated 1573.Ar element 1574in the value, a 1575.Va route_ Ns Aq Ar element 1576variable is assumed to exist whose contents will later be passed to a 1577.Dq Nm atmconfig Cm natm Cm add 1578operation. 1579.It Va gateway_enable 1580.Pq Vt bool 1581If set to 1582.Dq Li YES , 1583configure host to act as an IP router, e.g. to forward packets 1584between interfaces. 1585.It Va ipv6_gateway_enable 1586.Pq Vt bool 1587The IPv6 equivalent of 1588.Va gateway_enable . 1589.It Va router_enable 1590.Pq Vt bool 1591If set to 1592.Dq Li YES , 1593run a routing daemon of some sort, based on the 1594settings of 1595.Va router 1596and 1597.Va router_flags . 1598.It Va ipv6_router_enable 1599.Pq Vt bool 1600The IPv6 equivalent of 1601.Va router_enable . 1602If set to 1603.Dq Li YES , 1604run a routing daemon of some sort, based on the 1605settings of 1606.Va ipv6_router 1607and 1608.Va ipv6_router_flags . 1609.It Va router 1610.Pq Vt str 1611If 1612.Va router_enable 1613is set to 1614.Dq Li YES , 1615this is the name of the routing daemon to use. 1616.It Va ipv6_router 1617.Pq Vt str 1618The IPv6 equivalent of 1619.Va router . 1620.It Va router_flags 1621.Pq Vt str 1622If 1623.Va router_enable 1624is set to 1625.Dq Li YES , 1626these are the flags to pass to the routing daemon. 1627.It Va ipv6_router_flags 1628.Pq Vt str 1629The IPv6 equivalent of 1630.Va router_flags . 1631.It Va mrouted_enable 1632.Pq Vt bool 1633If set to 1634.Dq Li YES , 1635run the multicast routing daemon, 1636.Xr mrouted 8 . 1637.It Va mroute6d_enable 1638.Pq Vt bool 1639The IPv6 equivalent of 1640.Va mrouted_enable . 1641If set to 1642.Dq Li YES , 1643run the IPv6 multicast routing daemon. 1644Note that no IPv6 multicast routing daemon is included in the 1645.Fx 1646base system but 1647.Xr pim6dd 8 1648can be installed from the 1649.Fx 1650Ports Collection. 1651.It Va mrouted_flags 1652.Pq Vt str 1653If 1654.Va mrouted_enable 1655is set to 1656.Dq Li YES , 1657these are the flags to pass to the 1658.Xr mrouted 8 1659daemon. 1660.It Va mroute6d_flags 1661.Pq Vt str 1662The IPv6 equivalent of 1663.Va mrouted_flags . 1664If 1665.Va mroute6d_enable 1666is set to 1667.Dq Li YES , 1668these are the flags passed to the IPv6 multicast routing daemon. 1669.It Va mroute6d_program 1670.Pq Vt str 1671If 1672.Va mroute6d_enable 1673is set to 1674.Dq Li YES , 1675this is the path to the IPv6 multicast routing daemon. 1676.It Va rtadvd_enable 1677.Pq Vt bool 1678If set to 1679.Dq Li YES , 1680run the 1681.Xr rtadvd 8 1682daemon at boot time. 1683.Xr rtadvd 8 1684will only run if 1685.Va ipv6_gateway_enable 1686is also set to 1687.Dq Li YES . 1688The 1689.Xr rtadvd 8 1690utility sends router advertisement packets to the interfaces specified in 1691.Va rtadvd_interfaces 1692and should only be enabled with great care. 1693You may want to fine-tune 1694.Xr rtadvd.conf 5 . 1695.It Va rtadvd_interfaces 1696.Pq Vt str 1697If 1698.Va rtadvd_enable 1699is set to 1700.Dq Li YES 1701this is the list of interfaces to use. 1702.It Va ipxgateway_enable 1703.Pq Vt bool 1704If set to 1705.Dq Li YES , 1706enable the routing of IPX traffic. 1707.It Va ipxrouted_enable 1708.Pq Vt bool 1709If set to 1710.Dq Li YES , 1711run the 1712.Xr IPXrouted 8 1713daemon at system boot time. 1714.It Va ipxrouted_flags 1715.Pq Vt str 1716If 1717.Va ipxrouted_enable 1718is set to 1719.Dq Li YES , 1720these are the flags to pass to the 1721.Xr IPXrouted 8 1722daemon. 1723.It Va arpproxy_all 1724.Pq Vt bool 1725If set to 1726.Dq Li YES , 1727enable global proxy ARP. 1728.It Va forward_sourceroute 1729.Pq Vt bool 1730If set to 1731.Dq Li YES 1732and 1733.Va gateway_enable 1734is also set to 1735.Dq Li YES , 1736source-routed packets are forwarded. 1737.It Va accept_sourceroute 1738.Pq Vt bool 1739If set to 1740.Dq Li YES , 1741the system will accept source-routed packets directed at it. 1742.It Va rarpd_enable 1743.Pq Vt bool 1744If set to 1745.Dq Li YES , 1746run the 1747.Xr rarpd 8 1748daemon at system boot time. 1749.It Va rarpd_flags 1750.Pq Vt str 1751If 1752.Va rarpd_enable 1753is set to 1754.Dq Li YES , 1755these are the flags to pass to the 1756.Xr rarpd 8 1757daemon. 1758.It Va bootparamd_enable 1759.Pq Vt bool 1760If set to 1761.Dq Li YES , 1762run the 1763.Xr bootparamd 8 1764daemon at system boot time. 1765.It Va bootparamd_flags 1766.Pq Vt str 1767If 1768.Va bootparamd_enable 1769is set to 1770.Dq Li YES , 1771these are the flags to pass to the 1772.Xr bootparamd 8 1773daemon. 1774.It Va stf_interface_ipv4addr 1775.Pq Vt str 1776If not set to 1777.Dq Li NO , 1778this is the local IPv4 address for 6to4 (IPv6 over IPv4 tunneling 1779interface). 1780Specify this entry to enable the 6to4 interface. 1781.It Va stf_interface_ipv4plen 1782.Pq Vt int 1783Prefix length for 6to4 IPv4 addresses, to limit peer address range. 1784An effective value is 0-31. 1785.It Va stf_interface_ipv6_ifid 1786.Pq Vt str 1787IPv6 interface ID for 1788.Xr stf 4 . 1789This can be set to 1790.Dq Li AUTO . 1791.It Va stf_interface_ipv6_slaid 1792.Pq Vt str 1793IPv6 Site Level Aggregator for 1794.Xr stf 4 . 1795.It Va ipv6_faith_prefix 1796.Pq Vt str 1797If not set to 1798.Dq Li NO , 1799this is the faith prefix to enable a FAITH IPv6-to-IPv4 TCP 1800translator. 1801You also need 1802.Xr faithd 8 1803setup. 1804.It Va ipv6_ipv4mapping 1805.Pq Vt bool 1806If set to 1807.Dq Li YES 1808this enables IPv4 mapped IPv6 address communication (like 1809.Li ::ffff:a.b.c.d ) . 1810.It Va atm_enable 1811.Pq Vt bool 1812Set to 1813.Dq Li YES 1814to enable the configuration of ATM interfaces at system boot time. 1815For all of the ATM variables described below, please refer to the 1816.Xr atm 8 1817man page for further details on the available command parameters. 1818Also refer to the files in 1819.Pa /usr/share/examples/atm 1820for more detailed configuration information. 1821.It Va atm_load 1822.Pq Vt str 1823This is a list of physical ATM interface drivers to load. Typical values are 1824.Dq Li hfa_pci 1825and/or 1826.Dq Li hea_pci . 1827.It Va atm_netif_ Ns Aq Ar intf 1828.Pq Vt str 1829For the ATM physical interface 1830.Ar intf , 1831this variable defines the name prefix and count for the ATM network 1832interfaces to be created. 1833The value will be passed as the parameters of an 1834.Dq Nm atm Cm "set netif" Ar intf 1835command. 1836.It Va atm_sigmgr_ Ns Aq Ar intf 1837.Pq Vt str 1838For the ATM physical interface 1839.Ar intf , 1840this variable defines the ATM signalling manager to be used. 1841The value will be passed as the parameters of an 1842.Dq Nm atm Cm attach Ar intf 1843command. 1844.It Va atm_prefix_ Ns Aq Ar intf 1845.Pq Vt str 1846For the ATM physical interface 1847.Ar intf , 1848this variable defines the NSAP prefix for interfaces using a UNI signalling 1849manager. 1850If set to 1851.Dq Li ILMI , 1852the prefix will automatically be set via the 1853.Xr ilmid 8 1854daemon. 1855Otherwise, the value will be passed as the parameters of an 1856.Dq Nm atm Cm "set prefix" Ar intf 1857command. 1858.It Va atm_macaddr_ Ns Aq Ar intf 1859.Pq Vt str 1860For the ATM physical interface 1861.Ar intf , 1862this variable defines the MAC address for interfaces using a UNI signalling 1863manager. 1864If set to 1865.Dq Li NO , 1866the hardware MAC address contained in the ATM interface card will be used. 1867Otherwise, the value will be passed as the parameters of an 1868.Dq Nm atm Cm "set mac" Ar intf 1869command. 1870.It Va atm_arpserver_ Ns Aq Ar netif 1871.Pq Vt str 1872For the ATM network interface 1873.Ar netif , 1874this variable defines the ATM address for a host which is to provide ATMARP 1875service. 1876This variable is only applicable to interfaces using a UNI signalling 1877manager. 1878If set to 1879.Dq Li local , 1880this host will become an ATMARP server. 1881The value will be passed as the parameters of an 1882.Dq Nm atm Cm "set arpserver" Ar netif 1883command. 1884.It Va atm_scsparp_ Ns Aq Ar netif 1885.Pq Vt bool 1886If set to 1887.Dq Li YES , 1888SCSP/ATMARP service for the network interface 1889.Ar netif 1890will be initiated using the 1891.Xr scspd 8 1892and 1893.Xr atmarpd 8 1894daemons. 1895This variable is only applicable if 1896.Va atm_arpserver_ Ns Aq Ar netif 1897is set to 1898.Dq Li local . 1899.It Va atm_pvcs 1900.Pq Vt str 1901Set to the list of ATM PVCs to be added at system 1902boot time. 1903For each whitespace separated 1904.Ar element 1905in the value, an 1906.Va atm_pvc_ Ns Aq Ar element 1907variable is assumed to exist. 1908The value of each of these variables 1909will be passed as the parameters of an 1910.Dq Nm atm Cm "add pvc" 1911command. 1912.It Va atm_arps 1913.Pq Vt str 1914Set to the list of permanent ATM ARP entries to be added 1915at system boot time. 1916For each whitespace separated 1917.Ar element 1918in the value, an 1919.Va atm_arp_ Ns Aq Ar element 1920variable is assumed to exist. 1921The value of each of these variables 1922will be passed as the parameters of an 1923.Dq Nm atm Cm "add arp" 1924command. 1925.It Va natm_interfaces 1926.Pq Vt str 1927Set to the list of 1928.Xr natm 4 1929interfaces that will also be used for HARP through 1930.Xr harp 4 . 1931If this list is not empty all interfaces in the list will be brought up 1932with 1933.Xr ifconfig 8 1934and 1935.Xr harp 4 1936will be loaded. 1937For this to work the interface drivers must be either compiled into the 1938kernel or must reside on the root partition. 1939.It Va keybell 1940.Pq Vt str 1941The keyboard bell sound. 1942Set to 1943.Dq Li normal , 1944.Dq Li visual , 1945.Dq Li off , 1946or 1947.Dq Li NO 1948if the default behavior is desired. 1949For details, refer to the 1950.Xr kbdcontrol 1 1951manpage. 1952.It Va keymap 1953.Pq Vt str 1954If set to 1955.Dq Li NO , 1956no keymap is installed, otherwise the value is used to install 1957the keymap file in 1958.Pa /usr/share/syscons/keymaps/ Ns Ao Ar value Ac Ns Pa .kbd . 1959.It Va keyrate 1960.Pq Vt str 1961The keyboard repeat speed. 1962Set to 1963.Dq Li slow , 1964.Dq Li normal , 1965.Dq Li fast , 1966or 1967.Dq Li NO 1968if the default behavior is desired. 1969.It Va keychange 1970.Pq Vt str 1971If not set to 1972.Dq Li NO , 1973attempt to program the function keys with the value. 1974The value should 1975be a single string of the form: 1976.Dq Ar funkey_number new_value Op Ar funkey_number new_value ... . 1977.It Va cursor 1978.Pq Vt str 1979Can be set to the value of 1980.Dq Li normal , 1981.Dq Li blink , 1982.Dq Li destructive , 1983or 1984.Dq Li NO 1985to set the cursor behavior explicitly or choose the default behavior. 1986.It Va scrnmap 1987.Pq Vt str 1988If set to 1989.Dq Li NO , 1990no screen map is installed, otherwise the value is used to install 1991the screen map file in 1992.Pa /usr/share/syscons/scrnmaps/ Ns Aq Ar value . 1993.It Va font8x16 1994.Pq Vt str 1995If set to 1996.Dq Li NO , 1997the default 8x16 font value is used for screen size requests, otherwise 1998the value in 1999.Pa /usr/share/syscons/fonts/ Ns Aq Ar value 2000is used. 2001.It Va font8x14 2002.Pq Vt str 2003If set to 2004.Dq Li NO , 2005the default 8x14 font value is used for screen size requests, otherwise 2006the value in 2007.Pa /usr/share/syscons/fonts/ Ns Aq Ar value 2008is used. 2009.It Va font8x8 2010.Pq Vt str 2011If set to 2012.Dq Li NO , 2013the default 8x8 font value is used for screen size requests, otherwise 2014the value in 2015.Pa /usr/share/syscons/fonts/ Ns Aq Ar value 2016is used. 2017.It Va blanktime 2018.Pq Vt int 2019If set to 2020.Dq Li NO , 2021the default screen blanking interval is used, otherwise it is set 2022to 2023.Ar value 2024seconds. 2025.It Va saver 2026.Pq Vt str 2027If not set to 2028.Dq Li NO , 2029this is the actual screen saver to use 2030.Li ( blank , snake , daemon , 2031etc). 2032.It Va moused_enable 2033.Pq Vt str 2034If set to 2035.Dq Li YES , 2036the 2037.Xr moused 8 2038daemon is started for doing cut/paste selection on the console. 2039.It Va moused_type 2040.Pq Vt str 2041This is the protocol type of the mouse connected to this host. 2042This variable must be set if 2043.Va moused_enable 2044is set to 2045.Dq Li YES . 2046The 2047.Xr moused 8 2048daemon 2049is able to detect the appropriate mouse type automatically in many cases. 2050Set this variable to 2051.Dq Li auto 2052to let the daemon detect it, or 2053select one from the following list if the automatic detection fails. 2054.Pp 2055If the mouse is attached to the PS/2 mouse port, choose 2056.Dq Li auto 2057or 2058.Dq Li ps/2 , 2059regardless of the brand and model of the mouse. 2060Likewise, if the 2061mouse is attached to the bus mouse port, choose 2062.Dq Li auto 2063or 2064.Dq Li busmouse . 2065All other protocols are for serial mice and will not work with 2066the PS/2 and bus mice. 2067If this is a USB mouse, 2068.Dq Li auto 2069is the only protocol type which will work. 2070.Pp 2071.Bl -tag -width ".Li x10mouseremote" -compact 2072.It Li microsoft 2073Microsoft mouse (serial) 2074.It Li intellimouse 2075Microsoft IntelliMouse (serial) 2076.It Li mousesystems 2077Mouse systems Corp. mouse (serial) 2078.It Li mmseries 2079MM Series mouse (serial) 2080.It Li logitech 2081Logitech mouse (serial) 2082.It Li busmouse 2083A bus mouse 2084.It Li mouseman 2085Logitech MouseMan and TrackMan (serial) 2086.It Li glidepoint 2087ALPS GlidePoint (serial) 2088.It Li thinkingmouse 2089Kensington ThinkingMouse (serial) 2090.It Li ps/2 2091PS/2 mouse 2092.It Li mmhittab 2093MM HitTablet (serial) 2094.It Li x10mouseremote 2095X10 MouseRemote (serial) 2096.It Li versapad 2097Interlink VersaPad (serial) 2098.El 2099.Pp 2100Even if the mouse is not in the above list, it may be compatible 2101with one in the list. 2102Refer to the man page for 2103.Xr moused 8 2104for compatibility information. 2105.Pp 2106It should also be noted that while this is enabled, any 2107other client of the mouse (such as an X server) should access 2108the mouse through the virtual mouse device, 2109.Pa /dev/sysmouse , 2110and configure it as a 2111.Dq Li sysmouse 2112type mouse, since all 2113mouse data is converted to this single canonical format when 2114using 2115.Xr moused 8 . 2116If the client program does not support the 2117.Dq Li sysmouse 2118type, 2119specify the 2120.Dq Li mousesystems 2121type. 2122It is the second preferred type. 2123.It Va moused_port 2124.Pq Vt str 2125If 2126.Va moused_enable 2127is set to 2128.Dq Li YES , 2129this is the actual port the mouse is on. 2130It might be 2131.Pa /dev/cuaa0 2132for a COM1 serial mouse, 2133.Pa /dev/psm0 2134for a PS/2 mouse or 2135.Pa /dev/mse0 2136for a bus mouse, for example. 2137.It Va moused_flags 2138.Pq Vt str 2139If 2140.Va moused_type 2141is set, these are the additional flags to pass to the 2142.Xr moused 8 2143daemon. 2144.It Va mousechar_start 2145.Pq Vt int 2146If set to 2147.Dq Li NO , 2148the default mouse cursor character range 2149.Li 0xd0 Ns - Ns Li 0xd3 2150is used, 2151otherwise the range start is set 2152to 2153.Ar value 2154character, see 2155.Xr vidcontrol 1 . 2156Use if the default range is occupied in the language code table. 2157.It Va allscreens_flags 2158.Pq Vt str 2159If set, 2160.Xr vidcontrol 1 2161is run with these options for each of the virtual terminals 2162.Pq Pa /dev/ttyv* . 2163For example, 2164.Dq Fl m Cm on 2165will enable the mouse pointer on all virtual terminals 2166if 2167.Va moused_enable 2168is set to 2169.Dq Li YES . 2170.It Va allscreens_kbdflags 2171.Pq Vt str 2172If set, 2173.Xr kbdcontrol 1 2174is run with these options for each of the virtual terminals 2175.Pq Pa /dev/ttyv* . 2176For example, 2177.Dq Fl h Li 200 2178will set the 2179.Xr syscons 4 2180scrollback (history) buffer to 200 lines. 2181.It Va cron_enable 2182.Pq Vt bool 2183If set to 2184.Dq Li YES , 2185run the 2186.Xr cron 8 2187daemon at system boot time. 2188.It Va cron_program 2189.Pq Vt str 2190Path to 2191.Xr cron 8 2192(default 2193.Pa /usr/sbin/cron ) . 2194.It Va cron_flags 2195.Pq Vt str 2196If 2197.Va cron_enable 2198is set to 2199.Dq Li YES , 2200these are the flags to pass to 2201.Xr cron 8 . 2202.It Va lpd_program 2203.Pq Vt str 2204Path to 2205.Xr lpd 8 2206(default 2207.Pa /usr/sbin/lpd ) . 2208.It Va lpd_enable 2209.Pq Vt bool 2210If set to 2211.Dq Li YES , 2212run the 2213.Xr lpd 8 2214daemon at system boot time. 2215.It Va lpd_flags 2216.Pq Vt str 2217If 2218.Va lpd_enable 2219is set to 2220.Dq Li YES , 2221these are the flags to pass to the 2222.Xr lpd 8 2223daemon. 2224.It Va mta_start_script 2225.Pq Vt str 2226This variable specifies the full path to the script to run to start 2227a mail transfer agent. 2228The default is 2229.Pa /etc/rc.sendmail . 2230The 2231.Va sendmail_* 2232variables which 2233.Pa /etc/rc.sendmail 2234uses are documented in the 2235.Xr rc.sendmail 8 2236man page. 2237.It Va dumpdev 2238.Pq Vt str 2239Indicates the device (usually a swap partition) to which a crash dump 2240should be written in the event of a system crash. 2241The value of this variable is passed as the argument to 2242.Xr dumpon 8 . 2243To disable crash dumps, set this variable to 2244.Dq Li NO . 2245.It Va dumpdir 2246.Pq Vt str 2247When the system reboots after a crash and a crash dump is found on the 2248device specified by the 2249.Va dumpdev 2250variable, 2251.Xr savecore 8 2252will save that crash dump and a copy of the kernel to the directory 2253specified by the 2254.Va dumpdir 2255variable. 2256The default value is 2257.Pa /var/crash . 2258Set to 2259.Dq Li NO 2260to not run 2261.Xr savecore 8 2262at boot time when 2263.Va dumpdir 2264is set. 2265.It Va savecore_flags 2266.Pq Vt str 2267If crash dumps are enabled, these are the flags to pass to the 2268.Xr savecore 8 2269utility. 2270.It Va enable_quotas 2271.Pq Vt bool 2272Set to 2273.Dq Li YES 2274to turn on user disk quotas on system startup via the 2275.Xr quotaon 8 2276command. 2277.It Va check_quotas 2278.Pq Vt bool 2279Set to 2280.Dq Li YES 2281to enable user disk quota checking via the 2282.Xr quotacheck 8 2283command. 2284.It Va accounting_enable 2285.Pq Vt bool 2286Set to 2287.Dq Li YES 2288to enable system accounting through the 2289.Xr accton 8 2290facility. 2291.It Va ibcs2_enable 2292.Pq Vt bool 2293Set to 2294.Dq Li YES 2295to enable iBCS2 (SCO) binary emulation at system initial boot 2296time. 2297.It Va ibcs2_loaders 2298.Pq Vt str 2299If not set to 2300.Dq Li NO 2301and if 2302.Va ibcs2_enable 2303is set to 2304.Dq Li YES , 2305this specifies a list of additional iBCS2 loaders to enable. 2306.It Va linux_enable 2307.Pq Vt bool 2308Set to 2309.Dq Li YES 2310to enable Linux/ELF binary emulation at system initial 2311boot time. 2312.It Va osf1_enable 2313.Pq Vt bool 2314Set to 2315.Dq Li YES 2316to enable OSF/1 (Digital UNIX) binary emulation at system 2317initial boot time. 2318(alpha) 2319.It Va svr4_enable 2320.Pq Vt bool 2321If set to 2322.Dq Li YES , 2323enable SysVR4 emulation at boot time. 2324.It Va sysvipc_enable 2325.Pq Vt bool 2326If set to 2327.Dq Li YES , 2328load System V IPC primitives at boot time. 2329.It Va clear_tmp_enable 2330.Pq Vt bool 2331Set to 2332.Dq Li YES 2333to have 2334.Pa /tmp 2335cleaned at startup. 2336.It Va ldconfig_paths 2337.Pq Vt str 2338Set to the list of shared library paths to use with 2339.Xr ldconfig 8 . 2340NOTE: 2341.Pa /usr/lib 2342will always be added first, so it need not appear in this list. 2343.It Va ldconfig_paths_aout 2344.Pq Vt str 2345Set to the list of shared library paths to use with 2346.Xr ldconfig 8 2347legacy 2348.Xr a.out 5 2349support. 2350.It Va ldconfig_insecure 2351.Pq Vt bool 2352The 2353.Xr ldconfig 8 2354utility normally refuses to use directories 2355which are writable by anyone except root. 2356Set this variable to 2357.Dq Li YES 2358to disable that security check during system startup. 2359.It Va kern_securelevel_enable 2360.Pq Vt bool 2361Set to 2362.Dq Li YES 2363to set the kernel security level at system startup. 2364.It Va kern_securelevel 2365.Pq Vt int 2366The kernel security level to set at startup. 2367The allowed range of 2368.Ar value 2369ranges from \-1 (the compile time default) to 3 (the 2370most secure). 2371See 2372.Xr init 8 2373for the list of possible security levels and their effect 2374on system operation. 2375.It Va lomac_enable 2376.Pq Vt bool 2377Set to 2378.Dq Li YES 2379to enable Low Watermark Mandatory Access Control (LOMAC) at boot time. 2380This security model enforces integrity constraints for system processes; 2381see 2382.Xr lomac 4 2383for a complete description of the LOMAC model, as well as its impact 2384on system operation. 2385.It Va start_vinum 2386.Pq Vt bool 2387Set to 2388.Dq Li YES 2389to start 2390.Xr vinum 8 2391at system boot time. 2392.It Va sshd_program 2393.Pq Vt str 2394Path to the SSH server program 2395.Pa ( /usr/sbin/sshd 2396is the default). 2397.It Va sshd_enable 2398.Pq Vt bool 2399Set to 2400.Dq Li YES 2401to start 2402.Xr sshd 8 2403at system boot time. 2404.It Va sshd_flags 2405.Pq Vt str 2406If 2407.Va sshd_enable 2408is set to 2409.Dq Li YES , 2410these are the flags to pass to the 2411.Xr sshd 8 2412daemon. 2413.It Va usbd_enable 2414.Pq Vt bool 2415If set to 2416.Dq Li YES , 2417run the 2418.Xr usbd 8 2419daemon at boot time. 2420.It Va usbd_flags 2421.Pq Vt str 2422If 2423.Va usbd_enable 2424is set to 2425.Dq Li YES , 2426these are the flags passed to 2427.Xr usbd 8 2428daemon. 2429.It Va watchdogd_enable 2430.Pq Vt bool 2431If set to 2432.Dq Li YES , 2433start the 2434.Xr watchdogd 8 2435daemon at boot time. 2436This requires that the kernel have been compiled with 2437.Cd "options WATCHDOG" . 2438.It Va jail_enable 2439.Pq Vt bool 2440If set to 2441.Dq Li NO , 2442any configured jails will not be started. 2443.It Va jail_list 2444.Pq Vt str 2445A space separated list of names for jails. 2446This is purely a configuration aid to help identify and 2447configure multiple jails. 2448The names specified in this list will be used to 2449identify settings common to an instance of a jail. 2450Assuming that the jail in question was named 2451.Li vjail , 2452you would have the following dependant variables: 2453.Bd -literal 2454jail_vjail_hostname="jail.example.com" 2455jail_vjail_ip="192.168.1.100" 2456jail_vjail_rootdir="/var/jails/vjail/root" 2457jail_vjail_exec="/bin/sh /etc/rc" 2458.Ed 2459.Pp 2460The last one is optional. 2461It defaults to 2462.Pa /etc/rc 2463if it is not set. 2464.It Va jail_set_hostname_allow 2465.Pq Vt bool 2466If set to 2467.Dq Li NO , 2468do not allow the root user in a jail to set its hostname. 2469.It Va jail_socket_unixiproute_only 2470.Pq Vt bool 2471If set to 2472.Dq Li NO , 2473do not allow any protocol, 2474besides TCP/IP, 2475to be used within a jail. 2476.It Va jail_sysvipc_allow 2477.Pq Vt bool 2478If set to 2479.Dq Li YES , 2480allow applications within a jail to use System V IPC. 2481.It Va unaligned_print 2482.Pq Vt bool 2483If set to 2484.Dq Li NO , 2485unaligned access warnings will not be printed. 2486(alpha) 2487.\" ----- isdn settings --------------------------------- 2488.It Va isdn_enable 2489.Pq Vt bool 2490Set to 2491.Dq Li NO 2492by default. 2493When set to 2494.Dq Li YES , 2495starts the 2496.Xr isdnd 8 2497daemon 2498at system boot time. 2499.It Va isdn_flags 2500.Pq Vt str 2501Set to 2502.Dq Fl d Ns Cm n Fl d Ns Li 0x1f9 2503by default. 2504Additional flags to pass to 2505.Xr isdnd 8 2506(but see 2507.Va isdn_fsdev 2508and 2509.Va isdn_ttype 2510for certain tunable parameters). 2511.It Va isdn_ttype 2512.Pq Vt str 2513Set to 2514.Dq Li cons25 2515by default. 2516The terminal type of the output device when 2517.Xr isdnd 8 2518operates in full-screen mode. 2519.It Va isdn_screenflags 2520.Pq Vt str 2521Set to 2522.Dq Li NO 2523by default. 2524The video mode for full-screen mode (only for 2525.Xr syscons 4 2526console driver, see 2527.Xr vidcontrol 1 2528for valid modes). 2529.It Va isdn_fsdev 2530.Pq Vt str 2531Set to 2532.Dq Li NO 2533by default. 2534The output device for 2535.Xr isdnd 8 2536in full-screen mode (or 2537.Dq Li NO 2538for daemon mode). 2539.It Va isdn_trace 2540.Pq Vt bool 2541Set to 2542.Dq Li NO 2543by default. 2544When set to 2545.Dq Li YES , 2546enables the ISDN protocol trace utility 2547.Xr isdntrace 8 2548at system boot time. 2549.It Va isdn_traceflags 2550.Pq Vt str 2551Set to 2552.Dq Fl f Pa /var/tmp/isdntrace0 2553by default. 2554Flags for 2555.Xr isdntrace 8 . 2556.\" ----------------------------------------------------- 2557.It Va pcvt_verbose 2558.Pq Vt bool 2559Set to 2560.Dq Li NO 2561by default. 2562When set to 2563.Dq Li YES , 2564verbose messages about the actions done by the start script are displayed. 2565.Em Note : 2566the 2567.Xr pcvt 4 2568driver must be compiled into the kernel before the 2569.Xr pcvt 4 2570related 2571options described here take any effect. 2572.It Va pcvt_keymap 2573.Pq Vt str 2574Set to 2575.Dq Li NO 2576by default. 2577Use this to configure a national keyboard mapping found in the 2578.Pa /usr/share/misc/keycap.pcvt 2579file of keyboard mappings. 2580(See also the manual pages 2581.Xr keycap 5 2582and 2583.Xr keycap 3 2584for usage of 2585.Xr pcvt 4 Ns 's 2586keycap database and the manual page 2587.Xr kcon 1 2588option 2589.Fl m 2590for national keyboard mapping configuration.) 2591.It Va pcvt_keydel 2592.Pq Vt int 2593Set to 2594.Dq Li NO 2595by default. 2596Used to set the keyboard key repeat delay value. 2597Valid values are 2598in the range 0..3 for delay values of 250, 500, 750 and 1000 msec. 2599(See also the 2600.Xr kcon 1 2601manual page.) 2602.It Va pcvt_keyrate 2603.Pq Vt int 2604Set to 2605.Dq Li NO 2606by default. 2607Used to set the keyboard key repetition rate value. 2608Valid values are 2609in the range 0..31 for repetition values of 2..30 characters per second. 2610.It Va pcvt_keyrepeat 2611.Pq Vt bool 2612Set to 2613.Dq Li NO 2614by default. 2615Set to 2616.Dq Li YES 2617to enable automatic keyboard key repeating. 2618.It Va pcvt_force24 2619.Pq Vt bool 2620Set to 2621.Dq Li NO 2622by default. 2623Set to 2624.Dq Li YES 2625to force 2626.Xr pcvt 4 2627to use 24 lines only (in 25 lines mode) for compatibility 2628with the original 2629.Tn VT220 2630terminal. 2631.It Va pcvt_hpext 2632.Pq Vt bool 2633Set to 2634.Dq Li NO 2635by default. 2636Set to 2637.Dq Li YES 2638to enable the display and functionality of function key labels (as found 2639on 2640.Tn Hewlett-Packard 2641terminals such as the 2642.Tn HP2392A 2643and the 2644.Tn HP700/92 2645in 2646.Tn ANSI 2647mode). 2648.It Va pcvt_lines 2649.Pq Vt int 2650Set to 2651.Dq Li NO 2652by default resulting in a value of 25. 2653Used to set the number of lines on the screen. 2654For VGA displays, valid 2655values are 25, 28, 40 and 50 lines. 2656(See also the 2657.Xr scon 1 2658manual page.) 2659.It Va pcvt_blanktime 2660.Pq Vt int 2661Set to 2662.Dq Li NO 2663by default. 2664Used to set the screen saver timeout in seconds for values greater than 2665zero. 2666.It Va pcvt_cursorh 2667.Pq Vt int 2668Set to 2669.Dq Li NO 2670by default. 2671Used to set the cursor top scanline. 2672(See also the 2673.Xr cursor 1 2674manual page.) 2675.It Va pcvt_cursorl 2676.Pq Vt int 2677Set to 2678.Dq Li NO 2679by default. 2680Used to set the cursor bottom scanline. 2681.It Va pcvt_monohigh 2682.Pq Vt bool 2683Set to 2684.Dq Li NO 2685by default. 2686Set to 2687.Dq Li YES 2688to set intensity to high on monochrome monitors. 2689(See also the 2690.Xr scon 1 2691manual page, option 2692.Fl p , 2693for more information on changing VGA palette 2694values.) 2695.It Va harvest_interrupt 2696.Pq Vt bool 2697Set to 2698.Dq Li YES 2699to use hardware interrupts as an entropy source. 2700Refer to 2701.Xr random 4 2702for more information. 2703.It Va harvest_ethernet 2704.Pq Vt bool 2705Set to 2706.Dq Li YES 2707to use LAN traffic as an entropy source. 2708Refer to 2709.Xr random 4 2710for more information. 2711.It Va harvest_p_to_p 2712.Pq Vt bool 2713Set to 2714.Dq Li YES 2715to use serial line traffic as an entropy source. 2716Refer to 2717.Xr random 4 2718for more information. 2719.It Va entropy_dir 2720.Pq Vt str 2721Set to 2722.Dq Li NO 2723to disable caching entropy via 2724.Xr cron 8 . 2725Otherwise set to the directory used to store entropy files in. 2726.It Va entropy_file 2727.Pq Vt str 2728Set to 2729.Dq Li NO 2730to disable caching entropy through reboots. 2731Otherwise set to the filename used to store cached entropy through 2732reboots. 2733This file should be located on the root file system to seed the 2734.Xr random 4 2735device as early as possible in the boot process. 2736.It Va entropy_save_sz 2737.Pq Vt int 2738Size of the entropy cache files saved by 2739.Nm save-entropy 2740periodically. 2741.It Va entropy_save_num 2742.Pq Vt int 2743Number of entropy cache files to save by 2744.Nm save-entropy 2745periodically. 2746.It Va ipsec_enable 2747.Pq Vt bool 2748Set to 2749.Dq Li YES 2750to run 2751.Xr setkey 8 2752on 2753.Va ipsec_file 2754at boot time. 2755.It Va ipsec_file 2756.Pq Vt str 2757Configuration file for 2758.Xr setkey 8 . 2759.It Va dmesg_enable 2760.Pq Vt bool 2761Set to 2762.Dq Li YES 2763to save 2764.Xr dmesg 8 2765to 2766.Pa /var/run/dmesg.boot 2767on boot. 2768.It Va rcshutdown_timeout 2769.Pq Vt int 2770If set, start a watchdog timer in the background which will terminate 2771.Pa rc.shutdown 2772if 2773.Xr shutdown 8 2774has not completed within the specified time (in seconds). 2775.El 2776.Sh FILES 2777.Bl -tag -width ".Pa /etc/defaults/rc.conf" -compact 2778.It Pa /etc/defaults/rc.conf 2779.It Pa /etc/rc.conf 2780.It Pa /etc/rc.conf.local 2781.El 2782.Sh SEE ALSO 2783.Xr catman 1 , 2784.Xr gdb 1 , 2785.Xr info 1 , 2786.Xr kbdcontrol 1 , 2787.Xr makewhatis 1 , 2788.Xr vidcontrol 1 , 2789.Xr ip 4 , 2790.Xr kld 4 , 2791.Xr tcp 4 , 2792.Xr udp 4 , 2793.Xr exports 5 , 2794.Xr motd 5 , 2795.Xr accton 8 , 2796.Xr amd 8 , 2797.Xr apm 8 , 2798.Xr atm 8 , 2799.Xr cron 8 , 2800.Xr dhclient 8 , 2801.Xr ifconfig 8 , 2802.Xr inetd 8 , 2803.Xr isdnd 8 , 2804.Xr isdntrace 8 , 2805.Xr kldxref 8 , 2806.Xr lpd 8 , 2807.Xr mdconfig 8 , 2808.Xr mountd 8 , 2809.Xr moused 8 , 2810.Xr mrouted 8 , 2811.Xr named 8 , 2812.Xr nfsd 8 , 2813.Xr ntpd 8 , 2814.Xr ntpdate 8 , 2815.Xr pcnfsd 8 , 2816.Xr quotacheck 8 , 2817.Xr quotaon 8 , 2818.Xr rc 8 , 2819.Xr rc.sendmail 8 , 2820.Xr route 8 , 2821.Xr routed 8 , 2822.Xr rpc.lockd 8 , 2823.Xr rpc.statd 8 , 2824.Xr rpcbind 8 , 2825.Xr rwhod 8 , 2826.Xr savecore 8 , 2827.Xr sshd 8 , 2828.Xr swapon 8 , 2829.Xr sysctl 8 , 2830.Xr syslogd 8 , 2831.Xr timed 8 , 2832.Xr usbd 8 , 2833.Xr vinum 8 , 2834.Xr yp 8 , 2835.Xr ypbind 8 , 2836.Xr ypserv 8 , 2837.Xr ypset 8 2838.Sh HISTORY 2839The 2840.Nm 2841file appeared in 2842.Fx 2.2.2 . 2843.Sh AUTHORS 2844.An Jordan K. Hubbard . 2845