1.\" Copyright (c) 1995 2.\" Jordan K. Hubbard 3.\" 4.\" Redistribution and use in source and binary forms, with or without 5.\" modification, are permitted provided that the following conditions 6.\" are met: 7.\" 1. Redistributions of source code must retain the above copyright 8.\" notice, this list of conditions and the following disclaimer. 9.\" 2. Redistributions in binary form must reproduce the above copyright 10.\" notice, this list of conditions and the following disclaimer in the 11.\" documentation and/or other materials provided with the distribution. 12.\" 13.\" THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND 14.\" ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 15.\" IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 16.\" ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR BE LIABLE 17.\" FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 18.\" DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 19.\" OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 20.\" HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 21.\" LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 22.\" OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 23.\" SUCH DAMAGE. 24.\" 25.\" $FreeBSD$ 26.\" 27.Dd April 27, 2010 28.Dt RC.CONF 5 29.Os 30.Sh NAME 31.Nm rc.conf 32.Nd system configuration information 33.Sh DESCRIPTION 34The file 35.Nm 36contains descriptive information about the local host name, configuration 37details for any potential network interfaces and which services should be 38started up at system initial boot time. 39In new installations, the 40.Nm 41file is generally initialized by the system installation utility, 42.Xr sysinstall 8 . 43.Pp 44The purpose of 45.Nm 46is not to run commands or perform system startup actions 47directly. 48Instead, it is included by the 49various generic startup scripts in 50.Pa /etc 51which conditionalize their 52internal actions according to the settings found there. 53.Pp 54The 55.Pa /etc/rc.conf 56file is included from the file 57.Pa /etc/defaults/rc.conf , 58which specifies the default settings for all the available options. 59Options need only be specified in 60.Pa /etc/rc.conf 61when the system administrator wishes to override these defaults. 62The file 63.Pa /etc/rc.conf.local 64is used to override settings in 65.Pa /etc/rc.conf 66for historical reasons. 67See the 68.Va rc_conf_files 69variable below. 70.Pp 71Options are set with 72.Dq Ar name Ns Li = Ns Ar value 73assignments that use 74.Xr sh 1 75syntax. 76The following list provides a name and short description for each 77variable that can be set in the 78.Nm 79file: 80.Bl -tag -width indent-two 81.It Va rc_debug 82.Pq Vt bool 83If set to 84.Dq Li YES , 85enable output of debug messages from rc scripts. 86This variable can be helpful in diagnosing mistakes when 87editing or integrating new scripts. 88Beware that this produces copious output to the terminal and 89.Xr syslog 3 . 90.It Va rc_info 91.Pq Vt bool 92If set to 93.Dq Li NO , 94disable informational messages from the rc scripts. 95Informational messages are displayed when 96a condition that is not serious enough to warrant a warning or 97an error occurs. 98.It Va rc_startmsgs 99.Pq Vt bool 100If set to 101.Dq Li YES , 102show 103.Dq Starting foo: 104when faststart is used (e.g., at boot time). 105.It Va early_late_divider 106.Pq Vt str 107The name of the script that should be used as the 108delimiter between the 109.Dq early 110and 111.Dq late 112stages of the boot process. 113The early stage should contain all the services needed to 114get the disks (local or remote) mounted so that the late 115stage can include scripts contained in the directories 116listed in the 117.Va local_startup 118variable (see below). 119Thus, the two likely candidates for this value are 120.Pa mountcritlocal 121for the typical system, and 122.Pa mountcritremote 123if the system needs remote file 124systems mounted to get access to the 125.Va local_startup 126directories; for example when 127.Pa /usr/local 128is NFS mounted. 129For 130.Pa rc.conf 131within a 132.Xr jail 8 133.Pa NETWORKING 134is likely to be an appropriate value. 135Extreme care should be taken when changing this value, 136and before changing it one should ensure that there are 137adequate provisions to recover from a failed boot 138(such as physical contact with the machine, 139or reliable remote console access). 140.It Va swapfile 141.Pq Vt str 142If set to 143.Dq Li NO , 144no swapfile is installed, otherwise the value is used as the full 145pathname to a file to use for additional swap space. 146.It Va apm_enable 147.Pq Vt bool 148If set to 149.Dq Li YES , 150enable support for Automatic Power Management with 151the 152.Xr apm 8 153command. 154.It Va apmd_enable 155.Pq Vt bool 156Run 157.Xr apmd 8 158to handle APM event from userland. 159This also enables support for APM. 160.It Va apmd_flags 161.Pq Vt str 162If 163.Va apmd_enable 164is set to 165.Dq Li YES , 166these are the flags to pass to the 167.Xr apmd 8 168daemon. 169.It Va devd_enable 170.Pq Vt bool 171Run 172.Xr devd 8 173to handle device added, removed or unknown events from the kernel. 174.It Va ddb_enable 175.Pq Vt bool 176Run 177.Xr ddb 8 178to install 179.Xr ddb 4 180scripts at boot time. 181.It Va ddb_config 182.Pq Vt str 183Configuration file for 184.Xr ddb 8 . 185Default 186.Pa /etc/ddb.conf . 187.It Va kldxref_enable 188.Pq Vt bool 189Set to 190.Dq Li NO 191by default. 192Set to 193.Dq Li YES 194to automatically rebuild 195.Pa linker.hints 196files with 197.Xr kldxref 8 198at boot time. 199.It Va kldxref_clobber 200.Pq Vt bool 201Set to 202.Dq Li NO 203by default. 204If 205.Va kldxref_enable 206is true, 207setting to 208.Dq Li YES 209will overwrite existing 210.Pa linker.hints 211files at boot time. 212Otherwise, 213only missing 214.Pa linker.hints 215files are generated. 216.It Va kldxref_module_path 217.Pq Vt str 218Empty by default. 219A semi-colon 220.Pq Ql \&; 221delimited list of paths containing 222.Xr kld 4 223modules. 224If empty, 225the contents of the 226.Va kern.module_path 227.Xr sysctl 8 228are used. 229.It Va powerd_enable 230.Pq Vt bool 231If set to 232.Dq Li YES , 233enable the system power control facility with the 234.Xr powerd 8 235daemon. 236.It Va powerd_flags 237.Pq Vt str 238If 239.Va powerd_enable 240is set to 241.Dq Li YES , 242these are the flags to pass to the 243.Xr powerd 8 244daemon. 245.It Va tmpmfs 246Controls the creation of a 247.Pa /tmp 248memory file system. 249Always happens if set to 250.Dq Li YES 251and never happens if set to 252.Dq Li NO . 253If set to anything else, a memory file system is created if 254.Pa /tmp 255is not writable. 256.It Va tmpsize 257Controls the size of a created 258.Pa /tmp 259memory file system. 260.It Va tmpmfs_flags 261Extra options passed to the 262.Xr mdmfs 8 263utility when the memory file system for 264.Pa /tmp 265is created. 266The default is 267.Dq Li "-S" , 268which inhibits the use of softupdates on 269.Pa /tmp 270so that file system space is freed without delay 271after file truncation or deletion. 272See 273.Xr mdmfs 8 274for other options you can use in 275.Va tmpmfs_flags . 276.It Va varmfs 277Controls the creation of a 278.Pa /var 279memory file system. 280Always happens if set to 281.Dq Li YES 282and never happens if set to 283.Dq Li NO . 284If set to anything else, a memory file system is created if 285.Pa /var 286is not writable. 287.It Va varsize 288Controls the size of a created 289.Pa /var 290memory file system. 291.It Va varmfs_flags 292Extra options passed to the 293.Xr mdmfs 8 294utility when the memory file system for 295.Pa /var 296is created. 297The default is 298.Dq Li "-S" , 299which inhibits the use of softupdates on 300.Pa /var 301so that file system space is freed without delay 302after file truncation or deletion. 303See 304.Xr mdmfs 8 305for other options you can use in 306.Va varmfs_flags . 307.It Va populate_var 308Controls the automatic population of the 309.Pa /var 310file system. 311Always happens if set to 312.Dq Li YES 313and never happens if set to 314.Dq Li NO . 315If set to anything else, a memory file system is created if 316.Pa /var 317is not writable. 318Note that this process requires access to certain commands in 319.Pa /usr 320before 321.Pa /usr 322is mounted on normal systems. 323.It Va cleanvar_enable 324.Pq Vt bool 325Clean the 326.Pa /var 327directory. 328.It Va local_startup 329.Pq Vt str 330List of directories to search for startup script files. 331.It Va script_name_sep 332.Pq Vt str 333The field separator to use for breaking down the list of startup script files 334into individual filenames. 335The default is a space. 336It is not necessary to change this unless there are startup scripts with names 337containing spaces. 338.It Va hostapd_enable 339.Pq Vt bool 340Set to 341.Dq Li YES 342to start 343.Xr hostapd 8 344at system boot time. 345.It Va hostname 346.Pq Vt str 347The fully qualified domain name (FQDN) of this host on the network. 348This should almost certainly be set to something meaningful, even if 349there is no network connection. 350If 351.Xr dhclient 8 352is used to set the hostname via DHCP, 353this variable should be set to an empty string. 354If this value remains unset when the system is done booting 355your console login will display the default hostname of 356.Dq Amnesiac. 357.It Va nisdomainname 358.Pq Vt str 359The NIS domain name of this host, or 360.Dq Li NO 361if NIS is not used. 362.It Va dhclient_program 363.Pq Vt str 364Path to the DHCP client program 365.Pa ( /sbin/dhclient , 366the 367.Ox 368DHCP client, 369is the default). 370.It Va dhclient_flags 371.Pq Vt str 372Additional flags to pass to the DHCP client program. 373For the 374.Ox 375DHCP client, see the 376.Xr dhclient 8 377manpage for a description of the command line options available. 378.It Va dhclient_flags_ Ns Aq Ar iface 379Additional flags to pass to the DHCP client program running on 380.Ar iface 381only. 382When specified, this variable overrides 383.Va dhclient_flags . 384.It Va background_dhclient 385.Pq Vt bool 386Set to 387.Dq Li YES 388to start the DHCP client in background. 389This can cause trouble with applications depending on 390a working network, but it will provide a faster startup 391in many cases. 392.It Va background_dhclient_ Ns Aq Ar iface 393When specified, this variable overrides the 394.Va background_dhclient 395variable for interface 396.Ar iface 397only. 398.It Va synchronous_dhclient 399.Pq Vt bool 400Set to 401.Dq Li YES 402to start 403.Xr dhclient 8 404synchronously at startup. 405This behavior can be overridden on a per-interface basis by replacing 406the 407.Dq Li DHCP 408keyword in the 409.Va ifconfig_ Ns Aq Ar interface 410variable with 411.Dq Li SYNCDHCP 412or 413.Dq Li NOSYNCDHCP . 414.It Va defaultroute_delay 415.Pq Vt int 416When set to a positive value, wait up to this long after configuring 417DHCP interfaces at startup to give the interfaces time to receive a lease. 418.It Va firewall_enable 419.Pq Vt bool 420Set to 421.Dq Li YES 422to load firewall rules at startup. 423If the kernel was not built with 424.Cd "options IPFIREWALL" , 425the 426.Pa ipfw.ko 427kernel module will be loaded. 428See also 429.Va ipfilter_enable . 430.It Va firewall_script 431.Pq Vt str 432This variable specifies the full path to the firewall script to run. 433The default is 434.Pa /etc/rc.firewall . 435.It Va firewall_type 436.Pq Vt str 437Names the firewall type from the selection in 438.Pa /etc/rc.firewall , 439or the file which contains the local firewall ruleset. 440Valid selections from 441.Pa /etc/rc.firewall 442are: 443.Pp 444.Bl -tag -width ".Li simple" -compact 445.It Li open 446unrestricted IP access 447.It Li closed 448all IP services disabled, except via 449.Dq Li lo0 450.It Li client 451basic protection for a workstation 452.It Li simple 453basic protection for a LAN. 454.El 455.Pp 456If a filename is specified, the full path 457must be given. 458.It Va firewall_quiet 459.Pq Vt bool 460Set to 461.Dq Li YES 462to disable the display of firewall rules on the console during boot. 463.It Va firewall_logging 464.Pq Vt bool 465Set to 466.Dq Li YES 467to enable firewall event logging. 468This is equivalent to the 469.Dv IPFIREWALL_VERBOSE 470kernel option. 471.It Va firewall_flags 472.Pq Vt str 473Flags passed to 474.Xr ipfw 8 475if 476.Va firewall_type 477specifies a filename. 478.It Va firewall_coscripts 479.Pq Vt str 480List of executables and/or rc scripts to run after firewall starts/stops. 481Default is empty. 482.\" ----- firewall_nat_enable setting -------------------------------- 483.It Va firewall_nat_enable 484.Pq Vt bool 485The 486.Xr ipfw 8 487equivalent of 488.Va natd_enable . 489Setting this to 490.Dq Li YES 491enables kernel NAT. 492.Va firewall_enable 493must also be set to 494.Dq Li YES . 495.It Va firewall_nat_interface 496.Pq Vt str 497The 498.Xr ipfw 8 499equivalent of 500.Va natd_interface . 501This is the name of the public interface or IP address on which 502kernel NAT should run. 503.It Va firewall_nat_flags 504.Pq Vt str 505Additional configuration parameters for kernel NAT should be placed here. 506.It Va dummynet_enable 507.Pq Vt bool 508Setting this to 509.Dq Li YES 510will automatically load the 511.Xr dummynet 4 512module if 513.Va firewall_enable 514is also set to 515.Dq Li YES . 516.\" ------------------------------------------------------------------- 517.It Va natd_program 518.Pq Vt str 519Path to 520.Xr natd 8 . 521.It Va natd_enable 522.Pq Vt bool 523Set to 524.Dq Li YES 525to enable 526.Xr natd 8 . 527.Va firewall_enable 528must also be set to 529.Dq Li YES , 530and 531.Xr divert 4 532sockets must be enabled in the kernel. 533If the kernel was not built with 534.Cd "options IPDIVERT" , 535the 536.Pa ipdivert.ko 537kernel module will be loaded. 538.It Va natd_interface 539.Pq Vt str 540This is the name of the public interface on which 541.Xr natd 8 542should run. 543The interface may be given as an interface name or as an IP address. 544.It Va natd_flags 545.Pq Vt str 546Additional 547.Xr natd 8 548flags should be placed here. 549The 550.Fl n 551or 552.Fl a 553flag is automatically added with the above 554.Va natd_interface 555as an argument. 556.\" ----- ipfilter_enable setting -------------------------------- 557.It Va ipfilter_enable 558.Pq Vt bool 559Set to 560.Dq Li NO 561by default. 562Setting this to 563.Dq Li YES 564enables 565.Xr ipf 8 566packet filtering. 567.Pp 568Typical usage will require putting 569.Bd -literal 570ipfilter_enable="YES" 571ipnat_enable="YES" 572ipmon_enable="YES" 573ipfs_enable="YES" 574.Ed 575.Pp 576into 577.Pa /etc/rc.conf 578and editing 579.Pa /etc/ipf.rules 580and 581.Pa /etc/ipnat.rules 582appropriately. 583.Pp 584Note that 585.Va ipfilter_enable 586and 587.Va ipnat_enable 588can be enabled independently. 589.Va ipmon_enable 590and 591.Va ipfs_enable 592both require at least one of 593.Va ipfilter_enable 594and 595.Va ipnat_enable 596to be enabled. 597.Pp 598Having 599.Bd -literal 600options IPFILTER 601options IPFILTER_LOG 602options IPFILTER_DEFAULT_BLOCK 603.Ed 604.Pp 605in the kernel configuration file is a good idea, too. 606.\" ----- ipfilter_program setting ------------------------------ 607.It Va ipfilter_program 608.Pq Vt str 609Path to 610.Xr ipf 8 611(default 612.Pa /sbin/ipf ) . 613.\" ----- ipfilter_rules setting -------------------------------- 614.It Va ipfilter_rules 615.Pq Vt str 616Set to 617.Pa /etc/ipf.rules 618by default. 619This variable contains the name of the filter rule definition file. 620The file is expected to be readable for the 621.Xr ipf 8 622command to execute. 623.\" ----- ipv6_ipfilter_rules setting --------------------------- 624.It Va ipv6_ipfilter_rules 625.Pq Vt str 626Set to 627.Pa /etc/ipf6.rules 628by default. 629This variable contains the IPv6 filter rule definition file. 630The file is expected to be readable for the 631.Xr ipf 8 632command to execute. 633.\" ----- ipfilter_flags setting -------------------------------- 634.It Va ipfilter_flags 635.Pq Vt str 636Empty by default. 637This variable contains flags passed to the 638.Xr ipf 8 639program. 640.\" ----- ipnat_enable setting ---------------------------------- 641.It Va ipnat_enable 642.Pq Vt bool 643Set to 644.Dq Li NO 645by default. 646Set it to 647.Dq Li YES 648to enable 649.Xr ipnat 8 650network address translation. 651See 652.Va ipfilter_enable 653for a detailed discussion. 654.\" ----- ipnat_program setting --------------------------------- 655.It Va ipnat_program 656.Pq Vt str 657Path to 658.Xr ipnat 8 659(default 660.Pa /sbin/ipnat ) . 661.\" ----- ipnat_rules setting ----------------------------------- 662.It Va ipnat_rules 663.Pq Vt str 664Set to 665.Pa /etc/ipnat.rules 666by default. 667This variable contains the name of the file 668holding the network address translation definition. 669This file is expected to be readable for the 670.Xr ipnat 8 671command to execute. 672.\" ----- ipnat_flags setting ----------------------------------- 673.It Va ipnat_flags 674.Pq Vt str 675Empty by default. 676This variable contains flags passed to the 677.Xr ipnat 8 678program. 679.\" ----- ipmon_enable setting ---------------------------------- 680.It Va ipmon_enable 681.Pq Vt bool 682Set to 683.Dq Li NO 684by default. 685Set it to 686.Dq Li YES 687to enable 688.Xr ipmon 8 689monitoring (logging 690.Xr ipf 8 691and 692.Xr ipnat 8 693events). 694Setting this variable needs setting 695.Va ipfilter_enable 696or 697.Va ipnat_enable 698too. 699See 700.Va ipfilter_enable 701for a detailed discussion. 702.\" ----- ipmon_program setting --------------------------------- 703.It Va ipmon_program 704.Pq Vt str 705Path to 706.Xr ipmon 8 707(default 708.Pa /sbin/ipmon ) . 709.\" ----- ipmon_flags setting ----------------------------------- 710.It Va ipmon_flags 711.Pq Vt str 712Set to 713.Dq Li -Ds 714by default. 715This variable contains flags passed to the 716.Xr ipmon 8 717program. 718Another typical example would be 719.Dq Fl D Pa /var/log/ipflog 720to have 721.Xr ipmon 8 722log directly to a file bypassing 723.Xr syslogd 8 . 724Make sure to adjust 725.Pa /etc/newsyslog.conf 726in such case like this: 727.Bd -literal 728/var/log/ipflog 640 10 100 * Z /var/run/ipmon.pid 729.Ed 730.\" ----- ipfs_enable setting ----------------------------------- 731.It Va ipfs_enable 732.Pq Vt bool 733Set to 734.Dq Li NO 735by default. 736Set it to 737.Dq Li YES 738to enable 739.Xr ipfs 8 740saving the filter and NAT state tables during shutdown 741and reloading them during startup again. 742Setting this variable needs setting 743.Va ipfilter_enable 744or 745.Va ipnat_enable 746to 747.Dq Li YES 748too. 749See 750.Va ipfilter_enable 751for a detailed discussion. 752Note that if 753.Va kern_securelevel 754is set to 3, 755.Va ipfs_enable 756cannot be used 757because the raised securelevel will prevent 758.Xr ipfs 8 759from saving the state tables at shutdown time. 760.\" ----- ipfs_program setting ---------------------------------- 761.It Va ipfs_program 762.Pq Vt str 763Path to 764.Xr ipfs 8 765(default 766.Pa /sbin/ipfs ) . 767.\" ----- ipfs_flags setting ------------------------------------ 768.It Va ipfs_flags 769.Pq Vt str 770Empty by default. 771This variable contains flags passed to the 772.Xr ipfs 8 773program. 774.\" ----- end of added ipf hook --------------------------------- 775.It Va pf_enable 776.Pq Vt bool 777Set to 778.Dq Li NO 779by default. 780Setting this to 781.Dq Li YES 782enables 783.Xr pf 4 784packet filtering. 785.Pp 786Typical usage will require putting 787.Pp 788.Dl pf_enable="YES" 789.Pp 790into 791.Pa /etc/rc.conf 792and editing 793.Pa /etc/pf.conf 794appropriately. 795Adding 796.Pp 797.Dl "device pf" 798.Pp 799builds support for 800.Xr pf 4 801into the kernel, otherwise the 802kernel module will be loaded. 803.It Va pf_rules 804.Pq Vt str 805Path to 806.Xr pf 4 807ruleset configuration file 808(default 809.Pa /etc/pf.conf ) . 810.It Va pf_program 811.Pq Vt str 812Path to 813.Xr pfctl 8 814(default 815.Pa /sbin/pfctl ) . 816.It Va pf_flags 817.Pq Vt str 818If 819.Va pf_enable 820is set to 821.Dq Li YES , 822these flags are passed to the 823.Xr pfctl 8 824program when loading the ruleset. 825.It Va pflog_enable 826.Pq Vt bool 827Set to 828.Dq Li NO 829by default. 830Setting this to 831.Dq Li YES 832enables 833.Xr pflogd 8 834which logs packets from the 835.Xr pf 4 836packet filter. 837.It Va pflog_logfile 838.Pq Vt str 839If 840.Va pflog_enable 841is set to 842.Dq Li YES 843this controls where 844.Xr pflogd 8 845stores the logfile 846(default 847.Pa /var/log/pflog ) . 848Check 849.Pa /etc/newsyslog.conf 850to adjust logfile rotation for this. 851.It Va pflog_program 852.Pq Vt str 853Path to 854.Xr pflogd 8 855(default 856.Pa /sbin/pflogd ) . 857.It Va pflog_flags 858.Pq Vt str 859Empty by default. 860This variable contains additional flags passed to the 861.Xr pflogd 8 862program. 863.It Va ftpproxy_enable 864.Pq Vt bool 865Set to 866.Dq Li NO 867by default. 868Setting this to 869.Dq Li YES 870enables 871.Xr ftp-proxy 8 872which supports the 873.Xr pf 4 874packet filter in translating ftp connections. 875.It Va ftpproxy_flags 876.Pq Vt str 877Empty by default. 878This variable contains additional flags passed to the 879.Xr ftp-proxy 8 880program. 881.It Va pfsync_enable 882.Pq Vt bool 883Set to 884.Dq Li NO 885by default. 886Setting this to 887.Dq Li YES 888enables exposing 889.Xr pf 4 890state changes to other hosts over the network by means of 891.Xr pfsync 4 . 892The 893.Va pfsync_syncdev 894variable 895must also be set then. 896.It Va pfsync_syncdev 897.Pq Vt str 898Empty by default. 899This variable specifies the name of the network interface 900.Xr pfsync 4 901should operate through. 902It must be set accordingly if 903.Va pfsync_enable 904is set to 905.Dq Li YES . 906.It Va pfsync_syncpeer 907.Pq Vt str 908Empty by default. 909This variable is optional. 910By default, state change messages are sent out on the synchronisation 911interface using IP multicast packets. 912The protocol is IP protocol 240, PFSYNC, and the multicast group used is 913224.0.0.240. 914When a peer address is specified using the 915.Va pfsync_syncpeer 916option, the peer address is used as a destination for the pfsync 917traffic, and the traffic can then be protected using 918.Xr ipsec 4 . 919See the 920.Xr pfsync 4 921manpage for more details about using 922.Xr ipsec 4 923with 924.Xr pfsync 4 925interfaces. 926.It Va pfsync_ifconfig 927.Pq Vt str 928Empty by default. 929This variable can contain additional options to be passed to the 930.Xr ifconfig 8 931command used to set up 932.Xr pfsync 4 . 933.It Va tcp_extensions 934.Pq Vt bool 935Set to 936.Dq Li YES 937by default. 938Setting this to 939.Dq Li NO 940disables certain TCP options as described by 941.Rs 942.%T "RFC 1323" 943.Re 944Setting this to 945.Dq Li NO 946might help remedy such problems with connections as randomly hanging 947or other weird behavior. 948Some network devices are known 949to be broken with respect to these options. 950.It Va log_in_vain 951.Pq Vt int 952Set to 0 by default. 953The 954.Xr sysctl 8 955variables, 956.Va net.inet.tcp.log_in_vain 957and 958.Va net.inet.udp.log_in_vain , 959as described in 960.Xr tcp 4 961and 962.Xr udp 4 , 963are set to the given value. 964.It Va tcp_keepalive 965.Pq Vt bool 966Set to 967.Dq Li YES 968by default. 969Setting to 970.Dq Li NO 971will disable probing idle TCP connections to verify that the 972peer is still up and reachable. 973.It Va tcp_drop_synfin 974.Pq Vt bool 975Set to 976.Dq Li NO 977by default. 978Setting to 979.Dq Li YES 980will cause the kernel to ignore TCP frames that have both 981the SYN and FIN flags set. 982This prevents OS fingerprinting, but may 983break some legitimate applications. 984.It Va icmp_drop_redirect 985.Pq Vt bool 986Set to 987.Dq Li NO 988by default. 989Setting to 990.Dq Li YES 991will cause the kernel to ignore ICMP REDIRECT packets. 992Refer to 993.Xr icmp 4 994for more information. 995.It Va icmp_log_redirect 996.Pq Vt bool 997Set to 998.Dq Li NO 999by default. 1000Setting to 1001.Dq Li YES 1002will cause the kernel to log ICMP REDIRECT packets. 1003Note that 1004the log messages are not rate-limited, so this option should only be used 1005for troubleshooting networks. 1006Refer to 1007.Xr icmp 4 1008for more information. 1009.It Va icmp_bmcastecho 1010.Pq Vt bool 1011Set to 1012.Dq Li YES 1013to respond to broadcast or multicast ICMP ping packets. 1014Refer to 1015.Xr icmp 4 1016for more information. 1017.It Va ip_portrange_first 1018.Pq Vt int 1019If not set to 1020.Dq Li NO , 1021this is the first port in the default portrange. 1022Refer to 1023.Xr ip 4 1024for more information. 1025.It Va ip_portrange_last 1026.Pq Vt int 1027If not set to 1028.Dq Li NO , 1029this is the last port in the default portrange. 1030Refer to 1031.Xr ip 4 1032for more information. 1033.It Va network_interfaces 1034.Pq Vt str 1035Set to the list of network interfaces to configure on this host or 1036.Dq Li AUTO 1037(the default) for all current interfaces. 1038Setting the 1039.Va network_interfaces 1040variable to anything other than the default is deprecated. 1041Interfaces that the administrator wishes to store configuration for, 1042but not start at boot should be configured with the 1043.Dq Li NOAUTO 1044keyword in their 1045.Va ifconfig_ Ns Aq Ar interface 1046variables as described below. 1047.Pp 1048An 1049.Va ifconfig_ Ns Aq Ar interface 1050variable is also assumed to exist for each value of 1051.Ar interface . 1052When an interface name contains any of the characters 1053.Dq Li .-/+ 1054they are translated to 1055.Dq Li _ 1056before lookup. 1057The variable can contain arguments to 1058.Xr ifconfig 8 , 1059as well as special case-insensitive keywords described below. 1060Such keywords are removed before passing the value to 1061.Xr ifconfig 8 1062while the order of the other arguments is preserved. 1063.Pp 1064One can configure more than one IPv4 address with the 1065.Va ipv4_addrs_ Ns Aq Ar interface 1066variable. 1067One or more IP addresses must be provided in Classless Inter-Domain 1068Routing (CIDR) address notation, whose last byte can be a range like 1069192.0.2.5-23/24. 1070In this case the address 192.0.2.5 will be configured with the 1071netmask /24 and the addresses 192.0.2.6 to 192.0.2.23 with 1072the non-conflicting netmask /32 as explained in the 1073.Xr ifconfig 8 1074alias section. 1075With the interface in question being 1076.Li ed0 , 1077an example could look like: 1078.Bd -literal 1079ipv4_addrs_ed0="192.0.2.129/27 192.0.2.1-5/28" 1080.Ed 1081.Pp 1082It is also possible to add IP alias entries using 1083.Xr ifconfig 8 1084syntax. 1085Assuming that the interface in question was 1086.Li ed0 , 1087it might look 1088something like this: 1089.Bd -literal 1090ifconfig_ed0_alias0="inet 127.0.0.253 netmask 0xffffffff" 1091ifconfig_ed0_alias1="inet 127.0.0.254 netmask 0xffffffff" 1092.Ed 1093.Pp 1094And so on. 1095For each 1096.Va ifconfig_ Ns Ao Ar interface Ac Ns Va _alias Ns Aq Ar n 1097entry that is found, 1098its contents are passed to 1099.Xr ifconfig 8 . 1100Execution stops at the first unsuccessful access, so if 1101something like this is present: 1102.Bd -literal 1103ifconfig_ed0_alias0="inet 127.0.0.251 netmask 0xffffffff" 1104ifconfig_ed0_alias1="inet 127.0.0.252 netmask 0xffffffff" 1105ifconfig_ed0_alias2="inet 127.0.0.253 netmask 0xffffffff" 1106ifconfig_ed0_alias4="inet 127.0.0.254 netmask 0xffffffff" 1107.Ed 1108.Pp 1109Then note that alias4 would 1110.Em not 1111be added since the search would 1112stop with the missing 1113.Dq Li alias3 1114entry. 1115Due to this difficult to manage behavior, the 1116.Va ifconfig_ Ns Ao Ar interface Ac Ns Va _alias Ns Aq Ar n 1117form is deprecated. 1118.Pp 1119If the 1120.Pa /etc/start_if. Ns Aq Ar interface 1121file is present, it is read and executed by the 1122.Xr sh 1 1123interpreter 1124before configuring the interface as specified in the 1125.Va ifconfig_ Ns Aq Ar interface 1126and 1127.Va ifconfig_ Ns Ao Ar interface Ac Ns Va _alias Ns Aq Ar n 1128variables. 1129.Pp 1130If a 1131.Va vlans_ Ns Aq Ar interface 1132variable is set, 1133a 1134.Xr vlan 4 1135interface will be created for each item in the list with the 1136.Ar vlandev 1137argument set to 1138.Ar interface . 1139If a vlan interface's name is a number, 1140then that number is used as the vlan tag and the new vlan interface is 1141named 1142.Ar interface . Ns Ar tag . 1143Otherwise, 1144the vlan tag must be specified via a 1145.Va vlan 1146parameter in the 1147.Va create_args_ Ns Aq Ar interface 1148variable. 1149.Pp 1150To create a vlan device named 1151.Li em0.101 1152on 1153.Li em0 1154with the vlan tag 101: 1155.Bd -literal 1156vlans_em0="101" 1157.Ed 1158.Pp 1159To create a vlan device named 1160.Li myvlan 1161on 1162.Li em0 1163with the vlan tag 102: 1164.Bd -literal 1165vlans_em0="myvlan" 1166create_args_myvlan="vlan 102" 1167.Ed 1168.Pp 1169If a 1170.Va wlans_ Ns Aq Ar interface 1171variable is set, 1172an 1173.Xr wlan 4 1174interface will be created for each item in the list with the 1175.Ar wlandev 1176argument set to 1177.Ar interface . 1178Further wlan cloning arguments may be passed to the 1179.Xr ifconfig 8 1180.Cm create 1181command by setting the 1182.Va create_args_ Ns Aq Ar interface 1183variable. 1184One or more 1185.Xr wlan 4 1186devices must be created for each wireless devices as of 1187.Fx 8.0 . 1188Debugging flags for 1189.Xr wlan 4 1190devices as set by 1191.Xr wlandebug 8 1192may be specified with an 1193.Va wlandebug_ Ns Aq Ar interface 1194variable. 1195The contents of this variable will be passed directly to 1196.Xr wlandebug 8 . 1197.Pp 1198If the 1199.Va ifconfig_ Ns Aq Ar interface 1200contains the keyword 1201.Dq Li NOAUTO 1202then the interface will not be configured 1203at boot or by 1204.Pa /etc/pccard_ether 1205when 1206.Va network_interfaces 1207is set to 1208.Dq Li AUTO . 1209.Pp 1210It is possible to bring up an interface with DHCP by adding 1211.Dq Li DHCP 1212to the 1213.Va ifconfig_ Ns Aq Ar interface 1214variable. 1215For instance, to initialize the 1216.Li ed0 1217device via DHCP, 1218it is possible to use something like: 1219.Bd -literal 1220ifconfig_ed0="DHCP" 1221.Ed 1222.Pp 1223Also, if you want to configure your wireless interface with 1224.Xr wpa_supplicant 8 1225for use with WPA, EAP/LEAP or WEP, you need to add 1226.Dq Li WPA 1227to the 1228.Va ifconfig_ Ns Aq Ar interface 1229variable. 1230.Pp 1231Finally, you can add 1232.Xr ifconfig 8 1233options in this variable, in addition to the 1234.Pa /etc/start_if. Ns Aq Ar interface 1235file. 1236For instance, to configure an 1237.Xr ath 4 1238wireless device in station mode with an address obtained 1239via DHCP, using WPA authentication and 802.11b mode, it is 1240possible to use something like: 1241.Bd -literal 1242wlans_ath0="wlan0" 1243ifconfig_wlan0="DHCP WPA mode 11b" 1244.Ed 1245.Pp 1246In addition to the 1247.Va ifconfig_ Ns Aq Ar interface 1248form, a fallback variable 1249.Va ifconfig_DEFAULT 1250may be configured. 1251It will be used for all interfaces with no 1252.Va ifconfig_ Ns Aq Ar interface 1253variable. 1254This is intended to replace the no longer supported 1255.Va pccard_ifconfig 1256variable. 1257.Pp 1258It is also possible to rename an interface by doing: 1259.Bd -literal 1260ifconfig_ed0_name="net0" 1261ifconfig_net0="inet 192.0.2.1 netmask 0xffffff00" 1262.Ed 1263.\" Remove in FreeBSD 10.x 1264.It Va ipv6_enable 1265.Pq Vt bool 1266.Pp 1267This option is deprecated. 1268.Pp 1269If the variable is 1270.Dq Li YES 1271it has no effect. 1272To configure IPv6 for an interface see 1273.Va ipv6_network_interfaces 1274below. 1275.Pp 1276If the variable is 1277.Dq Li NO 1278then other than 1279.Dq Li lo0 1280IPv6 will be disabled for each interface, 1281however the same effect can be achieved by 1282not configuring the interface. 1283.It Va ipv6_network_interfaces 1284.Pq Vt str 1285This is the IPv6 equivalent of 1286.Va network_interfaces . 1287Normally configuration of this variable is not needed, 1288the value should be left as 1289.Dq Li AUTO . 1290.Pp 1291If 1292.Dq Li INET6 1293is configured in the kernel configuration for the 1294.Dq Li lo0 1295interface will always be performed. 1296It is not necessary to list it in 1297.Va ipv6_network_interfaces . 1298.Pp 1299Example configuration to accept Router Advertisements (RA) for the 1300.Dq Li ed0 1301interface: 1302.Bd -literal 1303ifconfig_ed0_ipv6="RTADV" 1304.Ed 1305.Pp 1306To configure only a link-local address on the 1307.Dq Li ed0 1308interface: 1309.Bd -literal 1310ifconfig_ed0_ipv6="inet6 auto_linklocal" 1311.Ed 1312.Pp 1313To disable RA the 1314.Dq Li NORTADV 1315option is available, although not required if manual 1316configuration is performed as described below. 1317.Pp 1318An IPv6 interface can be configured manually with 1319.Va ifconfig_ Ns Ao Ar interface Ac Ns _ipv6 . 1320For example: 1321.Bd -literal 1322ifconfig_ed0_ipv6="inet6 2001:db8:1::1 prefixlen 64" 1323.Ed 1324.Pp 1325Manual configuration of an IPv6 address will also 1326require configuration of the 1327.Va ipv6_defaultrouter 1328option. 1329.Pp 1330Aliases should be set by 1331.Va ifconfig_ Ns Ao Ar interface Ac Ns Va _alias Ns Aq Ar n 1332with the 1333.Dq Li inet6 1334keyword. 1335For example: 1336.Pp 1337.Bd -literal 1338ifconfig_ed0_alias0="inet6 2001:db8:2::1 prefixlen 64" 1339.Ed 1340.Pp 1341.It Va ipv6_prefer 1342.Pq Vt bool 1343If the variable is 1344.Dq Li YES , 1345the default policy of the source address selection set by 1346.Xr ip6addrctl 8 1347will be IPv6-preferred. 1348.Pp 1349If the variable is 1350.Dq Li NO , 1351the default policy of the source address selection set by 1352.Xr ip6addrctl 8 1353will be IPv4-preferred. 1354.Pp 1355.It Va ipv6_privacy 1356.Pq Vt bool 1357If the variable is 1358.Dq Li YES 1359privacy addresses will be generated for each IPv6 1360interface as described in RFC 4193. 1361.Pp 1362.It Va ipv6_prefix_ Ns Aq Ar interface 1363.Pq Vt str 1364If one or more prefixes are defined in 1365.Va ipv6_prefix_ Ns Aq Ar interface 1366addresses based on each prefix and the EUI-64 interface index will be 1367configured on that interface. 1368.It Va ipv6_default_interface 1369.Pq Vt str 1370If not set to 1371.Dq Li NO , 1372this is the default output interface for scoped addresses. 1373This works only with ipv6_gateway_enable="NO". 1374.It Va ip6addrctl_enable 1375.Pq Vt bool 1376If set to 1377.Dq Li YES , 1378install default address selection policy table 1379.Pq RFC 3484 . 1380If a file 1381.Pa /etc/ip6addrctl.conf 1382is found the 1383.Xr ip6addrctl 8 1384reads and installs it. 1385If not, a pre-defined policy table will be installed. 1386There are two pre-defined ones; IPv4-preferred and IPv6-preferred. 1387If set 1388.Va ipv6_prefer 1389variable to 1390.Dq Li YES 1391the IPv6-preferred one is used. Default is IPv4-preferred. 1392.It Va cloned_interfaces 1393.Pq Vt str 1394Set to the list of clonable network interfaces to create on this host. 1395Further cloning arguments may be passed to the 1396.Xr ifconfig 8 1397.Cm create 1398command for each interface by setting the 1399.Va create_args_ Ns Aq Ar interface 1400variable. 1401Entries in 1402.Va cloned_interfaces 1403are automatically appended to 1404.Va network_interfaces 1405for configuration. 1406.It Va fec_interfaces 1407.Pq Vt str 1408Set to the list of 1409.Xr ng_fec 4 1410Fast EtherChannel interfaces to configure on this host. 1411A 1412.Va fecconfig_ Ns Aq Ar interface 1413variable is assumed to exist for each value of 1414.Ar interface . 1415The value of this variable is used to configure link aggregated interfaces 1416according to the syntax of the 1417.Cm NGM_FEC_ADD_IFACE 1418to 1419.Xr ngctl 8 1420msg. 1421Additionally, this option ensures that each listed interface is created 1422via the 1423.Cm mkpeer 1424command to 1425.Xr ngctl 8 1426before attempting to configure it. 1427For example: 1428.Bd -literal 1429fec_interfaces="fec0" 1430fecconfig_fec0="em0 em1" 1431ifconfig_fec0="DHCP" 1432.Ed 1433.It Va gif_interfaces 1434.Pq Vt str 1435Set to the list of 1436.Xr gif 4 1437tunnel interfaces to configure on this host. 1438A 1439.Va gifconfig_ Ns Aq Ar interface 1440variable is assumed to exist for each value of 1441.Ar interface . 1442The value of this variable is used to configure the link layer of the 1443tunnel according to the syntax of the 1444.Cm tunnel 1445option to 1446.Xr ifconfig 8 . 1447Additionally, this option ensures that each listed interface is created 1448via the 1449.Cm create 1450option to 1451.Xr ifconfig 8 1452before attempting to configure it. 1453.It Va sppp_interfaces 1454.Pq Vt str 1455Set to the list of 1456.Xr sppp 4 1457interfaces to configure on this host. 1458A 1459.Va spppconfig_ Ns Aq Ar interface 1460variable is assumed to exist for each value of 1461.Ar interface . 1462Each interface should also be configured by a general 1463.Va ifconfig_ Ns Aq Ar interface 1464setting. 1465Refer to 1466.Xr spppcontrol 8 1467for more information about available options. 1468.It Va ppp_enable 1469.Pq Vt bool 1470If set to 1471.Dq Li YES , 1472run the 1473.Xr ppp 8 1474daemon. 1475.It Va ppp_profile 1476.Pq Vt str 1477The name of the profile to use from 1478.Pa /etc/ppp/ppp.conf . 1479Also used for per-profile overrides of 1480.Va ppp_mode 1481and 1482.Va ppp_nat , 1483and 1484.Va ppp_ Ns Ao Ar profile Ac Ns _unit . 1485When the profile name contains any of the characters 1486.Dq Li .-/+ 1487they are translated to 1488.Dq Li _ 1489for the proposes of the override variable names. 1490.It Va ppp_mode 1491.Pq Vt str 1492Mode in which to run the 1493.Xr ppp 8 1494daemon. 1495.It Va ppp_ Ns Ao Ar profile Ac Ns _mode 1496.Pq Vt str 1497Overrides the global 1498.Va ppp_mode 1499for 1500.Ar profile . 1501Accepted modes are 1502.Dq Li auto , 1503.Dq Li ddial , 1504.Dq Li direct 1505and 1506.Dq Li dedicated . 1507See the manual for a full description. 1508.It Va ppp_nat 1509.Pq Vt bool 1510If set to 1511.Dq Li YES , 1512enables network address translation. 1513Used in conjunction with 1514.Va gateway_enable 1515allows hosts on private network addresses access to the Internet using 1516this host as a network address translating router. 1517.It Va ppp_ Ns Ao Ar profile Ac Ns _nat 1518.Pq Vt str 1519Overrides the global 1520.Va ppp_nat 1521for 1522.Ar profile . 1523.It Va ppp_ Ns Ao Ar profile Ac Ns _unit 1524.Pq Vt int 1525Set the unit number to be used for this profile. 1526See the manual description of 1527.Fl unit Ns Ar N 1528for details. 1529.It Va ppp_user 1530.Pq Vt str 1531The name of the user under which 1532.Xr ppp 8 1533should be started. 1534By 1535default, 1536.Xr ppp 8 1537is started as 1538.Dq Li root . 1539.It Va rc_conf_files 1540.Pq Vt str 1541This option is used to specify a list of files that will override 1542the settings in 1543.Pa /etc/defaults/rc.conf . 1544The files will be read in the order in which they are specified and should 1545include the full path to the file. 1546By default, the files specified are 1547.Pa /etc/rc.conf 1548and 1549.Pa /etc/rc.conf.local 1550.It Va zfs_enable 1551.Pq Vt bool 1552If set to 1553.Dq Li YES , 1554.Pa /etc/rc.d/zfs 1555will attempt to automatically mount ZFS file systems and initialize ZFS volumes 1556(ZVOLs). 1557.It Va gbde_autoattach_all 1558.Pq Vt bool 1559If set to 1560.Dq Li YES , 1561.Pa /etc/rc.d/gbde 1562will attempt to automatically initialize your .bde devices in 1563.Pa /etc/fstab . 1564.It Va gbde_devices 1565.Pq Vt str 1566List the devices that the script should try to attach, 1567or 1568.Dq Li AUTO . 1569.It Va gbde_lockdir 1570.Pq Vt str 1571The directory where the 1572.Xr gbde 4 1573lockfiles are located. 1574The default lockfile directory is 1575.Pa /etc . 1576.Pp 1577The lockfile for each individual 1578.Xr gbde 4 1579device can be overridden by setting the variable 1580.Va gbde_lock_ Ns Aq Ar device , 1581where 1582.Ar device 1583is the encrypted device without the 1584.Dq Pa /dev/ 1585and 1586.Dq Pa .bde 1587parts. 1588.It Va gbde_attach_attempts 1589.Pq Vt int 1590Number of times to attempt attaching to a 1591.Xr gbde 4 1592device, i.e., how many times the user is asked for the pass-phrase. 1593Default is 3. 1594.It Va geli_devices 1595.Pq Vt str 1596List of devices to automatically attach on boot. 1597Note that .eli devices from 1598.Pa /etc/fstab 1599are automatically appended to this list. 1600.It Va geli_tries 1601.Pq Vt int 1602Number of times user is asked for the pass-phrase. 1603If empty, it will be taken from 1604.Va kern.geom.eli.tries 1605sysctl variable. 1606.It Va geli_default_flags 1607.Pq Vt str 1608Default flags to use by 1609.Xr geli 8 1610when configuring disk encryption. 1611Flags can be configured for every device separately by defining 1612.Va geli_ Ns Ao Ar device Ac Ns Va _flags 1613variable. 1614.It Va geli_autodetach 1615.Pq Vt str 1616Specifies if GELI devices should be marked for detach on last close after 1617file systems are mounted. 1618Default is 1619.Dq Li YES . 1620This can be changed for every device separately by defining 1621.Va geli_ Ns Ao Ar device Ac Ns Va _autodetach 1622variable. 1623.It Va geli_swap_flags 1624Options passed to the 1625.Xr geli 8 1626utility when encrypted GEOM providers for swap partitions are created. 1627The default is 1628.Dq Li "-e aes -l 256 -s 4096 -d" . 1629.It Va root_rw_mount 1630.Pq Vt bool 1631Set to 1632.Dq Li YES 1633by default. 1634After the file systems are checked at boot time, the root file system 1635is remounted as read-write if this is set to 1636.Dq Li YES . 1637Diskless systems that mount their root file system from a read-only remote 1638NFS share should set this to 1639.Dq Li NO 1640in their 1641.Pa rc.conf . 1642.It Va fsck_y_enable 1643.Pq Vt bool 1644If set to 1645.Dq Li YES , 1646.Xr fsck 8 1647will be run with the 1648.Fl y 1649flag if the initial preen 1650of the file systems fails. 1651.It Va background_fsck 1652.Pq Vt bool 1653If set to 1654.Dq Li YES , 1655the system will attempt to run 1656.Xr fsck 8 1657in the background where possible. 1658.It Va background_fsck_delay 1659.Pq Vt int 1660The amount of time in seconds to sleep before starting a background 1661.Xr fsck 8 . 1662It defaults to sixty seconds to allow large applications such as 1663the X server to start before disk I/O bandwidth is monopolized by 1664.Xr fsck 8 . 1665If set to a negative number, the background file system check will be 1666delayed indefinitely to allow the administrator to run it at a more 1667convenient time. 1668For example it may be run from 1669.Xr cron 8 1670by adding a line like 1671.Pp 1672.Dl "0 4 * * * root /etc/rc.d/bgfsck forcestart" 1673.Pp 1674to 1675.Pa /etc/crontab . 1676.It Va netfs_types 1677.Pq Vt str 1678List of file system types that are network-based. 1679This list should generally not be modified by end users. 1680Use 1681.Va extra_netfs_types 1682instead. 1683.It Va extra_netfs_types 1684.Pq Vt str 1685If set to something other than 1686.Dq Li NO 1687(the default), 1688this variable extends the list of file system types 1689for which automatic mounting at startup by 1690.Xr rc 8 1691should be delayed until the network is initialized. 1692It should contain 1693a whitespace-separated list of network file system descriptor pairs, 1694each consisting of a file system type as passed to 1695.Xr mount 8 1696and a human-readable, one-word description, 1697joined with a colon 1698.Pq Ql \&: . 1699Extending the default list in this way is only necessary 1700when third party file system types are used. 1701.It Va syslogd_enable 1702.Pq Vt bool 1703If set to 1704.Dq Li YES , 1705run the 1706.Xr syslogd 8 1707daemon. 1708.It Va syslogd_program 1709.Pq Vt str 1710Path to 1711.Xr syslogd 8 1712(default 1713.Pa /usr/sbin/syslogd ) . 1714.It Va syslogd_flags 1715.Pq Vt str 1716If 1717.Va syslogd_enable 1718is set to 1719.Dq Li YES , 1720these are the flags to pass to 1721.Xr syslogd 8 . 1722.It Va inetd_enable 1723.Pq Vt bool 1724If set to 1725.Dq Li YES , 1726run the 1727.Xr inetd 8 1728daemon. 1729.It Va inetd_program 1730.Pq Vt str 1731Path to 1732.Xr inetd 8 1733(default 1734.Pa /usr/sbin/inetd ) . 1735.It Va inetd_flags 1736.Pq Vt str 1737If 1738.Va inetd_enable 1739is set to 1740.Dq Li YES , 1741these are the flags to pass to 1742.Xr inetd 8 . 1743.It Va hastd_enable 1744.Pq Vt bool 1745If set to 1746.Dq Li YES , 1747run the 1748.Xr hastd 8 1749daemon. 1750.It Va hastd_program 1751.Pq Vt str 1752Path to 1753.Xr hastd 8 1754(default 1755.Pa /sbin/hastd ) . 1756.It Va hastd_flags 1757.Pq Vt str 1758If 1759.Va hastd_enable 1760is set to 1761.Dq Li YES , 1762these are the flags to pass to 1763.Xr hastd 8 . 1764.It Va named_enable 1765.Pq Vt bool 1766If set to 1767.Dq Li YES , 1768run the 1769.Xr named 8 1770daemon. 1771.It Va named_program 1772.Pq Vt str 1773Path to 1774.Xr named 8 1775(default 1776.Pa /usr/sbin/named ) . 1777.It Va named_conf 1778.Pq Vt str 1779Path to 1780.Xr named 8 1781configuration file, (default 1782.Pa /etc/namedb/named.conf ) . 1783.It Va named_flags 1784.Pq Vt str 1785If 1786.Va named_enable 1787is set to 1788.Dq Li YES , 1789these are the flags to pass to 1790.Xr named 8 . 1791.It Va named_pidfile 1792.Pq Vt str 1793This is the default path to the 1794.Xr named 8 1795daemon's PID file. 1796This must match the location in 1797.Xr named.conf 5 . 1798.It Va named_uid 1799.Pq Vt str 1800The user that the 1801.Xr named 8 1802process should be run as. 1803.It Va named_chrootdir 1804.Pq Vt str 1805The root directory for a name server run in a 1806.Xr chroot 8 1807environment (default 1808.Pa /var/named ) . 1809If left empty 1810.Xr named 8 1811will not be run in a 1812.Xr chroot 8 1813environment. 1814.It Va named_chroot_autoupdate 1815.Pq Vt bool 1816Set to 1817.Dq Li NO 1818to disable automatic update of the 1819.Xr chroot 8 1820environment. 1821.It Va named_symlink_enable 1822.Pq Vt bool 1823Set to 1824.Dq Li NO 1825to disable symlinking of 1826daemon's PID file 1827into the 1828.Xr chroot 8 1829environment. 1830.It Va named_wait 1831.Pq Vt bool 1832Set to have 1833.Pa /etc/rc.d/named 1834loop until working name service is established. 1835.It Va named_wait_host 1836.Pq Vt str 1837Name of host to lookup for the named_wait option. 1838(Default localhost) 1839.It Va named_auto_forward 1840.Pq Vt bool 1841Set to enable automatic creation of a forwarder 1842configuration file derived from 1843.Pa /etc/resolv.conf . 1844.It Va named_auto_forward_only 1845.Pq Vt bool 1846Set to change the default forwarder configuration from 1847.Dq forward first 1848to 1849.Dq forward only . 1850.It Va kerberos5_server_enable 1851.Pq Vt bool 1852Set to 1853.Dq Li YES 1854to start a Kerberos 5 authentication server 1855at boot time. 1856.It Va kerberos5_server 1857.Pq Vt str 1858If 1859.Va kerberos5_server_enable 1860is set to 1861.Dq Li YES 1862this is the path to Kerberos 5 Authentication Server. 1863.It Va kerberos5_server_flags 1864.Pq Vt str 1865Empty by default. 1866This variable contains additional flags to be passed to the Kerberos 5 1867authentication server. 1868.It Va kadmind5_server_enable 1869.Pq Vt bool 1870Set to 1871.Dq Li YES 1872to start 1873.Xr kadmind 8 , 1874the Kerberos 5 Administration Daemon; set to 1875.Dq Li NO 1876on a slave server. 1877.It Va kadmind5_server 1878.Pq Vt str 1879If 1880.Va kadmind5_server_enable 1881is set to 1882.Dq Li YES 1883this is the path to Kerberos 5 Administration Daemon. 1884.It Va kpasswdd_server_enable 1885.Pq Vt bool 1886Set to 1887.Dq Li YES 1888to start 1889.Xr kpasswdd 8 , 1890the Kerberos 5 Password-Changing Daemon; set to 1891.Dq Li NO 1892on a slave server. 1893.It Va kpasswdd_server 1894.Pq Vt str 1895If 1896.Va kpasswdd_server_enable 1897is set to 1898.Dq Li YES 1899this is the path to Kerberos 5 Password-Changing Daemon. 1900.It Va rwhod_enable 1901.Pq Vt bool 1902If set to 1903.Dq Li YES , 1904run the 1905.Xr rwhod 8 1906daemon at boot time. 1907.It Va rwhod_flags 1908.Pq Vt str 1909If 1910.Va rwhod_enable 1911is set to 1912.Dq Li YES , 1913these are the flags to pass to it. 1914.It Va amd_enable 1915.Pq Vt bool 1916If set to 1917.Dq Li YES , 1918run the 1919.Xr amd 8 1920daemon at boot time. 1921.It Va amd_flags 1922.Pq Vt str 1923If 1924.Va amd_enable 1925is set to 1926.Dq Li YES , 1927these are the flags to pass to it. 1928See the 1929.Xr amd 8 1930manpage for more information. 1931.It Va amd_map_program 1932.Pq Vt str 1933If set, 1934the specified program is run to get the list of 1935.Xr amd 8 1936maps. 1937For example, if the 1938.Xr amd 8 1939maps are stored in NIS, one can set this to 1940run 1941.Xr ypcat 1 1942to get a list of 1943.Xr amd 8 1944maps from the 1945.Pa amd.master 1946NIS map. 1947.It Va update_motd 1948.Pq Vt bool 1949If set to 1950.Dq Li YES , 1951.Pa /etc/motd 1952will be updated at boot time to reflect the kernel release 1953being run. 1954If set to 1955.Dq Li NO , 1956.Pa /etc/motd 1957will not be updated. 1958.It Va nfs_client_enable 1959.Pq Vt bool 1960If set to 1961.Dq Li YES , 1962run the NFS client daemons at boot time. 1963.It Va nfs_access_cache 1964.Pq Vt int 1965If 1966.Va nfs_client_enable 1967is set to 1968.Dq Li YES , 1969this can be set to 1970.Dq Li 0 1971to disable NFS ACCESS RPC caching, or to the number of seconds for which 1972NFS ACCESS 1973results should be cached. 1974A value of 2-10 seconds will substantially reduce network 1975traffic for many NFS operations. 1976.It Va nfs_server_enable 1977.Pq Vt bool 1978If set to 1979.Dq Li YES , 1980run the NFS server daemons at boot time. 1981.It Va nfs_server_flags 1982.Pq Vt str 1983If 1984.Va nfs_server_enable 1985is set to 1986.Dq Li YES , 1987these are the flags to pass to the 1988.Xr nfsd 8 1989daemon. 1990.It Va idmapd_enable 1991.Pq Vt bool 1992If set to 1993.Dq Li YES , 1994run the ID mapping daemon for NFS version 4. 1995.It Va idmapd_flags 1996.Pq Vt str 1997If 1998.Va idmapd_enable 1999is set to 2000.Dq Li YES , 2001these are the flags to pass to the 2002.Xr idmapd 8 2003daemon. 2004.It Va mountd_enable 2005.Pq Vt bool 2006If set to 2007.Dq Li YES , 2008and no 2009.Va nfs_server_enable 2010is set, start 2011.Xr mountd 8 , 2012but not 2013.Xr nfsd 8 2014daemon. 2015It is commonly needed to run CFS without real NFS used. 2016.It Va mountd_flags 2017.Pq Vt str 2018If 2019.Va mountd_enable 2020is set to 2021.Dq Li YES , 2022these are the flags to pass to the 2023.Xr mountd 8 2024daemon. 2025.It Va weak_mountd_authentication 2026.Pq Vt bool 2027If set to 2028.Dq Li YES , 2029allow services like PCNFSD to make non-privileged mount 2030requests. 2031.It Va nfs_reserved_port_only 2032.Pq Vt bool 2033If set to 2034.Dq Li YES , 2035provide NFS services only on a secure port. 2036.It Va nfs_bufpackets 2037.Pq Vt int 2038If set to a number, indicates the number of packets worth of 2039socket buffer space to reserve on an NFS client. 2040The kernel default is typically 4. 2041Using a higher number may be 2042useful on gigabit networks to improve performance. 2043The minimum value is 20442 and the maximum is 64. 2045.It Va rpc_lockd_enable 2046.Pq Vt bool 2047If set to 2048.Dq Li YES 2049and also an NFS server or client, run 2050.Xr rpc.lockd 8 2051at boot time. 2052.It Va rpc_lockd_flags 2053.Pq Vt str 2054If 2055.Va rpc_lockd_enable 2056is set to 2057.Dq Li YES , 2058these are the flags to pass to the 2059.Xr rpc.lockd 8 2060daemon. 2061.It Va rpc_statd_enable 2062.Pq Vt bool 2063If set to 2064.Dq Li YES 2065and also an NFS server or client, run 2066.Xr rpc.statd 8 2067at boot time. 2068.It Va rpc_statd_flags 2069.Pq Vt str 2070If 2071.Va rpc_statd_enable 2072is set to 2073.Dq Li YES , 2074these are the flags to pass to the 2075.Xr rpc.statd 8 2076daemon. 2077.It Va rpcbind_program 2078.Pq Vt str 2079Path to 2080.Xr rpcbind 8 2081(default 2082.Pa /usr/sbin/rpcbind ) . 2083.It Va rpcbind_enable 2084.Pq Vt bool 2085If set to 2086.Dq Li YES , 2087run the 2088.Xr rpcbind 8 2089service at boot time. 2090.It Va rpcbind_flags 2091.Pq Vt str 2092If 2093.Va rpcbind_enable 2094is set to 2095.Dq Li YES , 2096these are the flags to pass to the 2097.Xr rpcbind 8 2098daemon. 2099.It Va keyserv_enable 2100.Pq Vt bool 2101If set to 2102.Dq Li YES , 2103run the 2104.Xr keyserv 8 2105daemon on boot for running Secure RPC. 2106.It Va keyserv_flags 2107.Pq Vt str 2108If 2109.Va keyserv_enable 2110is set to 2111.Dq Li YES , 2112these are the flags to pass to 2113.Xr keyserv 8 2114daemon. 2115.It Va pppoed_enable 2116.Pq Vt bool 2117If set to 2118.Dq Li YES , 2119run the 2120.Xr pppoed 8 2121daemon at boot time to provide PPP over Ethernet services. 2122.It Va pppoed_ Ns Aq Ar provider 2123.Pq Vt str 2124.Xr pppoed 8 2125listens to requests to this 2126.Ar provider 2127and ultimately runs 2128.Xr ppp 8 2129with a 2130.Ar system 2131argument of the same name. 2132.It Va pppoed_flags 2133.Pq Vt str 2134Additional flags to pass to 2135.Xr pppoed 8 . 2136.It Va pppoed_interface 2137.Pq Vt str 2138The network interface to run 2139.Xr pppoed 8 2140on. 2141This is mandatory when 2142.Va pppoed_enable 2143is set to 2144.Dq Li YES . 2145.It Va timed_enable 2146.Pq Vt bool 2147If set to 2148.Dq Li YES , 2149run the 2150.Xr timed 8 2151service at boot time. 2152This command is intended for networks of 2153machines where a consistent 2154.Dq "network time" 2155for all hosts must be established. 2156This is often useful in large NFS 2157environments where time stamps on files are expected to be consistent 2158network-wide. 2159.It Va timed_flags 2160.Pq Vt str 2161If 2162.Va timed_enable 2163is set to 2164.Dq Li YES , 2165these are the flags to pass to the 2166.Xr timed 8 2167service. 2168.It Va ntpdate_enable 2169.Pq Vt bool 2170If set to 2171.Dq Li YES , 2172run 2173.Xr ntpdate 8 2174at system startup. 2175This command is intended to 2176synchronize the system clock only 2177.Em once 2178from some standard reference. 2179An option to set this up initially 2180(from a list of known servers) is also provided by the 2181.Xr sysinstall 8 2182program when the system is first installed. 2183.It Va ntpdate_config 2184.Pq Vt str 2185Configuration file for 2186.Xr ntpdate 8 . 2187Default 2188.Pa /etc/ntp.conf . 2189.It Va ntpdate_hosts 2190.Pq Vt str 2191A whitespace-separated list of NTP servers to synchronize with at startup. 2192The default is to use the servers listed in 2193.Va ntpdate_config , 2194if that file exists. 2195.It Va ntpdate_program 2196.Pq Vt str 2197Path to 2198.Xr ntpdate 8 2199(default 2200.Pa /usr/sbin/ntpdate ) . 2201.It Va ntpdate_flags 2202.Pq Vt str 2203If 2204.Va ntpdate_enable 2205is set to 2206.Dq Li YES , 2207these are the flags to pass to the 2208.Xr ntpdate 8 2209command (typically a hostname). 2210.It Va ntpd_enable 2211.Pq Vt bool 2212If set to 2213.Dq Li YES , 2214run the 2215.Xr ntpd 8 2216command at boot time. 2217.It Va ntpd_program 2218.Pq Vt str 2219Path to 2220.Xr ntpd 8 2221(default 2222.Pa /usr/sbin/ntpd ) . 2223.It Va ntpd_config 2224.Pq Vt str 2225Path to 2226.Xr ntpd 8 2227configuration file. 2228Default 2229.Pa /etc/ntp.conf . 2230.It Va ntpd_flags 2231.Pq Vt str 2232If 2233.Va ntpd_enable 2234is set to 2235.Dq Li YES , 2236these are the flags to pass to the 2237.Xr ntpd 8 2238daemon. 2239.It Va ntpd_sync_on_start 2240.Pq Vt bool 2241If set to 2242.Dq Li YES , 2243.Xr ntpd 8 2244is run with the 2245.Fl g 2246flag, which syncs the system's clock on startup. 2247See 2248.Xr ntpd 8 2249for more information regarding the 2250.Fl g 2251option. 2252This is a preferred alternative to using 2253.Xr ntpdate 8 2254or specifying the 2255.Va ntpdate_enable 2256variable. 2257.It Va nis_client_enable 2258.Pq Vt bool 2259If set to 2260.Dq Li YES , 2261run the 2262.Xr ypbind 8 2263service at system boot time. 2264.It Va nis_client_flags 2265.Pq Vt str 2266If 2267.Va nis_client_enable 2268is set to 2269.Dq Li YES , 2270these are the flags to pass to the 2271.Xr ypbind 8 2272service. 2273.It Va nis_ypset_enable 2274.Pq Vt bool 2275If set to 2276.Dq Li YES , 2277run the 2278.Xr ypset 8 2279daemon at system boot time. 2280.It Va nis_ypset_flags 2281.Pq Vt str 2282If 2283.Va nis_ypset_enable 2284is set to 2285.Dq Li YES , 2286these are the flags to pass to the 2287.Xr ypset 8 2288daemon. 2289.It Va nis_server_enable 2290.Pq Vt bool 2291If set to 2292.Dq Li YES , 2293run the 2294.Xr ypserv 8 2295daemon at system boot time. 2296.It Va nis_server_flags 2297.Pq Vt str 2298If 2299.Va nis_server_enable 2300is set to 2301.Dq Li YES , 2302these are the flags to pass to the 2303.Xr ypserv 8 2304daemon. 2305.It Va nis_ypxfrd_enable 2306.Pq Vt bool 2307If set to 2308.Dq Li YES , 2309run the 2310.Xr rpc.ypxfrd 8 2311daemon at system boot time. 2312.It Va nis_ypxfrd_flags 2313.Pq Vt str 2314If 2315.Va nis_ypxfrd_enable 2316is set to 2317.Dq Li YES , 2318these are the flags to pass to the 2319.Xr rpc.ypxfrd 8 2320daemon. 2321.It Va nis_yppasswdd_enable 2322.Pq Vt bool 2323If set to 2324.Dq Li YES , 2325run the 2326.Xr rpc.yppasswdd 8 2327daemon at system boot time. 2328.It Va nis_yppasswdd_flags 2329.Pq Vt str 2330If 2331.Va nis_yppasswdd_enable 2332is set to 2333.Dq Li YES , 2334these are the flags to pass to the 2335.Xr rpc.yppasswdd 8 2336daemon. 2337.It Va rpc_ypupdated_enable 2338.Pq Vt bool 2339If set to 2340.Dq Li YES , 2341run the 2342.Nm rpc.ypupdated 2343daemon at system boot time. 2344.It Va bsnmpd_enable 2345.Pq Vt bool 2346If set to 2347.Dq Li YES , 2348run the 2349.Xr bsnmpd 1 2350daemon at system boot time. 2351Be sure to understand the security implications of running SNMP daemon 2352on your host. 2353.It Va bsnmpd_flags 2354.Pq Vt str 2355If 2356.Va bsnmpd_enable 2357is set to 2358.Dq Li YES , 2359these are the flags to pass to the 2360.Xr bsnmpd 1 2361daemon. 2362.It Va defaultrouter 2363.Pq Vt str 2364If not set to 2365.Dq Li NO , 2366create a default route to this host name or IP address 2367(use an IP address if this router is also required to get to the 2368name server!). 2369.It Va ipv6_defaultrouter 2370.Pq Vt str 2371The IPv6 equivalent of 2372.Va defaultrouter . 2373.It Va static_arp_pairs 2374.Pq Vt str 2375Set to the list of static ARP pairs that are to be added at system 2376boot time. 2377For each whitespace separated 2378.Ar element 2379in the value, a 2380.Va static_arp_ Ns Aq Ar element 2381variable is assumed to exist whose contents will later be passed to a 2382.Dq Nm arp Cm -S 2383operation. 2384For example 2385.Bd -literal 2386static_arp_pairs="gw" 2387static_arp_gw="192.168.1.1 00:01:02:03:04:05" 2388.Ed 2389.It Va static_routes 2390.Pq Vt str 2391Set to the list of static routes that are to be added at system 2392boot time. 2393If not set to 2394.Dq Li NO 2395then for each whitespace separated 2396.Ar element 2397in the value, a 2398.Va route_ Ns Aq Ar element 2399variable is assumed to exist 2400whose contents will later be passed to a 2401.Dq Nm route Cm add 2402operation. 2403For example: 2404.Bd -literal 2405static_routes="mcast gif0local" 2406route_mcast="-net 224.0.0.0/4 -iface gif0" 2407route_gif0local="-host 169.254.1.1 -iface lo0" 2408.Ed 2409.It Va ipv6_static_routes 2410.Pq Vt str 2411The IPv6 equivalent of 2412.Va static_routes . 2413If not set to 2414.Dq Li NO 2415then for each whitespace separated 2416.Ar element 2417in the value, a 2418.Va ipv6_route_ Ns Aq Ar element 2419variable is assumed to exist 2420whose contents will later be passed to a 2421.Dq Nm route Cm add Fl inet6 2422operation. 2423.It Va natm_static_routes 2424.Pq Vt str 2425The 2426.Xr natmip 4 2427equivalent of 2428.Va static_routes . 2429If not empty then for each whitespace separated 2430.Ar element 2431in the value, a 2432.Va route_ Ns Aq Ar element 2433variable is assumed to exist whose contents will later be passed to a 2434.Dq Nm atmconfig Cm natm Cm add 2435operation. 2436.It Va gateway_enable 2437.Pq Vt bool 2438If set to 2439.Dq Li YES , 2440configure host to act as an IP router, e.g.\& to forward packets 2441between interfaces. 2442.It Va ipv6_gateway_enable 2443.Pq Vt bool 2444The IPv6 equivalent of 2445.Va gateway_enable . 2446.It Va routed_enable 2447.Pq Vt bool 2448If set to 2449.Dq Li YES , 2450run a routing daemon of some sort, based on the 2451settings of 2452.Va routed_program 2453and 2454.Va routed_flags . 2455.It Va route6d_enable 2456.Pq Vt bool 2457The IPv6 equivalent of 2458.Va routed_enable . 2459If set to 2460.Dq Li YES , 2461run a routing daemon of some sort, based on the 2462settings of 2463.Va route6d_program 2464and 2465.Va route6d_flags . 2466.It Va routed_program 2467.Pq Vt str 2468If 2469.Va routed_enable 2470is set to 2471.Dq Li YES , 2472this is the name of the routing daemon to use. 2473.It Va route6d_program 2474.Pq Vt str 2475The IPv6 equivalent of 2476.Va routed_program . 2477.It Va routed_flags 2478.Pq Vt str 2479If 2480.Va routed_enable 2481is set to 2482.Dq Li YES , 2483these are the flags to pass to the routing daemon. 2484.It Va route6d_flags 2485.Pq Vt str 2486The IPv6 equivalent of 2487.Va routed_flags . 2488.It Va mrouted_enable 2489.Pq Vt bool 2490If set to 2491.Dq Li YES , 2492run the multicast routing daemon, 2493.Xr mrouted 8 . 2494.It Va mroute6d_enable 2495.Pq Vt bool 2496The IPv6 equivalent of 2497.Va mrouted_enable . 2498If set to 2499.Dq Li YES , 2500run the IPv6 multicast routing daemon. 2501.Pp 2502Note that multicast routing daemons are no longer included in the 2503.Fx 2504base system, however, both 2505.Xr mrouted 8 2506and 2507.Xr pim6dd 8 2508may be installed from the 2509.Fx 2510Ports Collection. 2511.It Va mrouted_flags 2512.Pq Vt str 2513If 2514.Va mrouted_enable 2515is set to 2516.Dq Li YES , 2517these are the flags to pass to the 2518.Xr mrouted 8 2519daemon. 2520.It Va mroute6d_flags 2521.Pq Vt str 2522The IPv6 equivalent of 2523.Va mrouted_flags . 2524If 2525.Va mroute6d_enable 2526is set to 2527.Dq Li YES , 2528these are the flags passed to the IPv6 multicast routing daemon. 2529.It Va mroute6d_program 2530.Pq Vt str 2531If 2532.Va mroute6d_enable 2533is set to 2534.Dq Li YES , 2535this is the path to the IPv6 multicast routing daemon. 2536.It Va rtadvd_enable 2537.Pq Vt bool 2538If set to 2539.Dq Li YES , 2540run the 2541.Xr rtadvd 8 2542daemon at boot time. 2543.Xr rtadvd 8 2544will only run if 2545.Va ipv6_gateway_enable 2546is also set to 2547.Dq Li YES . 2548The 2549.Xr rtadvd 8 2550utility sends router advertisement packets to the interfaces specified in 2551.Va rtadvd_interfaces 2552and should only be enabled with great care. 2553You may want to fine-tune 2554.Xr rtadvd.conf 5 . 2555.It Va rtadvd_interfaces 2556.Pq Vt str 2557If 2558.Va rtadvd_enable 2559is set to 2560.Dq Li YES 2561this is the list of interfaces to use. 2562.It Va ipxgateway_enable 2563.Pq Vt bool 2564If set to 2565.Dq Li YES , 2566enable the routing of IPX traffic. 2567.It Va ipxrouted_enable 2568.Pq Vt bool 2569If set to 2570.Dq Li YES , 2571run the 2572.Xr IPXrouted 8 2573daemon at system boot time. 2574.It Va ipxrouted_flags 2575.Pq Vt str 2576If 2577.Va ipxrouted_enable 2578is set to 2579.Dq Li YES , 2580these are the flags to pass to the 2581.Xr IPXrouted 8 2582daemon. 2583.It Va arpproxy_all 2584.Pq Vt bool 2585If set to 2586.Dq Li YES , 2587enable global proxy ARP. 2588.It Va forward_sourceroute 2589.Pq Vt bool 2590If set to 2591.Dq Li YES 2592and 2593.Va gateway_enable 2594is also set to 2595.Dq Li YES , 2596source-routed packets are forwarded. 2597.It Va accept_sourceroute 2598.Pq Vt bool 2599If set to 2600.Dq Li YES , 2601the system will accept source-routed packets directed at it. 2602.It Va rarpd_enable 2603.Pq Vt bool 2604If set to 2605.Dq Li YES , 2606run the 2607.Xr rarpd 8 2608daemon at system boot time. 2609.It Va rarpd_flags 2610.Pq Vt str 2611If 2612.Va rarpd_enable 2613is set to 2614.Dq Li YES , 2615these are the flags to pass to the 2616.Xr rarpd 8 2617daemon. 2618.It Va bootparamd_enable 2619.Pq Vt bool 2620If set to 2621.Dq Li YES , 2622run the 2623.Xr bootparamd 8 2624daemon at system boot time. 2625.It Va bootparamd_flags 2626.Pq Vt str 2627If 2628.Va bootparamd_enable 2629is set to 2630.Dq Li YES , 2631these are the flags to pass to the 2632.Xr bootparamd 8 2633daemon. 2634.It Va stf_interface_ipv4addr 2635.Pq Vt str 2636If not set to 2637.Dq Li NO , 2638this is the local IPv4 address for 6to4 (IPv6 over IPv4 tunneling 2639interface). 2640Specify this entry to enable the 6to4 interface. 2641.It Va stf_interface_ipv4plen 2642.Pq Vt int 2643Prefix length for 6to4 IPv4 addresses, to limit peer address range. 2644An effective value is 0-31. 2645.It Va stf_interface_ipv6_ifid 2646.Pq Vt str 2647IPv6 interface ID for 2648.Xr stf 4 . 2649This can be set to 2650.Dq Li AUTO . 2651.It Va stf_interface_ipv6_slaid 2652.Pq Vt str 2653IPv6 Site Level Aggregator for 2654.Xr stf 4 . 2655.It Va ipv6_faith_prefix 2656.Pq Vt str 2657If not set to 2658.Dq Li NO , 2659this is the faith prefix to enable a FAITH IPv6-to-IPv4 TCP 2660translator. 2661You also need 2662.Xr faithd 8 2663setup. 2664.It Va ipv6_ipv4mapping 2665.Pq Vt bool 2666If set to 2667.Dq Li YES 2668this enables IPv4 mapped IPv6 address communication (like 2669.Li ::ffff:a.b.c.d ) . 2670.It Va atm_enable 2671.Pq Vt bool 2672Set to 2673.Dq Li YES 2674to enable the configuration of ATM interfaces at system boot time. 2675For all of the ATM variables described below, please refer to the 2676.Xr atm 8 2677manual page for further details on the available command parameters. 2678Also refer to the files in 2679.Pa /usr/share/examples/atm 2680for more detailed configuration information. 2681.It Va atm_load 2682.Pq Vt str 2683This is a list of physical ATM interface drivers to load. 2684Typical values are 2685.Dq Li hfa_pci 2686and/or 2687.Dq Li hea_pci . 2688.It Va atm_netif_ Ns Aq Ar intf 2689.Pq Vt str 2690For the ATM physical interface 2691.Ar intf , 2692this variable defines the name prefix and count for the ATM network 2693interfaces to be created. 2694The value will be passed as the parameters of an 2695.Dq Nm atm Cm "set netif" Ar intf 2696command. 2697.It Va atm_sigmgr_ Ns Aq Ar intf 2698.Pq Vt str 2699For the ATM physical interface 2700.Ar intf , 2701this variable defines the ATM signalling manager to be used. 2702The value will be passed as the parameters of an 2703.Dq Nm atm Cm attach Ar intf 2704command. 2705.It Va atm_prefix_ Ns Aq Ar intf 2706.Pq Vt str 2707For the ATM physical interface 2708.Ar intf , 2709this variable defines the NSAP prefix for interfaces using a UNI signalling 2710manager. 2711If set to 2712.Dq Li ILMI , 2713the prefix will automatically be set via the 2714.Xr ilmid 8 2715daemon. 2716Otherwise, the value will be passed as the parameters of an 2717.Dq Nm atm Cm "set prefix" Ar intf 2718command. 2719.It Va atm_macaddr_ Ns Aq Ar intf 2720.Pq Vt str 2721For the ATM physical interface 2722.Ar intf , 2723this variable defines the MAC address for interfaces using a UNI signalling 2724manager. 2725If set to 2726.Dq Li NO , 2727the hardware MAC address contained in the ATM interface card will be used. 2728Otherwise, the value will be passed as the parameters of an 2729.Dq Nm atm Cm "set mac" Ar intf 2730command. 2731.It Va atm_arpserver_ Ns Aq Ar netif 2732.Pq Vt str 2733For the ATM network interface 2734.Ar netif , 2735this variable defines the ATM address for a host which is to provide ATMARP 2736service. 2737This variable is only applicable to interfaces using a UNI signalling 2738manager. 2739If set to 2740.Dq Li local , 2741this host will become an ATMARP server. 2742The value will be passed as the parameters of an 2743.Dq Nm atm Cm "set arpserver" Ar netif 2744command. 2745.It Va atm_scsparp_ Ns Aq Ar netif 2746.Pq Vt bool 2747If set to 2748.Dq Li YES , 2749SCSP/ATMARP service for the network interface 2750.Ar netif 2751will be initiated using the 2752.Xr scspd 8 2753and 2754.Xr atmarpd 8 2755daemons. 2756This variable is only applicable if 2757.Va atm_arpserver_ Ns Aq Ar netif 2758is set to 2759.Dq Li local . 2760.It Va atm_pvcs 2761.Pq Vt str 2762Set to the list of ATM PVCs to be added at system 2763boot time. 2764For each whitespace separated 2765.Ar element 2766in the value, an 2767.Va atm_pvc_ Ns Aq Ar element 2768variable is assumed to exist. 2769The value of each of these variables 2770will be passed as the parameters of an 2771.Dq Nm atm Cm "add pvc" 2772command. 2773.It Va atm_arps 2774.Pq Vt str 2775Set to the list of permanent ATM ARP entries to be added 2776at system boot time. 2777For each whitespace separated 2778.Ar element 2779in the value, an 2780.Va atm_arp_ Ns Aq Ar element 2781variable is assumed to exist. 2782The value of each of these variables 2783will be passed as the parameters of an 2784.Dq Nm atm Cm "add arp" 2785command. 2786.It Va natm_interfaces 2787.Pq Vt str 2788Set to the list of 2789.Xr natm 4 2790interfaces that will also be used for HARP through 2791.Xr harp 4 . 2792If this list is not empty all interfaces in the list will be brought up 2793with 2794.Xr ifconfig 8 2795and 2796.Xr harp 4 2797will be loaded. 2798For this to work the interface drivers must be either compiled into the 2799kernel or must reside on the root partition. 2800.It Va keybell 2801.Pq Vt str 2802The keyboard bell sound. 2803Set to 2804.Dq Li normal , 2805.Dq Li visual , 2806.Dq Li off , 2807or 2808.Dq Li NO 2809if the default behavior is desired. 2810For details, refer to the 2811.Xr kbdcontrol 1 2812manpage. 2813.It Va keyboard 2814.Pq Vt str 2815If set to a non-null string, the virtual console's keyboard input is 2816set to this device. 2817.It Va keymap 2818.Pq Vt str 2819If set to 2820.Dq Li NO , 2821no keymap is installed, otherwise the value is used to install 2822the keymap file in 2823.Pa /usr/share/syscons/keymaps/ Ns Ao Ar value Ac Ns Pa .kbd . 2824.It Va keyrate 2825.Pq Vt str 2826The keyboard repeat speed. 2827Set to 2828.Dq Li slow , 2829.Dq Li normal , 2830.Dq Li fast , 2831or 2832.Dq Li NO 2833if the default behavior is desired. 2834.It Va keychange 2835.Pq Vt str 2836If not set to 2837.Dq Li NO , 2838attempt to program the function keys with the value. 2839The value should 2840be a single string of the form: 2841.Dq Ar funkey_number new_value Op Ar funkey_number new_value ... . 2842.It Va cursor 2843.Pq Vt str 2844Can be set to the value of 2845.Dq Li normal , 2846.Dq Li blink , 2847.Dq Li destructive , 2848or 2849.Dq Li NO 2850to set the cursor behavior explicitly or choose the default behavior. 2851.It Va scrnmap 2852.Pq Vt str 2853If set to 2854.Dq Li NO , 2855no screen map is installed, otherwise the value is used to install 2856the screen map file in 2857.Pa /usr/share/syscons/scrnmaps/ Ns Aq Ar value . 2858.It Va font8x16 2859.Pq Vt str 2860If set to 2861.Dq Li NO , 2862the default 8x16 font value is used for screen size requests, otherwise 2863the value in 2864.Pa /usr/share/syscons/fonts/ Ns Aq Ar value 2865is used. 2866.It Va font8x14 2867.Pq Vt str 2868If set to 2869.Dq Li NO , 2870the default 8x14 font value is used for screen size requests, otherwise 2871the value in 2872.Pa /usr/share/syscons/fonts/ Ns Aq Ar value 2873is used. 2874.It Va font8x8 2875.Pq Vt str 2876If set to 2877.Dq Li NO , 2878the default 8x8 font value is used for screen size requests, otherwise 2879the value in 2880.Pa /usr/share/syscons/fonts/ Ns Aq Ar value 2881is used. 2882.It Va blanktime 2883.Pq Vt int 2884If set to 2885.Dq Li NO , 2886the default screen blanking interval is used, otherwise it is set 2887to 2888.Ar value 2889seconds. 2890.It Va saver 2891.Pq Vt str 2892If not set to 2893.Dq Li NO , 2894this is the actual screen saver to use 2895.Li ( blank , snake , daemon , 2896etc). 2897.It Va moused_nondefault_enable 2898.Pq Vt str 2899If set to 2900.Dq Li NO , 2901the mouse device specified on 2902the command line is not automatically treated as enabled by the 2903.Pa /etc/rc.d/moused 2904script. 2905Having this variable set to 2906.Dq Li YES 2907allows a 2908.Xr usb 4 2909mouse, 2910for example, 2911to be enabled as soon as it is plugged in. 2912.It Va moused_enable 2913.Pq Vt str 2914If set to 2915.Dq Li YES , 2916the 2917.Xr moused 8 2918daemon is started for doing cut/paste selection on the console. 2919.It Va moused_type 2920.Pq Vt str 2921This is the protocol type of the mouse connected to this host. 2922This variable must be set if 2923.Va moused_enable 2924is set to 2925.Dq Li YES . 2926The 2927.Xr moused 8 2928daemon 2929is able to detect the appropriate mouse type automatically in many cases. 2930Set this variable to 2931.Dq Li auto 2932to let the daemon detect it, or 2933select one from the following list if the automatic detection fails. 2934.Pp 2935If the mouse is attached to the PS/2 mouse port, choose 2936.Dq Li auto 2937or 2938.Dq Li ps/2 , 2939regardless of the brand and model of the mouse. 2940Likewise, if the 2941mouse is attached to the bus mouse port, choose 2942.Dq Li auto 2943or 2944.Dq Li busmouse . 2945All other protocols are for serial mice and will not work with 2946the PS/2 and bus mice. 2947If this is a USB mouse, 2948.Dq Li auto 2949is the only protocol type which will work. 2950.Pp 2951.Bl -tag -width ".Li x10mouseremote" -compact 2952.It Li microsoft 2953Microsoft mouse (serial) 2954.It Li intellimouse 2955Microsoft IntelliMouse (serial) 2956.It Li mousesystems 2957Mouse systems Corp.\& mouse (serial) 2958.It Li mmseries 2959MM Series mouse (serial) 2960.It Li logitech 2961Logitech mouse (serial) 2962.It Li busmouse 2963A bus mouse 2964.It Li mouseman 2965Logitech MouseMan and TrackMan (serial) 2966.It Li glidepoint 2967ALPS GlidePoint (serial) 2968.It Li thinkingmouse 2969Kensington ThinkingMouse (serial) 2970.It Li ps/2 2971PS/2 mouse 2972.It Li mmhittab 2973MM HitTablet (serial) 2974.It Li x10mouseremote 2975X10 MouseRemote (serial) 2976.It Li versapad 2977Interlink VersaPad (serial) 2978.El 2979.Pp 2980Even if the mouse is not in the above list, it may be compatible 2981with one in the list. 2982Refer to the manual page for 2983.Xr moused 8 2984for compatibility information. 2985.Pp 2986It should also be noted that while this is enabled, any 2987other client of the mouse (such as an X server) should access 2988the mouse through the virtual mouse device, 2989.Pa /dev/sysmouse , 2990and configure it as a 2991.Dq Li sysmouse 2992type mouse, since all 2993mouse data is converted to this single canonical format when 2994using 2995.Xr moused 8 . 2996If the client program does not support the 2997.Dq Li sysmouse 2998type, 2999specify the 3000.Dq Li mousesystems 3001type. 3002It is the second preferred type. 3003.It Va moused_port 3004.Pq Vt str 3005If 3006.Va moused_enable 3007is set to 3008.Dq Li YES , 3009this is the actual port the mouse is on. 3010It might be 3011.Pa /dev/cuad0 3012for a COM1 serial mouse, 3013.Pa /dev/psm0 3014for a PS/2 mouse or 3015.Pa /dev/mse0 3016for a bus mouse, for example. 3017.It Va moused_flags 3018.Pq Vt str 3019If 3020.Va moused_flags 3021is set, its value is used as an additional set of flags to pass to the 3022.Xr moused 8 3023daemon. 3024.It Va "moused_" Ns Ar XXX Ns Va "_flags" 3025When 3026.Va moused_nondefault_enable 3027is enabled, and a 3028.Xr moused 8 3029daemon is started for a non-default port, the 3030.Va "moused_" Ns Ar XXX Ns Va "_flags" 3031set of options has precedence over and replaces the default 3032.Va moused_flags (where 3033.Ar XXX 3034is the name of the non-default port, i.e.\& 3035.Ar ums0 ) . 3036By setting 3037.Va "moused_" Ns Ar XXX Ns Va "_flags" 3038it is possible to set up a different set of default flags for each 3039.Xr moused 8 3040instance. 3041For example, you can use 3042.Dq Li "-3" 3043for the default 3044.Va moused_flags 3045to make your laptop's touchpad more comfortable to use, 3046but an empty set of options for 3047.Va moused_ums0_flags 3048when your 3049.Xr usb 4 3050mouse has three or more buttons. 3051.It Va mousechar_start 3052.Pq Vt int 3053If set to 3054.Dq Li NO , 3055the default mouse cursor character range 3056.Li 0xd0 Ns - Ns Li 0xd3 3057is used, 3058otherwise the range start is set 3059to 3060.Ar value 3061character, see 3062.Xr vidcontrol 1 . 3063Use if the default range is occupied in the language code table. 3064.It Va allscreens_flags 3065.Pq Vt str 3066If set, 3067.Xr vidcontrol 1 3068is run with these options for each of the virtual terminals 3069.Pq Pa /dev/ttyv* . 3070For example, 3071.Dq Fl m Cm on 3072will enable the mouse pointer on all virtual terminals 3073if 3074.Va moused_enable 3075is set to 3076.Dq Li YES . 3077.It Va allscreens_kbdflags 3078.Pq Vt str 3079If set, 3080.Xr kbdcontrol 1 3081is run with these options for each of the virtual terminals 3082.Pq Pa /dev/ttyv* . 3083For example, 3084.Dq Fl h Li 200 3085will set the 3086.Xr syscons 4 3087scrollback (history) buffer to 200 lines. 3088.It Va cron_enable 3089.Pq Vt bool 3090If set to 3091.Dq Li YES , 3092run the 3093.Xr cron 8 3094daemon at system boot time. 3095.It Va cron_program 3096.Pq Vt str 3097Path to 3098.Xr cron 8 3099(default 3100.Pa /usr/sbin/cron ) . 3101.It Va cron_flags 3102.Pq Vt str 3103If 3104.Va cron_enable 3105is set to 3106.Dq Li YES , 3107these are the flags to pass to 3108.Xr cron 8 . 3109.It Va cron_dst 3110.Pq Vt bool 3111If set to 3112.Dq Li YES , 3113enable the special handling of transitions to and from the 3114Daylight Saving Time in 3115.Xr cron 8 3116(equivalent to using the flag 3117.Fl s ) . 3118.It Va lpd_program 3119.Pq Vt str 3120Path to 3121.Xr lpd 8 3122(default 3123.Pa /usr/sbin/lpd ) . 3124.It Va lpd_enable 3125.Pq Vt bool 3126If set to 3127.Dq Li YES , 3128run the 3129.Xr lpd 8 3130daemon at system boot time. 3131.It Va lpd_flags 3132.Pq Vt str 3133If 3134.Va lpd_enable 3135is set to 3136.Dq Li YES , 3137these are the flags to pass to the 3138.Xr lpd 8 3139daemon. 3140.It Va chkprintcap_enable 3141.Pq Vt bool 3142If set to 3143.Dq Li YES , 3144run the 3145.Xr chkprintcap 8 3146command before starting the 3147.Xr lpd 8 3148daemon. 3149.It Va chkprintcap_flags 3150.Pq Vt str 3151If 3152.Va lpd_enable 3153and 3154.Va chkprintcap_enable 3155are set to 3156.Dq Li YES , 3157these are the flags to pass to the 3158.Xr chkprintcap 8 3159program. 3160The default is 3161.Dq Li -d , 3162which causes missing directories to be created. 3163.It Va mta_start_script 3164.Pq Vt str 3165This variable specifies the full path to the script to run to start 3166a mail transfer agent. 3167The default is 3168.Pa /etc/rc.sendmail . 3169The 3170.Va sendmail_* 3171variables which 3172.Pa /etc/rc.sendmail 3173uses are documented in the 3174.Xr rc.sendmail 8 3175manual page. 3176.It Va dumpdev 3177.Pq Vt str 3178Indicates the device (usually a swap partition) to which a crash dump 3179should be written in the event of a system crash. 3180If the value of this variable is 3181.Dq Li AUTO , 3182the first suitable swap device listed in 3183.Pa /etc/fstab 3184will be used as dump device. 3185Otherwise, the value of this variable is passed as the argument to 3186.Xr dumpon 8 . 3187To disable crash dumps, set this variable to 3188.Dq Li NO . 3189.It Va dumpdir 3190.Pq Vt str 3191When the system reboots after a crash and a crash dump is found on the 3192device specified by the 3193.Va dumpdev 3194variable, 3195.Xr savecore 8 3196will save that crash dump and a copy of the kernel to the directory 3197specified by the 3198.Va dumpdir 3199variable. 3200The default value is 3201.Pa /var/crash . 3202Set to 3203.Dq Li NO 3204to not run 3205.Xr savecore 8 3206at boot time when 3207.Va dumpdir 3208is set. 3209.It Va savecore_flags 3210.Pq Vt str 3211If crash dumps are enabled, these are the flags to pass to the 3212.Xr savecore 8 3213utility. 3214.It Va quota_enable 3215.Pq Vt bool 3216Set to 3217.Dq Li YES 3218to turn on user and group disk quotas on system startup via the 3219.Xr quotaon 8 3220command for all file systems marked as having quotas enabled in 3221.Pa /etc/fstab . 3222The kernel must be built with 3223.Cd "options QUOTA" 3224for disk quotas to function. 3225.It Va check_quotas 3226.Pq Vt bool 3227Set to 3228.Dq Li YES 3229to enable user and group disk quota checking via the 3230.Xr quotacheck 8 3231command. 3232.It Va quotacheck_flags 3233.Pq Vt str 3234If 3235.Va quota_enable 3236is set to 3237.Dq Li YES , 3238and 3239.Va check_quotas 3240is set to 3241.Dq Li YES , 3242these are the flags to pass to the 3243.Xr quotacheck 8 3244utility. 3245The default is 3246.Dq Li "-a" , 3247which checks quotas for all file systems with quotas enabled in 3248.Pa /etc/fstab . 3249.It Va quotaon_flags 3250.Pq Vt str 3251If 3252.Va quota_enable 3253is set to 3254.Dq Li YES , 3255these are the flags to pass to the 3256.Xr quotaon 8 3257utility. 3258The default is 3259.Dq Li "-a" , 3260which enables quotas for all file systems with quotas enabled in 3261.Pa /etc/fstab . 3262.It Va quotaoff_flags 3263.Pq Vt str 3264If 3265.Va quota_enable 3266is set to 3267.Dq Li YES , 3268these are the flags to pass to the 3269.Xr quotaoff 8 3270utility when shutting down the quota system. 3271The default is 3272.Dq Li "-a" , 3273which disables quotas for all file systems with quotas enabled in 3274.Pa /etc/fstab . 3275.It Va accounting_enable 3276.Pq Vt bool 3277Set to 3278.Dq Li YES 3279to enable system accounting through the 3280.Xr accton 8 3281facility. 3282.It Va ibcs2_enable 3283.Pq Vt bool 3284Set to 3285.Dq Li YES 3286to enable iBCS2 (SCO) binary emulation at system initial boot 3287time. 3288.It Va ibcs2_loaders 3289.Pq Vt str 3290If not set to 3291.Dq Li NO 3292and if 3293.Va ibcs2_enable 3294is set to 3295.Dq Li YES , 3296this specifies a list of additional iBCS2 loaders to enable. 3297.It Va linux_enable 3298.Pq Vt bool 3299Set to 3300.Dq Li YES 3301to enable Linux/ELF binary emulation at system initial 3302boot time. 3303.It Va svr4_enable 3304.Pq Vt bool 3305If set to 3306.Dq Li YES , 3307enable SysVR4 emulation at boot time. 3308.It Va sysvipc_enable 3309.Pq Vt bool 3310If set to 3311.Dq Li YES , 3312load System V IPC primitives at boot time. 3313.It Va clear_tmp_enable 3314.Pq Vt bool 3315Set to 3316.Dq Li YES 3317to have 3318.Pa /tmp 3319cleaned at startup. 3320.It Va clear_tmp_X 3321.Pq Vt bool 3322Set to 3323.Dq Li NO 3324to disable removing of X11 lock files, 3325and the removal and (secure) recreation 3326of the various socket directories for X11 3327related programs. 3328.It Va ldconfig_paths 3329.Pq Vt str 3330Set to the list of shared library paths to use with 3331.Xr ldconfig 8 . 3332NOTE: 3333.Pa /usr/lib 3334will always be added first, so it need not appear in this list. 3335.It Va ldconfig32_paths 3336.Pq Vt str 3337Set to the list of 32-bit compatibility shared library paths to 3338use with 3339.Xr ldconfig 8 . 3340.It Va ldconfig_paths_aout 3341.Pq Vt str 3342Set to the list of shared library paths to use with 3343.Xr ldconfig 8 3344legacy 3345.Xr a.out 5 3346support. 3347.It Va ldconfig_insecure 3348.Pq Vt bool 3349The 3350.Xr ldconfig 8 3351utility normally refuses to use directories 3352which are writable by anyone except root. 3353Set this variable to 3354.Dq Li YES 3355to disable that security check during system startup. 3356.It Va ldconfig_local_dirs 3357.Pq Vt str 3358Set to the list of local 3359.Xr ldconfig 8 3360directories. 3361The names of all files in the directories listed will be 3362passed as arguments to 3363.Xr ldconfig 8 . 3364.It Va ldconfig_local32_dirs 3365.Pq Vt str 3366Set to the list of local 32-bit compatibility 3367.Xr ldconfig 8 3368directories. 3369The names of all files in the directories listed will be 3370passed as arguments to 3371.Dq Nm ldconfig Fl 32 . 3372.It Va kern_securelevel_enable 3373.Pq Vt bool 3374Set to 3375.Dq Li YES 3376to set the kernel security level at system startup. 3377.It Va kern_securelevel 3378.Pq Vt int 3379The kernel security level to set at startup. 3380The allowed range of 3381.Ar value 3382ranges from \-1 (the compile time default) to 3 (the 3383most secure). 3384See 3385.Xr security 7 3386for the list of possible security levels and their effect 3387on system operation. 3388.It Va sshd_program 3389.Pq Vt str 3390Path to the SSH server program 3391.Pa ( /usr/sbin/sshd 3392is the default). 3393.It Va sshd_enable 3394.Pq Vt bool 3395Set to 3396.Dq Li YES 3397to start 3398.Xr sshd 8 3399at system boot time. 3400.It Va sshd_flags 3401.Pq Vt str 3402If 3403.Va sshd_enable 3404is set to 3405.Dq Li YES , 3406these are the flags to pass to the 3407.Xr sshd 8 3408daemon. 3409.It Va ftpd_program 3410.Pq Vt str 3411Path to the FTP server program 3412.Pa ( /usr/libexec/ftpd 3413is the default). 3414.It Va ftpd_enable 3415.Pq Vt bool 3416Set to 3417.Dq Li YES 3418to start 3419.Xr ftpd 8 3420as a stand-alone daemon at system boot time. 3421.It Va ftpd_flags 3422.Pq Vt str 3423If 3424.Va ftpd_enable 3425is set to 3426.Dq Li YES , 3427these are the additional flags to pass to the 3428.Xr ftpd 8 3429daemon. 3430.It Va watchdogd_enable 3431.Pq Vt bool 3432If set to 3433.Dq Li YES , 3434start the 3435.Xr watchdogd 8 3436daemon at boot time. 3437This requires that the kernel have been compiled with a 3438.Xr watchdog 4 3439compatible device. 3440.It Va watchdogd_flags 3441.Pq Vt str 3442If 3443.Va watchdogd_enable 3444is set to 3445.Dq Li YES , 3446these are the flags passed to the 3447.Xr watchdogd 8 3448daemon. 3449.It Va performance_cx_lowest 3450.Pq Vt str 3451CPU idle state to use while on AC power. 3452The string 3453.Dq Li LOW 3454indicates that 3455.Xr acpi 4 3456should use the lowest power state available while 3457.Dq Li HIGH 3458indicates that the lowest latency state (less power savings) should be used. 3459.It Va performance_cpu_freq 3460.Pq Vt str 3461CPU clock frequency to use while on AC power. 3462The string 3463.Dq Li LOW 3464indicates that 3465.Xr cpufreq 4 3466should use the lowest frequency available while 3467.Dq Li HIGH 3468indicates that the highest frequency (less power savings) should be used. 3469.It Va economy_cx_lowest 3470.Pq Vt str 3471CPU idle state to use when off AC power. 3472The string 3473.Dq Li LOW 3474indicates that 3475.Xr acpi 4 3476should use the lowest power state available while 3477.Dq Li HIGH 3478indicates that the lowest latency state (less power savings) should be used. 3479.It Va economy_cpu_freq 3480.Pq Vt str 3481CPU clock frequency to use when off AC power. 3482The string 3483.Dq Li LOW 3484indicates that 3485.Xr cpufreq 4 3486should use the lowest frequency available while 3487.Dq Li HIGH 3488indicates that the highest frequency (less power savings) should be used. 3489.It Va jail_enable 3490.Pq Vt bool 3491If set to 3492.Dq Li NO , 3493any configured jails will not be started. 3494.It jail_parallel_start 3495.Pq Vt bool 3496If set to 3497.Dq Li YES 3498all configured jails will be started in the background (= in parallel). 3499.It Va jail_list 3500.Pq Vt str 3501A space separated list of names for jails. 3502This is purely a configuration aid to help identify and 3503configure multiple jails. 3504The names specified in this list will be used to 3505identify settings common to an instance of a jail. 3506Assuming that the jail in question was named 3507.Li vjail , 3508you would have the following dependent variables: 3509.Bd -literal 3510jail_vjail_hostname="jail.example.com" 3511jail_vjail_ip="192.0.2.100" 3512jail_vjail_rootdir="/var/jails/vjail/root" 3513.Ed 3514.Pp 3515.It Va jail_flags 3516.Pq Vt str 3517Unset by default. 3518When set, use as default value for 3519.Va jail_ Ns Ao Ar jname Ac Ns Va _flags 3520for every jail in 3521.Va jail_list . 3522.It Va jail_interface 3523.Pq Vt str 3524Unset by default. 3525When set, use as default value for 3526.Va jail_ Ns Ao Ar jname Ac Ns Va _interface 3527for every jail in 3528.Va jail_list . 3529.It Va jail_fstab 3530.Pq Vt str 3531Unset by default. 3532When set, use as default value for 3533.Va jail_ Ns Ao Ar jname Ac Ns Va _fstab 3534for every jail in 3535.Va jail_list . 3536.It Va jail_mount_enable 3537.Pq Vt bool 3538Set to 3539.Dq Li NO 3540by default. 3541When set to 3542.Dq Li YES , 3543sets 3544.Va jail_ Ns Ao Ar jname Ac Ns Va _mount_enable 3545to 3546.Dq Li YES 3547by default for every jail in 3548.Va jail_list . 3549.It Va jail_devfs_ruleset 3550.Pq Vt str 3551Unset by default. 3552When set, sets 3553.Va jail_ Ns Ao Ar jname Ac Ns Va _devfs_ruleset 3554to given value for every jail in 3555.Va jail_list . 3556.It Va jail_devfs_enable 3557.Pq Vt bool 3558Set to 3559.Dq Li NO 3560by default. 3561When set to 3562.Dq Li YES , 3563sets 3564.Va jail_ Ns Ao Ar jname Ac Ns Va _devfs_enable 3565to 3566.Dq Li YES 3567by default for every jail in 3568.Va jail_list . 3569.It Va jail_fdescfs_enable 3570.Pq Vt bool 3571Set to 3572.Dq Li NO 3573by default. 3574When set to 3575.Dq Li YES , 3576sets 3577.Va jail_ Ns Ao Ar jname Ac Ns Va _fdescfs_enable 3578to 3579.Dq Li YES 3580by default for every jail in 3581.Va jail_list . 3582.It Va jail_procfs_enable 3583.Pq Vt bool 3584Set to 3585.Dq Li NO 3586by default. 3587When set to 3588.Dq Li YES , 3589sets 3590.Va jail_ Ns Ao Ar jname Ac Ns Va _fdescfs_enable 3591to 3592.Dq Li YES 3593by default for every jail in 3594.Va jail_list . 3595.It Va jail_exec_prestart Ns Aq Ar N 3596.Pq Vt str 3597Unset by default. 3598When set, use as default value for 3599.Va jail_ Ns Ao Ar jname Ac Ns Va _exec_prestart Ns Aq Ar N 3600for every jail in 3601.Va jail_list . 3602.It Va jail_exec_start 3603.Pq Vt str 3604Unset by default. 3605When set, use as default value for 3606.Va jail_ Ns Ao Ar jname Ac Ns Va _exec_start 3607for every jail in 3608.Va jail_list . 3609.It Va jail_exec_afterstart Ns Aq Ar N 3610.Pq Vt str 3611Unset by default. 3612When set, use as default value for 3613.Va jail_ Ns Ao Ar jname Ac Ns Va _exec_afterstart Ns Aq Ar N 3614for every jail in 3615.Va jail_list . 3616.It Va jail_exec_poststart Ns Aq Ar N 3617.Pq Vt str 3618Unset by default. 3619When set, use as default value for 3620.Va jail_ Ns Ao Ar jname Ac Ns Va _exec_poststart Ns Aq Ar N 3621for every jail in 3622.Va jail_list . 3623.It Va jail_exec_prestop Ns Aq Ar N 3624.Pq Vt str 3625Unset by default. 3626When set, use as default value for 3627.Va jail_ Ns Ao Ar jname Ac Ns Va _exec_prestop Ns Aq Ar N 3628for every jail in 3629.Va jail_list . 3630.It Va jail_exec_stop 3631Unset by default. 3632When set, use as default value for 3633.Va jail_ Ns Ao Ar jname Ac Ns Va _exec_stop 3634for every jail in 3635.Va jail_list . 3636.It Va jail_exec_poststop Ns Aq Ar N 3637.Pq Vt str 3638Unset by default. 3639When set, use as default value for 3640.Va jail_ Ns Ao Ar jname Ac Ns Va _exec_poststop Ns Aq Ar N 3641for every jail in 3642.Va jail_list . 3643.It Va jail_ Ns Ao Ar jname Ac Ns Va _rootdir 3644.Pq Vt str 3645Unset by default. 3646Set to the root directory used by jail 3647.Va jname . 3648.It Va jail_ Ns Ao Ar jname Ac Ns Va _hostname 3649.Pq Vt str 3650Unset by default. 3651Set to the fully qualified domain name (FQDN) assigned to jail 3652.Va jname . 3653.It Va jail_ Ns Ao Ar jname Ac Ns Va _ip 3654.Pq Vt str 3655Unset by default. 3656Set to the (primary) IPv4 and/or IPv6 address(es) assigned to the jail. 3657The argument can be a sole address or a comma separated list of addresses. 3658Additionally each address can be prefixed by the name of an interface 3659followed by a pipe to overwrite 3660.Va jail_ Ns Ao Ar jname Ac Ns Va _interface 3661or 3662.Va jail_interface 3663and/or suffixed by a netmask, prefixlen or prefix. 3664In case no netmask, prefixlen or prefix is given, 3665.Sq /32 3666will be used for IPv4 and 3667.Sq /128 3668will be used for an IPv6 address. 3669If no address is given for the jail then the jail will be started with 3670no networking support. 3671.It Va jail_ Ns Ao Ar jname Ac Ns Va _ip_multi Ns Aq Ar n 3672.Pq Vt str 3673Unset by default. 3674Set additional IPv4 and/or IPv6 address(es) assigned to the jail. 3675The sequence starts with 3676.Dq Li _multi0 3677and the numbers have to be strictly ascending. 3678These entries follow the same syntax as their primary 3679.Va jail_ Ns Ao Ar jname Ac Ns Va _ip 3680entry. 3681The order of the entries can be important as the first address for 3682each address family found will be the primary address of the jail. 3683See 3684.Va ip-addresses 3685option in 3686.Xr jail 8 3687for more details. 3688.It Va jail_ Ns Ao Ar jname Ac Ns Va _flags 3689.Pq Vt str 3690Set to 3691.Dq Li -l -U root 3692by default. 3693These are flags to pass to 3694.Xr jail . 3695.It Va jail_ Ns Ao Ar jname Ac Ns Va _interface 3696.Pq Vt str 3697Unset by default. 3698When set, sets the interface to use when setting IP address alias. 3699Note that the alias is created at jail startup and removed at jail shutdown. 3700.It Va jail_ Ns Ao Ar jname Ac Ns Va _fib 3701.Pq Vt str 3702Unset by default. 3703When set, the jail is started with the specified forwarding table (sometimes 3704referred to as a routing table) via 3705.Xr setfib 1 . 3706.It Va jail_ Ns Ao Ar jname Ac Ns Va _fstab 3707.Pq Vt str 3708Set to 3709.Pa /etc/fstab. Ns Aq Ar jname 3710by default. 3711This is the file system information file to use for jail 3712.Va jname . 3713.It Va jail_ Ns Ao Ar jname Ac Ns Va _mount_enable 3714.Pq Vt bool 3715Set to 3716.Dq Li NO 3717by default. 3718When set to 3719.Dq Li YES , 3720mount all file systems from 3721.Va jail_ Ns Ao Ar jname Ac Ns Va _fstab 3722at jail startup. 3723.It Va jail_ Ns Ao Ar jname Ac Ns Va _devfs_ruleset 3724.Pq Vt str 3725Unset by default. 3726When set, defines the device file system ruleset file to use for jail 3727.Va jname . 3728.It Va jail_ Ns Ao Ar jname Ac Ns Va _devfs_enable 3729.Pq Vt bool 3730Set to 3731.Dq Li NO 3732by default. 3733When set to 3734.Dq Li YES , 3735mount the device file system inside jail 3736.Ar jname 3737at jail startup. 3738.It Va jail_ Ns Ao Ar jname Ac Ns Va _fdescfs_enable 3739.Pq Vt bool 3740Set to 3741.Dq Li NO 3742by default. 3743When set to 3744.Dq Li YES , 3745mount the file-descriptor file system inside jail 3746.Ar jname 3747at jail startup. 3748.It Va jail_ Ns Ao Ar jname Ac Ns Va _procfs_enable 3749.Pq Vt bool 3750Set to 3751.Dq Li NO 3752by default. 3753When set to 3754.Dq Li YES , 3755mount the process file system inside jail 3756.Ar jname 3757at jail startup. 3758.It Va jail_ Ns Ao Ar jname Ac Ns Va _exec_prestart Ns Aq Ar N 3759.Pq Vt str 3760Unset by default. 3761This is the command run as 3762.Ar N Ns 3763th command 3764before jail startup, where 3765.Ar N 3766is 0, 1, and so on. 3767It is run outside the jail. 3768.It Va jail_ Ns Ao Ar jname Ac Ns Va _exec_start 3769.Pq Vt str 3770Set to 3771.Dq Li /bin/sh /etc/rc 3772by default. 3773This is the command executed in a jail at jail startup. 3774.It Va jail_ Ns Ao Ar jname Ac Ns Va _exec_afterstart Ns Aq Ar N 3775.Pq Vt str 3776Unset by default. 3777This is the command run as 3778.Ar N Ns 3779th command 3780in a jail 3781after jail startup, where 3782.Ar N 3783is 1, 2, and so on. 3784.It Va jail_ Ns Ao Ar jname Ac Ns Va _exec_poststart Ns Aq Ar N 3785.Pq Vt str 3786Unset by default. 3787This is the command run as 3788.Ar N Ns 3789th command 3790after jail startup, where 3791.Ar N 3792is 0, 1, and so on. 3793It is run outside the jail. 3794.It Va jail_ Ns Ao Ar jname Ac Ns Va _exec_prestop Ns Aq Ar N 3795.Pq Vt str 3796Unset by default. 3797This is the command run as 3798.Ar N Ns 3799th command 3800before jail shutdown, where 3801.Ar N 3802is 0, 1, and so on. 3803It is run outside the jail. 3804.It Va jail_ Ns Ao Ar jname Ac Ns Va _exec_stop 3805.Pq Vt str 3806Set to 3807.Dq Li /bin/sh /etc/rc.shutdown 3808by default. 3809This is the command executed in a jail at jail shutdown. 3810.It Va jail_ Ns Ao Ar jname Ac Ns Va _exec_poststop Ns Aq Ar N 3811.Pq Vt str 3812Unset by default. 3813This is the command run as 3814.Ar N Ns 3815th command 3816after jail shutdown, where 3817.Ar N 3818is 0, 1, and so on. 3819It is run outside the jail. 3820.It Va jail_set_hostname_allow 3821.Pq Vt bool 3822If set to 3823.Dq Li NO , 3824do not allow the root user in a jail to set its hostname. 3825.It Va jail_socket_unixiproute_only 3826.Pq Vt bool 3827If set to 3828.Dq Li YES , 3829do not allow any sockets, 3830besides UNIX/IP/route sockets, 3831to be used within a jail. 3832.It Va jail_sysvipc_allow 3833.Pq Vt bool 3834If set to 3835.Dq Li YES , 3836allow applications within a jail to use System V IPC. 3837.\" ----------------------------------------------------- 3838.It Va harvest_interrupt 3839.Pq Vt bool 3840Set to 3841.Dq Li YES 3842to use hardware interrupts as an entropy source. 3843Refer to 3844.Xr random 4 3845for more information. 3846.It Va harvest_ethernet 3847.Pq Vt bool 3848Set to 3849.Dq Li YES 3850to use LAN traffic as an entropy source. 3851Refer to 3852.Xr random 4 3853for more information. 3854.It Va harvest_p_to_p 3855.Pq Vt bool 3856Set to 3857.Dq Li YES 3858to use serial line traffic as an entropy source. 3859Refer to 3860.Xr random 4 3861for more information. 3862.It Va entropy_dir 3863.Pq Vt str 3864Set to 3865.Dq Li NO 3866to disable caching entropy via 3867.Xr cron 8 . 3868Otherwise set to the directory used to store entropy files in. 3869.It Va entropy_file 3870.Pq Vt str 3871Set to 3872.Dq Li NO 3873to disable caching entropy through reboots. 3874Otherwise set to the filename used to store cached entropy through 3875reboots. 3876This file should be located on the root file system to seed the 3877.Xr random 4 3878device as early as possible in the boot process. 3879.It Va entropy_save_sz 3880.Pq Vt int 3881Size of the entropy cache files saved by 3882.Nm save-entropy 3883periodically. 3884.It Va entropy_save_num 3885.Pq Vt int 3886Number of entropy cache files to save by 3887.Nm save-entropy 3888periodically. 3889.It Va ipsec_enable 3890.Pq Vt bool 3891Set to 3892.Dq Li YES 3893to run 3894.Xr setkey 8 3895on 3896.Va ipsec_file 3897at boot time. 3898.It Va ipsec_file 3899.Pq Vt str 3900Configuration file for 3901.Xr setkey 8 . 3902.It Va dmesg_enable 3903.Pq Vt bool 3904Set to 3905.Dq Li YES 3906to save 3907.Xr dmesg 8 3908to 3909.Pa /var/run/dmesg.boot 3910on boot. 3911.It Va rcshutdown_timeout 3912.Pq Vt int 3913If set, start a watchdog timer in the background which will terminate 3914.Pa rc.shutdown 3915if 3916.Xr shutdown 8 3917has not completed within the specified time (in seconds). 3918Notice that in addition to this soft timeout, 3919.Xr init 8 3920also applies a hard timeout for the execution of 3921.Pa rc.shutdown . 3922This is configured via 3923.Xr sysctl 8 3924variable 3925.Va kern.init_shutdown_timeout 3926and defaults to 120 seconds. 3927Setting the value of 3928.Va rcshutdown_timeout 3929to more than 120 seconds will have no effect until the 3930.Xr sysctl 8 3931variable 3932.Va kern.init_shutdown_timeout 3933is also increased. 3934.It Va virecover_enable 3935.Pq Vt bool 3936Set to 3937.Dq Li NO 3938to prevent the system from trying to 3939recover pre-maturely terminated 3940.Xr vi 1 3941sessions. 3942.It Va ugidfw_enable 3943.Pq Vt bool 3944Set to 3945.Dq Li YES 3946to load the 3947.Xr mac_bsdextended 4 3948module upon system initialization and load a default 3949ruleset file. 3950.It Va bsdextended_script 3951.Pq Vt str 3952The default 3953.Xr mac_bsdextended 4 3954ruleset file to load. 3955The default value of this variable is 3956.Pa /etc/rc.bsdextended . 3957.It Va newsyslog_enable 3958.Pq Vt bool 3959If set to 3960.Dq Li YES , 3961run 3962.Xr newsyslog 8 3963command at startup. 3964.It Va newsyslog_flags 3965.Pq Vt str 3966If 3967.Va newsyslog_enable 3968is set to 3969.Dq Li YES , 3970these are the flags to pass to the 3971.Xr newsyslog 8 3972program. 3973The default is 3974.Dq Li -CN , 3975which causes log files flagged with a 3976.Cm C 3977to be created. 3978.It Va mdconfig_md Ns Aq Ar X 3979.Pq Vt str 3980Arguments to 3981.Xr mdconfig 8 3982for 3983.Xr md 4 3984device 3985.Ar X . 3986At minimum a 3987.Fl t Ar type 3988must be specified and either a 3989.Fl s Ar size 3990for malloc or swap backed 3991.Xr md 4 3992devices or a 3993.Fl f Ar file 3994for vnode backed 3995.Xr md 4 3996devices. 3997Note that 3998.Va mdconfig_md Ns Aq Ar X 3999variables are evaluated until one variable is unset or null. 4000.It Va mdconfig_md Ns Ao Ar X Ac Ns Va _newfs 4001.Pq Vt str 4002Optional arguments passed to 4003.Xr newfs 8 4004to initialize 4005.Xr md 4 4006device 4007.Ar X . 4008.It Va mdconfig_md Ns Ao Ar X Ac Ns Va _owner 4009.Pq Vt str 4010An ownership specification passed to 4011.Xr chown 8 4012after the specified 4013.Xr md 4 4014device 4015.Ar X 4016has been mounted. 4017Both the 4018.Xr md 4 4019device and the mount point will be changed. 4020.It Va mdconfig_md Ns Ao Ar X Ac Ns Va _perms 4021.Pq Vt str 4022A mode string passed to 4023.Xr chmod 1 4024after the specified 4025.Xr md 4 4026device 4027.Ar X 4028has been mounted. 4029Both the 4030.Xr md 4 4031device and the mount point will be changed. 4032.It Va mdconfig_md Ns Ao Ar X Ac Ns Va _files 4033.Pq Vt str 4034Files to be copied to the mount point of the 4035.Xr md 4 4036device 4037.Ar X 4038after it has been mounted. 4039.It Va mdconfig_md Ns Ao Ar X Ac Ns Va _cmd 4040.Pq Vt str 4041Command to execute after the specified 4042.Xr md 4 4043device 4044.Ar X 4045has been mounted. 4046Note that the command is passed to 4047.Ic eval 4048and that both 4049.Va _dev 4050and 4051.Va _mp 4052variables can be used to reference respectively the 4053.Xr md 4 4054device and the mount point. 4055Assuming that the 4056.Xr md 4 4057device is 4058.Li md0 , 4059one could set the following: 4060.Bd -literal 4061mdconfig_md0_cmd="tar xfzC /var/file.tgz \e${_mp}" 4062.Ed 4063.It Va ramdisk_units 4064.Pq Vt str 4065A list of one or more ramdisk units to configure with 4066.Xr mdconfig 8 4067and 4068.Xr newfs 8 4069in time to be mounted from 4070.Xr fstab 5 . 4071Each listed unit 4072.Ar X 4073must specify at least a 4074.Ar type 4075in a 4076.Va ramdisk_ Ns Ao Ar X Ac Ns Va _config 4077variable. 4078Note that this way to configure ramdisks has been deprecated 4079in favor of new 4080.Va mdconfig_md* 4081variables (see above). 4082.It Va ramdisk_ Ns Ao Ar X Ac Ns Va _config 4083.Pq Vt str 4084Arguments to 4085.Xr mdconfig 8 4086for ramdisk 4087.Ar X . 4088At minimum a 4089.Fl t Ar type 4090must be specified, where 4091.Ar type 4092must be one of 4093.Cm malloc 4094or 4095.Cm swap . 4096.It Va ramdisk_ Ns Ao Ar X Ac Ns Va _newfs 4097.Pq Vt str 4098Optional arguments passed to 4099.Xr newfs 8 4100to initialize ramdisk 4101.Ar X . 4102.It Va ramdisk_ Ns Ao Ar X Ac Ns Va _owner 4103.Pq Vt str 4104An ownership specification passed to 4105.Xr chown 8 4106after the specified ramdisk unit 4107.Ar X 4108has been mounted. 4109Both the 4110.Xr md 4 4111device and the mount point will be changed. 4112.It Va ramdisk_ Ns Ao Ar X Ac Ns Va _perms 4113.Pq Vt str 4114A mode string passed to 4115.Xr chmod 1 4116after the specified ramdisk unit 4117.Ar X 4118has been mounted. 4119Both the 4120.Xr md 4 4121device and the mount point will be changed. 4122.It Va autobridge_interfaces 4123.Pq Vt str 4124Set to the list of bridge interfaces that will have newly arriving interfaces 4125checked against to be automatically added. 4126If not set to 4127.Dq Li NO 4128then for each whitespace separated 4129.Ar element 4130in the value, a 4131.Va autobridge_ Ns Aq Ar element 4132variable is assumed to exist which has a whitespace separated list of interface 4133names to match, these names can use wildcards. 4134For example: 4135.Bd -literal 4136autobridge_interfaces="bridge0" 4137autobridge_bridge0="tap* dc0 vlan[345]" 4138.Ed 4139.It Va mixer_enable 4140.Pq Vt bool 4141If set to 4142.Dq Li YES , 4143enable support for sound mixer. 4144.It Va hcsecd_enable 4145.Pq Vt bool 4146If set to 4147.Dq Li YES , 4148enable Bluetooth security daemon. 4149.It Va hcsecd_config 4150.Pq Vt str 4151Configuration file for 4152.Xr hcsecd 8 . 4153Default 4154.Pa /etc/bluetooth/hcsecd.conf . 4155.It Va sdpd_enable 4156.Pq Vt bool 4157If set to 4158.Dq Li YES , 4159enable Bluetooth Service Discovery Protocol daemon. 4160.It Va sdpd_control 4161.Pq Vt str 4162Path to 4163.Xr sdpd 8 4164control socket. 4165Default 4166.Pa /var/run/sdp . 4167.It Va sdpd_groupname 4168.Pq Vt str 4169Sets 4170.Xr sdpd 8 4171group to run as after it initializes. 4172Default 4173.Dq Li nobody . 4174.It Va sdpd_username 4175.Pq Vt str 4176Sets 4177.Xr sdpd 8 4178user to run as after it initializes. 4179Default 4180.Dq Li nobody . 4181.It Va bthidd_enable 4182.Pq Vt bool 4183If set to 4184.Dq Li YES , 4185enable Bluetooth Human Interface Device daemon. 4186.It Va bthidd_config 4187.Pq Vt str 4188Configuration file for 4189.Xr bthidd 8 . 4190Default 4191.Pa /etc/bluetooth/bthidd.conf . 4192.It Va bthidd_hids 4193.Pq Vt str 4194Path to a file, where 4195.Xr bthidd 8 4196will store information about known HID devices. 4197Default 4198.Pa /var/db/bthidd.hids . 4199.It Va rfcomm_pppd_server_enable 4200.Pq Vt bool 4201If set to 4202.Dq Li YES , 4203enable Bluetooth RFCOMM PPP wrapper daemon. 4204.It Va rfcomm_pppd_server_profile 4205.Pq Vt str 4206The name of the profile to use from 4207.Pa /etc/ppp/ppp.conf . 4208Multiple profiles can be specified here. 4209Also used to specify per-profile overrides. 4210When the profile name contains any of the characters 4211.Dq Li .-/+ 4212they are translated to 4213.Dq Li _ 4214for the proposes of the override variable names. 4215.It Va rfcomm_pppd_server_ Ns Ao Ar profile Ac Ns _bdaddr 4216.Pq Vt str 4217Overrides local address to listen on. 4218By default 4219.Xr rfcomm_pppd 8 4220will listen on 4221.Dq Li ANY 4222address. 4223The address can be specified as BD_ADDR or name. 4224.It Va rfcomm_pppd_server_ Ns Ao Ar profile Ac Ns _channel 4225.Pq Vt str 4226Overrides local RFCOMM channel to listen on. 4227By default 4228.Xr rfcomm_pppd 8 4229will listen on RFCOMM channel 1. 4230Must set properly if multiple profiles used in the same time. 4231.It Va rfcomm_pppd_server_ Ns Ao Ar profile Ac Ns _register_sp 4232.Pq Vt bool 4233Tells 4234.Xr rfcomm_pppd 8 4235if it should register Serial Port service on the speficied RFCOMM channel. 4236Default 4237.Dq Li NO . 4238.It Va rfcomm_pppd_server_ Ns Ao Ar profile Ac Ns _register_dun 4239.Pq Vt bool 4240Tells 4241.Xr rfcomm_pppd 8 4242if it should register Dial-Up Networking service on the speficied 4243RFCOMM channel. 4244Default 4245.Dq Li NO . 4246.It Va ubthidhci_enable 4247.Pq Vt bool 4248If set to 4249.Dq Li YES , 4250change the USB Bluetooth controller from HID mode to HCI mode. 4251You also need to specify the location of USB Bluetooth controller with the 4252.Va ubthidhci_busnum 4253and 4254.Va ubthidhci_addr 4255variables. 4256.It Va ubthidhci_busnum 4257Bus number where the USB Bluetooth controller is located. 4258Check the output of 4259.Xr usbconfig 1 4260on your system to find this information. 4261.It Va ubthidhci_addr 4262Bus address of the USB Bluetooth controller. 4263Check the output of 4264.Xr usbconfig 1 4265on your system to find this information. 4266.El 4267.Sh FILES 4268.Bl -tag -width ".Pa /etc/defaults/rc.conf" -compact 4269.It Pa /etc/defaults/rc.conf 4270.It Pa /etc/rc.conf 4271.It Pa /etc/rc.conf.local 4272.El 4273.Sh SEE ALSO 4274.Xr catman 1 , 4275.Xr chmod 1 , 4276.Xr gdb 1 , 4277.Xr info 1 , 4278.Xr kbdcontrol 1 , 4279.Xr makewhatis 1 , 4280.Xr sh 1 , 4281.Xr usbconfig 1 , 4282.Xr vi 1 , 4283.Xr vidcontrol 1 , 4284.Xr bridge 4 , 4285.Xr dummynet 4 , 4286.Xr ip 4 , 4287.Xr ipf 4 , 4288.Xr ipfw 4 , 4289.Xr ipnat 4 , 4290.Xr kld 4 , 4291.Xr pf 4 , 4292.Xr pflog 4 , 4293.Xr pfsync 4 , 4294.Xr tcp 4 , 4295.Xr udp 4 , 4296.Xr exports 5 , 4297.Xr fstab 5 , 4298.Xr ipf 5 , 4299.Xr ipnat 5 , 4300.Xr motd 5 , 4301.Xr newsyslog.conf 5 , 4302.Xr pf.conf 5 , 4303.Xr security 7 , 4304.Xr accton 8 , 4305.Xr amd 8 , 4306.Xr apm 8 , 4307.Xr atm 8 , 4308.Xr bthidd 8 , 4309.Xr chkprintcap 8 , 4310.Xr chown 8 , 4311.Xr cron 8 , 4312.Xr dhclient 8 , 4313.Xr ftpd 8 , 4314.Xr geli 8 , 4315.Xr hcsecd 8 , 4316.Xr ifconfig 8 , 4317.Xr inetd 8 , 4318.Xr ipf 8 , 4319.Xr ipfw 8 , 4320.Xr ipnat 8 , 4321.Xr jail 8 , 4322.Xr kldxref 8 , 4323.Xr lpd 8 , 4324.Xr mdconfig 8 , 4325.Xr mdmfs 8 , 4326.Xr mixer 8 , 4327.Xr mountd 8 , 4328.Xr moused 8 , 4329.Xr mrouted 8 , 4330.Xr named 8 , 4331.Xr newfs 8 , 4332.Xr newsyslog 8 , 4333.Xr nfsd 8 , 4334.Xr ntpd 8 , 4335.Xr ntpdate 8 , 4336.Xr pfctl 8 , 4337.Xr pflogd 8 , 4338.Xr powerd 8 , 4339.Xr quotacheck 8 , 4340.Xr quotaon 8 , 4341.Xr rc 8 , 4342.Xr rc.sendmail 8 , 4343.Xr rfcomm_pppd 8 , 4344.Xr route 8 , 4345.Xr routed 8 , 4346.Xr rpcbind 8 , 4347.Xr rpc.lockd 8 , 4348.Xr rpc.statd 8 , 4349.Xr rwhod 8 , 4350.Xr savecore 8 , 4351.Xr sdpd 8 , 4352.Xr sshd 8 , 4353.Xr swapon 8 , 4354.Xr sysctl 8 , 4355.Xr syslogd 8 , 4356.Xr timed 8 , 4357.Xr wlandebug 8 , 4358.Xr yp 8 , 4359.Xr ypbind 8 , 4360.Xr ypserv 8 , 4361.Xr ypset 8 4362.Sh HISTORY 4363The 4364.Nm 4365file appeared in 4366.Fx 2.2.2 . 4367.Sh AUTHORS 4368.An Jordan K. Hubbard . 4369