1.\" Copyright (c) 1995 2.\" Jordan K. Hubbard 3.\" 4.\" Redistribution and use in source and binary forms, with or without 5.\" modification, are permitted provided that the following conditions 6.\" are met: 7.\" 1. Redistributions of source code must retain the above copyright 8.\" notice, this list of conditions and the following disclaimer. 9.\" 2. Redistributions in binary form must reproduce the above copyright 10.\" notice, this list of conditions and the following disclaimer in the 11.\" documentation and/or other materials provided with the distribution. 12.\" 13.\" THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND 14.\" ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 15.\" IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 16.\" ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR BE LIABLE 17.\" FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 18.\" DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 19.\" OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 20.\" HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 21.\" LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 22.\" OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 23.\" SUCH DAMAGE. 24.\" 25.\" $FreeBSD$ 26.\" 27.Dd February 4, 2001 28.Dt RC.CONF 5 29.Os 30.Sh NAME 31.Nm rc.conf 32.Nd system configuration information 33.Sh DESCRIPTION 34The file 35.Nm 36contains descriptive information about the local host name, configuration 37details for any potential network interfaces and which services should be 38started up at system initial boot time. In new installations, the 39.Nm 40file is generally initialized by the system installation utility: 41.Pa /stand/sysinstall . 42.Pp 43The purpose of 44.Nm 45is not to run commands or perform system startup actions 46directly. Instead, it is included by the 47various generic startup scripts in 48.Pa /etc 49which conditionalize their 50internal actions according to the settings found there. 51.Pp 52The 53.Pa /etc/rc.conf 54file is included from the file 55.Pa /etc/defaults/rc.conf , 56which specifies the default settings for all the available options. 57Options 58need only be specified in 59.Pa /etc/rc.conf 60when the system administrator wishes to override these defaults. 61The file 62.Pa /etc/rc.conf.local 63is used to override settings in 64.Pa /etc/rc.conf 65for historical reasons. 66See the 67.Dq rc_conf_files 68option below. 69.Pp 70The following list provides a name and short description for each 71variable that can be set in the 72.Nm 73file: 74.Bl -tag -width Ar 75.It Va swapfile 76.Pq Vt str 77If set to 78.Dq NO 79then no swapfile is installed, otherwise the value is used as the full 80pathname to a file to use for additional swap space. 81.It Va apm_enable 82.Pq Vt bool 83If set to 84.Dq YES , 85enable support for Automatic Power Management with 86the 87.Xr apm 8 88command. 89.It Va apmd_enable 90.Pq Vt bool 91Run 92.Xr apmd 8 93to handle APM event from userland. 94This also enable support for APM. 95.It Va apmd_flags 96.Pq Vt str 97If 98.Va apmd_enable 99is set to 100.Dq YES , 101these are the flags to pass to the 102.Xr apmd 8 103daemon. 104.It Va pccard_enable 105.Pq Vt bool 106If set to 107.Dq YES , 108enable PCCARD support at boot time. 109.It Va pccard_mem 110.Pq Vt str 111Set to PCCARD controller memory address or 112.Dq DEFAULT 113for the default value. 114.It Va pccard_ifconfig 115.Pq Vt str 116List of arguments to be passed to 117.Xr ifconfig 8 118at boot time or on 119insertion of the card (e.g. "inet 192.168.1.1 netmask 255.255.255.0" 120for a fixed address or "DHCP" for a DHCP client). 121.It Va pccard_beep 122.Pq Vt int 123If 0, 124set the PCCARD controller to silent mode. 125If 1, 126set it to beep mode. 127If 2, 128set it to melody mode. 129.It Va pccard_conf 130.Pq Vt str 131Path to the configuration file for the 132.Xr pccardd 8 133daemon (e.g.\& 134.Pa /etc/pccard.conf.sample ) . 135.It Va pccardd_flags 136.Pq Vt str 137If 138.Va pccard_enable 139is set to 140.Dq YES , 141these are the flags to pass to the 142.Xr pccardd 8 143daemon. 144.It Va pccard_ether_delay 145.Pq Vt str 146Set the delay before starting 147.Xr dhclient 8 148in 149.Xr pccard_ether 8 150script. 151This defaults to 5 seconds to work around a bug in the 152.Xr ed 4 153driver which can lead to system hangs when using some newer 154.Xr ed 4 155based cards. 156.It Va removable_interfaces 157.Pq Vt str 158List of removable network interfaces to be supported by 159.Pa /etc/pccard_ether . 160.It Va local_startup 161.Pq Vt str 162List of directories to search for startup script files. 163.It Va script_name_sep 164.Pq Vt str 165The field separator to use for breaking down the list of startup script files 166into individual filenames. 167The default is a space. 168It is not necessary to change this unless there are startup scripts with names 169containing spaces. 170.It Va hostname 171.Pq Vt str 172The Fully Qualified Domain Name of this host on the network. 173This should almost certainly be set to something meaningful, even if 174there is no network connection. 175If 176.Xr dhclient 8 177is used to set the hostname via DHCP, 178this variable should be set to an empty string. 179.It Va nisdomainname 180.Pq Vt str 181The NIS domain name of this host, or 182.Dq NO 183if NIS is not used. 184.It Va dhcp_program 185.Pq Vt str 186Path to the DHCP client program 187.Pa ( /sbin/dhclient , 188the ISC DHCP client, 189is the default). 190.It Va dhcp_flags 191.Pq Vt str 192Additional flags to pass to the DHCP client program. 193For the ISC DHCP client, see the 194.Xr dhclient 8 195page for a description of the command line options available. 196.It Va firewall_enable 197.Pq Vt bool 198Set to 199.Dq YES 200to load firewall rules at startup. 201If the kernel was not built with 202.Dv IPFIREWALL , 203the ipfw 204kernel module will be loaded. 205See also 206.Va ipfilter_enable . 207.It Va firewall_script 208.Pq Vt str 209This variable specifies the full path to the firewall script to run. 210The default is 211.Pa /etc/rc.firewall . 212.It Va firewall_type 213.Pq Vt str 214Names the firewall type from the selection in 215.Pa /etc/rc.firewall , 216or the file which contains the local firewall ruleset. Valid selections 217from 218.Pa /etc/rc.firewall , 219are 220.Dq open 221- unrestricted IP access; 222.Dq closed 223- all IP services disabled, except via lo0; 224.Dq client 225- basic protection for a workstation; 226.Dq simple 227- basic protection for a LAN. If a filename is specified, the full path 228must be given. 229.It Va firewall_quiet 230.Pq Vt bool 231Set to 232.Dq YES 233to disable the display of ipfw rules on the console during boot. 234.It Va firewall_logging 235.Pq Vt bool 236Set to 237.Dq YES 238to enable ipfw event logging. 239This is equivalent to the 240.Dv IPFIREWALL_VERBOSE 241kernel option. 242.It Va firewall_flags 243.Pq Vt str 244Flags passed to 245.Xr ipfw 8 246if 247.Va firewall_type 248specifies a filename. 249.It Va natd_program 250.Pq Vt str 251Path to 252.Xr natd 8 . 253.It Va natd_enable 254.Pq Vt bool 255Set to 256.Dq YES 257to enable natd. 258.Va firewall_enable 259must also be set to 260.Dq YES , 261and 262.Xr divert 4 263sockets must be enabled in the kernel. 264.It Va natd_interface 265.Pq Vt str 266This is the name of the public interface on which natd should run. It 267is mandatory if 268.Va natd_enable 269is set to 270.Dq YES . 271The interface may be given as an interface name or as an IP address. 272.It Va natd_flags 273.Pq Vt str 274Additional natd flags should be placed here. The 275.Fl n 276or 277.Fl a 278flag is automatically added with the above 279.Va natd_interface 280as an argument. 281.\" ----- ipfilter_enable setting -------------------------------- 282.It Va ipfilter_enable 283.Pq Vt bool 284Set to 285.Dq NO 286by default. 287Setting this to 288.Dq YES 289enables 290.Xr ipf 8 291packet filtering. 292.Pp 293Typical usage will require putting 294.Bd -literal 295ipfilter_enable="YES" 296ipnat_enable="YES" 297ipmon_enable="YES" 298ipfs_enable="YES" 299.Ed 300.Pp 301into 302.Pa /etc/rc.conf 303and editing 304.Pa /etc/ipf.rules 305and 306.Pa /etc/ipnat.rules 307appropriately. 308.Pp 309Note that 310.Va ipfilter_enable 311and 312.Va ipnat_enable 313can be enabled independently. 314.Va ipmon_enable 315and 316.Va ipfs_enable 317both require at least one of 318.Va ipfilter_enable 319and 320.Va ipnat_enable 321to be enabled. 322.Pp 323Having 324.Bd -literal 325options IPFILTER 326options IPFILTER_LOG 327options IPFILTER_DEFAULT_BLOCK 328.Ed 329.Pp 330in the kernel configuration file is a good idea, too. 331.\" ----- ipfilter_program setting ------------------------------ 332.It Va ipfilter_program 333.Pq Vt str 334Path to 335.Xr ipf 8 336(default 337.Pa /sbin/ipf ) . 338.\" ----- ipfilter_rules setting -------------------------------- 339.It Va ipfilter_rules 340.Pq Vt str 341Set to 342.Dq /etc/ipf.rules 343by default. 344This variable contains the name of the filter rule definition file. 345The file is expected to be readable for the 346.Xr ipf 8 347command to execute. 348.\" ----- ipfilter_flags setting -------------------------------- 349.It Va ipfilter_flags 350.Pq Vt str 351Empty by default. 352This variable contains flags passed to the 353.Xr ipf 8 354program. 355.\" ----- ipnat_enable setting ---------------------------------- 356.It Va ipnat_enable 357.Pq Vt bool 358Set to 359.Dq NO 360by default. 361Set it to 362.Dq YES 363to enable 364.Xr ipnat 1 365network address translation. 366See 367.Va ipfilter_enable 368for a detailed discussion. 369.\" ----- ipnat_program setting --------------------------------- 370.It Va ipnat_program 371.Pq Vt str 372Path to 373.Xr ipnat 1 374(default 375.Pa /sbin/ipnat ) . 376.\" ----- ipnat_rules setting ----------------------------------- 377.It Va ipnat_rules 378.Pq Vt str 379Set to 380.Dq /etc/ipnat.rules 381by default. 382This variable contains the name of the file 383holding the network address translation definition. 384This file is expected to be readable for the 385.Xr ipnat 1 386command to execute. 387.\" ----- ipnat_flags setting ----------------------------------- 388.It Va ipnat_flags 389.Pq Vt str 390Empty by default. 391This variable contains flags passed to the 392.Xr ipnat 1 393program. 394.\" ----- ipmon_enable setting ---------------------------------- 395.It Va ipmon_enable 396.Pq Vt bool 397Set to 398.Dq NO 399by default. 400Set it to 401.Dq YES 402to enable 403.Xr ipmon 8 404monitoring (logging 405.Xr ipf 8 406and 407.Xr ipnat 1 408events). 409Setting this variable needs setting 410.Va ipfilter_enable 411or 412.Va ipnat_enable 413too. 414See 415.Va ipfilter_enable 416for a detailed discussion. 417.\" ----- ipmon_program setting --------------------------------- 418.It Va ipmon_program 419.Pq Vt str 420Path to 421.Xr ipmon 8 422(default 423.Pa /sbin/ipmon ) . 424.\" ----- ipmon_flags setting ----------------------------------- 425.It Va ipmon_flags 426.Pq Vt str 427Set to 428.Dq -Ds 429by default. 430This variable contains flags passed to the 431.Xr ipmon 8 432program. 433Another typical example would be 434.Dq -D /var/log/ipflog 435to have 436.Xr ipmon 8 437log directly to a file bypassing 438.Xr syslogd 8 . 439Make sure to adjust 440.Pa /etc/newsyslog.conf 441in such case like this: 442.Bd -literal 443/var/log/ipflog 640 10 100 * Z /var/run/ipmon.pid 444.Ed 445.\" ----- ipfs_enable setting ----------------------------------- 446.It Va ipfs_enable 447.Pq Vt bool 448Set to 449.Dq NO 450by default. 451Set it to 452.Dq YES 453to enable 454.Xr ipfs 8 455saving the filter and NAT state tables during shutdown 456and reloading them during startup again. 457Setting this variable needs setting 458.Va ipfilter_enable 459or 460.Va ipnat_enable 461to 462.Dq YES 463too. 464See 465.Va ipfilter_enable 466for a detailed discussion. 467Note that if 468.Va kern_securelevel 469is set to 3, 470.Va ipfs_enable 471cannot be used 472because the raised securelevel will prevent 473.Xr ipfs 8 474from saving the state tables at shutdown time. 475.\" ----- ipfs_program setting ---------------------------------- 476.It Va ipfs_program 477.Pq Vt str 478Path to 479.Xr ipfs 8 480(default 481.Pa /sbin/ipfs ) . 482.\" ----- ipfs_flags setting ------------------------------------ 483.It Va ipfs_flags 484.Pq Vt str 485Empty by default. 486This variable contains flags passed to the 487.Xr ipfs 8 488program. 489.\" ----- end of added ipf hook --------------------------------- 490.It Va tcp_extensions 491.Pq Vt bool 492Set to 493.Dq YES 494by default. 495Setting this to NO disables certain TCP options as described by 496.Rs 497.%T RFC 1323 498.Re 499Setting this to 500.Dq NO 501might help remedy such problems with connections as randomly hanging 502or other weird behavior. 503Some network devices are known 504to be broken with respect to these options. 505.It Va log_in_vain 506.Pq Vt int 507Set to 0 by default. 508The 509.Xr sysctl 8 510variables, 511.Sy net.inet.tcp.log_in_vain 512and 513.Sy net.inet.udp.log_in_vain 514as described in 515.Xr tcp 4 516and 517.Xr udp 4 , 518are set to the given value. 519.It Va tcp_keepalive 520.Pq Vt bool 521Set to 522.Dq YES 523by default. 524Setting to NO will disable probing idle TCP connections to verify that the 525peer is still up and reachable. 526.It Va tcp_drop_synfin 527.Pq Vt bool 528Set to 529.Dq NO 530by default. 531Setting to YES will cause the kernel to ignore TCP frames that have both 532the SYN and FIN flags set. 533This prevents OS fingerprinting, but may 534break some legitimate applications. 535This option is only available if the 536kernel was built with the 537.Dv TCP_DROP_SYNFIN 538option. 539.It Va icmp_drop_redirect 540.Pq Vt bool 541Set to 542.Dq NO 543by default. 544Setting to YES will cause the kernel to ignore ICMP REDIRECT packets. 545.It Va icmp_log_redirect 546.Pq Vt bool 547Set to 548.Dq NO 549by default. 550Setting to YES will cause the kernel to log ICMP REDIRECT packets. 551Note that 552the log messages are not rate-limited, so this option should only be used 553for troubleshooting networks. 554.It Va network_interfaces 555.Pq Vt str 556Set to the list of network interfaces to configure on this host. 557For example, if the only network devices in the system are the loopback 558device 559(lo0) 560and a NIC using the ed0 driver, 561this could be set to 562.Dq "lo0 ed0" 563An 564.Va ifconfig_ Ns Aq Ar interface 565variable is also assumed to exist for each value of 566.Ar interface . 567It is also possible to add IP alias entries here in cases where 568multiple IP addresses registered against a single interface 569are desired. 570Assuming that the interface in question was ed0, it might look 571something like this: 572.Bd -literal 573ifconfig_ed0_alias0="inet 127.0.0.253 netmask 0xffffffff" 574ifconfig_ed0_alias1="inet 127.0.0.254 netmask 0xffffffff" 575.Ed 576.Pp 577And so on. 578For each 579.Va ifconfig_ Ns Ao Ar interface Ac Ns Va _alias Ns Aq Ar n 580entry that is found, 581its contents are passed to 582.Xr ifconfig 8 . 583Execution stops at the first unsuccessful access, so if 584something like this is present: 585.Bd -literal 586ifconfig_ed0_alias0="inet 127.0.0.251 netmask 0xffffffff" 587ifconfig_ed0_alias1="inet 127.0.0.252 netmask 0xffffffff" 588ifconfig_ed0_alias2="inet 127.0.0.253 netmask 0xffffffff" 589ifconfig_ed0_alias4="inet 127.0.0.254 netmask 0xffffffff" 590.Ed 591.Pp 592Then note that alias4 would 593.Em not 594be added since the search would 595stop with the missing alias3 entry. 596.Pp 597It is possible to bring up an interface with DHCP by setting the 598.Va ifconfig_ Ns Aq Ar interface 599variable to 600.Dq DHCP . 601For instance, to initialize the ed0 device via DHCP, 602it is possible to use something like: 603.Bd -literal 604ifconfig_ed0="DHCP" 605.Ed 606.It Va cloned_interfaces 607.Pq Vt str 608Set to the list of clonable network interfaces to create on this host. 609Entries in 610.Va cloned_interfaces 611are automatically appended to 612.Va network_interfaces 613for configuration. 614.It Va gif_interfaces 615.Pq Vt str 616Set to the list of 617.Xr gif 4 618tunnel interfaces to configure on this host. 619A 620.Va gifconfig_ Ns Aq Ar interface 621variable is assumed to exist for each value of 622.Ar interface . 623The value of this variable is used to configure the link layer of the 624tunnel according to the syntax of the 625.Cm tunnel 626option to 627.Xr ifconfig 8 . 628Additionally, this option ensures that each listed interface is created 629via the 630.Cm create 631option to 632.Xr ifconfig 8 633before attempting to configure it. 634.It Va ppp_enable 635.Pq Vt bool 636If set to 637.Dq YES , 638run the 639.Xr ppp 8 640daemon. 641.It Va ppp_mode 642.Pq Vt str 643Mode in which to run the 644.Xr ppp 8 645daemon. Accepted modes are 646.Dq auto , 647.Dq ddial , 648.Dq direct 649and 650.Dq dedicated . 651See the manual for a full description. 652.It Va ppp_nat 653.Pq Vt bool 654If set to 655.Dq YES , 656enables packet aliasing. 657Used in conjunction with 658.Va gateway_enable 659allows hosts on private network addresses access to the Internet using 660this host as a network address translating router. 661.It Va ppp_profile 662.Pq Vt str 663The name of the profile to use from 664.Pa /etc/ppp/ppp.conf . 665.It Va ppp_user 666.Pq Vt str 667The name of the user under which ppp should be started. 668By 669default, ppp is started as 670.Dq root . 671.It Va rc_conf_files 672.Pq Vt str 673This option is used to specify a list of files that will override 674the settings in 675.Pa /etc/defaults/rc.conf . 676The files will be read in the order in which they are specified and should 677include the full path to the file. 678By default, the files specified are 679.Pa /etc/rc.conf 680and 681.Pa /etc/rc.conf.local 682.It Va fsck_y_enable 683.Pq Vt bool 684If set to 685.Dq YES , 686.Xr fsck 8 687will be run with the -y flag if the initial preen 688of the filesystems fails. 689.It Va background_fsck 690.Pq Vt bool 691If set to 692.Dq YES , 693the system will attempt to run 694.Xr fsck 8 695in the background where possible. 696.It Va extra_netfs_types 697.Pq Vt str 698If set to something other than 699.Dq NO 700(the default), 701this variable extends the list of filesystem types 702for which automatic mounting at startup by 703.Xr rc 8 704should be delayed until the network is initialized. 705It should contain 706a whitespace-separated list of network filesystem descriptor pairs, 707each consisting of a filesystem type as passed to 708.Xr mount 8 709and a human-readable, one-word description, 710joined with a colon 711.Pq Ql \&: . 712Extending the default list in this way is only necessary 713when third party filesystem types are used. 714.It Va syslogd_enable 715.Pq Vt bool 716If set to 717.Dq YES , 718run the 719.Xr syslogd 8 720daemon. 721.It Va syslogd_program 722.Pq Vt str 723Path to 724.Xr syslogd 8 725(default 726.Pa /usr/sbin/syslogd ) . 727.It Va syslogd_flags 728.Pq Vt str 729If 730.Va syslogd_enable 731is set to 732.Dq YES , 733these are the flags to pass to 734.Xr syslogd 8 . 735.It Va inetd_enable 736.Pq Vt bool 737If set to 738.Dq YES , 739run the 740.Xr inetd 8 741daemon. 742.It Va inetd_program 743.Pq Vt str 744Path to 745.Xr inetd 8 746(default 747.Pa /usr/sbin/inetd ) . 748.It Va inetd_flags 749.Pq Vt str 750If 751.Va inetd_enable 752is set to 753.Dq YES , 754these are the flags to pass to 755.Xr inetd 8 . 756.It Va named_enable 757.Pq Vt bool 758If set to 759.Dq YES , 760run the 761.Xr named 8 762daemon. 763.It Va named_program 764.Pq Vt str 765Path to 766.Xr named 8 767(default 768.Pa /usr/sbin/named ) . 769.It Va named_flags 770.Pq Vt str 771If 772.Va named_enable 773is set to 774.Dq YES , 775these are the flags to pass to 776.Xr named 8 . 777.It Va kerberos_server_enable 778.Pq Vt bool 779Set to 780.Dq YES 781to start a Kerberos authentication server 782at boot time. 783.It Va kadmind_server_enable 784.Pq Vt bool 785Set to 786.Dq YES 787to start 788.Xr kadmind 8 , 789the Kerberos Administration Daemon); set to 790.Dq NO 791on a slave server. 792.It Va kerberos_stash 793.Pq Vt str 794If 795.Dq YES , 796instruct the Kerberos servers to use the stashed master key instead of 797prompting for it (only if 798.Va kerberos_server_enable 799is set to 800.Dq YES , 801and is used for both 802.Xr kerberos 1 803and 804.Xr kadmind 8 ) . 805.It Va rwhod_enable 806.Pq Vt bool 807If set to 808.Dq YES , 809run the 810.Xr rwhod 8 811daemon at boot time. 812.It Va rwhod_flags 813.Pq Vt str 814If 815.Va rwhod_enable 816is set to 817.Dq YES , 818these are the flags to pass to it. 819.It Va amd_enable 820.Pq Vt bool 821If set to 822.Dq YES , 823run the 824.Xr amd 8 825daemon at boot time. 826.It Va amd_flags 827.Pq Vt str 828If 829.Va amd_enable 830is set to 831.Dq YES , 832these are the flags to pass to it. 833See the 834.Xr amd 8 835.Xr info 1 836page for more information. 837.It Va amd_map_program 838.Pq Vt str 839If set, 840the specified program is run to get the list of 841.Xr amd 8 842maps. 843For example, if the 844.Xr amd 8 845maps are stored in NIS, one can set this to 846run 847.Xr ypcat 1 848to get a list of 849.Xr amd 8 850maps from the 851.Pa amd.master 852NIS map. 853.It Va update_motd 854.Pq Vt bool 855If set to 856.Dq YES , 857.Pa /etc/motd 858will be updated at boot time to reflect the kernel release 859being run. If set to 860.Dq NO , 861.Pa /etc/motd 862will not be updated 863.It Va nfs_client_enable 864.Pq Vt bool 865If set to 866.Dq YES , 867run the NFS client daemons at boot time. 868.It Va nfs_access_cache 869.Pq Vt int 870If 871.Va nfs_client_enable 872is set to 873.Dq YES , 874this can be set to 875.Dq 0 876to disable NFS ACCESS RPC caching, or to the number of seconds for which 877NFS ACCESS 878results should be cached. 879A value of 2-10 seconds will substantially reduce network 880traffic for many NFS operations. 881.It Va nfs_server_enable 882.Pq Vt bool 883If set to 884.Dq YES , 885run the NFS server daemons at boot time. 886.It Va nfs_server_flags 887.Pq Vt str 888If 889.Va nfs_server_enable 890is set to 891.Dq YES , 892these are the flags to pass to the 893.Xr nfsd 8 894daemon. 895.It Va single_mountd_enable 896.Pq Vt bool 897If set to 898.Dq YES , 899and no 900.Va nfs_server_enable 901is set, start 902.Xr mountd 8 , 903but not 904.Xr nfsd 8 905daemon. 906It is commonly needed to run CFS without real NFS used. 907.It Va weak_mountd_authentication 908.Pq Vt bool 909If set to 910.Dq YES , 911allow services like PCNFSD to make non-privileged mount 912requests. 913.It Va nfs_privport 914.Pq Vt bool 915If set to 916.Dq YES , 917provide NFS services only on a secure port. 918.It Va nfs_bufpackets 919.Pq Vt int 920If set to a number, indicates the number of packets worth of 921socket buffer space to reserve on an NFS client. If set to 922.Dq DEFAULT , 923the kernel default is used (typically 4). Using a higher number may be 924useful on gigabit networks to improve performance. The minimum value is 9252 and the maximum is 64. 926.It Va rpc_lockd_enable 927.Pq Vt bool 928If set to 929.Dq YES 930and also an NFS server, run 931.Xr rpc.lockd 8 932at boot time. 933.It Va rpc_statd_enable 934.Pq Vt bool 935If set to 936.Dq YES 937and also an NFS server, run 938.Xr rpc.statd 8 939at boot time. 940.It Va portmap_program 941.Pq Vt str 942Path to 943.Xr rpcbind 8 944(default 945.Pa /usr/sbin/rpcbind ) . 946.It Va portmap_enable 947.Pq Vt bool 948If set to 949.Dq YES , 950run the 951.Xr rpcbind 8 952service at boot time. 953.It Va portmap_flags 954.Pq Vt str 955If 956.Va portmap_enable 957is set to 958.Dq YES , 959these are the flags to pass to the 960.Xr rpcbind 8 961daemon. 962.It Va xtend_enable 963.Pq Vt bool 964If set to 965.Dq YES 966then run the 967.Xr xtend 8 968daemon at boot time. 969.It Va xtend_flags 970.Pq Vt str 971If 972.Va xtend_enable 973is set to 974.Dq YES , 975these are the flags to pass to the 976.Xr xtend 8 977daemon. 978.It Va pppoed_enable 979.Pq Vt bool 980If set to 981.Dq YES 982then run the 983.Xr pppoed 8 984daemon at boot time to provide PPP over Ethernet services. 985.It Va pppoed_ Ns Ar provider 986.Pq Vt str 987.Xr pppoed 8 988listens to requests to this 989.Ar provider 990and ultimately runs 991.Xr ppp 8 992with a 993.Ar system 994argument of the same name. 995.It Va pppoed_flags 996.Pq Vt str 997Additional flags to pass to 998.Xr pppoed 8 . 999.It Va pppoed_interface 1000.Pq Vt str 1001The network interface to run pppoed on. This is mandatory when 1002.Va pppoed_enable 1003is set to 1004.Dq YES . 1005.It Va timed_enable 1006.Pq Vt boot 1007If 1008.Dq YES 1009then run the 1010.Xr timed 8 1011service at boot time. This command is intended for networks of 1012machines where a consistent 1013.Qq "network time" 1014for all hosts must be established. This is often useful in large NFS 1015environments where time stamps on files are expected to be consistent 1016network-wide. 1017.It Va timed_flags 1018.Pq Vt str 1019If 1020.Va timed_enable 1021is set to 1022.Dq YES , 1023these are the flags to pass to the 1024.Xr timed 8 1025service. 1026.It Va ntpdate_enable 1027.Pq Vt bool 1028If set to 1029.Dq YES , 1030run ntpdate at system startup. This command is intended to 1031synchronize the system clock only 1032.Em once 1033from some standard reference. An option to set this up initially 1034(from a list of known servers) is also provided by the 1035.Pa /stand/sysinstall 1036program when the system is first installed. 1037.It Va ntpdate_program 1038.Pq Vt str 1039Path to 1040.Xr ntpdate 8 1041(default 1042.Pa /usr/sbin/ntpdate ) . 1043.It Va ntpdate_flags 1044.Pq Vt str 1045If 1046.Va ntpdate_enable 1047is set to 1048.Dq YES , 1049these are the flags to pass to the 1050.Xr ntpdate 8 1051command (typically a hostname). 1052.It Va xntpd_enable 1053.Pq Vt bool 1054If set to 1055.Dq YES 1056then run the 1057.Xr ntpd 8 1058command at boot time. 1059.It Va xntpd_program 1060.Pq Vt str 1061Path to 1062.Xr ntpd 8 1063(default 1064.Pa /usr/sbin/ntpd ) . 1065.It Va xntpd_flags 1066.Pq Vt str 1067If 1068.Va xntpd_enable 1069is set to 1070.Dq YES , 1071these are the flags to pass to the 1072.Xr ntpd 8 1073daemon. 1074.It Va nis_client_enable 1075.Pq Vt bool 1076If set to 1077.Dq YES 1078then run the 1079.Xr ypbind 8 1080service at system boot time. 1081.It Va nis_client_flags 1082.Pq Vt str 1083If 1084.Va nis_client_enable 1085is set to 1086.Dq YES , 1087these are the flags to pass to the 1088.Xr ypbind 8 1089service. 1090.It Va nis_ypset_enable 1091.Pq Vt bool 1092If set to 1093.Dq YES 1094then run the 1095.Xr ypset 8 1096daemon at system boot time. 1097.It Va nis_ypset_flags 1098.Pq Vt str 1099If 1100.Va nis_ypset_enable 1101is set to 1102.Dq YES , 1103these are the flags to pass to the 1104.Xr ypset 8 1105daemon. 1106.It Va nis_server_enable 1107.Pq Vt bool 1108If set to 1109.Dq YES 1110then run the 1111.Xr ypserv 8 1112daemon at system boot time. 1113.It Va nis_server_flags 1114.Pq Vt str 1115If 1116.Va nis_server_enable 1117is set to 1118.Dq YES , 1119these are the flags to pass to the 1120.Xr ypserv 8 1121daemon. 1122.It Va nis_ypxfrd_enable 1123.Pq Vt bool 1124If set to 1125.Dq YES 1126then run the 1127.Xr rpc.ypxfrd 8 1128daemon at system boot time. 1129.It Va nis_ypxfrd_flags 1130.Pq Vt str 1131If 1132.Va nis_ypxfrd_enable 1133is set to 1134.Dq YES , 1135these are the flags to pass to the 1136.Xr rpc.ypxfrd 8 1137daemon. 1138.It Va nis_yppasswdd_enable 1139.Pq Vt bool 1140If set to 1141.Dq YES 1142then run the 1143.Xr rpc.yppasswdd 8 1144daemon at system boot time. 1145.It Va nis_yppasswdd_flags 1146.Pq Vt str 1147If 1148.Va nis_yppasswdd_enable 1149is set to 1150.Dq YES , 1151these are the flags to pass to the 1152.Xr rpc.yppasswdd 8 1153daemon. 1154.It Va defaultrouter 1155.Pq Vt str 1156If not set to 1157.Dq NO 1158then create a default route to this host name or IP address 1159(use an IP address if this router is also required to get to the 1160name server!). 1161.It Va static_routes 1162.Pq Vt str 1163Set to the list of static routes that are to be added at system 1164boot time. If not set to 1165.Dq NO 1166then for each whitespace separated 1167.Ar element 1168in the value, a 1169.Va route_ Ns Aq Ar element 1170variable is assumed to exist 1171whose contents will later be passed to a 1172.Dq route add 1173operation. 1174.It Va gateway_enable 1175.Pq Vt bool 1176If set to 1177.Dq YES , 1178then configure host to at as an IP router, e.g. to forward packets 1179between interfaces. 1180.It Va router_enable 1181.Pq Vt bool 1182If set to 1183.Dq YES 1184then run a routing daemon of some sort, based on the 1185settings of 1186.Va router 1187and 1188.Va router_flags . 1189.It Va router 1190.Pq Vt str 1191If 1192.Va router_enable 1193is set to 1194.Dq YES , 1195this is the name of the routing daemon to use. 1196.It Va router_flags 1197.Pq Vt str 1198If 1199.Va router_enable 1200is set to 1201.Dq YES , 1202these are the flags to pass to the routing daemon. 1203.It Va mrouted_enable 1204.Pq Vt bool 1205If set to 1206.Dq YES 1207then run the multicast routing daemon, 1208.Xr mrouted 8 . 1209.It Va mrouted_flags 1210.Pq Vt str 1211If 1212.Va mrouted_enable 1213is set to 1214.Dq YES , 1215these are the flags to pass to the multicast routing daemon. 1216.It Va ipxgateway_enable 1217.Pq Vt bool 1218If set to 1219.Dq YES 1220then enable the routing of IPX traffic. 1221.It Va ipxrouted_enable 1222.Pq Vt bool 1223If set to 1224.Dq YES 1225then run the 1226.Xr IPXrouted 8 1227daemon at system boot time. 1228.It Va ipxrouted_flags 1229.Pq Vt str 1230If 1231.Va ipxrouted_enable 1232is set to 1233.Dq YES , 1234these are the flags to pass to the 1235.Xr IPXrouted 8 1236daemon. 1237.It Va arpproxy_all 1238.Pq Vt bool 1239If set to 1240.Dq YES 1241then enable global proxy ARP. 1242.It Va forward_sourceroute 1243.Pq Vt bool 1244If set to 1245.Dq YES 1246then when 1247.Va gateway_enable 1248is also set to 1249.Dq YES , 1250source routed packets are forwarded. 1251.It Va accept_sourceroute 1252.Pq Vt bool 1253If set to 1254.Dq YES 1255then the system will accept source routed packets directed at it. 1256.It Va rarpd_enable 1257.Pq Vt bool 1258If set to 1259.Dq YES 1260then run the 1261.Xr rarpd 8 1262daemon at system boot time. 1263.It Va rarpd_flags 1264.Pq Vt str 1265If 1266.Va rarpd_enable 1267is set to 1268.Dq YES , 1269these are the flags to pass to the 1270.Xr rarpd 8 1271daemon. 1272.It Va atm_enable 1273.Pq Vt bool 1274Set to 1275.Dq YES 1276to enable the configuration of ATM interfaces at system boot time. 1277For all of the ATM variables described below, please refer to the 1278.Xr atm 8 1279man page for further details on the available command parameters. 1280Also refer to the files in 1281.Pa /usr/share/examples/atm 1282for more detailed configuration information. 1283.It Va atm_netif_<intf> 1284.Pq Vt str 1285For the ATM physical interface 1286.Va <intf> , 1287this variable defines the name prefix and count for the ATM network interfaces to be created. 1288The value will be passed as the parameters of an 1289.Dq atm set netif Va <intf> 1290command. 1291.It Va atm_sigmgr_<intf> 1292.Pq Vt str 1293For the ATM physical interface 1294.Va <intf> , 1295this variable defines the ATM signalling manager to be used. 1296The value will be passed as the parameters of an 1297.Dq atm attach Va <intf> 1298command. 1299.It Va atm_prefix_<intf> 1300.Pq Vt str 1301For the ATM physical interface 1302.Va <intf> , 1303this variable defines the NSAP prefix for interfaces using a UNI signalling 1304manager. If set to 1305.Em ILMI , 1306then the prefix will automatically be set via the 1307.Xr ilmid 8 1308daemon. Otherwise, the value will be passed as the parameters of an 1309.Dq atm set prefix Va <intf> 1310command. 1311.It Va atm_macaddr_<intf> 1312.Pq Vt str 1313For the ATM physical interface 1314.Va <intf> , 1315this variable defines the MAC address for interfaces using a UNI signalling 1316manager. If set to 1317.Dq NO , 1318then the hardware MAC address contained in the ATM interface card will be used. 1319Otherwise, the value will be passed as the parameters of an 1320.Dq atm set mac Va <intf> 1321command. 1322.It Va atm_arpserver_<netif> 1323.Pq Vt str 1324For the ATM network interface 1325.Va <netif> , 1326this variable defines the ATM address for a host which is to provide ATMARP 1327service. This variable is only applicable to interfaces using a UNI signalling 1328manager. If set to 1329.Em local , 1330then this host will become an ATMARP server. 1331The value will be passed as the parameters of an 1332.Dq atm set arpserver Va <netif> 1333command. 1334.It Va atm_scsparp_<netif> 1335.Pq Vt bool 1336If set to 1337.Dq YES , 1338then SCSP/ATMARP service for the network interface 1339.Va <netif> 1340will be initiated using the 1341.Xr scspd 8 1342and 1343.Xr atmarpd 8 1344daemons. This variable is only applicable if 1345.So 1346.Va atm_arpserver_ Ns Aq Ar netif 1347.No = Ns Qq local 1348.Sc 1349is defined. 1350.It Va atm_pvcs 1351.Pq Vt str 1352Set to the list of ATM PVCs to be added at system 1353boot time. For each whitespace separated 1354.Ar element 1355in the value, an 1356.Va atm_pvc_ Ns Aq Ar element 1357variable is assumed to exist. The value of each of these variables 1358will be passed as the parameters of an 1359.Dq atm add pvc 1360command. 1361.It Va atm_arps 1362.Pq Vt str 1363Set to the list of permanent ATM ARP entries to be added 1364at system boot time. For each whitespace separated 1365.Ar element 1366in the value, an 1367.Va atm_arp_ Ns Aq Ar element 1368variable is assumed to exist. The value of each of these variables 1369will be passed as the parameters of an 1370.Dq atm add arp 1371command. 1372.It Va keymap 1373.Pq Vt str 1374If set to 1375.Dq NO 1376then no keymap is installed, otherwise the value is used to install 1377the keymap file in 1378.Pa /usr/share/syscons/keymaps/<value>.kbd 1379.It Va keyrate 1380.Pq Vt str 1381The keyboard repeat speed. Set to 1382.Dq slow , 1383.Dq normal , 1384.Dq fast 1385or 1386.Dq NO 1387if the default behavior is desired. 1388.It Va keychange 1389.Pq Vt str 1390If not set to 1391.Dq NO , 1392attempt to program the function keys with the value. The value should 1393be a single string of the form: 1394.Qq Ar "<funkey_number> <new_value> [<funkey_number> <new_value>]..." 1395.It Va cursor 1396.Pq Vt str 1397Can be set to the value of 1398.Dq normal , 1399.Dq blink , 1400.Dq destructive 1401or 1402.Dq NO 1403to set the cursor behavior explicitly or choose the default behavior. 1404.It Va scrnmap 1405.Pq Vt str 1406If set to 1407.Dq NO 1408then no screen map is installed, otherwise the value is used to install 1409the screen map file in 1410.Pa /usr/share/syscons/scrnmaps/<value> . 1411.It Va font8x16 1412.Pq Vt str 1413If set to 1414.Dq NO 1415then the default 8x16 font value is used for screen size requests, otherwise 1416the value in 1417.Pa /usr/share/syscons/fonts/<value> 1418is used. 1419.It Va font8x14 1420.Pq Vt str 1421If set to 1422.Dq NO 1423then the default 8x14 font value is used for screen size requests, otherwise 1424the value in 1425.Pa /usr/share/syscons/fonts/<value> 1426is used. 1427.It Va font8x8 1428.Pq Vt str 1429If set to 1430.Dq NO 1431then the default 8x8 font value is used for screen size requests, otherwise 1432the value in 1433.Pa /usr/share/syscons/fonts/<value> 1434is used. 1435.It Va blanktime 1436.Pq Vt int 1437If set to 1438.Dq NO 1439then the default screen blanking interval is used, otherwise it is set 1440to 1441.Ar value 1442seconds. 1443.It Va saver 1444.Pq Vt str 1445If not set to 1446.Dq NO , 1447this is the actual screen saver to use (blank, snake, daemon, etc). 1448.It Va moused_enable 1449.Pq Vt str 1450If set to 1451.Dq YES , 1452the 1453.Xr moused 8 1454daemon is started for doing cut/paste selection on the console. 1455.It Va moused_type 1456.Pq Vt str 1457This is the protocol type of the mouse connected to this host. 1458This variable must be set if 1459.Va moused_enable 1460is set to 1461.Dq YES . 1462The 1463.Xr moused 8 1464daemon 1465is able to detect the appropriate mouse type automatically in many cases. 1466Set this variable to 1467.Dq auto 1468to let the daemon detect it, or 1469select one from the following list if the automatic detection fails. 1470.Pp 1471If the mouse is attached to the PS/2 mouse port, choose 1472.Dq auto 1473or 1474.Dq ps/2 , 1475regardless of the brand and model of the mouse. Likewise, if the 1476mouse is attached to the bus mouse port, choose 1477.Dq auto 1478or 1479.Dq busmouse . 1480All other protocols are for serial mice and will not work with 1481the PS/2 and bus mice. 1482If this is a USB mouse, 1483.Dq auto 1484is the only protocol type which will work. 1485.Bd -literal 1486microsoft Microsoft mouse (serial) 1487intellimouse Microsoft IntelliMouse (serial) 1488mousesystems Mouse systems Corp mouse (serial) 1489mmseries MM Series mouse (serial) 1490logitech Logitech mouse (serial) 1491busmouse A bus mouse 1492mouseman Logitech MouseMan and TrackMan (serial) 1493glidepoint ALPS GlidePoint (serial) 1494thinkingmouse Kensignton ThinkingMouse (serial) 1495ps/2 PS/2 mouse 1496mmhittab MM HitTablet (serial) 1497x10mouseremote X10 MouseRemote (serial) 1498versapad Interlink VersaPad (serial) 1499.Ed 1500.Pp 1501Even if the mouse is not in the above list, it may be compatible 1502with one in the list. 1503Refer to the man page for 1504.Xr moused 8 1505for compatibility information. 1506.Pp 1507It should also be noted that while this is enabled, any 1508other client of the mouse (such as an X server) should access 1509the mouse through the virtual mouse device: 1510.Pa /dev/sysmouse 1511and configure it as a sysmouse type mouse, since all 1512mouse data is converted to this single canonical format when 1513using 1514.Xr moused 8 . 1515If the client program does not support the sysmouse type, 1516specify the mousesystems type. 1517It is the second preferred type. 1518.It Va moused_port 1519.Pq Vt str 1520If 1521.Va moused_enable 1522is set to 1523.Dq YES , 1524this is the actual port the mouse is on. 1525It might be 1526.Pa /dev/cuaa0 1527for a COM1 serial mouse, 1528.Pa /dev/psm0 1529for a PS/2 mouse or 1530.Pa /dev/mse0 1531for a bus mouse, for example. 1532.It Va moused_flags 1533.Pq Vt str 1534If 1535.Va moused_type 1536is set, these are the additional flags to pass to the 1537.Xr moused 8 1538daemon. 1539.It Va mousechar_start 1540.Pq Vt int 1541If set to 1542.Dq NO 1543then the default mouse cursor character range 0xd0-0xd3 is used, 1544otherwise the range start is set 1545to 1546.Ar value 1547character, see 1548.Xr vidcontrol 1 . 1549Use if the default range is occupied in the language code table. 1550.It Va allscreens_flags 1551.Pq Vt str 1552If set, 1553.Xr vidcontrol 1 1554is run with these options for each of the virtual terminals 1555.Pq Pa /dev/ttyv* . 1556For example, 1557.Dq -m on 1558will enable the mouse pointer on all virtual terminals 1559if 1560.Va moused_enable 1561is set to 1562.Dq YES . 1563.It Va allscreens_kbdflags 1564.Pq Vt str 1565If set, 1566.Xr kbdcontrol 1 1567is run with these options for each of the virtual terminals 1568.Pq Pa /dev/ttyv* . 1569For example, 1570.Dq Li -h 200 1571will set the 1572.Xr syscons 4 1573scrollback (history) buffer to 200 lines. 1574.It Va cron_enable 1575.Pq Vt bool 1576If set to 1577.Dq YES 1578then run the 1579.Xr cron 8 1580daemon at system boot time. 1581.It Va cron_program 1582.Pq Vt str 1583Path to 1584.Xr cron 8 1585(default 1586.Pa /usr/sbin/cron ) . 1587.It Va cron_flags 1588.Pq Vt str 1589If 1590.Va cron_enable 1591is set to 1592.Dq YES , 1593these are the flags to pass to 1594.Xr cron 8 . 1595.It Va lpd_program 1596.Pq Vt str 1597Path to 1598.Xr lpd 8 1599(default 1600.Pa /usr/sbin/lpd ) . 1601.It Va lpd_enable 1602.Pq Vt bool 1603If set to 1604.Dq YES 1605then run the 1606.Xr lpd 8 1607daemon at system boot time. 1608.It Va lpd_flags 1609.Pq Vt str 1610If 1611.Va lpd_enable 1612is set to 1613.Dq YES , 1614these are the flags to pass to the 1615.Xr lpd 8 1616daemon. 1617.It Va sendmail_enable 1618.Pq Vt bool 1619If set to 1620.Dq YES 1621then run the 1622.Xr sendmail 8 1623daemon at system boot time. 1624.It Va sendmail_flags 1625.Pq Vt str 1626If 1627.Va sendmail_enable 1628is set to 1629.Dq YES , 1630these are the flags to pass to the 1631.Xr sendmail 8 1632daemon. 1633.It Va sendmail_submit_enable 1634.Pq Vt bool 1635If set to 1636.Dq YES 1637and 1638.Va sendmail_enable 1639is set to 1640.Dq NO 1641then run 1642.Xr sendmail 8 1643using 1644.Va sendmail_submit_flags 1645instead of 1646.Va sendmail_flags . 1647This is intended to allow local mail submission via 1648a localhost-only listening SMTP service required for running 1649.Xr sendmail 8 as a non-set-user-ID binary. 1650.It Va sendmail_outbound_enable 1651.Pq Vt bool 1652If set to 1653.Dq YES 1654and 1655.Va sendmail_enable 1656is set to 1657.Dq NO 1658then run 1659.Xr sendmail 8 1660using 1661.Va sendmail_outbound_flags 1662instead of 1663.Va sendmail_flags . 1664This is intended to allow local mail queue management 1665for systems that do not offer a listening SMTP service. 1666.It Va sendmail_outbound_flags 1667.Pq Vt str 1668If 1669.Va sendmail_enable 1670is set to 1671.Dq NO 1672and 1673.Va sendmail_outbound_enable 1674is set to 1675.Dq YES 1676then these are the flags to pass to the 1677.Xr sendmail 8 1678daemon. 1679.It Va sendmail_msp_queue_enable 1680.Pq Vt bool 1681If set to 1682.Dq YES , 1683start a client (MSP) queue runner 1684.Xr sendmail 8 1685daemon at system boot time. 1686As of sendmail 8.12, a separate queue is used for command line 1687submissions. The client queue runner assures that nothing is 1688left behind in the submission queue. 1689.It Va sendmail_msp_queue_flags 1690.Pq Vt str 1691If 1692.Va sendmail_msp_queue_enable 1693is set to 1694.Dq YES , 1695these are the flags to pass to the 1696.Xr sendmail 8 1697daemon. 1698.It Va dumpdev 1699.Pq Vt str 1700Indicates the device (usually a swap partition) to which a crash dump 1701should be written in the event of a system crash. 1702The value of this variable is passed as the argument to 1703.Xr dumpon 8 . 1704To disable crash dumps, set this variable to 1705.Dq NO . 1706.It Va dumpdir 1707.Pq Vt str 1708When the system reboots after a crash and a crash dump is found on the 1709device specified by the 1710.Va dumpdev 1711variable, 1712.Xr savecore 8 1713will save that crash dump and a copy of the kernel to the directory 1714specified by the 1715.Va dumpdir 1716variable. 1717The default value is 1718.Dq /var/crash . 1719.It Va enable_quotas 1720.Pq Vt bool 1721Set to 1722.Dq YES 1723to turn on user disk quotas on system startup via the 1724.Xr quotaon 8 1725command. 1726.It Va check_quotas 1727.Pq Vt bool 1728Set to 1729.Dq YES 1730to enable user disk quota checking via the 1731.Xr quotacheck 8 1732command. 1733.It Va accounting_enable 1734.Pq Vt bool 1735Set to 1736.Dq YES 1737to enable system accounting through the 1738.Xr accton 8 1739facility. 1740.It Va ibcs2_enable 1741.Pq Vt bool 1742Set to 1743.Dq YES 1744to enable iBCS2 (SCO) binary emulation at system initial boot 1745time. 1746.It Va ibcs2_loaders 1747.Pq Vt str 1748If not set to 1749.Dq NO 1750and if 1751.Va ibcs2_enable 1752is set to 1753.Dq YES , 1754this specifies a list of additional iBCS2 loaders to enable. 1755.It Va linux_enable 1756.Pq Vt bool 1757Set to 1758.Dq YES 1759to enable Linux/ELF binary emulation at system initial 1760boot time. 1761.It Va osf1_enable 1762.Pq Vt bool 1763Set to 1764.Dq YES 1765to enable OSF/1 (Digital UNIX) binary emulation at system 1766initial boot time. 1767(alpha) 1768.It Va clear_tmp_enable 1769.Pq Vt bool 1770Set to 1771.Dq YES 1772to have 1773.Pa /tmp 1774cleaned at startup. 1775.It Va ldconfig_paths 1776.Pq Vt str 1777Set to the list of shared library paths to use with 1778.Xr ldconfig 8 . 1779NOTE: 1780.Pa /usr/lib 1781will always be added first, so it need not appear in this list. 1782.It Va ldconfig_insecure 1783.Pq Vt bool 1784The 1785.Xr ldconfig 8 1786utility normally refuses to use directories 1787which are writable by anyone except root. 1788Set this variable to 1789.Dq YES 1790to disable that security check during system startup. 1791.It Va kern_securelevel_enable 1792.Pq Vt bool 1793Set to 1794.Dq YES 1795to set the kernel security level at system startup. 1796.It Va kern_securelevel 1797.Pq Vt int 1798The kernel security level to set at startup. 1799The allowed range of 1800.Ar value 1801ranges from -1 (the compile time default) to 3 (the 1802most secure). See 1803.Xr init 8 1804for the list of possible security levels and their effect 1805on system operation. 1806.It Va start_vinum 1807.Pq Vt bool 1808Set to 1809.Dq YES 1810to start 1811.Xr vinum 8 1812at system boot time. 1813.It Va sshd_program 1814.Pq Vt str 1815Path to the SSH server program 1816.Pa ( /usr/sbin/sshd 1817is the default). 1818.It Va sshd_enable 1819.Pq Vt bool 1820Set to 1821.Dq YES 1822to start 1823.Xr sshd 8 1824at system boot time. 1825.It Va sshd_flags 1826.Pq Vt str 1827If 1828.Va sshd_enable 1829is set to 1830.Dq YES , 1831these are the flags to pass to the 1832.Xr sshd 8 1833daemon. 1834.It Va unaligned_print 1835.Pq Vt bool 1836If set to 1837.Dq NO 1838then unaligned access warnings will not be printed. 1839(alpha) 1840.\" ----- isdn settings --------------------------------- 1841.It Va isdn_enable 1842.Pq Vt bool 1843Set to 1844.Dq NO 1845by default. 1846When set to 1847.Dq YES , 1848starts the isdn daemon 1849.Pa /usr/sbin/isdnd 1850at system boot time. 1851.It Va isdn_flags 1852.Pq Vt str 1853Set to 1854.Dq -dn -d0x1f9 1855by default. 1856Additional flags to pass to 1857.Xr isdnd 8 1858(but see 1859.Va isdn_fsdev 1860and 1861.Va isdn_ttype 1862for certain tunable parameters). 1863.It Va isdn_ttype 1864.Pq Vt str 1865Set to 1866.Dq cons25 1867by default. 1868The terminal type of the output device when 1869.Xr isdnd 8 1870operates in fullscreen mode. 1871.It Va isdn_screenflags 1872.Pq Vt str 1873Set to 1874.Dq NO 1875by default. 1876The video mode for fullscreen mode (only for 1877.Xr syscons 4 1878console driver, see 1879.Xr vidcontrol 1 1880for valid modes). 1881.It Va isdn_fsdev 1882.Pq Vt str 1883Set to 1884.Dq NO 1885by default. 1886The output device for 1887.Xr isdnd 8 1888in fullscreen mode (or 1889.Dq NO 1890for daemon mode). 1891.It Va isdn_trace 1892.Pq Vt bool 1893Set to 1894.Dq NO 1895by default. 1896When set to 1897.Dq YES , 1898enables the ISDN protocol trace utility 1899.Pa /usr/sbin/isdntrace 1900at system boot time. 1901.It Va isdn_traceflags 1902.Pq Vt str 1903Set to 1904.Dq -f /var/tmp/isdntrace0 1905by default. 1906Flags for 1907.Pa /usr/sbin/isdntrace . 1908.\" ----------------------------------------------------- 1909.El 1910.Sh FILES 1911.Bl -tag -width /etc/defaults/rc.conf -compact 1912.It Pa /etc/defaults/rc.conf 1913.It Pa /etc/rc.conf 1914.It Pa /etc/rc.conf.local 1915.El 1916.Sh SEE ALSO 1917.Xr catman 1 , 1918.Xr gdb 1 , 1919.Xr info 1 , 1920.Xr makewhatis 1 , 1921.Xr vidcontrol 1 , 1922.Xr tcp 4 , 1923.Xr udp 4 , 1924.Xr exports 5 , 1925.Xr motd 5 , 1926.Xr accton 8 , 1927.Xr amd 8 , 1928.Xr apm 8 , 1929.Xr atm 8 , 1930.Xr cron 8 , 1931.Xr dhclient 8 , 1932.Xr gated 8 , 1933.Xr ifconfig 8 , 1934.Xr inetd 8 , 1935.Xr isdnd 8 , 1936.Xr isdntrace 8 , 1937.Xr lpd 8 , 1938.Xr mdconfig 8 , 1939.Xr moused 8 , 1940.Xr mrouted 8 , 1941.Xr named 8 , 1942.Xr nfsd 8 , 1943.Xr ntpd 8 , 1944.Xr ntpdate 8 , 1945.Xr pcnfsd 8 , 1946.Xr quotacheck 8 , 1947.Xr quotaon 8 , 1948.Xr rc 8 , 1949.Xr route 8 , 1950.Xr routed 8 , 1951.Xr rpc.lockd 8 , 1952.Xr rpc.statd 8 , 1953.Xr rpcbind 8 , 1954.Xr rwhod 8 , 1955.Xr savecore 8 , 1956.Xr sendmail 8 , 1957.Xr sshd 8 , 1958.Xr swapon 8 , 1959.Xr sysctl 8 , 1960.Xr syslogd 8 , 1961.Xr timed 8 , 1962.Xr vinum 8 , 1963.Xr xtend 8 , 1964.Xr yp 8 , 1965.Xr ypbind 8 , 1966.Xr ypserv 8 , 1967.Xr ypset 8 1968.Sh HISTORY 1969The 1970.Nm 1971file appeared in 1972.Fx 2.2.2 . 1973.Sh AUTHORS 1974.An Jordan K. Hubbard . 1975