1*7c478bd9Sstevel@tonic-gate# 2*7c478bd9Sstevel@tonic-gate# Copyright 2005 Sun Microsystems, Inc. All rights reserved. 3*7c478bd9Sstevel@tonic-gate# Use is subject to license terms. 4*7c478bd9Sstevel@tonic-gate# 5*7c478bd9Sstevel@tonic-gate# CDDL HEADER START 6*7c478bd9Sstevel@tonic-gate# 7*7c478bd9Sstevel@tonic-gate# The contents of this file are subject to the terms of the 8*7c478bd9Sstevel@tonic-gate# Common Development and Distribution License, Version 1.0 only 9*7c478bd9Sstevel@tonic-gate# (the "License"). You may not use this file except in compliance 10*7c478bd9Sstevel@tonic-gate# with the License. 11*7c478bd9Sstevel@tonic-gate# 12*7c478bd9Sstevel@tonic-gate# You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE 13*7c478bd9Sstevel@tonic-gate# or http://www.opensolaris.org/os/licensing. 14*7c478bd9Sstevel@tonic-gate# See the License for the specific language governing permissions 15*7c478bd9Sstevel@tonic-gate# and limitations under the License. 16*7c478bd9Sstevel@tonic-gate# 17*7c478bd9Sstevel@tonic-gate# When distributing Covered Code, include this CDDL HEADER in each 18*7c478bd9Sstevel@tonic-gate# file and include the License file at usr/src/OPENSOLARIS.LICENSE. 19*7c478bd9Sstevel@tonic-gate# If applicable, add the following below this CDDL HEADER, with the 20*7c478bd9Sstevel@tonic-gate# fields enclosed by brackets "[]" replaced with your own identifying 21*7c478bd9Sstevel@tonic-gate# information: Portions Copyright [yyyy] [name of copyright owner] 22*7c478bd9Sstevel@tonic-gate# 23*7c478bd9Sstevel@tonic-gate# CDDL HEADER END 24*7c478bd9Sstevel@tonic-gate# 25*7c478bd9Sstevel@tonic-gate# ident "%Z%%M% %I% %E% SMI" 26*7c478bd9Sstevel@tonic-gate 27*7c478bd9Sstevel@tonic-gate#################################################################### 28*7c478bd9Sstevel@tonic-gate# wanboot.conf(4): boot configuration file. 29*7c478bd9Sstevel@tonic-gate# 30*7c478bd9Sstevel@tonic-gate# Please consult wanboot.conf(4) for further information. Note that 31*7c478bd9Sstevel@tonic-gate# this interface is "Evolving" as defined by attributes(5). 32*7c478bd9Sstevel@tonic-gate# 33*7c478bd9Sstevel@tonic-gate# Anything after a '#' is comment. Values may be quoted (e.g. "val"). 34*7c478bd9Sstevel@tonic-gate# 35*7c478bd9Sstevel@tonic-gate# <empty> means there is no value, i.e. null. The absence of any 36*7c478bd9Sstevel@tonic-gate# parameter implies that it takes a default value (<empty> unless 37*7c478bd9Sstevel@tonic-gate# otherwise specified). 38*7c478bd9Sstevel@tonic-gate# 39*7c478bd9Sstevel@tonic-gate# <url> is of the form http://... or https://... 40*7c478bd9Sstevel@tonic-gate#################################################################### 41*7c478bd9Sstevel@tonic-gate 42*7c478bd9Sstevel@tonic-gate# The path of the bootstrap file (within htdocs) which is served up 43*7c478bd9Sstevel@tonic-gate# by wanboot-cgi(bootfile). 44*7c478bd9Sstevel@tonic-gate# 45*7c478bd9Sstevel@tonic-gateboot_file=/bootfiles/wanboot # <absolute pathname> 46*7c478bd9Sstevel@tonic-gate 47*7c478bd9Sstevel@tonic-gate# These are used by wanboot-cgi(bootfile|bootfs|rootfs) to determine 48*7c478bd9Sstevel@tonic-gate# whether boot_file or the bootfs is to be sent encrypted/signed, or 49*7c478bd9Sstevel@tonic-gate# root_file is to be sent signed; the client must be setup with the 50*7c478bd9Sstevel@tonic-gate# corresponding encryption/signature key(s) (which cannot be auto- 51*7c478bd9Sstevel@tonic-gate# matically verified). 52*7c478bd9Sstevel@tonic-gate# 53*7c478bd9Sstevel@tonic-gate# If an encryption_type is specified then a signature_type must also 54*7c478bd9Sstevel@tonic-gate# be specified. 55*7c478bd9Sstevel@tonic-gate# 56*7c478bd9Sstevel@tonic-gateencryption_type=3des # 3des | aes | <empty> 57*7c478bd9Sstevel@tonic-gatesignature_type=sha1 # sha1 | <empty> 58*7c478bd9Sstevel@tonic-gate 59*7c478bd9Sstevel@tonic-gate# This is used by wanboot-cgi(bootfs) and wanboot to determine whether 60*7c478bd9Sstevel@tonic-gate# server authentication should be requested during SSL connection 61*7c478bd9Sstevel@tonic-gate# setup. 62*7c478bd9Sstevel@tonic-gate# 63*7c478bd9Sstevel@tonic-gateserver_authentication=yes # yes | no 64*7c478bd9Sstevel@tonic-gate 65*7c478bd9Sstevel@tonic-gate# This is used by wanboot-cgi(bootfs) and wanboot to determine whether 66*7c478bd9Sstevel@tonic-gate# client authentication should be requested during SSL connection 67*7c478bd9Sstevel@tonic-gate# setup. If client_authentication is "yes", then server_authentication 68*7c478bd9Sstevel@tonic-gate# must also be "yes". 69*7c478bd9Sstevel@tonic-gate# 70*7c478bd9Sstevel@tonic-gateclient_authentication=yes # yes | no 71*7c478bd9Sstevel@tonic-gate 72*7c478bd9Sstevel@tonic-gate# wanboot-cgi(bootfs) will construct a hosts file which resolves any 73*7c478bd9Sstevel@tonic-gate# hostnames specified in any of the URLs in the wanboot.conf file, 74*7c478bd9Sstevel@tonic-gate# plus those found in certificates, etc. The following parameter 75*7c478bd9Sstevel@tonic-gate# may be used to add additional mappings to the hosts file. 76*7c478bd9Sstevel@tonic-gate# 77*7c478bd9Sstevel@tonic-gateresolve_hosts= # <hostname>[,<hostname>*] | <empty> 78*7c478bd9Sstevel@tonic-gate 79*7c478bd9Sstevel@tonic-gate# This is used to specify the URL of wanboot-cgi on the server on which 80*7c478bd9Sstevel@tonic-gate# the root_file exists, and used by wanboot to obtain the root server's 81*7c478bd9Sstevel@tonic-gate# URL; wanboot substitutes root_file for the pathname part of the URL. 82*7c478bd9Sstevel@tonic-gate# If the schema is http://... then the root_file will be signed if there 83*7c478bd9Sstevel@tonic-gate# is a non-empty signature_type. If server_authentication is "yes", the 84*7c478bd9Sstevel@tonic-gate# schema must be https://...; otherwise it must be http://... 85*7c478bd9Sstevel@tonic-gate# 86*7c478bd9Sstevel@tonic-gateroot_server=https://host:port/cgi-bin/wanboot-cgi # <url> | <empty> 87*7c478bd9Sstevel@tonic-gate 88*7c478bd9Sstevel@tonic-gate# This is used by wanboot-cgi(rootfs) to locate the path of the 89*7c478bd9Sstevel@tonic-gate# rootfs image (within htdocs) on the root_server. 90*7c478bd9Sstevel@tonic-gate# 91*7c478bd9Sstevel@tonic-gateroot_file=/rootimages/miniroot # <absolute pathname> | <empty> 92*7c478bd9Sstevel@tonic-gate 93*7c478bd9Sstevel@tonic-gate# This is used by wanboot to determine the URL of the bootserver 94*7c478bd9Sstevel@tonic-gate# (and whether bootlog traffic should be sent using http or https), 95*7c478bd9Sstevel@tonic-gate# or whether it should simply be sent to the console. 96*7c478bd9Sstevel@tonic-gate# 97*7c478bd9Sstevel@tonic-gateboot_logger= # <url> | <empty> 98*7c478bd9Sstevel@tonic-gate 99*7c478bd9Sstevel@tonic-gate# This is used by the system startup scripts. If set, it should 100*7c478bd9Sstevel@tonic-gate# point to a file that contains name value pairs to be used at 101*7c478bd9Sstevel@tonic-gate# start up time. For example, this file may be used to provide 102*7c478bd9Sstevel@tonic-gate# install the values for sysidcfg and jumpscfg. 103*7c478bd9Sstevel@tonic-gate# 104*7c478bd9Sstevel@tonic-gatesystem_conf=system.conf 105