2 .\" Copyright (c) 1997-2006 Erez Zadok
3 .\" Copyright (c) 1990 Jan-Simon Pendry
4 .\" Copyright (c) 1990 Imperial College of Science, Technology & Medicine
5 .\" Copyright (c) 1990 The Regents of the University of California.
6 .\" All rights reserved.
8 .\" This code is derived from software contributed to Berkeley by
9 .\" Jan-Simon Pendry at Imperial College, London.
11 .\" Redistribution and use in source and binary forms, with or without
12 .\" modification, are permitted provided that the following conditions
14 .\" 1. Redistributions of source code must retain the above copyright
15 .\" notice, this list of conditions and the following disclaimer.
16 .\" 2. Redistributions in binary form must reproduce the above copyright
17 .\" notice, this list of conditions and the following disclaimer in the
18 .\" documentation and/or other materials provided with the distribution.
19 .\" 3. All advertising materials mentioning features or use of this software
20 .\" must display the following acknowledgment:
21 .\" This product includes software developed by the University of
22 .\" California, Berkeley and its contributors.
23 .\" 4. Neither the name of the University nor the names of its contributors
24 .\" may be used to endorse or promote products derived from this software
25 .\" without specific prior written permission.
27 .\" THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
28 .\" ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
29 .\" IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
30 .\" ARE DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
31 .\" FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
32 .\" DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
33 .\" OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
34 .\" HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
35 .\" LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
36 .\" OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
39 .\" %W% (Berkeley) %G%
41 .\" $Id: amd.conf.5,v 1.39.2.5 2006/04/21 01:12:04 ezk Exp $
56 This configuration file is obsolete.
57 Users are advised to use
64 file is the configuration file for
66 as part of the am-utils suite.
71 contains runtime configuration information for the
75 The file consists of sections and parameters.
76 A section begins with the
77 name of the section in square brackets and continues until the next section
78 begins or the end of the file is reached.
79 Sections contain parameters of the
81 .Dq Ar name No = Ar value .
83 The file is line-based \[em] that is, each newline-terminated line represents
84 either a comment, a section name or a parameter.
88 Section, parameter names and their values are case sensitive.
90 Only the first equals sign in a parameter is significant.
92 or after the first equals sign is discarded.
94 internal whitespace in section and parameter names is irrelevant.
96 and trailing whitespace in a parameter value is discarded.
98 whitespace within a parameter value is not allowed, unless the whole
99 parameter value is quoted with double quotes as in
100 .Dq Ar name No = Qq Li "some\ value" .
102 Any line beginning with a pound sign (#) is ignored, as are lines containing
105 The values following the equals sign in parameters are all either a string
106 (no quotes needed if string does not include spaces) or a boolean, which may
109 Case is significant in all values.
111 cache timeouts are numeric.
113 .Ss "The [global] section"
114 Parameters in this section either apply to
116 as a whole, or to all other
117 regular map sections which follow.
118 There should be only one global section
119 defined in one configuration file.
121 It is highly recommended that this section be specified first in the
123 If it is not, then regular map sections which precede
124 it will not use global values defined later.
125 .Ss "Regular [/map] sections"
126 Parameters in regular (non-global) sections apply to a single map entry.
127 For example, if the map section
129 is defined, then all parameters following it will be applied to the
132 -managed mount point.
134 .Ss "Parameters common to all sections"
135 These parameters can be specified either in the global or a map specific
137 Entries specified in a map-specific section override the default
138 value or one defined in the global section.
139 If such a common parameter is
140 specified only in the global section, it is applicable to all regular map
141 sections that follow.
143 .It Va browsable_dirs Pq string, default=no
148 top-level mount points will be browsable to
151 This means you could run for example
153 and see what keys are available to mount in that directory.
159 entry, wildcard entries, and those with a
161 in them are not included.
164 to this option, all but
167 Note that if you run a command which will attempt to
169 the entries, such as often done by
174 will attempt to mount
177 This is often called a
179 .It Va map_defaults Pq string, default no empty
180 This option sets a string to be used as the map's /defaults entry,
181 overriding any /defaults specified in the map.
182 This allows local users to
183 override map defaults without modifying maps globally.
184 .It Va map_options Pq string, default no options
185 This option is the same as specifying map options on the command line to
188 .Dq Li "cache:=all" .
189 .It Va map_type Pq string, default search all map types
192 will initialize the map only for the type given.
194 useful to avoid the default map search type used by
197 and can have undesired side-effects such as initializing
203 .Bl -tag -width ".Cm nisplus" -compact
209 Hesiod name service from MIT
211 Lightweight Directory Access Protocol
213 (New) dbm style hash files
215 Network Information Services (version 2)
217 Network Information Services Plus (version 3)
223 .It Va mount_type Pq string, default=nfs
226 mount types default to
233 map mount points, for the local host it is running on.
238 will be an autofs server for those mount points.
239 .It Va autofs_use_lofs Pq string, default=yes
244 will use lofs-type (loopback) mounts
245 for type:=link mounts.
246 This has the advantage of mounting in place, and
247 users get to the see the same pathname that they chdir'ed into.
253 will use symlinks instead: that code is more
254 tested, but negates autofs's big advantage of in-place mounts.
255 .It Va search_path Pq string, default no search path
256 This provides a (colon-delimited) search path for file maps.
258 path, sites can allow for local map customizations and overrides, and can
260 distributed maps in several locations as needed.
261 .It Va selectors_in_defaults Pq boolean, default=no
264 then the /defaults entry of maps will search for and process any
265 selectors before setting defaults for all other keys in that map.
267 when you want to set different options for a complete map based on some
269 For example, you may want to better the NFS performance over
270 slow slip-based networks as follows:
273 wire==slip-net;opts:=intr,rsize=1024,wsize=1024 \\
274 wire!=slip-net;opts:=intr,rsize=8192,wsize=8192
276 Deprecated form: selectors_on_default
278 .Ss "Parameters applicable to the global section only"
280 .It Va arch Pq string, default to compiled in value
285 Allows you to override the value of the
289 .It Va auto_attrcache Pq numeric, default=0
290 Specify in seconds (or units of 0.1 seconds, depending on the OS), what is
291 the (kernel-side) NFS attribute cache timeout for
295 A value of 0 is supposed to turn off attribute caching, meaning
298 will be consulted via a kernel-RPC each time someone stat()'s
299 the mount point (which could be abused as a denial-of-service attack).
300 Warning: some OSs are incapable of turning off the NFS attribute cache
304 may not work reliably under heavy load.
308 document in the Am-utils distribution for more details.
309 .It Va auto_dir Pq string, default= Ns Pa /a
314 This sets the private directory where
317 sub-directories for its real mount points.
318 .It Va cache_duration Pq numeric, default=300
323 Sets the duration in seconds that looked-up or mounted map
324 entries remain in the cache.
325 .It Va cluster Pq string, default no cluster
330 Specifies the alternate
333 .It Va debug_mtab_file Pq string, default= Ns Pa /tmp/mnttab
334 Path to mtab file that is used by
336 to store a list of mounted
337 file systems during debug-mtab mode.
338 This option only applies
339 to systems that store mtab information on disk.
340 .It Va debug_options Pq string, default no debug options
345 Specify any debugging options for
348 am-utils was configured for debugging using the
353 option alone can be turned on via
354 .Fl Fl enable-debug Ns = Ns Cm mem .
355 Otherwise debugging options are ignored.
357 comma delimited, and can be preceded by the string
361 You can get the list of supported debugging options by running
365 .Bl -tag -width ".Cm xdrtrace" -compact
378 info service specific debugging
381 trace memory allocations
389 full debug but no daemon
391 trace protocol and NFS mount arguments
395 .It Va dismount_interval Pq numeric, default=120
400 Specify, in seconds, the time between attempts to dismount
401 file systems that have exceeded their cached times.
402 .It Va domain_strip Pq boolean, default=yes
406 name part referred to by ${rhost} is stripped off.
408 useful to keep logs and smaller.
412 part is left changed.
413 This is useful when using multiple domains with
414 the same maps (as you may have hosts whose domain-stripped name is
416 .It Va exec_map_timeout Pq numeric, default=10
417 The timeout in seconds that
419 will wait for an executable map program before an answer is returned from
420 that program (or script).
421 This value should be set to as small as possible
422 while still allowing normal replies to be returned before the timer expires,
423 because during the time that the executable map program is queried,
425 is essentially waiting and is thus not responding to any other queries.
426 .It Va forced_unmounts Pq boolean, default=no
429 and the client OS supports forced or lazy unmounts, then
431 will attempt to use them if it gets any of three serious error conditions
432 when trying to unmount an existing mount point or mount on top of one:
437 This could be useful to recover from serious conditions such as hardware
438 failure of mounted disks, or NFS servers which are down permanently, were
439 migrated, or changed their IP address.
444 are forcibly unmounted using this option, which is useful to recover
447 .It Va full_os Pq string, default to compiled in value
448 The full name of the operating system, along with its version.
450 to override the compiled-in full name and version of the operating system.
451 Useful when the compiled-in name is not desired.
452 For example, the full
453 operating system name on Linux comes up as
455 but you can override it to
457 .It Va fully_qualified_hosts Pq string, default=no
461 will perform RPC authentication using fully-qualified host names.
463 necessary for some systems, and especially when performing cross-domain
465 For this function to work, the
467 variable ${hostd} is used, requiring that ${domain} not be null.
468 .It Va hesiod_base Pq string, default=automount
469 Specify the base name for hesiod maps.
470 .It Va karch Pq string, default to karch of the system
475 Allows you to override the kernel-architecture of your
477 Useful for example on Sun (Sparc) machines, where you can build one
479 binary and run it on multiple machines, yet you want each one to get
482 variable set (for example, sun4c, sun4m, sun4u, etc.)
488 to figure out the kernel architecture of
490 .It Va ldap_base Pq string, default not set
491 Specify the base name for LDAP.
492 This often includes LDAP-specific
493 values such as country and organization.
494 .It Va ldap_cache_maxmem Pq numeric, default=131072
495 Specify the maximum memory
497 should use to cache LDAP entries.
498 .It Va ldap_cache_seconds Pq numeric, default=0
499 Specify the number of seconds to keep entries in the cache.
500 .It Va ldap_hostports Pq string, default not set
501 Specify the LDAP host and port values.
502 .It Va ldap_proto_version Pq numeric, default=2
503 Specify the version of the LDAP protocol to use.
504 .It Va local_domain Pq string, default no sub-domain
509 Specify the local domain name.
510 If this option is not given
511 the domain name is determined from the hostname by removing the first
512 component of the fully-qualified host name.
513 .It Va localhost_address Pq string, default to localhost or 127.0.0.1
514 Specify the name or IP address for
516 to use when connecting the sockets
517 for the local NFS server and the RPC server.
518 This defaults to 127.0.0.1 or
519 whatever the host reports as its local address.
520 This parameter is useful on
521 hosts with multiple addresses where you want to force
525 .It Va log_file Pq string, default= Ns Pa /dev/stderr
530 Specify a file name to log
537 will send its events to the standard error file descriptor.
542 will record its events with the system logger
544 The default syslog facility used is
547 wish to change it, append its name to the log file name, delimited by a
555 will log messages via
559 facility (if it exists on the system).
560 .It Va log_options Pq string, default no logging options
565 Specify any logging options for
568 delimited, and can be preceded by the string
570 to negate their meaning.
573 logging option is only available if am-utils was configured with
574 .Fl Fl enable-debug .
575 You can get the list of supported debugging and logging
580 .Bl -tag -width ".Cm warning" -compact
586 non-fatal system errors
594 additional statistical information
596 non-fatal user errors
602 .It Va map_reload_interval Pq numeric, default=3600
603 The number of seconds that
605 will wait before it checks to see if any maps
606 have changed at their source (NIS servers, LDAP servers, files, etc.).
608 will reload only those maps that have changed.
609 .It Va nfs_allow_any_interface Pq string, default=no
612 accepts local NFS packets only from 127.0.0.1.
618 will accept local NFS packets from any
619 local interface; this is useful on hosts that may have multiple interfaces
620 where the system is forced to send all outgoing packets (even those bound to
621 the same host) via an address other than 127.0.0.1.
622 .It Va nfs_allow_insecure_port Pq string, default=no
625 will refuse requests coming from unprivileged ports (i.e.\&
626 ports >= 1024 on Unix systems), so that only privileged users and the kernel
627 can send NFS requests to it.
628 However, some kernels (certain versions of
629 Darwin, MacOS X, and Linux) have bugs that cause them to use unprivileged
630 ports in certain situations, which causes
632 to stop dead in its tracks.
633 This parameter allows
635 to operate normally even on such systems, at the
636 expense of a slight decrease in the security of its operations.
639 .Dq Li "ignoring request from foo:1234, port not reserved"
642 log, try enabling this parameter and give it another go.
643 .It Va nfs_proto Pq string, default to trying version tcp then udp
646 tries TCP and then UDP.
647 This option forces the overall
649 protocol used to TCP or UDP.
650 It overrides what is in the
655 is compiled with NFSv3 support that may not be stable.
657 this option you can turn off the complete usage of NFSv3 dynamically
658 (without having to recompile
660 until such time as NFSv3 support is
662 .It Va nfs_retransmit_counter Pq numeric, default=11
667 .Fl t Ar timeout.retransmit
670 Specifies the number of NFS retransmissions that the kernel will use to
673 .It Va nfs_retransmit_counter_udp Pq numeric, default=11
675 .Va nfs_retransmit_counter
676 option, but for all UDP mounts only.
677 .It Va nfs_retransmit_counter_tcp Pq numeric, default=11
679 .Va nfs_retransmit_counter
680 option, but for all TCP mounts only.
681 .It Va nfs_retransmit_counter_toplvl Pq numeric, default=11
683 .Va nfs_retransmit_counter
686 top-level UDP mounts.
687 .It Va nfs_retry_interval Pq numeric, default=8
692 .Fl t Ar timeout.retransmit
699 of seconds, between NFS/RPC retries (for UDP and TCP).
700 This is the value that the kernel will use to
705 relies on the kernel RPC retransmit mechanism to trigger mount retries.
707 .Va nfs_retransmit_counter
709 .Va nfs_retry_interval
710 parameters change the overall retry interval.
711 Too long an interval gives
712 poor interactive response; too short an interval causes excessive retries.
713 .It Va nfs_retry_interval_udp Pq numeric, default=8
715 .Va nfs_retry_interval
716 option, but for all UDP mounts only.
717 .It Va nfs_retry_interval_tcp Pq numeric, default=8
719 .It nfs_retry_interval
720 option, but for all TCP mounts only.
721 .It Va nfs_retry_interval_toplvl Pq numeric, default=8
723 .It nfs_retry_interval
726 top-level UDP mounts.
727 .It Va nfs_vers Pq numeric, default to trying version 3 then 2
730 tries version 3 and then version 2.
731 This option forces the
734 protocol used to version 3 or 2.
735 It overrides what is in the
737 maps, and is useful when
739 is compiled with NFSv3 support that may not
741 With this option you can turn off the complete usage of NFSv3
742 dynamically (without having to recompile
744 until such time as NFSv3
745 support is desired again.
746 .It Va nis_domain Pq string, default to local Tn NIS domain name
751 Specify an alternative
753 domain from which to fetch the
756 The default is the system domain name.
757 This option is ignored if
759 support is not available.
760 .It Va normalize_hostnames Pq boolean, default=no
767 then the name referred to by
769 is normalized relative to the host database before being used.
771 to translate aliases into
774 .It Va normalize_slashes Pq boolean, default=yes
779 will condense all multiple
781 (slash) characters into
782 one and remove all trailing slashes.
788 strings that may contain repeated or trailing slashes.
790 sometimes useful with SMB mounts, which often require multiple slash
791 characters in pathnames.
792 .It Va os Pq string, default to compiled in value
797 Allows you to override the compiled-in name of the operating
799 Useful when the built-in name is not desired for backward
800 compatibility reasons.
801 For example, if the build in name is
803 you can override it to
805 and use older maps which were written with the
807 .It Va osver Pq string, default to compiled in value
812 Overrides the compiled-in version number of the operating
814 Useful when the built in version is not desired for backward
815 compatibility reasons.
816 For example, if the build in version is
818 you can override it to
820 and use older maps that were written with
822 .It Va pid_file Pq string, default= Ns Pa /dev/stdout
823 Specify a file to store the process ID of the running daemon into.
827 will print its process ID onto the standard output.
832 Note that the PID of a running
835 also be retrieved via
837 This file is used only if the
840 .It Va plock Pq boolean, default=yes
847 lock the running executable pages of
852 performance, systems that support the
859 This way there is less chance that
860 the operating system will schedule, page out, and swap the
865 performance, at the cost of reserving the
868 process (making it unavailable for other processes).
869 .It Va portmap_program Pq numeric, default=300019
870 Specify an alternate Port-mapper RPC program number, other than the official
872 This is useful when running multiple
880 mode, without affecting the primary
883 For safety reasons, the alternate program numbers that
884 can be specified must be in the range 300019-300029, inclusive.
890 which can be used to specify an alternate program number of an
895 can fully control any number of
897 processes running on the same host.
898 .It Va preferred_amq_port Pq numeric, default=0
899 Specify an alternate Port-mapper RPC port number for
903 This is used for both UDP and TCP.
904 Setting this value to 0 (or
905 not defining it) will cause
907 to select an arbitrary port number.
910 RPC service port to a specific number is useful in firewalled or NAT'ed
911 environments, where you need to know which port
914 .It Va print_pid Pq boolean, default=no
922 will print its process ID upon starting.
923 .It Va print_version Pq boolean, default=no
928 but the version prints and
934 will print its version information string, which includes some
935 configuration and compilation values.
936 .It Va restart_mounts Pq boolean, default=no
944 will scan the mount table to determine which file systems are currently
946 Whenever one of these would have been auto-mounted,
949 .It Va show_statfs_entries Pq boolean, default=no
952 then all maps which are browsable will also show the number of
953 entries (keys) they have when
956 (This is accomplished by returning
957 non-zero values to the
960 .It Va truncate_log Pq boolean, default=no
963 then the log file (if it is a regular file), will be truncated
965 .It Va unmount_on_exit Pq boolean, default=no
970 will attempt to unmount all file systems which it knows
977 mounted file systems intact.
980 does not know about file systems mounted before it starts up,
986 .It Va use_tcpwrappers Pq boolean, default=yes
991 will use the tcpd/libwrap tcpwrappers library
992 (if available) to control
1000 .It Va vendor Pq string, default to compiled in value
1001 The name of the vendor of the operating system.
1002 Overrides the compiled-in
1004 Useful when the compiled-in name is not desired.
1006 most Intel based systems set the vendor name to
1008 but you can set it to
1011 .Ss "Parameters applicable to regular map sections"
1013 .It Va map_name Pq string, must be specified
1014 Name of the map where the keys are located.
1015 .It Va tag Pq string, default no tag
1016 Each map entry in the configuration file can be tagged.
1018 specified, that map section will always be processed by
1023 will process the map if the
1027 and the value given to that command-line option
1028 matches that in the map section.
1033 configuration I use daily.
1035 # GLOBAL OPTIONS SECTION
1037 normalize_hostnames = no
1039 restart_mounts = yes
1041 log_file = /var/log/amd
1043 #debug_options = all
1045 selectors_in_defaults = yes
1046 # config.guess picks up "sunos5" and I don't want to edit my maps yet
1048 # if you print_version after setting up "os", it will show it.
1051 search_path = /etc/amdmaps:/usr/lib/amd:/usr/local/AMD/lib
1052 browsable_dirs = yes
1054 # DEFINE AN AMD MOUNT POINT
1068 map_name = amd.import
1072 map_name = amd.tftpboot
1075 .Xr hosts_access 5 ,
1084 .%B "Linux NFS and Automounter Administration"
1085 .%O ISBN 0-7821-2739-8
1090 .Pa http://www.am-utils.org/
1092 .%T Amd \- The 4.4 BSD Automounter
1097 utility first appeared in
1100 .An Erez Zadok Aq ezk@cs.sunysb.edu ,
1101 Computer Science Department, Stony Brook University, Stony Brook, New York, USA.
1103 Other authors and contributors to am-utils are listed in the
1105 file distributed with am-utils.