4 .\" Redistribution and use in source and binary forms, with or without
5 .\" modification, are permitted provided that the following conditions
7 .\" 1. Redistributions of source code must retain the above copyright
8 .\" notice, this list of conditions and the following disclaimer.
9 .\" 2. Redistributions in binary form must reproduce the above copyright
10 .\" notice, this list of conditions and the following disclaimer in the
11 .\" documentation and/or other materials provided with the distribution.
13 .\" THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND
14 .\" ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
15 .\" IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
16 .\" ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR BE LIABLE
17 .\" FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
18 .\" DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
19 .\" OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
20 .\" HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
21 .\" LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
22 .\" OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
32 .Nd system configuration information
36 contains descriptive information about the local host name, configuration
37 details for any potential network interfaces and which services should be
38 started up at system initial boot time.
39 In new installations, the
41 file is generally initialized by the system installation utility,
46 is not to run commands or perform system startup actions
48 Instead, it is included by the
49 various generic startup scripts in
51 which conditionalize their
52 internal actions according to the settings found there.
56 file is included from the file
57 .Pa /etc/defaults/rc.conf ,
58 which specifies the default settings for all the available options.
59 Options need only be specified in
61 when the system administrator wishes to override these defaults.
63 .Pa /etc/rc.conf.local
64 is used to override settings in
66 for historical reasons.
68 .Pa /etc/rc.conf.local
69 you can also place smaller configuration files for each
73 directory, which will be included by the
76 For jail configurations you could use the file
77 .Pa /etc/rc.conf.d/jail
78 to store jail specific configuration options.
84 .Dq Ar name Ns Li = Ns Ar value
88 The following list provides a name and short description for each
89 variable that can be set in the
92 .Bl -tag -width indent-two
97 enable output of debug messages from rc scripts.
98 This variable can be helpful in diagnosing mistakes when
99 editing or integrating new scripts.
100 Beware that this produces copious output to the terminal and
106 disable informational messages from the rc scripts.
107 Informational messages are displayed when
108 a condition that is not serious enough to warrant a warning or
116 when faststart is used (e.g., at boot time).
117 .It Va early_late_divider
119 The name of the script that should be used as the
120 delimiter between the
124 stages of the boot process.
125 The early stage should contain all the services needed to
126 get the disks (local or remote) mounted so that the late
127 stage can include scripts contained in the directories
130 variable (see below).
131 Thus, the two likely candidates for this value are
133 for the typical system, and
135 if the system needs remote file
136 systems mounted to get access to the
138 directories; for example when
146 is likely to be an appropriate value.
147 Extreme care should be taken when changing this value,
148 and before changing it one should ensure that there are
149 adequate provisions to recover from a failed boot
150 (such as physical contact with the machine,
151 or reliable remote console access).
152 .It Va always_force_depends
156 scripts use the force_depend function to check whether required
157 services are already running, and to start them if necessary.
158 By default during boot time this check is bypassed if the
159 required service is enabled in
160 .Pa /etc/rc.conf[.local] .
161 Setting this option will bypass that check at boot time and
162 always test whether or not the service is actually running.
163 Enabling this option is likely to increase your boot time if
164 services are enabled that utilize the force_depend check.
169 no swapfile is installed, otherwise the value is used as the full
170 pathname to a file to use for additional swap space.
175 enable support for Automatic Power Management with
183 to handle APM event from userland.
184 This also enables support for APM.
191 these are the flags to pass to the
198 to handle device added, removed or unknown events from the kernel.
205 scripts at boot time.
208 Configuration file for
214 A list of kernel modules to load right after the local
216 Loading modules at this point in the boot process is
217 much faster than doing it via
218 .Pa /boot/loader.conf
219 for those modules not necessary for mounting local disk.
220 .It Va kldxref_enable
227 to automatically rebuild
232 .It Va kldxref_clobber
242 will overwrite existing
249 .It Va kldxref_module_path
254 delimited list of paths containing
266 enable the system power control facility with the
275 these are the flags to pass to the
279 Controls the creation of a
282 Always happens if set to
284 and never happens if set to
286 If set to anything else, a memory file system is created if
290 Controls the size of a created
294 Extra options passed to the
296 utility when the memory file system for
301 which inhibits the use of softupdates on
303 so that file system space is freed without delay
304 after file truncation or deletion.
307 for other options you can use in
310 Controls the creation of a
313 Always happens if set to
315 and never happens if set to
317 If set to anything else, a memory file system is created if
321 Controls the size of a created
325 Extra options passed to the
327 utility when the memory file system for
332 which inhibits the use of softupdates on
334 so that file system space is freed without delay
335 after file truncation or deletion.
338 for other options you can use in
341 Controls the automatic population of the
344 Always happens if set to
346 and never happens if set to
348 If set to anything else, a memory file system is created if
351 Note that this process requires access to certain commands in
355 is mounted on normal systems.
356 .It Va cleanvar_enable
363 List of directories to search for startup script files.
364 .It Va script_name_sep
366 The field separator to use for breaking down the list of startup script files
367 into individual filenames.
368 The default is a space.
369 It is not necessary to change this unless there are startup scripts with names
371 .It Va hostapd_enable
380 The fully qualified domain name (FQDN) of this host on the network.
381 This should almost certainly be set to something meaningful, even if
382 there is no network connection.
385 is used to set the hostname via DHCP,
386 this variable should be set to an empty string.
387 If this value remains unset when the system is done booting
388 your console login will display the default hostname of
392 The NIS domain name of this host, or
395 .It Va dhclient_program
397 Path to the DHCP client program
398 .Pa ( /sbin/dhclient ,
403 .It Va dhclient_flags
405 Additional flags to pass to the DHCP client program.
410 manpage for a description of the command line options available.
411 .It Va dhclient_flags_ Ns Aq Ar iface
412 Additional flags to pass to the DHCP client program running on
415 When specified, this variable overrides
417 .It Va background_dhclient
421 to start the DHCP client in background.
422 This can cause trouble with applications depending on
423 a working network, but it will provide a faster startup
425 .It Va background_dhclient_ Ns Aq Ar iface
426 When specified, this variable overrides the
427 .Va background_dhclient
428 variable for interface
431 .It Va synchronous_dhclient
437 synchronously at startup.
438 This behavior can be overridden on a per-interface basis by replacing
442 .Va ifconfig_ Ns Aq Ar interface
447 .It Va defaultroute_delay
449 When set to a positive value, wait up to this long after configuring
450 DHCP interfaces at startup to give the interfaces time to receive a lease.
451 .It Va firewall_enable
455 to load firewall rules at startup.
456 If the kernel was not built with
457 .Cd "options IPFIREWALL" ,
460 kernel module will be loaded.
462 .Va ipfilter_enable .
463 .It Va firewall_script
465 This variable specifies the full path to the firewall script to run.
467 .Pa /etc/rc.firewall .
470 Names the firewall type from the selection in
471 .Pa /etc/rc.firewall ,
472 or the file which contains the local firewall ruleset.
473 Valid selections from
477 .Bl -tag -width ".Li simple" -compact
479 unrestricted IP access
481 all IP services disabled, except via
484 basic protection for a workstation
486 basic protection for a LAN.
489 If a filename is specified, the full path
491 .It Va firewall_quiet
495 to disable the display of firewall rules on the console during boot.
496 .It Va firewall_logging
500 to enable firewall event logging.
501 This is equivalent to the
502 .Dv IPFIREWALL_VERBOSE
504 .It Va firewall_flags
510 specifies a filename.
511 .It Va firewall_coscripts
513 List of executables and/or rc scripts to run after firewall starts/stops.
515 .\" ----- firewall_nat_enable setting --------------------------------
516 .It Va firewall_nat_enable
528 .It Va firewall_nat_interface
534 This is the name of the public interface or IP address on which
535 kernel NAT should run.
536 .It Va firewall_nat_flags
538 Additional configuration parameters for kernel NAT should be placed here.
539 .It Va dummynet_enable
543 will automatically load the
549 .\" -------------------------------------------------------------------
565 sockets must be enabled in the kernel.
566 If the kernel was not built with
567 .Cd "options IPDIVERT" ,
570 kernel module will be loaded.
571 .It Va natd_interface
573 This is the name of the public interface on which
576 The interface may be given as an interface name or as an IP address.
581 flags should be placed here.
586 flag is automatically added with the above
589 .\" ----- ipfilter_enable setting --------------------------------
590 .It Va ipfilter_enable
601 Typical usage will require putting
603 ipfilter_enable="YES"
621 can be enabled independently.
625 both require at least one of
635 options IPFILTER_DEFAULT_BLOCK
638 in the kernel configuration file is a good idea, too.
639 .\" ----- ipfilter_program setting ------------------------------
640 .It Va ipfilter_program
646 .\" ----- ipfilter_rules setting --------------------------------
647 .It Va ipfilter_rules
652 This variable contains the name of the filter rule definition file.
653 The file is expected to be readable for the
656 .\" ----- ipv6_ipfilter_rules setting ---------------------------
657 .It Va ipv6_ipfilter_rules
662 This variable contains the IPv6 filter rule definition file.
663 The file is expected to be readable for the
666 .\" ----- ipfilter_flags setting --------------------------------
667 .It Va ipfilter_flags
670 This variable contains flags passed to the
673 .\" ----- ipnat_enable setting ----------------------------------
683 network address translation.
686 for a detailed discussion.
687 .\" ----- ipnat_program setting ---------------------------------
694 .\" ----- ipnat_rules setting -----------------------------------
700 This variable contains the name of the file
701 holding the network address translation definition.
702 This file is expected to be readable for the
705 .\" ----- ipnat_flags setting -----------------------------------
709 This variable contains flags passed to the
712 .\" ----- ipmon_enable setting ----------------------------------
727 Setting this variable needs setting
734 for a detailed discussion.
735 .\" ----- ipmon_program setting ---------------------------------
742 .\" ----- ipmon_flags setting -----------------------------------
748 This variable contains flags passed to the
751 Another typical example would be
752 .Dq Fl D Pa /var/log/ipflog
755 log directly to a file bypassing
758 .Pa /etc/newsyslog.conf
759 in such case like this:
761 /var/log/ipflog 640 10 100 * Z /var/run/ipmon.pid
763 .\" ----- ipfs_enable setting -----------------------------------
773 saving the filter and NAT state tables during shutdown
774 and reloading them during startup again.
775 Setting this variable needs setting
784 for a detailed discussion.
790 because the raised securelevel will prevent
792 from saving the state tables at shutdown time.
793 .\" ----- ipfs_program setting ----------------------------------
800 .\" ----- ipfs_flags setting ------------------------------------
804 This variable contains flags passed to the
807 .\" ----- end of added ipf hook ---------------------------------
819 Typical usage will require putting
834 into the kernel, otherwise the
835 kernel module will be loaded.
840 ruleset configuration file
855 these flags are passed to the
857 program when loading the ruleset.
867 which logs packets from the
880 .Pa /var/log/pflog ) .
882 .Pa /etc/newsyslog.conf
883 to adjust logfile rotation for this.
893 This variable contains additional flags passed to the
896 .It Va ftpproxy_enable
907 packet filter in translating ftp connections.
908 .It Va ftpproxy_flags
911 This variable contains additional flags passed to the
923 state changes to other hosts over the network by means of
928 must also be set then.
929 .It Va pfsync_syncdev
932 This variable specifies the name of the network interface
934 should operate through.
935 It must be set accordingly if
939 .It Va pfsync_syncpeer
942 This variable is optional.
943 By default, state change messages are sent out on the synchronisation
944 interface using IP multicast packets.
945 The protocol is IP protocol 240, PFSYNC, and the multicast group used is
947 When a peer address is specified using the
949 option, the peer address is used as a destination for the pfsync
950 traffic, and the traffic can then be protected using
954 manpage for more details about using
959 .It Va pfsync_ifconfig
962 This variable can contain additional options to be passed to the
964 command used to set up
966 .It Va tcp_extensions
973 disables certain TCP options as described by
979 might help remedy such problems with connections as randomly hanging
980 or other weird behavior.
981 Some network devices are known
982 to be broken with respect to these options.
989 .Va net.inet.tcp.log_in_vain
991 .Va net.inet.udp.log_in_vain ,
996 are set to the given value.
1004 will disable probing idle TCP connections to verify that the
1005 peer is still up and reachable.
1006 .It Va tcp_drop_synfin
1013 will cause the kernel to ignore TCP frames that have both
1014 the SYN and FIN flags set.
1015 This prevents OS fingerprinting, but may
1016 break some legitimate applications.
1017 .It Va icmp_drop_redirect
1024 will cause the kernel to ignore ICMP REDIRECT packets.
1027 for more information.
1028 .It Va icmp_log_redirect
1035 will cause the kernel to log ICMP REDIRECT packets.
1037 the log messages are not rate-limited, so this option should only be used
1038 for troubleshooting networks.
1041 for more information.
1042 .It Va icmp_bmcastecho
1046 to respond to broadcast or multicast ICMP ping packets.
1049 for more information.
1050 .It Va ip_portrange_first
1054 this is the first port in the default portrange.
1057 for more information.
1058 .It Va ip_portrange_last
1062 this is the last port in the default portrange.
1065 for more information.
1066 .It Va network_interfaces
1068 Set to the list of network interfaces to configure on this host or
1070 (the default) for all current interfaces.
1072 .Va network_interfaces
1073 variable to anything other than the default is deprecated.
1074 Interfaces that the administrator wishes to store configuration for,
1075 but not start at boot should be configured with the
1078 .Va ifconfig_ Ns Aq Ar interface
1079 variables as described below.
1082 .Va ifconfig_ Ns Aq Ar interface
1083 variable is also assumed to exist for each value of
1085 When an interface name contains any of the characters
1087 they are translated to
1090 The variable can contain arguments to
1092 as well as special case-insensitive keywords described below.
1093 Such keywords are removed before passing the value to
1095 while the order of the other arguments is preserved.
1097 It is possible to add IP alias entries using
1099 syntax with the address family keyword such as
1101 Assuming that the interface in question was
1103 it might look something like this:
1105 ifconfig_ed0_alias0="inet 127.0.0.253 netmask 0xffffffff"
1106 ifconfig_ed0_alias1="inet 127.0.0.254 netmask 0xffffffff"
1109 It also possible to configure multiple IP addresses in Classless
1110 Inter-Domain Routing
1113 whose each address component can be a range like
1114 .Li inet 192.0.2.5-23/24
1116 .Li inet6 2001:db8:1-f::1/64 .
1117 This notation allows address and prefix length part only,
1118 not the other address modifiers.
1121 .Li 192.0.2.5-23/24 ,
1122 the address 192.0.2.5 will be configured with the
1123 netmask /24 and the addresses 192.0.2.6 to 192.0.2.23 with
1124 the non-conflicting netmask /32 as explained in the
1127 Note that this special netmask handling is only for
1129 not for the other address families such as
1132 With the interface in question being
1134 an example could look like:
1136 ifconfig_ed0_alias2="inet 192.0.2.129/27"
1137 ifconfig_ed0_alias3="inet 192.0.2.1-5/28"
1143 .Va ipv4_addrs_ Ns Aq Ar interface
1144 variable was supported for IPv4 CIDR address notation.
1145 It is now deprecated because the functionality was integrated into
1146 .Va ifconfig_ Ns Ao Ar interface Ac Ns Va _alias Ns Aq Ar n
1148 .Va ipv4_addrs_ Ns Aq Ar interface
1149 is still supported for backward compatibility.
1152 .Va ifconfig_ Ns Ao Ar interface Ac Ns Va _alias Ns Aq Ar n
1153 entry with an address family keyword,
1154 its contents are passed to
1156 Execution stops at the first unsuccessful access, so if
1157 something like this is present:
1159 ifconfig_ed0_alias0="inet 127.0.0.251 netmask 0xffffffff"
1160 ifconfig_ed0_alias1="inet 127.0.0.252 netmask 0xffffffff"
1161 ifconfig_ed0_alias2="inet 127.0.0.253 netmask 0xffffffff"
1162 ifconfig_ed0_alias4="inet 127.0.0.254 netmask 0xffffffff"
1165 Then note that alias4 would
1167 be added since the search would
1168 stop with the missing
1171 Due to this difficult to manage behavior, the
1172 .Va ifconfig_ Ns Ao Ar interface Ac Ns Va _alias Ns Aq Ar n
1175 .Va ifconfig_ Ns Ao Ar interface Ac Ns Va _aliases
1176 variable, which has the same functionality as
1177 .Va ifconfig_ Ns Ao Ar interface Ac Ns Va _alias Ns Aq Ar n
1178 and can have all of entries in a variable like the following:
1180 ifconfig_ed0_aliases="\\
1181 inet 127.0.0.251 netmask 0xffffffff \\
1182 inet 127.0.0.252 netmask 0xffffffff \\
1183 inet 127.0.0.253 netmask 0xffffffff \\
1184 inet 127.0.0.254 netmask 0xffffffff"
1187 It also supports CIDR notation.
1190 .Pa /etc/start_if. Ns Aq Ar interface
1191 file is present, it is read and executed by the
1194 before configuring the interface as specified in the
1195 .Va ifconfig_ Ns Aq Ar interface
1197 .Va ifconfig_ Ns Ao Ar interface Ac Ns Va _alias Ns Aq Ar n
1201 .Va vlans_ Ns Aq Ar interface
1205 interface will be created for each item in the list with the
1209 If a vlan interface's name is a number,
1210 then that number is used as the vlan tag and the new vlan interface is
1212 .Ar interface . Ns Ar tag .
1214 the vlan tag must be specified via a
1217 .Va create_args_ Ns Aq Ar interface
1220 To create a vlan device named
1224 with the vlan tag 101 and the optional the IPv4 address 192.0.2.1/24:
1227 ifconfig_em0_101="inet 192.0.2.1/24"
1230 To create a vlan device named
1234 with the vlan tag 102:
1237 create_args_myvlan="vlan 102"
1241 .Va wlans_ Ns Aq Ar interface
1245 interface will be created for each item in the list with the
1249 Further wlan cloning arguments may be passed to the
1252 command by setting the
1253 .Va create_args_ Ns Aq Ar interface
1257 devices must be created for each wireless devices as of
1263 may be specified with an
1264 .Va wlandebug_ Ns Aq Ar interface
1266 The contents of this variable will be passed directly to
1270 .Va ifconfig_ Ns Aq Ar interface
1271 contains the keyword
1273 then the interface will not be configured
1275 .Pa /etc/pccard_ether
1277 .Va network_interfaces
1281 It is possible to bring up an interface with DHCP by adding
1284 .Va ifconfig_ Ns Aq Ar interface
1286 For instance, to initialize the
1289 it is possible to use something like:
1294 Also, if you want to configure your wireless interface with
1295 .Xr wpa_supplicant 8
1296 for use with WPA, EAP/LEAP or WEP, you need to add
1299 .Va ifconfig_ Ns Aq Ar interface
1302 Finally, you can add
1304 options in this variable, in addition to the
1305 .Pa /etc/start_if. Ns Aq Ar interface
1307 For instance, to configure an
1309 wireless device in station mode with an address obtained
1310 via DHCP, using WPA authentication and 802.11b mode, it is
1311 possible to use something like:
1314 ifconfig_wlan0="DHCP WPA mode 11b"
1318 .Va ifconfig_ Ns Aq Ar interface
1319 form, a fallback variable
1320 .Va ifconfig_DEFAULT
1322 It will be used for all interfaces with no
1323 .Va ifconfig_ Ns Aq Ar interface
1325 This is intended to replace the no longer supported
1329 It is also possible to rename an interface by doing:
1331 ifconfig_ed0_name="net0"
1332 ifconfig_net0="inet 192.0.2.1 netmask 0xffffff00"
1336 This variable is deprecated.
1338 .Va ifconfig_ Ns Ao Ar interface Ac Ns _ipv6
1340 .Va ipv6_activate_all_interfaces
1345 .Dq Li inet6 accept_rtadv
1347 .Va ifconfig_ Ns Ao Ar interface Ac Ns _ipv6
1349 .Va ipv6_activate_all_interfaces
1354 This variable is deprecated.
1356 .Va ip6addrctl_policy
1361 the default address selection policy table set by
1363 will be IPv6-preferred.
1367 the default address selection policy table set by
1369 will be IPv4-preferred.
1370 .It Va ipv6_activate_all_interfaces
1372 This controls initial configuration on IPv6-capable
1373 interfaces with no corresponding
1374 .Va ifconfig_ Ns Ao Ar interface Ac Ns _ipv6
1376 Note that it is not always necessary to set this variable to
1378 to use IPv6 functionality on
1380 In most cases, just configuring
1381 .Va ifconfig_ Ns Ao Ar interface Ac Ns _ipv6
1386 all interfaces which do not have a corresponding
1387 .Va ifconfig_ Ns Ao Ar interface Ac Ns _ipv6
1388 variable will be marked as
1391 This means that all of IPv6 functionality on that interface
1392 is completely disabled to enforce a security policy.
1393 If the variable is set to
1395 the flag will be cleared on all of the interfaces.
1397 In most cases, just defining an
1398 .Va ifconfig_ Ns Ao Ar interface Ac Ns _ipv6
1399 for an IPv6-capable interface should be sufficient.
1400 However, if an interface is added dynamically
1401 .Pq by some tunneling protocols such as PPP, for example ,
1402 it is often difficult to define the variable in advance.
1403 In such a case, configuring the
1405 flag can be disabled by setting this variable to
1408 For more details of the
1411 .Dq Li inet6 ifdisabled ,
1421 privacy addresses will be generated for each IPv6
1422 interface as described in RFC 4941.
1423 .It Va ipv6_network_interfaces
1425 This is the IPv6 equivalent of
1426 .Va network_interfaces .
1427 Normally manual configuration of this variable is not needed.
1429 .It Va ipv6_cpe_wanif
1431 If the variable is set to an interface name,
1435 .Dq inet6 -no_radr accept_rtadv
1436 will be added to the specified interface automatically before evaluating
1437 .Va ifconfig_ Ns Ao Ar interface Ac Ns _ipv6 ,
1441 .Va net.inet6.ip6.rfc6204w3
1443 .Va net.inet6.ip6.no_radr
1446 This means the specified interface will accept ICMPv6 Router
1447 Advertisement messages on that link and add the discovered
1448 routers into the Default Router List.
1449 While the other interfaces can still accept RA messages if the
1450 .Dq inet6 accept_rtadv
1451 option is specified, adding
1452 routes into the Default Router List will be disabled by
1459 Note that ICMPv6 Router Advertisement messages will be
1461 .Va net.inet6.ip6.forwarding
1463 .Pq packet forwarding is enabled
1465 .Va net.inet6.ip6.rfc6204w3
1470 .It Va ifconfig_ Ns Ao Ar interface Ac Ns _ipv6
1472 IPv6 functionality on an interface should be configured by
1473 .Va ifconfig_ Ns Ao Ar interface Ac Ns _ipv6 ,
1474 instead of setting ifconfig parameters in
1475 .Va ifconfig_ Ns Aq Ar interface .
1476 If this variable is empty, all of IPv6 configurations on the
1477 specified interface by other variables such as
1478 .Va ipv6_prefix_ Ns Ao Ar interface Ac
1481 Aliases should be set by
1482 .Va ifconfig_ Ns Ao Ar interface Ac Ns Va _alias Ns Aq Ar n
1488 ifconfig_ed0_ipv6="inet6 2001:db8:1::1 prefixlen 64"
1489 ifconfig_ed0_alias0="inet6 2001:db8:2::1 prefixlen 64"
1492 Interfaces that have an
1493 .Dq Li inet6 accept_rtadv
1495 .Va ifconfig_ Ns Ao Ar interface Ac Ns _ipv6
1496 setting will be automatically configured by SLAAC
1497 .Pq StateLess Address AutoConfiguration
1503 Note that a link-local address will be automatically configured in
1504 addition to the configured global-scope addresses because the IPv6
1505 specifications require it on each link.
1506 The address is calculated from the MAC address by using an algorithm
1513 If only a link-local address is needed on the interface,
1514 the following configuration can be used:
1516 ifconfig_ed0_ipv6="inet6 auto_linklocal"
1519 A link-local address can also be configured manually.
1520 This is useful for the default router address of an IPv6 router
1521 so that it does not change when the network interface
1525 ifconfig_ed0_ipv6="inet6 fe80::1 prefixlen 64"
1527 .It Va ipv6_prefix_ Ns Aq Ar interface
1529 If one or more prefixes are defined in
1530 .Va ipv6_prefix_ Ns Aq Ar interface
1531 addresses based on each prefix and the EUI-64 interface index will be
1532 configured on that interface.
1533 Note that this variable will be ignored when
1534 .Va ifconfig_ Ns Ao Ar interface Ac Ns _ipv6
1537 For example, the following configuration
1539 ipv6_prefix_ed0="2001:db8:1:0 2001:db8:2:0"
1542 is equivalent to the following:
1544 ifconfig_ed0_alias0="inet6 2001:db8:1:: eui64 prefixlen 64"
1545 ifconfig_ed0_alias1="inet6 2001:db8:1:: prefixlen 64 anycast"
1546 ifconfig_ed0_alias2="inet6 2001:db8:2:: eui64 prefixlen 64"
1547 ifconfig_ed0_alias3="inet6 2001:db8:2:: prefixlen 64 anycast"
1550 These Subnet-Router anycast addresses will be added only when
1551 .Va ipv6_gateway_enable
1553 .It Va ipv6_default_interface
1557 this is the default output interface for scoped addresses.
1558 This works only with ipv6_gateway_enable="NO".
1559 .It Va ip6addrctl_enable
1561 This variable is to enable configuring default address selection policy table
1563 The table can be specified in another variable
1564 .Va ip6addrctl_policy .
1566 .Va ip6addrctl_policy
1567 the following keywords can be specified:
1568 .Dq Li ipv4_prefer ,
1569 .Dq Li ipv6_prefer ,
1579 installs a pre-defined policy table described in Section 2.1
1587 is specified, it attempts to read a file
1588 .Pa /etc/ip6addrctl.conf
1590 If this file is found,
1592 reads and installs it.
1593 If not found, a policy is automatically set
1595 .Va ipv6_activate_all_interfaces
1596 variable; if the variable is set to
1598 the IPv6-preferred one is used.
1599 Otherwise IPv4-preferred.
1601 The default value of
1602 .Va ip6addrctl_enable
1604 .Va ip6addrctl_policy
1610 .It Va cloned_interfaces
1612 Set to the list of clonable network interfaces to create on this host.
1613 Further cloning arguments may be passed to the
1616 command for each interface by setting the
1617 .Va create_args_ Ns Aq Ar interface
1620 .Va cloned_interfaces
1621 are automatically appended to
1622 .Va network_interfaces
1624 .It Va fec_interfaces
1628 Fast EtherChannel interfaces to configure on this host.
1630 .Va fecconfig_ Ns Aq Ar interface
1631 variable is assumed to exist for each value of
1633 The value of this variable is used to configure link aggregated interfaces
1634 according to the syntax of the
1635 .Cm NGM_FEC_ADD_IFACE
1639 Additionally, this option ensures that each listed interface is created
1644 before attempting to configure it.
1647 fec_interfaces="fec0"
1648 fecconfig_fec0="em0 em1"
1649 ifconfig_fec0="DHCP"
1651 .It Va gif_interfaces
1655 tunnel interfaces to configure on this host.
1657 .Va gifconfig_ Ns Aq Ar interface
1658 variable is assumed to exist for each value of
1660 The value of this variable is used to configure the link layer of the
1661 tunnel according to the syntax of the
1665 Additionally, this option ensures that each listed interface is created
1670 before attempting to configure it.
1671 .It Va sppp_interfaces
1675 interfaces to configure on this host.
1677 .Va spppconfig_ Ns Aq Ar interface
1678 variable is assumed to exist for each value of
1680 Each interface should also be configured by a general
1681 .Va ifconfig_ Ns Aq Ar interface
1685 for more information about available options.
1695 The name of the profile to use from
1696 .Pa /etc/ppp/ppp.conf .
1697 Also used for per-profile overrides of
1702 .Va ppp_ Ns Ao Ar profile Ac Ns _unit .
1703 When the profile name contains any of the characters
1705 they are translated to
1707 for the proposes of the override variable names.
1710 Mode in which to run the
1713 .It Va ppp_ Ns Ao Ar profile Ac Ns _mode
1715 Overrides the global
1725 See the manual for a full description.
1730 enables network address translation.
1731 Used in conjunction with
1733 allows hosts on private network addresses access to the Internet using
1734 this host as a network address translating router.
1735 .It Va ppp_ Ns Ao Ar profile Ac Ns _nat
1737 Overrides the global
1741 .It Va ppp_ Ns Ao Ar profile Ac Ns _unit
1743 Set the unit number to be used for this profile.
1744 See the manual description of
1749 The name of the user under which
1757 .It Va rc_conf_files
1759 This option is used to specify a list of files that will override
1761 .Pa /etc/defaults/rc.conf .
1762 The files will be read in the order in which they are specified and should
1763 include the full path to the file.
1764 By default, the files specified are
1767 .Pa /etc/rc.conf.local
1773 will attempt to automatically mount ZFS file systems and initialize ZFS volumes
1775 .It Va gptboot_enable
1779 .Pa /etc/rc.d/gptboot
1780 will log if the system successfully (or not) booted from a GPT partition,
1786 .It Va gbde_autoattach_all
1791 will attempt to automatically initialize your .bde devices in
1795 List the devices that the script should try to attach,
1800 The directory where the
1802 lockfiles are located.
1803 The default lockfile directory is
1806 The lockfile for each individual
1808 device can be overridden by setting the variable
1809 .Va gbde_lock_ Ns Aq Ar device ,
1812 is the encrypted device without the
1817 .It Va gbde_attach_attempts
1819 Number of times to attempt attaching to a
1821 device, i.e., how many times the user is asked for the pass-phrase.
1825 List of devices to automatically attach on boot.
1826 Note that .eli devices from
1828 are automatically appended to this list.
1831 Number of times user is asked for the pass-phrase.
1832 If empty, it will be taken from
1833 .Va kern.geom.eli.tries
1835 .It Va geli_default_flags
1837 Default flags to use by
1839 when configuring disk encryption.
1840 Flags can be configured for every device separately by defining
1841 .Va geli_ Ns Ao Ar device Ac Ns Va _flags
1843 .It Va geli_autodetach
1845 Specifies if GELI devices should be marked for detach on last close after
1846 file systems are mounted.
1849 This can be changed for every device separately by defining
1850 .Va geli_ Ns Ao Ar device Ac Ns Va _autodetach
1852 .It Va geli_swap_flags
1853 Options passed to the
1855 utility when encrypted GEOM providers for swap partitions are created.
1857 .Dq Li "-e aes -l 256 -s 4096 -d" .
1858 .It Va root_rw_mount
1863 After the file systems are checked at boot time, the root file system
1864 is remounted as read-write if this is set to
1866 Diskless systems that mount their root file system from a read-only remote
1867 NFS share should set this to
1871 .It Va fsck_y_enable
1876 will be run with the
1878 flag if the initial preen
1879 of the file systems fails.
1880 .It Va background_fsck
1884 the system will attempt to run
1886 in the background where possible.
1887 .It Va background_fsck_delay
1889 The amount of time in seconds to sleep before starting a background
1891 It defaults to sixty seconds to allow large applications such as
1892 the X server to start before disk I/O bandwidth is monopolized by
1894 If set to a negative number, the background file system check will be
1895 delayed indefinitely to allow the administrator to run it at a more
1897 For example it may be run from
1899 by adding a line like
1901 .Dl "0 4 * * * root /etc/rc.d/bgfsck forcestart"
1907 List of file system types that are network-based.
1908 This list should generally not be modified by end users.
1910 .Va extra_netfs_types
1912 .It Va extra_netfs_types
1914 If set to something other than
1917 this variable extends the list of file system types
1918 for which automatic mounting at startup by
1920 should be delayed until the network is initialized.
1922 a whitespace-separated list of network file system descriptor pairs,
1923 each consisting of a file system type as passed to
1925 and a human-readable, one-word description,
1928 Extending the default list in this way is only necessary
1929 when third party file system types are used.
1930 .It Va syslogd_enable
1937 .It Va syslogd_program
1942 .Pa /usr/sbin/syslogd ) .
1943 .It Va syslogd_flags
1949 these are the flags to pass to
1958 .It Va inetd_program
1963 .Pa /usr/sbin/inetd ) .
1970 these are the flags to pass to
1979 .It Va hastd_program
1991 these are the flags to pass to
2000 .It Va named_program
2005 .Pa /usr/sbin/named ) .
2010 configuration file, (default
2011 .Pa /etc/namedb/named.conf ) .
2018 these are the flags to pass to
2024 process should be run as.
2025 .It Va named_chrootdir
2027 The root directory for a name server run in a
2029 environment (default
2033 will not be run in a
2036 .It Va named_chroot_autoupdate
2040 to disable automatic update of the
2043 .It Va named_symlink_enable
2047 to disable symlinking of
2056 loop until working name service is established.
2057 .It Va named_wait_host
2059 Name of host to lookup for the named_wait option.
2061 .It Va named_auto_forward
2063 Set to enable automatic creation of a forwarder
2064 configuration file derived from
2065 .Pa /etc/resolv.conf .
2066 .It Va named_auto_forward_only
2068 Set to change the default forwarder configuration from
2072 .It Va kerberos5_server_enable
2076 to start a Kerberos 5 authentication server
2078 .It Va kerberos5_server
2081 .Va kerberos5_server_enable
2084 this is the path to Kerberos 5 Authentication Server.
2085 .It Va kerberos5_server_flags
2088 This variable contains additional flags to be passed to the Kerberos 5
2089 authentication server.
2090 .It Va kadmind5_server_enable
2096 the Kerberos 5 Administration Daemon; set to
2099 .It Va kadmind5_server
2102 .Va kadmind5_server_enable
2105 this is the path to Kerberos 5 Administration Daemon.
2106 .It Va kpasswdd_server_enable
2112 the Kerberos 5 Password-Changing Daemon; set to
2115 .It Va kpasswdd_server
2118 .Va kpasswdd_server_enable
2121 this is the path to Kerberos 5 Password-Changing Daemon.
2128 daemon at boot time.
2135 these are the flags to pass to it.
2142 daemon at boot time.
2149 these are the flags to pass to it.
2152 manpage for more information.
2153 .It Va amd_map_program
2156 the specified program is run to get the list of
2161 maps are stored in NIS, one can set this to
2174 will be updated at boot time to reflect the kernel release
2179 will not be updated.
2180 .It Va nfs_client_enable
2184 run the NFS client daemons at boot time.
2185 .It Va nfs_access_cache
2188 .Va nfs_client_enable
2193 to disable NFS ACCESS RPC caching, or to the number of seconds for which
2195 results should be cached.
2196 A value of 2-10 seconds will substantially reduce network
2197 traffic for many NFS operations.
2198 .It Va nfs_server_enable
2202 run the NFS server daemons at boot time.
2203 .It Va nfs_server_flags
2206 .Va nfs_server_enable
2209 these are the flags to pass to the
2212 .It Va nfsv4_server_enable
2215 .Va nfs_server_enable
2219 .Va nfsv4_server_enable
2222 enable the server for NFSv4 as well as NFSv2 and NFSv3.
2223 .It Va nfsuserd_enable
2229 run the nfsuserd daemon, which is needed for NFSv4 in order
2230 to map between user/group names vs uid/gid numbers.
2232 .Va nfsv4_server_enable
2235 this will be forced enabled.
2236 .It Va nfsuserd_flags
2242 these are the flags to pass to the
2245 .It Va nfscbd_enable
2251 run the nfscbd daemon, which enables callbacks/delegations for the NFSv4 client.
2258 these are the flags to pass to the
2261 .It Va oldnfs_server_enable
2264 .Va oldnfs_server_enable
2267 force the NFS server daemons to run the old NFS server code
2268 that does not support NFSv4.
2269 .It Va mountd_enable
2274 .Va nfs_server_enable
2280 It is commonly needed to run CFS without real NFS used.
2287 these are the flags to pass to the
2290 .It Va weak_mountd_authentication
2294 allow services like PCNFSD to make non-privileged mount
2296 .It Va nfs_reserved_port_only
2300 provide NFS services only on a secure port.
2301 .It Va nfs_bufpackets
2303 If set to a number, indicates the number of packets worth of
2304 socket buffer space to reserve on an NFS client.
2305 The kernel default is typically 4.
2306 Using a higher number may be
2307 useful on gigabit networks to improve performance.
2308 The minimum value is
2309 2 and the maximum is 64.
2310 .It Va rpc_lockd_enable
2314 and also an NFS server or client, run
2317 .It Va rpc_lockd_flags
2320 .Va rpc_lockd_enable
2323 these are the flags to pass to the
2326 .It Va rpc_statd_enable
2330 and also an NFS server or client, run
2333 .It Va rpc_statd_flags
2336 .Va rpc_statd_enable
2339 these are the flags to pass to the
2342 .It Va rpcbind_program
2347 .Pa /usr/sbin/rpcbind ) .
2348 .It Va rpcbind_enable
2354 service at boot time.
2355 .It Va rpcbind_flags
2361 these are the flags to pass to the
2364 .It Va keyserv_enable
2370 daemon on boot for running Secure RPC.
2371 .It Va keyserv_flags
2377 these are the flags to pass to
2380 .It Va pppoed_enable
2386 daemon at boot time to provide PPP over Ethernet services.
2387 .It Va pppoed_ Ns Aq Ar provider
2390 listens to requests to this
2396 argument of the same name.
2399 Additional flags to pass to
2401 .It Va pppoed_interface
2403 The network interface to run
2406 This is mandatory when
2416 service at boot time.
2417 This command is intended for networks of
2418 machines where a consistent
2420 for all hosts must be established.
2421 This is often useful in large NFS
2422 environments where time stamps on files are expected to be consistent
2430 these are the flags to pass to the
2433 .It Va ntpdate_enable
2440 This command is intended to
2441 synchronize the system clock only
2443 from some standard reference.
2444 An option to set this up initially
2445 (from a list of known servers) is also provided by the
2447 program when the system is first installed.
2448 .It Va ntpdate_config
2450 Configuration file for
2454 .It Va ntpdate_hosts
2456 A whitespace-separated list of NTP servers to synchronize with at startup.
2457 The default is to use the servers listed in
2458 .Va ntpdate_config ,
2459 if that file exists.
2460 .It Va ntpdate_program
2465 .Pa /usr/sbin/ntpdate ) .
2466 .It Va ntpdate_flags
2472 these are the flags to pass to the
2474 command (typically a hostname).
2481 command at boot time.
2487 .Pa /usr/sbin/ntpd ) .
2501 these are the flags to pass to the
2504 .It Va ntpd_sync_on_start
2511 flag, which syncs the system's clock on startup.
2514 for more information regarding the
2517 This is a preferred alternative to using
2522 .It Va nis_client_enable
2528 service at system boot time.
2529 .It Va nis_client_flags
2532 .Va nis_client_enable
2535 these are the flags to pass to the
2538 .It Va nis_ypset_enable
2544 daemon at system boot time.
2545 .It Va nis_ypset_flags
2548 .Va nis_ypset_enable
2551 these are the flags to pass to the
2554 .It Va nis_server_enable
2560 daemon at system boot time.
2561 .It Va nis_server_flags
2564 .Va nis_server_enable
2567 these are the flags to pass to the
2570 .It Va nis_ypxfrd_enable
2576 daemon at system boot time.
2577 .It Va nis_ypxfrd_flags
2580 .Va nis_ypxfrd_enable
2583 these are the flags to pass to the
2586 .It Va nis_yppasswdd_enable
2592 daemon at system boot time.
2593 .It Va nis_yppasswdd_flags
2596 .Va nis_yppasswdd_enable
2599 these are the flags to pass to the
2602 .It Va rpc_ypupdated_enable
2608 daemon at system boot time.
2609 .It Va bsnmpd_enable
2615 daemon at system boot time.
2616 Be sure to understand the security implications of running SNMP daemon
2624 these are the flags to pass to the
2627 .It Va defaultrouter
2631 create a default route to this host name or IP address
2632 (use an IP address if this router is also required to get to the
2634 .It Va ipv6_defaultrouter
2636 The IPv6 equivalent of
2638 .It Va static_arp_pairs
2640 Set to the list of static ARP pairs that are to be added at system
2642 For each whitespace separated
2645 .Va static_arp_ Ns Aq Ar element
2646 variable is assumed to exist whose contents will later be passed to a
2651 static_arp_pairs="gw"
2652 static_arp_gw="192.168.1.1 00:01:02:03:04:05"
2654 .It Va static_ndp_pairs
2656 Set to the list of static NDP pairs that are to be added at system
2658 For each whitespace separated
2661 .Va static_ndp_ Ns Aq Ar element
2662 variable is assumed to exist whose contents will later be passed to a
2667 static_ndp_pairs="gw"
2668 static_ndp_gw="2001:db8:3::1 00:01:02:03:04:05"
2670 .It Va static_routes
2672 Set to the list of static routes that are to be added at system
2676 then for each whitespace separated
2679 .Va route_ Ns Aq Ar element
2680 variable is assumed to exist
2681 whose contents will later be passed to a
2686 static_routes="mcast gif0local"
2687 route_mcast="-net 224.0.0.0/4 -iface gif0"
2688 route_gif0local="-host 169.254.1.1 -iface lo0"
2690 .It Va ipv6_static_routes
2692 The IPv6 equivalent of
2696 then for each whitespace separated
2699 .Va ipv6_route_ Ns Aq Ar element
2700 variable is assumed to exist
2701 whose contents will later be passed to a
2702 .Dq Nm route Cm add Fl inet6
2704 .It Va natm_static_routes
2710 If not empty then for each whitespace separated
2713 .Va route_ Ns Aq Ar element
2714 variable is assumed to exist whose contents will later be passed to a
2715 .Dq Nm atmconfig Cm natm Cm add
2717 .It Va gateway_enable
2721 configure host to act as an IP router, e.g.\& to forward packets
2723 .It Va ipv6_gateway_enable
2725 The IPv6 equivalent of
2726 .Va gateway_enable .
2727 .It Va routed_enable
2731 run a routing daemon of some sort, based on the
2736 .It Va route6d_enable
2738 The IPv6 equivalent of
2742 run a routing daemon of some sort, based on the
2747 .It Va routed_program
2753 this is the name of the routing daemon to use.
2754 .It Va route6d_program
2756 The IPv6 equivalent of
2757 .Va routed_program .
2764 these are the flags to pass to the routing daemon.
2765 .It Va route6d_flags
2767 The IPv6 equivalent of
2769 .It Va mrouted_enable
2773 run the multicast routing daemon,
2775 .It Va mroute6d_enable
2777 The IPv6 equivalent of
2778 .Va mrouted_enable .
2781 run the IPv6 multicast routing daemon.
2783 Note that multicast routing daemons are no longer included in the
2785 base system, however, both
2789 may be installed from the
2792 .It Va mrouted_flags
2798 these are the flags to pass to the
2801 .It Va mroute6d_flags
2803 The IPv6 equivalent of
2809 these are the flags passed to the IPv6 multicast routing daemon.
2810 .It Va mroute6d_program
2816 this is the path to the IPv6 multicast routing daemon.
2817 .It Va rtadvd_enable
2823 daemon at boot time.
2826 utility sends ICMPv6 Router Advertisement messages to
2827 the interfaces specified in
2828 .Va rtadvd_interfaces .
2829 This should only be enabled with great care.
2830 You may want to fine-tune
2832 .It Va rtadvd_interfaces
2838 this is the list of interfaces to use.
2839 .It Va ipxgateway_enable
2843 enable the routing of IPX traffic.
2844 .It Va ipxrouted_enable
2850 daemon at system boot time.
2851 .It Va ipxrouted_flags
2854 .Va ipxrouted_enable
2857 these are the flags to pass to the
2864 enable global proxy ARP.
2865 .It Va forward_sourceroute
2873 source-routed packets are forwarded.
2874 .It Va accept_sourceroute
2878 the system will accept source-routed packets directed at it.
2885 daemon at system boot time.
2892 these are the flags to pass to the
2895 .It Va bootparamd_enable
2901 daemon at system boot time.
2902 .It Va bootparamd_flags
2905 .Va bootparamd_enable
2908 these are the flags to pass to the
2911 .It Va stf_interface_ipv4addr
2915 this is the local IPv4 address for 6to4 (IPv6 over IPv4 tunneling
2917 Specify this entry to enable the 6to4 interface.
2918 .It Va stf_interface_ipv4plen
2920 Prefix length for 6to4 IPv4 addresses, to limit peer address range.
2921 An effective value is 0-31.
2922 .It Va stf_interface_ipv6_ifid
2924 IPv6 interface ID for
2928 .It Va stf_interface_ipv6_slaid
2930 IPv6 Site Level Aggregator for
2932 .It Va ipv6_faith_prefix
2936 this is the faith prefix to enable a FAITH IPv6-to-IPv4 TCP
2941 .It Va ipv6_ipv4mapping
2945 this enables IPv4 mapped IPv6 address communication (like
2946 .Li ::ffff:a.b.c.d ) .
2947 .It Va rtsold_enable
2953 daemon to send ICMPv6 Router Solicitation messages.
2960 these are the flags to pass to
2964 For interfaces configured with the
2965 .Dq Li inet6 accept_rtadv
2966 keyword, these are the flags to pass to
2971 is mutually exclusive to
2979 to enable the configuration of ATM interfaces at system boot time.
2980 For all of the ATM variables described below, please refer to the
2982 manual page for further details on the available command parameters.
2983 Also refer to the files in
2984 .Pa /usr/share/examples/atm
2985 for more detailed configuration information.
2988 This is a list of physical ATM interface drivers to load.
2993 .It Va atm_netif_ Ns Aq Ar intf
2995 For the ATM physical interface
2997 this variable defines the name prefix and count for the ATM network
2998 interfaces to be created.
2999 The value will be passed as the parameters of an
3000 .Dq Nm atm Cm "set netif" Ar intf
3002 .It Va atm_sigmgr_ Ns Aq Ar intf
3004 For the ATM physical interface
3006 this variable defines the ATM signalling manager to be used.
3007 The value will be passed as the parameters of an
3008 .Dq Nm atm Cm attach Ar intf
3010 .It Va atm_prefix_ Ns Aq Ar intf
3012 For the ATM physical interface
3014 this variable defines the NSAP prefix for interfaces using a UNI signalling
3018 the prefix will automatically be set via the
3021 Otherwise, the value will be passed as the parameters of an
3022 .Dq Nm atm Cm "set prefix" Ar intf
3024 .It Va atm_macaddr_ Ns Aq Ar intf
3026 For the ATM physical interface
3028 this variable defines the MAC address for interfaces using a UNI signalling
3032 the hardware MAC address contained in the ATM interface card will be used.
3033 Otherwise, the value will be passed as the parameters of an
3034 .Dq Nm atm Cm "set mac" Ar intf
3036 .It Va atm_arpserver_ Ns Aq Ar netif
3038 For the ATM network interface
3040 this variable defines the ATM address for a host which is to provide ATMARP
3042 This variable is only applicable to interfaces using a UNI signalling
3046 this host will become an ATMARP server.
3047 The value will be passed as the parameters of an
3048 .Dq Nm atm Cm "set arpserver" Ar netif
3050 .It Va atm_scsparp_ Ns Aq Ar netif
3054 SCSP/ATMARP service for the network interface
3056 will be initiated using the
3061 This variable is only applicable if
3062 .Va atm_arpserver_ Ns Aq Ar netif
3067 Set to the list of ATM PVCs to be added at system
3069 For each whitespace separated
3072 .Va atm_pvc_ Ns Aq Ar element
3073 variable is assumed to exist.
3074 The value of each of these variables
3075 will be passed as the parameters of an
3076 .Dq Nm atm Cm "add pvc"
3080 Set to the list of permanent ATM ARP entries to be added
3081 at system boot time.
3082 For each whitespace separated
3085 .Va atm_arp_ Ns Aq Ar element
3086 variable is assumed to exist.
3087 The value of each of these variables
3088 will be passed as the parameters of an
3089 .Dq Nm atm Cm "add arp"
3091 .It Va natm_interfaces
3095 interfaces that will also be used for HARP through
3097 If this list is not empty all interfaces in the list will be brought up
3103 For this to work the interface drivers must be either compiled into the
3104 kernel or must reside on the root partition.
3107 The keyboard bell sound.
3114 if the default behavior is desired.
3115 For details, refer to the
3120 If set to a non-null string, the virtual console's keyboard input is
3126 no keymap is installed, otherwise the value is used to install
3128 .Pa /usr/share/syscons/keymaps/ Ns Ao Ar value Ac Ns Pa .kbd .
3131 The keyboard repeat speed.
3138 if the default behavior is desired.
3143 attempt to program the function keys with the value.
3145 be a single string of the form:
3146 .Dq Ar funkey_number new_value Op Ar funkey_number new_value ... .
3149 Can be set to the value of
3152 .Dq Li destructive ,
3155 to set the cursor behavior explicitly or choose the default behavior.
3160 no screen map is installed, otherwise the value is used to install
3161 the screen map file in
3162 .Pa /usr/share/syscons/scrnmaps/ Ns Aq Ar value .
3167 the default 8x16 font value is used for screen size requests, otherwise
3169 .Pa /usr/share/syscons/fonts/ Ns Aq Ar value
3175 the default 8x14 font value is used for screen size requests, otherwise
3177 .Pa /usr/share/syscons/fonts/ Ns Aq Ar value
3183 the default 8x8 font value is used for screen size requests, otherwise
3185 .Pa /usr/share/syscons/fonts/ Ns Aq Ar value
3191 the default screen blanking interval is used, otherwise it is set
3199 this is the actual screen saver to use
3200 .Li ( blank , snake , daemon ,
3202 .It Va moused_nondefault_enable
3206 the mouse device specified on
3207 the command line is not automatically treated as enabled by the
3208 .Pa /etc/rc.d/moused
3210 Having this variable set to
3216 to be enabled as soon as it is plugged in.
3217 .It Va moused_enable
3223 daemon is started for doing cut/paste selection on the console.
3226 This is the protocol type of the mouse connected to this host.
3227 This variable must be set if
3234 is able to detect the appropriate mouse type automatically in many cases.
3235 Set this variable to
3237 to let the daemon detect it, or
3238 select one from the following list if the automatic detection fails.
3240 If the mouse is attached to the PS/2 mouse port, choose
3244 regardless of the brand and model of the mouse.
3246 mouse is attached to the bus mouse port, choose
3250 All other protocols are for serial mice and will not work with
3251 the PS/2 and bus mice.
3252 If this is a USB mouse,
3254 is the only protocol type which will work.
3256 .Bl -tag -width ".Li x10mouseremote" -compact
3258 Microsoft mouse (serial)
3260 Microsoft IntelliMouse (serial)
3262 Mouse systems Corp.\& mouse (serial)
3264 MM Series mouse (serial)
3266 Logitech mouse (serial)
3270 Logitech MouseMan and TrackMan (serial)
3272 ALPS GlidePoint (serial)
3273 .It Li thinkingmouse
3274 Kensington ThinkingMouse (serial)
3278 MM HitTablet (serial)
3279 .It Li x10mouseremote
3280 X10 MouseRemote (serial)
3282 Interlink VersaPad (serial)
3285 Even if the mouse is not in the above list, it may be compatible
3286 with one in the list.
3287 Refer to the manual page for
3289 for compatibility information.
3291 It should also be noted that while this is enabled, any
3292 other client of the mouse (such as an X server) should access
3293 the mouse through the virtual mouse device,
3295 and configure it as a
3297 type mouse, since all
3298 mouse data is converted to this single canonical format when
3301 If the client program does not support the
3307 It is the second preferred type.
3314 this is the actual port the mouse is on.
3317 for a COM1 serial mouse,
3321 for a bus mouse, for example.
3326 is set, its value is used as an additional set of flags to pass to the
3329 .It Va "moused_" Ns Ar XXX Ns Va "_flags"
3331 .Va moused_nondefault_enable
3334 daemon is started for a non-default port, the
3335 .Va "moused_" Ns Ar XXX Ns Va "_flags"
3336 set of options has precedence over and replaces the default
3340 is the name of the non-default port, i.e.,\&
3343 .Va "moused_" Ns Ar XXX Ns Va "_flags"
3344 it is possible to set up a different set of default flags for each
3347 For example, you can use
3351 to make your laptop's touchpad more comfortable to use,
3352 but an empty set of options for
3353 .Va moused_ums0_flags
3356 mouse has three or more buttons.
3357 .It Va mousechar_start
3361 the default mouse cursor character range
3362 .Li 0xd0 Ns - Ns Li 0xd3
3364 otherwise the range start is set
3369 Use if the default range is occupied in the language code table.
3370 .It Va allscreens_flags
3374 is run with these options for each of the virtual terminals
3378 will enable the mouse pointer on all virtual terminals
3383 .It Va allscreens_kbdflags
3387 is run with these options for each of the virtual terminals
3393 scrollback (history) buffer to 200 lines.
3400 daemon at system boot time.
3406 .Pa /usr/sbin/cron ) .
3413 these are the flags to pass to
3419 enable the special handling of transitions to and from the
3420 Daylight Saving Time in
3422 (equivalent to using the flag
3429 .Pa /usr/sbin/lpd ) .
3436 daemon at system boot time.
3443 these are the flags to pass to the
3446 .It Va chkprintcap_enable
3452 command before starting the
3455 .It Va chkprintcap_flags
3460 .Va chkprintcap_enable
3463 these are the flags to pass to the
3468 which causes missing directories to be created.
3469 .It Va mta_start_script
3471 This variable specifies the full path to the script to run to start
3472 a mail transfer agent.
3474 .Pa /etc/rc.sendmail .
3478 .Pa /etc/rc.sendmail
3479 uses are documented in the
3484 Indicates the device (usually a swap partition) to which a crash dump
3485 should be written in the event of a system crash.
3486 If the value of this variable is
3488 the first suitable swap device listed in
3490 will be used as dump device.
3491 Otherwise, the value of this variable is passed as the argument to
3493 To disable crash dumps, set this variable to
3497 When the system reboots after a crash and a crash dump is found on the
3498 device specified by the
3502 will save that crash dump and a copy of the kernel to the directory
3506 The default value is
3515 .It Va savecore_flags
3517 If crash dumps are enabled, these are the flags to pass to the
3524 to turn on user and group disk quotas on system startup via the
3526 command for all file systems marked as having quotas enabled in
3528 The kernel must be built with
3530 for disk quotas to function.
3535 to enable user and group disk quota checking via the
3538 .It Va quotacheck_flags
3548 these are the flags to pass to the
3553 which checks quotas for all file systems with quotas enabled in
3555 .It Va quotaon_flags
3561 these are the flags to pass to the
3566 which enables quotas for all file systems with quotas enabled in
3568 .It Va quotaoff_flags
3574 these are the flags to pass to the
3576 utility when shutting down the quota system.
3579 which disables quotas for all file systems with quotas enabled in
3581 .It Va accounting_enable
3585 to enable system accounting through the
3592 to enable iBCS2 (SCO) binary emulation at system initial boot
3594 .It Va ibcs2_loaders
3602 this specifies a list of additional iBCS2 loaders to enable.
3607 to enable Linux/ELF binary emulation at system initial
3613 enable SysVR4 emulation at boot time.
3614 .It Va sysvipc_enable
3618 load System V IPC primitives at boot time.
3619 .It Va clear_tmp_enable
3630 to disable removing of X11 lock files,
3631 and the removal and (secure) recreation
3632 of the various socket directories for X11
3634 .It Va ldconfig_paths
3636 Set to the list of shared library paths to use with
3640 will always be added first, so it need not appear in this list.
3641 .It Va ldconfig32_paths
3643 Set to the list of 32-bit compatibility shared library paths to
3646 .It Va ldconfig_paths_aout
3648 Set to the list of shared library paths to use with
3653 .It Va ldconfig_insecure
3657 utility normally refuses to use directories
3658 which are writable by anyone except root.
3659 Set this variable to
3661 to disable that security check during system startup.
3662 .It Va ldconfig_local_dirs
3664 Set to the list of local
3667 The names of all files in the directories listed will be
3668 passed as arguments to
3670 .It Va ldconfig_local32_dirs
3672 Set to the list of local 32-bit compatibility
3675 The names of all files in the directories listed will be
3676 passed as arguments to
3677 .Dq Nm ldconfig Fl 32 .
3678 .It Va kern_securelevel_enable
3682 to set the kernel security level at system startup.
3683 .It Va kern_securelevel
3685 The kernel security level to set at startup.
3686 The allowed range of
3688 ranges from \-1 (the compile time default) to 3 (the
3692 for the list of possible security levels and their effect
3693 on system operation.
3696 Path to the SSH server program
3697 .Pa ( /usr/sbin/sshd
3705 at system boot time.
3712 these are the flags to pass to the
3717 Path to the FTP server program
3718 .Pa ( /usr/libexec/ftpd
3726 as a stand-alone daemon at system boot time.
3733 these are the additional flags to pass to the
3736 .It Va watchdogd_enable
3742 daemon at boot time.
3743 This requires that the kernel have been compiled with a
3746 .It Va watchdogd_flags
3749 .Va watchdogd_enable
3752 these are the flags passed to the
3755 .It Va devfs_rulesets
3757 List of files containing sets of rules for
3759 .It Va devfs_system_ruleset
3761 Rule name(s) to apply to the system
3764 .It Va devfs_set_rulesets
3766 Pairs of already-mounted
3768 directories and rulesets that should be applied to them.
3769 For example: /mount/dev=ruleset_name
3770 .It Va devfs_load_rulesets
3772 If set, always load the default rulesets listed in
3773 .Va devfs_rulesets .
3774 .It Va performance_cx_lowest
3776 CPU idle state to use while on AC power.
3781 should use the lowest power state available while
3783 indicates that the lowest latency state (less power savings) should be used.
3784 .It Va performance_cpu_freq
3786 CPU clock frequency to use while on AC power.
3791 should use the lowest frequency available while
3793 indicates that the highest frequency (less power savings) should be used.
3794 .It Va economy_cx_lowest
3796 CPU idle state to use when off AC power.
3801 should use the lowest power state available while
3803 indicates that the lowest latency state (less power savings) should be used.
3804 .It Va economy_cpu_freq
3806 CPU clock frequency to use when off AC power.
3811 should use the lowest frequency available while
3813 indicates that the highest frequency (less power savings) should be used.
3818 any configured jails will not be started.
3819 .It jail_parallel_start
3823 all configured jails will be started in the background (= in parallel).
3826 A space separated list of names for jails.
3827 This is purely a configuration aid to help identify and
3828 configure multiple jails.
3829 The names specified in this list will be used to
3830 identify settings common to an instance of a jail,
3831 and should contain alphanumeric characters only.
3832 Assuming that the jail in question was named
3834 you would have the following dependent variables:
3836 jail_vjail_hostname="jail.example.com"
3837 jail_vjail_ip="192.0.2.100"
3838 jail_vjail_rootdir="/var/jails/vjail/root"
3844 When set, use as default value for
3845 .Va jail_ Ns Ao Ar jname Ac Ns Va _flags
3848 .It Va jail_interface
3851 When set, use as default value for
3852 .Va jail_ Ns Ao Ar jname Ac Ns Va _interface
3858 When set, use as default value for
3859 .Va jail_ Ns Ao Ar jname Ac Ns Va _fstab
3862 .It Va jail_mount_enable
3870 .Va jail_ Ns Ao Ar jname Ac Ns Va _mount_enable
3873 by default for every jail in
3875 .It Va jail_devfs_ruleset
3879 .Va jail_ Ns Ao Ar jname Ac Ns Va _devfs_ruleset
3880 to given value for every jail in
3882 .It Va jail_devfs_enable
3890 .Va jail_ Ns Ao Ar jname Ac Ns Va _devfs_enable
3893 by default for every jail in
3895 .It Va jail_fdescfs_enable
3903 .Va jail_ Ns Ao Ar jname Ac Ns Va _fdescfs_enable
3906 by default for every jail in
3908 .It Va jail_procfs_enable
3916 .Va jail_ Ns Ao Ar jname Ac Ns Va _fdescfs_enable
3919 by default for every jail in
3921 .It Va jail_exec_prestart Ns Aq Ar N
3924 When set, use as default value for
3925 .Va jail_ Ns Ao Ar jname Ac Ns Va _exec_prestart Ns Aq Ar N
3928 .It Va jail_exec_start
3931 When set, use as default value for
3932 .Va jail_ Ns Ao Ar jname Ac Ns Va _exec_start
3935 .It Va jail_exec_afterstart Ns Aq Ar N
3938 When set, use as default value for
3939 .Va jail_ Ns Ao Ar jname Ac Ns Va _exec_afterstart Ns Aq Ar N
3942 .It Va jail_exec_poststart Ns Aq Ar N
3945 When set, use as default value for
3946 .Va jail_ Ns Ao Ar jname Ac Ns Va _exec_poststart Ns Aq Ar N
3949 .It Va jail_exec_prestop Ns Aq Ar N
3952 When set, use as default value for
3953 .Va jail_ Ns Ao Ar jname Ac Ns Va _exec_prestop Ns Aq Ar N
3956 .It Va jail_exec_stop
3958 When set, use as default value for
3959 .Va jail_ Ns Ao Ar jname Ac Ns Va _exec_stop
3962 .It Va jail_exec_poststop Ns Aq Ar N
3965 When set, use as default value for
3966 .Va jail_ Ns Ao Ar jname Ac Ns Va _exec_poststop Ns Aq Ar N
3969 .It Va jail_ Ns Ao Ar jname Ac Ns Va _rootdir
3972 Set to the root directory used by jail
3974 .It Va jail_ Ns Ao Ar jname Ac Ns Va _hostname
3977 Set to the fully qualified domain name (FQDN) assigned to jail
3979 .It Va jail_ Ns Ao Ar jname Ac Ns Va _parameters
3982 Set extra parameters for jail
3985 .Dq Li allow.chflags
3987 .Dq Li children.max .
3990 for a list of available parameters.
3991 Note that the following parameters are already defined by
3993 script out of their corresponding
3996 .Bl -tag -width "host.hostname" -offset indent
3999 .Va jail_ Ns Ao Ar jname Ac Ns Va _rootdir
4000 .It Li host.hostname
4002 .Va jail_ Ns Ao Ar jname Ac Ns Va _hostname
4005 .Va jail_ Ns Ao Ar jname Ac Ns Va _exec_start
4008 .Va jail_ Ns Ao Ar jname Ac Ns Va _ip
4009 contains IPv4 addresses
4012 .Va jail_ Ns Ao Ar jname Ac Ns Va _ip6
4013 contains IPv6 addresses
4015 .It Va jail_ Ns Ao Ar jname Ac Ns Va _ip
4018 Set to the (primary) IPv4 and/or IPv6 address(es) assigned to the jail.
4019 The argument can be a sole address or a comma separated list of addresses.
4020 Additionally each address can be prefixed by the name of an interface
4021 followed by a pipe to overwrite
4022 .Va jail_ Ns Ao Ar jname Ac Ns Va _interface
4025 and/or suffixed by a netmask, prefixlen or prefix.
4026 In case no netmask, prefixlen or prefix is given,
4028 will be used for IPv4 and
4030 will be used for an IPv6 address.
4031 If no address is given for the jail then the jail will be started with
4032 no networking support.
4033 .It Va jail_ Ns Ao Ar jname Ac Ns Va _ip_multi Ns Aq Ar n
4036 Set additional IPv4 and/or IPv6 address(es) assigned to the jail.
4037 The sequence starts with
4039 and the numbers have to be strictly ascending.
4040 These entries follow the same syntax as their primary
4041 .Va jail_ Ns Ao Ar jname Ac Ns Va _ip
4043 The order of the entries can be important as the first address for
4044 each address family found will be the primary address of the jail.
4050 .It Va jail_ Ns Ao Ar jname Ac Ns Va _flags
4055 These are flags to pass to
4057 .It Va jail_ Ns Ao Ar jname Ac Ns Va _interface
4060 When set, sets the interface to use when setting IP address alias.
4061 Note that the alias is created at jail startup and removed at jail shutdown.
4062 .It Va jail_ Ns Ao Ar jname Ac Ns Va _fib
4065 When set, the jail is started with the specified forwarding table (sometimes
4066 referred to as a routing table) via
4068 .It Va jail_ Ns Ao Ar jname Ac Ns Va _fstab
4071 .Pa /etc/fstab. Ns Aq Ar jname
4073 This is the file system information file to use for jail
4075 .It Va jail_ Ns Ao Ar jname Ac Ns Va _mount_enable
4082 mount all file systems from
4083 .Va jail_ Ns Ao Ar jname Ac Ns Va _fstab
4085 .It Va jail_ Ns Ao Ar jname Ac Ns Va _devfs_ruleset
4088 When set, defines the device file system ruleset file to use for jail
4090 .It Va jail_ Ns Ao Ar jname Ac Ns Va _devfs_enable
4097 mount the device file system inside jail
4100 .It Va jail_ Ns Ao Ar jname Ac Ns Va _fdescfs_enable
4107 mount the file-descriptor file system inside jail
4110 .It Va jail_ Ns Ao Ar jname Ac Ns Va _procfs_enable
4117 mount the process file system inside jail
4120 .It Va jail_ Ns Ao Ar jname Ac Ns Va _exec_prestart Ns Aq Ar N
4123 This is the command run as
4126 before jail startup, where
4129 It is run outside the jail.
4130 .It Va jail_ Ns Ao Ar jname Ac Ns Va _exec_start
4133 .Dq Li /bin/sh /etc/rc
4135 This is the command executed in a jail at jail startup.
4136 .It Va jail_ Ns Ao Ar jname Ac Ns Va _exec_afterstart Ns Aq Ar N
4139 This is the command run as
4143 after jail startup, where
4146 .It Va jail_ Ns Ao Ar jname Ac Ns Va _exec_poststart Ns Aq Ar N
4149 This is the command run as
4152 after jail startup, where
4155 It is run outside the jail.
4156 .It Va jail_ Ns Ao Ar jname Ac Ns Va _exec_prestop Ns Aq Ar N
4159 This is the command run as
4162 before jail shutdown, where
4165 It is run outside the jail.
4166 .It Va jail_ Ns Ao Ar jname Ac Ns Va _exec_stop
4169 .Dq Li /bin/sh /etc/rc.shutdown
4171 This is the command executed in a jail at jail shutdown.
4172 .It Va jail_ Ns Ao Ar jname Ac Ns Va _exec_poststop Ns Aq Ar N
4175 This is the command run as
4178 after jail shutdown, where
4181 It is run outside the jail.
4182 .It Va jail_set_hostname_allow
4186 do not allow the root user in a jail to set its hostname.
4187 .It Va jail_socket_unixiproute_only
4191 do not allow any sockets,
4192 besides UNIX/IP/route sockets,
4193 to be used within a jail.
4194 .It Va jail_sysvipc_allow
4198 allow applications within a jail to use System V IPC.
4199 .\" -----------------------------------------------------
4200 .It Va harvest_interrupt
4204 to use hardware interrupts as an entropy source.
4207 for more information.
4208 .It Va harvest_ethernet
4212 to use LAN traffic as an entropy source.
4215 for more information.
4216 .It Va harvest_p_to_p
4220 to use serial line traffic as an entropy source.
4223 for more information.
4228 to disable caching entropy via
4230 Otherwise set to the directory used to store entropy files in.
4235 to disable caching entropy through reboots.
4236 Otherwise set to the filename used to store cached entropy through
4238 This file should be located on the root file system to seed the
4240 device as early as possible in the boot process.
4241 .It Va entropy_save_sz
4243 Size of the entropy cache files saved by
4246 .It Va entropy_save_num
4248 Number of entropy cache files to save by
4262 Configuration file for
4271 .Pa /var/run/dmesg.boot
4273 .It Va rcshutdown_timeout
4275 If set, start a watchdog timer in the background which will terminate
4279 has not completed within the specified time (in seconds).
4280 Notice that in addition to this soft timeout,
4282 also applies a hard timeout for the execution of
4284 This is configured via
4287 .Va kern.init_shutdown_timeout
4288 and defaults to 120 seconds.
4289 Setting the value of
4290 .Va rcshutdown_timeout
4291 to more than 120 seconds will have no effect until the
4294 .Va kern.init_shutdown_timeout
4296 .It Va virecover_enable
4300 to prevent the system from trying to
4301 recover pre-maturely terminated
4304 .It Va ugidfw_enable
4309 .Xr mac_bsdextended 4
4310 module upon system initialization and load a default
4312 .It Va bsdextended_script
4315 .Xr mac_bsdextended 4
4316 ruleset file to load.
4317 The default value of this variable is
4318 .Pa /etc/rc.bsdextended .
4319 .It Va newsyslog_enable
4326 .It Va newsyslog_flags
4329 .Va newsyslog_enable
4332 these are the flags to pass to the
4337 which causes log files flagged with a
4340 .It Va mdconfig_md Ns Aq Ar X
4350 must be specified and either a
4352 for malloc or swap backed
4360 .Va mdconfig_md Ns Aq Ar X
4361 variables are evaluated until one variable is unset or null.
4362 .It Va mdconfig_md Ns Ao Ar X Ac Ns Va _newfs
4364 Optional arguments passed to
4370 .It Va mdconfig_md Ns Ao Ar X Ac Ns Va _owner
4372 An ownership specification passed to
4381 device and the mount point will be changed.
4382 .It Va mdconfig_md Ns Ao Ar X Ac Ns Va _perms
4384 A mode string passed to
4393 device and the mount point will be changed.
4394 .It Va mdconfig_md Ns Ao Ar X Ac Ns Va _files
4396 Files to be copied to the mount point of the
4400 after it has been mounted.
4401 .It Va mdconfig_md Ns Ao Ar X Ac Ns Va _cmd
4403 Command to execute after the specified
4408 Note that the command is passed to
4414 variables can be used to reference respectively the
4416 device and the mount point.
4421 one could set the following:
4423 mdconfig_md0_cmd="tar xfzC /var/file.tgz \e${_mp}"
4425 .It Va autobridge_interfaces
4427 Set to the list of bridge interfaces that will have newly arriving interfaces
4428 checked against to be automatically added.
4431 then for each whitespace separated
4434 .Va autobridge_ Ns Aq Ar element
4435 variable is assumed to exist which has a whitespace separated list of interface
4436 names to match, these names can use wildcards.
4439 autobridge_interfaces="bridge0"
4440 autobridge_bridge0="tap* dc0 vlan[345]"
4446 enable support for sound mixer.
4447 .It Va hcsecd_enable
4451 enable Bluetooth security daemon.
4452 .It Va hcsecd_config
4454 Configuration file for
4457 .Pa /etc/bluetooth/hcsecd.conf .
4462 enable Bluetooth Service Discovery Protocol daemon.
4470 .It Va sdpd_groupname
4474 group to run as after it initializes.
4477 .It Va sdpd_username
4481 user to run as after it initializes.
4484 .It Va bthidd_enable
4488 enable Bluetooth Human Interface Device daemon.
4489 .It Va bthidd_config
4491 Configuration file for
4494 .Pa /etc/bluetooth/bthidd.conf .
4497 Path to a file, where
4499 will store information about known HID devices.
4501 .Pa /var/db/bthidd.hids .
4502 .It Va rfcomm_pppd_server_enable
4506 enable Bluetooth RFCOMM PPP wrapper daemon.
4507 .It Va rfcomm_pppd_server_profile
4509 The name of the profile to use from
4510 .Pa /etc/ppp/ppp.conf .
4511 Multiple profiles can be specified here.
4512 Also used to specify per-profile overrides.
4513 When the profile name contains any of the characters
4515 they are translated to
4517 for the proposes of the override variable names.
4518 .It Va rfcomm_pppd_server_ Ns Ao Ar profile Ac Ns _bdaddr
4520 Overrides local address to listen on.
4526 The address can be specified as BD_ADDR or name.
4527 .It Va rfcomm_pppd_server_ Ns Ao Ar profile Ac Ns _channel
4529 Overrides local RFCOMM channel to listen on.
4532 will listen on RFCOMM channel 1.
4533 Must set properly if multiple profiles used in the same time.
4534 .It Va rfcomm_pppd_server_ Ns Ao Ar profile Ac Ns _register_sp
4538 if it should register Serial Port service on the specified RFCOMM channel.
4541 .It Va rfcomm_pppd_server_ Ns Ao Ar profile Ac Ns _register_dun
4545 if it should register Dial-Up Networking service on the specified
4549 .It Va ubthidhci_enable
4553 change the USB Bluetooth controller from HID mode to HCI mode.
4554 You also need to specify the location of USB Bluetooth controller with the
4555 .Va ubthidhci_busnum
4559 .It Va ubthidhci_busnum
4560 Bus number where the USB Bluetooth controller is located.
4563 on your system to find this information.
4564 .It Va ubthidhci_addr
4565 Bus address of the USB Bluetooth controller.
4568 on your system to find this information.
4569 .It Va netwait_enable
4573 delays the start of network-reliant services until
4575 is up and ICMP packets to a destination defined in
4578 Link state is examined first, followed by
4580 an IP address to verify network usability.
4581 If no destination can be reached or timeouts are exceeded,
4582 network services are started anyway with no guarantee that
4583 the network is usable.
4584 Use of this variable requires both
4592 This variable contains a space-delimited list of IP addresses to
4594 DNS hostnames should not be used as resolution is not guaranteed
4595 to be functional at this point.
4596 If multiple IP addresses are specified,
4597 each will be tried until one is successful or the list is exhausted.
4598 .It Va netwait_timeout
4600 Indicates the total number of seconds to perform a
4602 against each IP address in
4604 at a rate of one ping per second.
4605 If any of the pings are successful,
4606 full network connectivity is considered reliable.
4611 Defines the name of the network interface on which watch for link.
4613 is used to monitor the interface, looking for
4614 .Dq Li status: no carrier .
4615 Once gone, the link is considered up.
4618 interface if desired.
4619 .It Va netwait_if_timeout
4621 Defines the total number of seconds to wait for link to become usable,
4622 polled at a 1-second interval.
4626 .Bl -tag -width ".Pa /etc/defaults/rc.conf" -compact
4627 .It Pa /etc/defaults/rc.conf
4629 .It Pa /etc/rc.conf.local
4658 .Xr newsyslog.conf 5 ,
4728 .An Jordan K. Hubbard .