4 .\" Redistribution and use in source and binary forms, with or without
5 .\" modification, are permitted provided that the following conditions
7 .\" 1. Redistributions of source code must retain the above copyright
8 .\" notice, this list of conditions and the following disclaimer.
9 .\" 2. Redistributions in binary form must reproduce the above copyright
10 .\" notice, this list of conditions and the following disclaimer in the
11 .\" documentation and/or other materials provided with the distribution.
13 .\" THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND
14 .\" ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
15 .\" IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
16 .\" ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR BE LIABLE
17 .\" FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
18 .\" DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
19 .\" OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
20 .\" HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
21 .\" LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
22 .\" OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
32 .Nd system configuration information
36 contains descriptive information about the local host name, configuration
37 details for any potential network interfaces and which services should be
38 started up at system initial boot time.
39 In new installations, the
41 file is generally initialized by the system installation utility.
45 is not to run commands or perform system startup actions
47 Instead, it is included by the
48 various generic startup scripts in
50 which conditionalize their
51 internal actions according to the settings found there.
55 file is included from the file
56 .Pa /etc/defaults/rc.conf ,
57 which specifies the default settings for all the available options.
58 Options need only be specified in
60 when the system administrator wishes to override these defaults.
62 .Pa /etc/rc.conf.local
63 is used to override settings in
65 for historical reasons.
67 The sysrc(8) command provides a scripting interface to modify system
71 .Pa /etc/rc.conf.local
72 you can also place smaller configuration files for each
77 .Ao Ar dir Ac Ns Pa /rc.conf.d
78 directories specified in
80 which will be included by the
83 For jail configurations you could use the file
84 .Pa /etc/rc.conf.d/jail
85 to store jail specific configuration options.
89 .Pa /usr/local/etc/rc.d
92 .Pa /usr/local/rc.conf.d/jail
94 .Pa /opt/conf/rc.conf.d/jail
97 .Ao Ar dir Ac Ns Pa /rc.conf.d/ Ns Ao Ar name Ac
99 all of files in the directory will be loaded.
105 .Dq Ar name Ns Li = Ns Ar value
109 The following list provides a name and short description for each
110 variable that can be set in the
113 .Bl -tag -width indent-two
118 enable output of debug messages from rc scripts.
119 This variable can be helpful in diagnosing mistakes when
120 editing or integrating new scripts.
121 Beware that this produces copious output to the terminal and
127 disable informational messages from the rc scripts.
128 Informational messages are displayed when
129 a condition that is not serious enough to warrant a warning or
137 when faststart is used (e.g., at boot time).
138 .It Va early_late_divider
140 The name of the script that should be used as the
141 delimiter between the
145 stages of the boot process.
146 The early stage should contain all the services needed to
147 get the disks (local or remote) mounted so that the late
148 stage can include scripts contained in the directories
151 variable (see below).
152 Thus, the two likely candidates for this value are
154 for the typical system, and
156 if the system needs remote file
157 systems mounted to get access to the
159 directories; for example when
167 is likely to be an appropriate value.
168 Extreme care should be taken when changing this value,
169 and before changing it one should ensure that there are
170 adequate provisions to recover from a failed boot
171 (such as physical contact with the machine,
172 or reliable remote console access).
173 .It Va always_force_depends
177 scripts use the force_depend function to check whether required
178 services are already running, and to start them if necessary.
179 By default during boot time this check is bypassed if the
180 required service is enabled in
181 .Pa /etc/rc.conf[.local] .
182 Setting this option will bypass that check at boot time and
183 always test whether or not the service is actually running.
184 Enabling this option is likely to increase your boot time if
185 services are enabled that utilize the force_depend check.
186 .It Ao Ar name Ac Ns Va _chroot
189 to this directory before running the service.
190 .It Ao Ar name Ac Ns Va _user
192 Run the service under this user account.
193 .It Ao Ar name Ac Ns Va _group
195 Run the chrooted service under this system group. Unlike the _user
196 setting, this setting has no effect if the service is not chrooted.
197 .It Ao Ar name Ac Ns Va _fib
201 value to run the service under.
202 .It Ao Ar name Ac Ns Va _nice
206 value to run the service under.
211 enable support for Automatic Power Management with
219 to handle APM event from userland.
220 This also enables support for APM.
227 these are the flags to pass to the
234 to handle device added, removed or unknown events from the kernel.
241 scripts at boot time.
244 Configuration file for
250 A list of kernel modules to load right after the local
252 Loading modules at this point in the boot process is
253 much faster than doing it via
254 .Pa /boot/loader.conf
255 for those modules not necessary for mounting local disk.
256 .It Va kldxref_enable
263 to automatically rebuild
268 .It Va kldxref_clobber
278 will overwrite existing
285 .It Va kldxref_module_path
290 delimited list of paths containing
302 enable the system power control facility with the
311 these are the flags to pass to the
315 Controls the creation of a
318 Always happens if set to
320 and never happens if set to
322 If set to anything else, a memory file system is created if
326 Controls the size of a created
330 Extra options passed to the
332 utility when the memory file system for
337 which inhibits the use of softupdates on
339 so that file system space is freed without delay
340 after file truncation or deletion.
343 for other options you can use in
346 Controls the creation of a
349 Always happens if set to
351 and never happens if set to
353 If set to anything else, a memory file system is created if
357 Controls the size of a created
361 Extra options passed to the
363 utility when the memory file system for
368 which inhibits the use of softupdates on
370 so that file system space is freed without delay
371 after file truncation or deletion.
374 for other options you can use in
377 Controls the automatic population of the
380 Always happens if set to
382 and never happens if set to
384 If set to anything else, a memory file system is created if
387 Note that this process requires access to certain commands in
391 is mounted on normal systems.
392 .It Va cleanvar_enable
399 List of directories to search for startup script files.
400 .It Va script_name_sep
402 The field separator to use for breaking down the list of startup script files
403 into individual filenames.
404 The default is a space.
405 It is not necessary to change this unless there are startup scripts with names
407 .It Va hostapd_enable
416 The fully qualified domain name (FQDN) of this host on the network.
417 This should almost certainly be set to something meaningful, even if
418 there is no network connection.
421 is used to set the hostname via DHCP,
422 this variable should be set to an empty string.
423 If this value remains unset when the system is done booting
424 your console login will display the default hostname of
428 The NIS domain name of this host, or
431 .It Va dhclient_program
433 Path to the DHCP client program
434 .Pa ( /sbin/dhclient ,
439 .It Va dhclient_flags
441 Additional flags to pass to the DHCP client program.
446 manpage for a description of the command line options available.
447 .It Va dhclient_flags_ Ns Aq Ar iface
448 Additional flags to pass to the DHCP client program running on
451 When specified, this variable overrides
453 .It Va background_dhclient
457 to start the DHCP client in background.
458 This can cause trouble with applications depending on
459 a working network, but it will provide a faster startup
461 .It Va background_dhclient_ Ns Aq Ar iface
462 When specified, this variable overrides the
463 .Va background_dhclient
464 variable for interface
467 .It Va synchronous_dhclient
473 synchronously at startup.
474 This behavior can be overridden on a per-interface basis by replacing
478 .Va ifconfig_ Ns Aq Ar interface
483 .It Va defaultroute_delay
485 When set to a positive value, wait up to this long after configuring
486 DHCP interfaces at startup to give the interfaces time to receive a lease.
487 .It Va firewall_enable
491 to load firewall rules at startup.
492 If the kernel was not built with
493 .Cd "options IPFIREWALL" ,
496 kernel module will be loaded.
498 .Va ipfilter_enable .
499 .It Va firewall_script
501 This variable specifies the full path to the firewall script to run.
503 .Pa /etc/rc.firewall .
506 Names the firewall type from the selection in
507 .Pa /etc/rc.firewall ,
508 or the file which contains the local firewall ruleset.
509 Valid selections from
513 .Bl -tag -width ".Li simple" -compact
515 unrestricted IP access
517 all IP services disabled, except via
520 basic protection for a workstation
522 basic protection for a LAN.
525 If a filename is specified, the full path
527 .It Va firewall_quiet
531 to disable the display of firewall rules on the console during boot.
532 .It Va firewall_logging
536 to enable firewall event logging.
537 This is equivalent to the
538 .Dv IPFIREWALL_VERBOSE
540 .It Va firewall_logif
544 to create pseudo interface
547 For more details, see
550 .It Va firewall_flags
556 specifies a filename.
557 .It Va firewall_coscripts
559 List of executables and/or rc scripts to run after firewall starts/stops.
561 .\" ----- firewall_nat_enable setting --------------------------------
562 .It Va firewall_nat_enable
574 .It Va firewall_nat_interface
580 This is the name of the public interface or IP address on which
581 kernel NAT should run.
582 .It Va firewall_nat_flags
584 Additional configuration parameters for kernel NAT should be placed here.
585 .It Va dummynet_enable
589 will automatically load the
595 .\" -------------------------------------------------------------------
611 sockets must be enabled in the kernel.
612 If the kernel was not built with
613 .Cd "options IPDIVERT" ,
616 kernel module will be loaded.
617 .It Va natd_interface
619 This is the name of the public interface on which
622 The interface may be given as an interface name or as an IP address.
627 flags should be placed here.
632 flag is automatically added with the above
635 .\" ----- ipfilter_enable setting --------------------------------
636 .It Va ipfilter_enable
647 Typical usage will require putting
649 ipfilter_enable="YES"
667 can be enabled independently.
671 both require at least one of
681 options IPFILTER_DEFAULT_BLOCK
684 in the kernel configuration file is a good idea, too.
685 .\" ----- ipfilter_program setting ------------------------------
686 .It Va ipfilter_program
692 .\" ----- ipfilter_rules setting --------------------------------
693 .It Va ipfilter_rules
698 This variable contains the name of the filter rule definition file.
699 The file is expected to be readable for the
702 .\" ----- ipv6_ipfilter_rules setting ---------------------------
703 .It Va ipv6_ipfilter_rules
708 This variable contains the IPv6 filter rule definition file.
709 The file is expected to be readable for the
712 .\" ----- ipfilter_flags setting --------------------------------
713 .It Va ipfilter_flags
716 This variable contains flags passed to the
719 .\" ----- ipnat_enable setting ----------------------------------
729 network address translation.
732 for a detailed discussion.
733 .\" ----- ipnat_program setting ---------------------------------
740 .\" ----- ipnat_rules setting -----------------------------------
746 This variable contains the name of the file
747 holding the network address translation definition.
748 This file is expected to be readable for the
751 .\" ----- ipnat_flags setting -----------------------------------
755 This variable contains flags passed to the
758 .\" ----- ipmon_enable setting ----------------------------------
773 Setting this variable needs setting
780 for a detailed discussion.
781 .\" ----- ipmon_program setting ---------------------------------
788 .\" ----- ipmon_flags setting -----------------------------------
794 This variable contains flags passed to the
797 Another typical example would be
798 .Dq Fl D Pa /var/log/ipflog
801 log directly to a file bypassing
804 .Pa /etc/newsyslog.conf
805 in such case like this:
807 /var/log/ipflog 640 10 100 * Z /var/run/ipmon.pid
809 .\" ----- ipfs_enable setting -----------------------------------
819 saving the filter and NAT state tables during shutdown
820 and reloading them during startup again.
821 Setting this variable needs setting
830 for a detailed discussion.
836 because the raised securelevel will prevent
838 from saving the state tables at shutdown time.
839 .\" ----- ipfs_program setting ----------------------------------
846 .\" ----- ipfs_flags setting ------------------------------------
850 This variable contains flags passed to the
853 .\" ----- end of added ipf hook ---------------------------------
865 Typical usage will require putting
880 into the kernel, otherwise the
881 kernel module will be loaded.
886 ruleset configuration file
901 these flags are passed to the
903 program when loading the ruleset.
913 which logs packets from the
926 .Pa /var/log/pflog ) .
928 .Pa /etc/newsyslog.conf
929 to adjust logfile rotation for this.
939 This variable contains additional flags passed to the
942 .It Va pflog_instances
944 If logging to more than one
946 interface is desired,
948 is set to the list of
950 instances that should be started at system boot time. If
952 is set, for each whitespace-seperated
955 .Ao Ar element Ac Ns Va _dev
957 .Ao Ar element Ac Ns Va _logfile
958 elements are assumed to exist.
959 .Ao Ar element Ac Ns Va _dev
962 interface to be watched by the named
965 .Ao Ar element Ac Ns Va _logfile
966 must contain the name of the logfile that will be used by the
969 .It Va ftpproxy_enable
980 packet filter in translating ftp connections.
981 .It Va ftpproxy_flags
984 This variable contains additional flags passed to the
987 .It Va ftpproxy_instances
989 Empty by default. If multiple instances of
991 are desired at boot time,
992 .Va ftpproxy_instances
993 should contain a whitespace-seperated list of instance names. For each
995 in the list, a variable named
996 .Ao Ar element Ac Ns Va _flags
997 should be defined, containing the command-line flags to be passed to the
1000 .It Va pfsync_enable
1009 state changes to other hosts over the network by means of
1014 must also be set then.
1015 .It Va pfsync_syncdev
1018 This variable specifies the name of the network interface
1020 should operate through.
1021 It must be set accordingly if
1025 .It Va pfsync_syncpeer
1028 This variable is optional.
1029 By default, state change messages are sent out on the synchronisation
1030 interface using IP multicast packets.
1031 The protocol is IP protocol 240, PFSYNC, and the multicast group used is
1033 When a peer address is specified using the
1035 option, the peer address is used as a destination for the pfsync
1036 traffic, and the traffic can then be protected using
1040 manpage for more details about using
1045 .It Va pfsync_ifconfig
1048 This variable can contain additional options to be passed to the
1050 command used to set up
1052 .It Va tcp_extensions
1059 disables certain TCP options as described by
1065 might help remedy such problems with connections as randomly hanging
1066 or other weird behavior.
1067 Some network devices are known
1068 to be broken with respect to these options.
1071 Set to 0 by default.
1075 .Va net.inet.tcp.log_in_vain
1077 .Va net.inet.udp.log_in_vain ,
1082 are set to the given value.
1083 .It Va tcp_keepalive
1090 will disable probing idle TCP connections to verify that the
1091 peer is still up and reachable.
1092 .It Va tcp_drop_synfin
1099 will cause the kernel to ignore TCP frames that have both
1100 the SYN and FIN flags set.
1101 This prevents OS fingerprinting, but may
1102 break some legitimate applications.
1103 .It Va icmp_drop_redirect
1110 will cause the kernel to ignore ICMP REDIRECT packets.
1113 for more information.
1114 .It Va icmp_log_redirect
1121 will cause the kernel to log ICMP REDIRECT packets.
1123 the log messages are not rate-limited, so this option should only be used
1124 for troubleshooting networks.
1127 for more information.
1128 .It Va icmp_bmcastecho
1132 to respond to broadcast or multicast ICMP ping packets.
1135 for more information.
1136 .It Va ip_portrange_first
1140 this is the first port in the default portrange.
1143 for more information.
1144 .It Va ip_portrange_last
1148 this is the last port in the default portrange.
1151 for more information.
1152 .It Va network_interfaces
1154 Set to the list of network interfaces to configure on this host or
1156 (the default) for all current interfaces.
1158 .Va network_interfaces
1159 variable to anything other than the default is deprecated.
1160 Interfaces that the administrator wishes to store configuration for,
1161 but not start at boot should be configured with the
1164 .Va ifconfig_ Ns Aq Ar interface
1165 variables as described below.
1168 .Va ifconfig_ Ns Aq Ar interface
1169 variable is also assumed to exist for each value of
1171 When an interface name contains any of the characters
1173 they are translated to
1176 The variable can contain arguments to
1178 as well as special case-insensitive keywords described below.
1179 Such keywords are removed before passing the value to
1181 while the order of the other arguments is preserved.
1183 It is possible to add IP alias entries using
1185 syntax with the address family keyword such as
1187 Assuming that the interface in question was
1189 it might look something like this:
1191 ifconfig_ed0_alias0="inet 127.0.0.253 netmask 0xffffffff"
1192 ifconfig_ed0_alias1="inet 127.0.0.254 netmask 0xffffffff"
1195 It also possible to configure multiple IP addresses in Classless
1196 Inter-Domain Routing
1199 whose each address component can be a range like
1200 .Li inet 192.0.2.5-23/24
1202 .Li inet6 2001:db8:1-f::1/64 .
1203 This notation allows address and prefix length part only,
1204 not the other address modifiers.
1205 Note that the maximum number of the generated addresses from a range
1206 specification is limited to an integer value specified in
1207 .Va netif_ipexpand_max
1210 because a small typo can unexpectedly generate a large number of addresses.
1211 The default value is
1213 It can be increased by adding the following line into
1216 netif_ipexpand_max="4096"
1220 .Li 192.0.2.5-23/24 ,
1221 the address 192.0.2.5 will be configured with the
1222 netmask /24 and the addresses 192.0.2.6 to 192.0.2.23 with
1223 the non-conflicting netmask /32 as explained in the
1226 Note that this special netmask handling is only for
1228 not for the other address families such as
1231 With the interface in question being
1233 an example could look like:
1235 ifconfig_ed0_alias2="inet 192.0.2.129/27"
1236 ifconfig_ed0_alias3="inet 192.0.2.1-5/28"
1242 .Va ipv4_addrs_ Ns Aq Ar interface
1243 variable was supported for IPv4 CIDR address notation.
1244 It is now deprecated because the functionality was integrated into
1245 .Va ifconfig_ Ns Ao Ar interface Ac Ns Va _alias Ns Aq Ar n
1247 .Va ipv4_addrs_ Ns Aq Ar interface
1248 is still supported for backward compatibility.
1251 .Va ifconfig_ Ns Ao Ar interface Ac Ns Va _alias Ns Aq Ar n
1252 entry with an address family keyword,
1253 its contents are passed to
1255 Execution stops at the first unsuccessful access, so if
1256 something like this is present:
1258 ifconfig_ed0_alias0="inet 127.0.0.251 netmask 0xffffffff"
1259 ifconfig_ed0_alias1="inet 127.0.0.252 netmask 0xffffffff"
1260 ifconfig_ed0_alias2="inet 127.0.0.253 netmask 0xffffffff"
1261 ifconfig_ed0_alias4="inet 127.0.0.254 netmask 0xffffffff"
1264 Then note that alias4 would
1266 be added since the search would
1267 stop with the missing
1270 Because of this difficult to manage behavior,
1272 .Va ifconfig_ Ns Ao Ar interface Ac Ns Va _aliases
1273 variable, which has the same functionality as
1274 .Va ifconfig_ Ns Ao Ar interface Ac Ns Va _alias Ns Aq Ar n
1275 and can have all of entries in a variable like the following:
1277 ifconfig_ed0_aliases="\\
1278 inet 127.0.0.251 netmask 0xffffffff \\
1279 inet 127.0.0.252 netmask 0xffffffff \\
1280 inet 127.0.0.253 netmask 0xffffffff \\
1281 inet 127.0.0.254 netmask 0xffffffff"
1284 It also supports CIDR notation.
1287 .Pa /etc/start_if. Ns Aq Ar interface
1288 file is present, it is read and executed by the
1291 before configuring the interface as specified in the
1292 .Va ifconfig_ Ns Aq Ar interface
1294 .Va ifconfig_ Ns Ao Ar interface Ac Ns Va _alias Ns Aq Ar n
1298 .Va vlans_ Ns Aq Ar interface
1302 interface will be created for each item in the list with the
1306 If a vlan interface's name is a number,
1307 then that number is used as the vlan tag and the new vlan interface is
1309 .Ar interface . Ns Ar tag .
1311 the vlan tag must be specified via a
1314 .Va create_args_ Ns Aq Ar interface
1317 To create a vlan device named
1321 with the vlan tag 101 and the optional the IPv4 address 192.0.2.1/24:
1324 ifconfig_em0_101="inet 192.0.2.1/24"
1327 To create a vlan device named
1331 with the vlan tag 102:
1334 create_args_myvlan="vlan 102"
1338 .Va wlans_ Ns Aq Ar interface
1342 interface will be created for each item in the list with the
1346 Further wlan cloning arguments may be passed to the
1349 command by setting the
1350 .Va create_args_ Ns Aq Ar interface
1354 devices must be created for each wireless devices as of
1360 may be specified with an
1361 .Va wlandebug_ Ns Aq Ar interface
1363 The contents of this variable will be passed directly to
1367 .Va ifconfig_ Ns Aq Ar interface
1368 contains the keyword
1370 then the interface will not be configured
1372 .Pa /etc/pccard_ether
1374 .Va network_interfaces
1378 It is possible to bring up an interface with DHCP by adding
1381 .Va ifconfig_ Ns Aq Ar interface
1383 For instance, to initialize the
1386 it is possible to use something like:
1391 If you want to configure your wireless interface with
1392 .Xr wpa_supplicant 8
1393 for use with WPA, EAP/LEAP or WEP, you need to add
1396 .Va ifconfig_ Ns Aq Ar interface
1399 On the other hand, if you want to configure your wireless interface with
1404 .Va ifconfig_ Ns Aq Ar interface
1407 will use the settings from
1408 .Pa /etc/hostapd- Ns Ao Ar interface Ac Ns .conf
1410 Finally, you can add
1412 options in this variable, in addition to the
1413 .Pa /etc/start_if. Ns Aq Ar interface
1415 For instance, to configure an
1417 wireless device in station mode with an address obtained
1418 via DHCP, using WPA authentication and 802.11b mode, it is
1419 possible to use something like:
1422 ifconfig_wlan0="DHCP WPA mode 11b"
1426 .Va ifconfig_ Ns Aq Ar interface
1427 form, a fallback variable
1428 .Va ifconfig_DEFAULT
1430 It will be used for all interfaces with no
1431 .Va ifconfig_ Ns Aq Ar interface
1433 This is intended to replace the no longer supported
1437 It is also possible to rename an interface by doing:
1439 ifconfig_ed0_name="net0"
1440 ifconfig_net0="inet 192.0.2.1 netmask 0xffffff00"
1444 This variable is deprecated.
1446 .Va ifconfig_ Ns Ao Ar interface Ac Ns _ipv6
1448 .Va ipv6_activate_all_interfaces
1453 .Dq Li inet6 accept_rtadv
1455 .Va ifconfig_ Ns Ao Ar interface Ac Ns _ipv6
1457 .Va ipv6_activate_all_interfaces
1462 This variable is deprecated.
1464 .Va ip6addrctl_policy
1469 the default address selection policy table set by
1471 will be IPv6-preferred.
1475 the default address selection policy table set by
1477 will be IPv4-preferred.
1478 .It Va ipv6_activate_all_interfaces
1480 This controls initial configuration on IPv6-capable
1481 interfaces with no corresponding
1482 .Va ifconfig_ Ns Ao Ar interface Ac Ns _ipv6
1484 Note that it is not always necessary to set this variable to
1486 to use IPv6 functionality on
1488 In most cases, just configuring
1489 .Va ifconfig_ Ns Ao Ar interface Ac Ns _ipv6
1494 all interfaces which do not have a corresponding
1495 .Va ifconfig_ Ns Ao Ar interface Ac Ns _ipv6
1496 variable will be marked as
1499 This means that all of IPv6 functionality on that interface
1500 is completely disabled to enforce a security policy.
1501 If the variable is set to
1503 the flag will be cleared on all of the interfaces.
1505 In most cases, just defining an
1506 .Va ifconfig_ Ns Ao Ar interface Ac Ns _ipv6
1507 for an IPv6-capable interface should be sufficient.
1508 However, if an interface is added dynamically
1509 .Pq by some tunneling protocols such as PPP, for example ,
1510 it is often difficult to define the variable in advance.
1511 In such a case, configuring the
1513 flag can be disabled by setting this variable to
1516 For more details of the
1519 .Dq Li inet6 ifdisabled ,
1529 privacy addresses will be generated for each IPv6
1530 interface as described in RFC 4941.
1531 .It Va ipv6_network_interfaces
1533 This is the IPv6 equivalent of
1534 .Va network_interfaces .
1535 Normally manual configuration of this variable is not needed.
1537 .It Va ipv6_cpe_wanif
1539 If the variable is set to an interface name,
1543 .Dq inet6 -no_radr accept_rtadv
1544 will be added to the specified interface automatically before evaluating
1545 .Va ifconfig_ Ns Ao Ar interface Ac Ns _ipv6 ,
1549 .Va net.inet6.ip6.rfc6204w3
1551 .Va net.inet6.ip6.no_radr
1554 This means the specified interface will accept ICMPv6 Router
1555 Advertisement messages on that link and add the discovered
1556 routers into the Default Router List.
1557 While the other interfaces can still accept RA messages if the
1558 .Dq inet6 accept_rtadv
1559 option is specified, adding
1560 routes into the Default Router List will be disabled by
1567 Note that ICMPv6 Router Advertisement messages will be
1569 .Va net.inet6.ip6.forwarding
1571 .Pq packet forwarding is enabled
1573 .Va net.inet6.ip6.rfc6204w3
1578 .It Va ifconfig_ Ns Ao Ar interface Ac Ns _descr
1580 This assigns arbitrary description to an interface.
1584 .Va net.ifdescr_maxlen
1586 This static setting may be overridden by commands
1587 started with dynamic interface configuration utilities
1590 hooks. The description can be seen with
1592 command and it may be exported with
1594 daemon using its MIB-2 module.
1595 .It Va ifconfig_ Ns Ao Ar interface Ac Ns _ipv6
1597 IPv6 functionality on an interface should be configured by
1598 .Va ifconfig_ Ns Ao Ar interface Ac Ns _ipv6 ,
1599 instead of setting ifconfig parameters in
1600 .Va ifconfig_ Ns Aq Ar interface .
1601 If this variable is empty, all of IPv6 configurations on the
1602 specified interface by other variables such as
1603 .Va ipv6_prefix_ Ns Ao Ar interface Ac
1606 Aliases should be set by
1607 .Va ifconfig_ Ns Ao Ar interface Ac Ns Va _alias Ns Aq Ar n
1613 ifconfig_ed0_ipv6="inet6 2001:db8:1::1 prefixlen 64"
1614 ifconfig_ed0_alias0="inet6 2001:db8:2::1 prefixlen 64"
1617 Interfaces that have an
1618 .Dq Li inet6 accept_rtadv
1620 .Va ifconfig_ Ns Ao Ar interface Ac Ns _ipv6
1621 setting will be automatically configured by SLAAC
1622 .Pq StateLess Address AutoConfiguration
1628 Note that a link-local address will be automatically configured in
1629 addition to the configured global-scope addresses because the IPv6
1630 specifications require it on each link.
1631 The address is calculated from the MAC address by using an algorithm
1638 If only a link-local address is needed on the interface,
1639 the following configuration can be used:
1641 ifconfig_ed0_ipv6="inet6 auto_linklocal"
1644 A link-local address can also be configured manually.
1645 This is useful for the default router address of an IPv6 router
1646 so that it does not change when the network interface
1650 ifconfig_ed0_ipv6="inet6 fe80::1 prefixlen 64"
1652 .It Va ipv6_prefix_ Ns Aq Ar interface
1654 If one or more prefixes are defined in
1655 .Va ipv6_prefix_ Ns Aq Ar interface
1656 addresses based on each prefix and the EUI-64 interface index will be
1657 configured on that interface.
1658 Note that this variable will be ignored when
1659 .Va ifconfig_ Ns Ao Ar interface Ac Ns _ipv6
1662 For example, the following configuration
1664 ipv6_prefix_ed0="2001:db8:1:0 2001:db8:2:0"
1667 is equivalent to the following:
1669 ifconfig_ed0_alias0="inet6 2001:db8:1:: eui64 prefixlen 64"
1670 ifconfig_ed0_alias1="inet6 2001:db8:1:: prefixlen 64 anycast"
1671 ifconfig_ed0_alias2="inet6 2001:db8:2:: eui64 prefixlen 64"
1672 ifconfig_ed0_alias3="inet6 2001:db8:2:: prefixlen 64 anycast"
1675 These Subnet-Router anycast addresses will be added only when
1676 .Va ipv6_gateway_enable
1678 .It Va ipv6_default_interface
1682 this is the default output interface for scoped addresses.
1683 This works only with ipv6_gateway_enable="NO".
1684 .It Va ip6addrctl_enable
1686 This variable is to enable configuring default address selection policy table
1688 The table can be specified in another variable
1689 .Va ip6addrctl_policy .
1691 .Va ip6addrctl_policy
1692 the following keywords can be specified:
1693 .Dq Li ipv4_prefer ,
1694 .Dq Li ipv6_prefer ,
1704 installs a pre-defined policy table described in Section 2.1
1712 is specified, it attempts to read a file
1713 .Pa /etc/ip6addrctl.conf
1715 If this file is found,
1717 reads and installs it.
1718 If not found, a policy is automatically set
1720 .Va ipv6_activate_all_interfaces
1721 variable; if the variable is set to
1723 the IPv6-preferred one is used.
1724 Otherwise IPv4-preferred.
1726 The default value of
1727 .Va ip6addrctl_enable
1729 .Va ip6addrctl_policy
1735 .It Va cloned_interfaces
1737 Set to the list of clonable network interfaces to create on this host.
1738 Further cloning arguments may be passed to the
1741 command for each interface by setting the
1742 .Va create_args_ Ns Aq Ar interface
1744 If an interface name is specified with
1747 the interface will not be destroyed even when
1749 script is invoked with
1752 This is useful when reconfiguring the interface without destroying it.
1754 .Va cloned_interfaces
1755 are automatically appended to
1756 .Va network_interfaces
1758 .It Va cloned_interfaces_sticky
1760 This variable is to globally enable functionality of
1763 .Va cloned_interfaces
1765 The default value is
1767 Even if this variable is specified to
1770 keyword can be used to override it on per interface basis.
1771 .It Va fec_interfaces
1775 Fast EtherChannel interfaces to configure on this host.
1777 .Va fecconfig_ Ns Aq Ar interface
1778 variable is assumed to exist for each value of
1780 The value of this variable is used to configure link aggregated interfaces
1781 according to the syntax of the
1782 .Cm NGM_FEC_ADD_IFACE
1786 Additionally, this option ensures that each listed interface is created
1791 before attempting to configure it.
1794 fec_interfaces="fec0"
1795 fecconfig_fec0="em0 em1"
1796 ifconfig_fec0="DHCP"
1798 .It Va gif_interfaces
1800 This variable is deprecated in favor of
1801 .Va cloned_interfaces .
1804 tunnel interfaces to configure on this host.
1806 .Va gifconfig_ Ns Aq Ar interface
1807 variable is assumed to exist for each value of
1809 The value of this variable is used to configure the link layer of the
1810 tunnel according to the syntax of the
1814 Additionally, this option ensures that each listed interface is created
1819 before attempting to configure it.
1820 .It Va sppp_interfaces
1824 interfaces to configure on this host.
1826 .Va spppconfig_ Ns Aq Ar interface
1827 variable is assumed to exist for each value of
1829 Each interface should also be configured by a general
1830 .Va ifconfig_ Ns Aq Ar interface
1834 for more information about available options.
1844 The name of the profile to use from
1845 .Pa /etc/ppp/ppp.conf .
1846 Also used for per-profile overrides of
1851 .Va ppp_ Ns Ao Ar profile Ac Ns _unit .
1852 When the profile name contains any of the characters
1854 they are translated to
1856 for the proposes of the override variable names.
1859 Mode in which to run the
1862 .It Va ppp_ Ns Ao Ar profile Ac Ns _mode
1864 Overrides the global
1874 See the manual for a full description.
1879 enables network address translation.
1880 Used in conjunction with
1882 allows hosts on private network addresses access to the Internet using
1883 this host as a network address translating router.
1884 .It Va ppp_ Ns Ao Ar profile Ac Ns _nat
1886 Overrides the global
1890 .It Va ppp_ Ns Ao Ar profile Ac Ns _unit
1892 Set the unit number to be used for this profile.
1893 See the manual description of
1898 The name of the user under which
1906 .It Va rc_conf_files
1908 This option is used to specify a list of files that will override
1910 .Pa /etc/defaults/rc.conf .
1911 The files will be read in the order in which they are specified and should
1912 include the full path to the file.
1913 By default, the files specified are
1916 .Pa /etc/rc.conf.local
1922 will attempt to automatically mount ZFS file systems and initialize ZFS volumes
1924 .It Va gptboot_enable
1928 .Pa /etc/rc.d/gptboot
1929 will log if the system successfully (or not) booted from a GPT partition,
1935 .It Va gbde_autoattach_all
1940 will attempt to automatically initialize your .bde devices in
1944 List the devices that the script should try to attach,
1949 The directory where the
1951 lockfiles are located.
1952 The default lockfile directory is
1955 The lockfile for each individual
1957 device can be overridden by setting the variable
1958 .Va gbde_lock_ Ns Aq Ar device ,
1961 is the encrypted device without the
1966 .It Va gbde_attach_attempts
1968 Number of times to attempt attaching to a
1970 device, i.e., how many times the user is asked for the pass-phrase.
1974 List of devices to automatically attach on boot.
1975 Note that .eli devices from
1977 are automatically appended to this list.
1980 Number of times user is asked for the pass-phrase.
1981 If empty, it will be taken from
1982 .Va kern.geom.eli.tries
1984 .It Va geli_default_flags
1986 Default flags to use by
1988 when configuring disk encryption.
1989 Flags can be configured for every device separately by defining
1990 .Va geli_ Ns Ao Ar device Ac Ns Va _flags
1992 .It Va geli_autodetach
1994 Specifies if GELI devices should be marked for detach on last close after
1995 file systems are mounted.
1998 This can be changed for every device separately by defining
1999 .Va geli_ Ns Ao Ar device Ac Ns Va _autodetach
2001 .It Va root_rw_mount
2006 After the file systems are checked at boot time, the root file system
2007 is remounted as read-write if this is set to
2009 Diskless systems that mount their root file system from a read-only remote
2010 NFS share should set this to
2014 .It Va fsck_y_enable
2019 will be run with the
2021 flag if the initial preen
2022 of the file systems fails.
2023 .It Va background_fsck
2027 the system will attempt to run
2029 in the background where possible.
2030 .It Va background_fsck_delay
2032 The amount of time in seconds to sleep before starting a background
2034 It defaults to sixty seconds to allow large applications such as
2035 the X server to start before disk I/O bandwidth is monopolized by
2037 If set to a negative number, the background file system check will be
2038 delayed indefinitely to allow the administrator to run it at a more
2040 For example it may be run from
2042 by adding a line like
2044 .Dl "0 4 * * * root /etc/rc.d/bgfsck forcestart"
2050 List of file system types that are network-based.
2051 This list should generally not be modified by end users.
2053 .Va extra_netfs_types
2055 .It Va extra_netfs_types
2057 If set to something other than
2060 this variable extends the list of file system types
2061 for which automatic mounting at startup by
2063 should be delayed until the network is initialized.
2065 a whitespace-separated list of network file system descriptor pairs,
2066 each consisting of a file system type as passed to
2068 and a human-readable, one-word description,
2071 Extending the default list in this way is only necessary
2072 when third party file system types are used.
2073 .It Va syslogd_enable
2080 .It Va syslogd_program
2085 .Pa /usr/sbin/syslogd ) .
2086 .It Va syslogd_flags
2092 these are the flags to pass to
2101 .It Va inetd_program
2106 .Pa /usr/sbin/inetd ) .
2113 these are the flags to pass to
2122 .It Va hastd_program
2134 these are the flags to pass to
2136 .It Va local_unbound_enable
2142 daemon as a local caching resolver.
2147 to start a Kerberos 5 authentication server
2155 this is the path to Kerberos 5 Authentication Server.
2159 This variable contains additional flags to be passed to the Kerberos 5
2160 authentication server.
2161 .It Va kadmind_enable
2167 the Kerberos 5 Administration Daemon; set to
2170 .It Va kadmind_program
2176 this is the path to Kerberos 5 Administration Daemon.
2177 .It Va kpasswdd_enable
2183 the Kerberos 5 Password-Changing Daemon; set to
2186 .It Va kpasswdd_program
2192 this is the path to Kerberos 5 Password-Changing Daemon.
2199 the Kerberos 5 ticket forwarding daemon, at the boot time.
2205 .Pa /usr/libexec/kfd ) .
2212 daemon at boot time.
2219 these are the flags to pass to it.
2226 daemon at boot time.
2233 these are the flags to pass to it.
2236 manpage for more information.
2237 .It Va amd_map_program
2240 the specified program is run to get the list of
2245 maps are stored in NIS, one can set this to
2258 will be updated at boot time to reflect the kernel release
2263 will not be updated.
2264 .It Va nfs_client_enable
2268 run the NFS client daemons at boot time.
2269 .It Va nfs_access_cache
2272 .Va nfs_client_enable
2277 to disable NFS ACCESS RPC caching, or to the number of seconds for which
2279 results should be cached.
2280 A value of 2-10 seconds will substantially reduce network
2281 traffic for many NFS operations.
2282 .It Va nfs_server_enable
2286 run the NFS server daemons at boot time.
2287 .It Va nfs_server_flags
2290 .Va nfs_server_enable
2293 these are the flags to pass to the
2296 .It Va nfsv4_server_enable
2299 .Va nfs_server_enable
2303 .Va nfsv4_server_enable
2306 enable the server for NFSv4 as well as NFSv2 and NFSv3.
2307 .It Va nfsuserd_enable
2313 run the nfsuserd daemon, which is needed for NFSv4 in order
2314 to map between user/group names vs uid/gid numbers.
2316 .Va nfsv4_server_enable
2319 this will be forced enabled.
2320 .It Va nfsuserd_flags
2326 these are the flags to pass to the
2329 .It Va nfscbd_enable
2335 run the nfscbd daemon, which enables callbacks/delegations for the NFSv4 client.
2342 these are the flags to pass to the
2345 .It Va oldnfs_server_enable
2348 .Va oldnfs_server_enable
2351 force the NFS server daemons to run the old NFS server code
2352 that does not support NFSv4.
2353 .It Va mountd_enable
2358 .Va nfs_server_enable
2364 It is commonly needed to run CFS without real NFS used.
2371 these are the flags to pass to the
2374 .It Va weak_mountd_authentication
2378 allow services like PCNFSD to make non-privileged mount
2380 .It Va nfs_reserved_port_only
2384 provide NFS services only on a secure port.
2385 .It Va nfs_bufpackets
2387 If set to a number, indicates the number of packets worth of
2388 socket buffer space to reserve on an NFS client.
2389 The kernel default is typically 4.
2390 Using a higher number may be
2391 useful on gigabit networks to improve performance.
2392 The minimum value is
2393 2 and the maximum is 64.
2394 .It Va rpc_lockd_enable
2398 and also an NFS server or client, run
2401 .It Va rpc_lockd_flags
2404 .Va rpc_lockd_enable
2407 these are the flags to pass to the
2410 .It Va rpc_statd_enable
2414 and also an NFS server or client, run
2417 .It Va rpc_statd_flags
2420 .Va rpc_statd_enable
2423 these are the flags to pass to the
2426 .It Va rpcbind_program
2431 .Pa /usr/sbin/rpcbind ) .
2432 .It Va rpcbind_enable
2438 service at boot time.
2439 .It Va rpcbind_flags
2445 these are the flags to pass to the
2448 .It Va keyserv_enable
2454 daemon on boot for running Secure RPC.
2455 .It Va keyserv_flags
2461 these are the flags to pass to
2464 .It Va pppoed_enable
2470 daemon at boot time to provide PPP over Ethernet services.
2471 .It Va pppoed_ Ns Aq Ar provider
2474 listens to requests to this
2480 argument of the same name.
2483 Additional flags to pass to
2485 .It Va pppoed_interface
2487 The network interface to run
2490 This is mandatory when
2500 service at boot time.
2501 This command is intended for networks of
2502 machines where a consistent
2504 for all hosts must be established.
2505 This is often useful in large NFS
2506 environments where time stamps on files are expected to be consistent
2514 these are the flags to pass to the
2517 .It Va ntpdate_enable
2524 This command is intended to
2525 synchronize the system clock only
2527 from some standard reference.
2528 .It Va ntpdate_config
2530 Configuration file for
2534 .It Va ntpdate_hosts
2536 A whitespace-separated list of NTP servers to synchronize with at startup.
2537 The default is to use the servers listed in
2538 .Va ntpdate_config ,
2539 if that file exists.
2540 .It Va ntpdate_program
2545 .Pa /usr/sbin/ntpdate ) .
2546 .It Va ntpdate_flags
2552 these are the flags to pass to the
2554 command (typically a hostname).
2561 command at boot time.
2567 .Pa /usr/sbin/ntpd ) .
2581 these are the flags to pass to the
2584 .It Va ntpd_sync_on_start
2591 flag, which syncs the system's clock on startup.
2594 for more information regarding the
2597 This is a preferred alternative to using
2602 .It Va nis_client_enable
2608 service at system boot time.
2609 .It Va nis_client_flags
2612 .Va nis_client_enable
2615 these are the flags to pass to the
2618 .It Va nis_ypset_enable
2624 daemon at system boot time.
2625 .It Va nis_ypset_flags
2628 .Va nis_ypset_enable
2631 these are the flags to pass to the
2634 .It Va nis_server_enable
2640 daemon at system boot time.
2641 .It Va nis_server_flags
2644 .Va nis_server_enable
2647 these are the flags to pass to the
2650 .It Va nis_ypxfrd_enable
2656 daemon at system boot time.
2657 .It Va nis_ypxfrd_flags
2660 .Va nis_ypxfrd_enable
2663 these are the flags to pass to the
2666 .It Va nis_yppasswdd_enable
2672 daemon at system boot time.
2673 .It Va nis_yppasswdd_flags
2676 .Va nis_yppasswdd_enable
2679 these are the flags to pass to the
2682 .It Va rpc_ypupdated_enable
2688 daemon at system boot time.
2689 .It Va bsnmpd_enable
2695 daemon at system boot time.
2696 Be sure to understand the security implications of running SNMP daemon
2704 these are the flags to pass to the
2707 .It Va defaultrouter
2711 create a default route to this host name or IP address
2712 (use an IP address if this router is also required to get to the
2714 .It Va ipv6_defaultrouter
2716 The IPv6 equivalent of
2718 .It Va static_arp_pairs
2720 Set to the list of static ARP pairs that are to be added at system
2722 For each whitespace separated
2725 .Va static_arp_ Ns Aq Ar element
2726 variable is assumed to exist whose contents will later be passed to a
2731 static_arp_pairs="gw"
2732 static_arp_gw="192.168.1.1 00:01:02:03:04:05"
2734 .It Va static_ndp_pairs
2736 Set to the list of static NDP pairs that are to be added at system
2738 For each whitespace separated
2741 .Va static_ndp_ Ns Aq Ar element
2742 variable is assumed to exist whose contents will later be passed to a
2747 static_ndp_pairs="gw"
2748 static_ndp_gw="2001:db8:3::1 00:01:02:03:04:05"
2750 .It Va static_routes
2752 Set to the list of static routes that are to be added at system
2756 then for each whitespace separated
2759 .Va route_ Ns Aq Ar element
2760 variable is assumed to exist
2761 whose contents will later be passed to a
2766 static_routes="ext mcast:gif0 gif0local:gif0"
2767 route_ext="-net 10.0.0.0/24 -gateway 192.168.0.1"
2768 route_mcast="-net 224.0.0.0/4 -iface gif0"
2769 route_gif0local="-host 169.254.1.1 -iface lo0"
2776 the route is specific to the interface
2778 .It Va ipv6_static_routes
2780 The IPv6 equivalent of
2784 then for each whitespace separated
2787 .Va ipv6_route_ Ns Aq Ar element
2788 variable is assumed to exist
2789 whose contents will later be passed to a
2790 .Dq Nm route Cm add Fl inet6
2792 .It Va natm_static_routes
2798 If not empty then for each whitespace separated
2801 .Va route_ Ns Aq Ar element
2802 variable is assumed to exist whose contents will later be passed to a
2803 .Dq Nm atmconfig Cm natm Cm add
2805 .It Va gateway_enable
2809 configure host to act as an IP router, e.g.\& to forward packets
2811 .It Va ipv6_gateway_enable
2813 The IPv6 equivalent of
2814 .Va gateway_enable .
2815 .It Va routed_enable
2819 run a routing daemon of some sort, based on the
2824 .It Va route6d_enable
2826 The IPv6 equivalent of
2830 run a routing daemon of some sort, based on the
2835 .It Va routed_program
2841 this is the name of the routing daemon to use.
2842 .It Va route6d_program
2844 The IPv6 equivalent of
2845 .Va routed_program .
2852 these are the flags to pass to the routing daemon.
2853 .It Va route6d_flags
2855 The IPv6 equivalent of
2857 .It Va mrouted_enable
2861 run the multicast routing daemon,
2863 .It Va mroute6d_enable
2865 The IPv6 equivalent of
2866 .Va mrouted_enable .
2869 run the IPv6 multicast routing daemon.
2871 Note that multicast routing daemons are no longer included in the
2873 base system, however, both
2877 may be installed from the
2880 .It Va mrouted_flags
2886 these are the flags to pass to the
2889 .It Va mroute6d_flags
2891 The IPv6 equivalent of
2897 these are the flags passed to the IPv6 multicast routing daemon.
2898 .It Va mroute6d_program
2904 this is the path to the IPv6 multicast routing daemon.
2905 .It Va rtadvd_enable
2911 daemon at boot time.
2914 utility sends ICMPv6 Router Advertisement messages to
2915 the interfaces specified in
2916 .Va rtadvd_interfaces .
2917 This should only be enabled with great care.
2918 You may want to fine-tune
2920 .It Va rtadvd_interfaces
2926 this is the list of interfaces to use.
2927 .It Va ipxgateway_enable
2931 enable the routing of IPX traffic.
2932 .It Va ipxrouted_enable
2938 daemon at system boot time.
2939 .It Va ipxrouted_flags
2942 .Va ipxrouted_enable
2945 these are the flags to pass to the
2952 enable global proxy ARP.
2953 .It Va forward_sourceroute
2961 source-routed packets are forwarded.
2962 .It Va accept_sourceroute
2966 the system will accept source-routed packets directed at it.
2973 daemon at system boot time.
2980 these are the flags to pass to the
2983 .It Va bootparamd_enable
2989 daemon at system boot time.
2990 .It Va bootparamd_flags
2993 .Va bootparamd_enable
2996 these are the flags to pass to the
2999 .It Va stf_interface_ipv4addr
3003 this is the local IPv4 address for 6to4 (IPv6 over IPv4 tunneling
3005 Specify this entry to enable the 6to4 interface.
3006 .It Va stf_interface_ipv4plen
3008 Prefix length for 6to4 IPv4 addresses, to limit peer address range.
3009 An effective value is 0-31.
3010 .It Va stf_interface_ipv6_ifid
3012 IPv6 interface ID for
3016 .It Va stf_interface_ipv6_slaid
3018 IPv6 Site Level Aggregator for
3020 .It Va ipv6_faith_prefix
3024 this is the faith prefix to enable a FAITH IPv6-to-IPv4 TCP
3029 .It Va ipv6_ipv4mapping
3033 this enables IPv4 mapped IPv6 address communication (like
3034 .Li ::ffff:a.b.c.d ) .
3035 .It Va rtsold_enable
3041 daemon to send ICMPv6 Router Solicitation messages.
3048 these are the flags to pass to
3052 For interfaces configured with the
3053 .Dq Li inet6 accept_rtadv
3054 keyword, these are the flags to pass to
3059 is mutually exclusive to
3067 to enable the configuration of ATM interfaces at system boot time.
3068 For all of the ATM variables described below, please refer to the
3070 manual page for further details on the available command parameters.
3071 Also refer to the files in
3072 .Pa /usr/share/examples/atm
3073 for more detailed configuration information.
3076 This is a list of physical ATM interface drivers to load.
3081 .It Va atm_netif_ Ns Aq Ar intf
3083 For the ATM physical interface
3085 this variable defines the name prefix and count for the ATM network
3086 interfaces to be created.
3087 The value will be passed as the parameters of an
3088 .Dq Nm atm Cm "set netif" Ar intf
3090 .It Va atm_sigmgr_ Ns Aq Ar intf
3092 For the ATM physical interface
3094 this variable defines the ATM signalling manager to be used.
3095 The value will be passed as the parameters of an
3096 .Dq Nm atm Cm attach Ar intf
3098 .It Va atm_prefix_ Ns Aq Ar intf
3100 For the ATM physical interface
3102 this variable defines the NSAP prefix for interfaces using a UNI signalling
3106 the prefix will automatically be set via the
3109 Otherwise, the value will be passed as the parameters of an
3110 .Dq Nm atm Cm "set prefix" Ar intf
3112 .It Va atm_macaddr_ Ns Aq Ar intf
3114 For the ATM physical interface
3116 this variable defines the MAC address for interfaces using a UNI signalling
3120 the hardware MAC address contained in the ATM interface card will be used.
3121 Otherwise, the value will be passed as the parameters of an
3122 .Dq Nm atm Cm "set mac" Ar intf
3124 .It Va atm_arpserver_ Ns Aq Ar netif
3126 For the ATM network interface
3128 this variable defines the ATM address for a host which is to provide ATMARP
3130 This variable is only applicable to interfaces using a UNI signalling
3134 this host will become an ATMARP server.
3135 The value will be passed as the parameters of an
3136 .Dq Nm atm Cm "set arpserver" Ar netif
3138 .It Va atm_scsparp_ Ns Aq Ar netif
3142 SCSP/ATMARP service for the network interface
3144 will be initiated using the
3149 This variable is only applicable if
3150 .Va atm_arpserver_ Ns Aq Ar netif
3155 Set to the list of ATM PVCs to be added at system
3157 For each whitespace separated
3160 .Va atm_pvc_ Ns Aq Ar element
3161 variable is assumed to exist.
3162 The value of each of these variables
3163 will be passed as the parameters of an
3164 .Dq Nm atm Cm "add pvc"
3168 Set to the list of permanent ATM ARP entries to be added
3169 at system boot time.
3170 For each whitespace separated
3173 .Va atm_arp_ Ns Aq Ar element
3174 variable is assumed to exist.
3175 The value of each of these variables
3176 will be passed as the parameters of an
3177 .Dq Nm atm Cm "add arp"
3179 .It Va natm_interfaces
3183 interfaces that will also be used for HARP through
3185 If this list is not empty all interfaces in the list will be brought up
3191 For this to work the interface drivers must be either compiled into the
3192 kernel or must reside on the root partition.
3195 The keyboard bell sound.
3202 if the default behavior is desired.
3203 For details, refer to the
3208 If set to a non-null string, the virtual console's keyboard input is
3214 no keymap is installed, otherwise the value is used to install
3215 the keymap file found in
3216 .Pa /usr/share/syscons/keymaps/ Ns Ao Ar value Ac Ns Pa .kbd
3219 .Pa /usr/share/vt/keymaps/ Ns Ao Ar value Ac Ns Pa .kbd
3224 The keyboard repeat speed.
3231 if the default behavior is desired.
3236 attempt to program the function keys with the value.
3238 be a single string of the form:
3239 .Dq Ar funkey_number new_value Op Ar funkey_number new_value ... .
3242 Can be set to the value of
3245 .Dq Li destructive ,
3248 to set the cursor behavior explicitly or choose the default behavior.
3253 no screen map is installed, otherwise the value is used to install
3254 the screen map file in
3255 .Pa /usr/share/syscons/scrnmaps/ Ns Aq Ar value .
3256 This parameter is ignored when using
3258 as the console driver.
3263 the default 8x16 font value is used for screen size requests, otherwise
3265 .Pa /usr/share/syscons/fonts/ Ns Aq Ar value
3267 .Pa /usr/share/vt/fonts/ Ns Aq Ar value
3268 is used (depending on the console driver being used).
3273 the default 8x14 font value is used for screen size requests, otherwise
3275 .Pa /usr/share/syscons/fonts/ Ns Aq Ar value
3277 .Pa /usr/share/vt/fonts/ Ns Aq Ar value
3278 is used (depending on the console driver being used).
3283 the default 8x8 font value is used for screen size requests, otherwise
3285 .Pa /usr/share/syscons/fonts/ Ns Aq Ar value
3287 .Pa /usr/share/vt/fonts/ Ns Aq Ar value
3288 is used (depending on the console driver being used).
3293 the default screen blanking interval is used, otherwise it is set
3301 this is the actual screen saver to use
3302 .Li ( blank , snake , daemon ,
3304 .It Va moused_nondefault_enable
3308 the mouse device specified on
3309 the command line is not automatically treated as enabled by the
3310 .Pa /etc/rc.d/moused
3312 Having this variable set to
3318 to be enabled as soon as it is plugged in.
3319 .It Va moused_enable
3325 daemon is started for doing cut/paste selection on the console.
3328 This is the protocol type of the mouse connected to this host.
3329 This variable must be set if
3336 is able to detect the appropriate mouse type automatically in many cases.
3337 Set this variable to
3339 to let the daemon detect it, or
3340 select one from the following list if the automatic detection fails.
3342 If the mouse is attached to the PS/2 mouse port, choose
3346 regardless of the brand and model of the mouse.
3348 mouse is attached to the bus mouse port, choose
3352 All other protocols are for serial mice and will not work with
3353 the PS/2 and bus mice.
3354 If this is a USB mouse,
3356 is the only protocol type which will work.
3358 .Bl -tag -width ".Li x10mouseremote" -compact
3360 Microsoft mouse (serial)
3362 Microsoft IntelliMouse (serial)
3364 Mouse systems Corp.\& mouse (serial)
3366 MM Series mouse (serial)
3368 Logitech mouse (serial)
3372 Logitech MouseMan and TrackMan (serial)
3374 ALPS GlidePoint (serial)
3375 .It Li thinkingmouse
3376 Kensington ThinkingMouse (serial)
3380 MM HitTablet (serial)
3381 .It Li x10mouseremote
3382 X10 MouseRemote (serial)
3384 Interlink VersaPad (serial)
3387 Even if the mouse is not in the above list, it may be compatible
3388 with one in the list.
3389 Refer to the manual page for
3391 for compatibility information.
3393 It should also be noted that while this is enabled, any
3394 other client of the mouse (such as an X server) should access
3395 the mouse through the virtual mouse device,
3397 and configure it as a
3399 type mouse, since all
3400 mouse data is converted to this single canonical format when
3403 If the client program does not support the
3409 It is the second preferred type.
3416 this is the actual port the mouse is on.
3419 for a COM1 serial mouse,
3423 for a bus mouse, for example.
3428 is set, its value is used as an additional set of flags to pass to the
3431 .It Va "moused_" Ns Ar XXX Ns Va "_flags"
3433 .Va moused_nondefault_enable
3436 daemon is started for a non-default port, the
3437 .Va "moused_" Ns Ar XXX Ns Va "_flags"
3438 set of options has precedence over and replaces the default
3442 is the name of the non-default port, i.e.,\&
3445 .Va "moused_" Ns Ar XXX Ns Va "_flags"
3446 it is possible to set up a different set of default flags for each
3449 For example, you can use
3453 to make your laptop's touchpad more comfortable to use,
3454 but an empty set of options for
3455 .Va moused_ums0_flags
3458 mouse has three or more buttons.
3459 .It Va mousechar_start
3463 the default mouse cursor character range
3464 .Li 0xd0 Ns - Ns Li 0xd3
3466 otherwise the range start is set
3471 Use if the default range is occupied in the language code table.
3472 .It Va allscreens_flags
3476 is run with these options for each of the virtual terminals
3480 will enable the mouse pointer on all virtual terminals
3485 .It Va allscreens_kbdflags
3489 is run with these options for each of the virtual terminals
3497 scrollback (history) buffer to 200 lines.
3504 daemon at system boot time.
3510 .Pa /usr/sbin/cron ) .
3517 these are the flags to pass to
3523 enable the special handling of transitions to and from the
3524 Daylight Saving Time in
3526 (equivalent to using the flag
3533 .Pa /usr/sbin/lpd ) .
3540 daemon at system boot time.
3547 these are the flags to pass to the
3550 .It Va chkprintcap_enable
3556 command before starting the
3559 .It Va chkprintcap_flags
3564 .Va chkprintcap_enable
3567 these are the flags to pass to the
3572 which causes missing directories to be created.
3573 .It Va mta_start_script
3575 This variable specifies the full path to the script to run to start
3576 a mail transfer agent.
3578 .Pa /etc/rc.sendmail .
3582 .Pa /etc/rc.sendmail
3583 uses are documented in the
3588 Indicates the device (usually a swap partition) to which a crash dump
3589 should be written in the event of a system crash.
3590 If the value of this variable is
3592 the first suitable swap device listed in
3594 will be used as dump device.
3595 Otherwise, the value of this variable is passed as the argument to
3597 To disable crash dumps, set this variable to
3601 When the system reboots after a crash and a crash dump is found on the
3602 device specified by the
3606 will save that crash dump and a copy of the kernel to the directory
3610 The default value is
3619 .It Va savecore_flags
3621 If crash dumps are enabled, these are the flags to pass to the
3628 to turn on user and group disk quotas on system startup via the
3630 command for all file systems marked as having quotas enabled in
3632 The kernel must be built with
3634 for disk quotas to function.
3639 to enable user and group disk quota checking via the
3642 .It Va quotacheck_flags
3652 these are the flags to pass to the
3657 which checks quotas for all file systems with quotas enabled in
3659 .It Va quotaon_flags
3665 these are the flags to pass to the
3670 which enables quotas for all file systems with quotas enabled in
3672 .It Va quotaoff_flags
3678 these are the flags to pass to the
3680 utility when shutting down the quota system.
3683 which disables quotas for all file systems with quotas enabled in
3685 .It Va accounting_enable
3689 to enable system accounting through the
3696 to enable iBCS2 (SCO) binary emulation at system initial boot
3698 .It Va ibcs2_loaders
3706 this specifies a list of additional iBCS2 loaders to enable.
3707 .It Va firstboot_sentinel
3709 This variable specifies the full path to a
3712 If a file exists with this path,
3716 keyword will be run on startup and the sentinel file will be deleted
3717 after the boot process completes.
3718 The sentinel file must be located on a writable file system which is
3719 mounted no later than
3720 .Va early_late_divider
3721 to function properly.
3728 to enable Linux/ELF binary emulation at system initial
3734 enable SysVR4 emulation at boot time.
3735 .It Va sysvipc_enable
3739 load System V IPC primitives at boot time.
3740 .It Va clear_tmp_enable
3751 to disable removing of X11 lock files,
3752 and the removal and (secure) recreation
3753 of the various socket directories for X11
3755 .It Va ldconfig_paths
3757 Set to the list of shared library paths to use with
3761 will always be added first, so it need not appear in this list.
3762 .It Va ldconfig32_paths
3764 Set to the list of 32-bit compatibility shared library paths to
3767 .It Va ldconfig_paths_aout
3769 Set to the list of shared library paths to use with
3774 .It Va ldconfig_insecure
3778 utility normally refuses to use directories
3779 which are writable by anyone except root.
3780 Set this variable to
3782 to disable that security check during system startup.
3783 .It Va ldconfig_local_dirs
3785 Set to the list of local
3788 The names of all files in the directories listed will be
3789 passed as arguments to
3791 .It Va ldconfig_local32_dirs
3793 Set to the list of local 32-bit compatibility
3796 The names of all files in the directories listed will be
3797 passed as arguments to
3798 .Dq Nm ldconfig Fl 32 .
3799 .It Va kern_securelevel_enable
3803 to set the kernel security level at system startup.
3804 .It Va kern_securelevel
3806 The kernel security level to set at startup.
3807 The allowed range of
3809 ranges from \-1 (the compile time default) to 3 (the
3813 for the list of possible security levels and their effect
3814 on system operation.
3817 Path to the SSH server program
3818 .Pa ( /usr/sbin/sshd
3826 at system boot time.
3833 these are the flags to pass to the
3838 Path to the FTP server program
3839 .Pa ( /usr/libexec/ftpd
3847 as a stand-alone daemon at system boot time.
3854 these are the additional flags to pass to the
3857 .It Va watchdogd_enable
3863 daemon at boot time.
3864 This requires that the kernel have been compiled with a
3867 .It Va watchdogd_flags
3870 .Va watchdogd_enable
3873 these are the flags passed to the
3876 .It Va devfs_rulesets
3878 List of files containing sets of rules for
3880 .It Va devfs_system_ruleset
3882 Rule name(s) to apply to the system
3885 .It Va devfs_set_rulesets
3887 Pairs of already-mounted
3889 directories and rulesets that should be applied to them.
3890 For example: /mount/dev=ruleset_name
3891 .It Va devfs_load_rulesets
3893 If set, always load the default rulesets listed in
3894 .Va devfs_rulesets .
3895 .It Va performance_cx_lowest
3897 CPU idle state to use while on AC power.
3902 should use the lowest power state available while
3904 indicates that the lowest latency state (less power savings) should be used.
3905 .It Va performance_cpu_freq
3907 CPU clock frequency to use while on AC power.
3912 should use the lowest frequency available while
3914 indicates that the highest frequency (less power savings) should be used.
3915 .It Va economy_cx_lowest
3917 CPU idle state to use when off AC power.
3922 should use the lowest power state available while
3924 indicates that the lowest latency state (less power savings) should be used.
3925 .It Va economy_cpu_freq
3927 CPU clock frequency to use when off AC power.
3932 should use the lowest frequency available while
3934 indicates that the highest frequency (less power savings) should be used.
3939 any configured jails will not be started.
3942 The configuration filename used by
3945 The default value is
3946 .Pa /etc/jail.conf .
3947 .It Va jail_parallel_start
3951 all configured jails will be started in the background (in parallel).
3955 When set, use as default value for
3956 .Va jail_ Ns Ao Ar jname Ac Ns Va _flags
3961 A space-delimited list of jail names.
3962 When left empty, all of the
3964 instances defined in the configuration file are started.
3965 The names specified in this list control the jail startup order.
3967 instances missing from
3969 must be started manually.
3970 .It Va jail_reverse_stop
3974 all configured jails in
3976 are stopped in reverse order.
3977 .It Va jail_* variables
3978 Note that older releases supported per-jail configuration via
3982 hostname of a jail named
3984 was able to be set by
3985 .Li jail_vjail_hostname .
3986 These per-jail configuration variables are now obsolete in favor of
3989 For backward compatibility,
3990 when per-jail configuration variables are defined,
3992 configuration files are created as
3993 .Pa /var/run/jail. Ns Ao Ar jname Ac Ns Pa .conf
3996 The following per-jail parameters are handled by
3998 script out of their corresponding
4001 In addition to them, parameters in
4002 .Va jail_ Ns Ao Ar jname Ac Ns Va _parameters
4003 will be added to the configuration file.
4004 They must be a semi-colon
4012 .Bl -tag -width "host.hostname" -offset indent
4015 .Va jail_ Ns Ao Ar jname Ac Ns Va _rootdir
4016 .It Li host.hostname
4018 .Va jail_ Ns Ao Ar jname Ac Ns Va _hostname
4019 .It Li exec.consolelog
4021 .Va jail_ Ns Ao Ar jname Ac Ns Va _consolelog .
4022 The default value is
4023 .Pa /var/log/jail_ Ao Ar jname Ac Pa _console.log .
4026 .Va jail_ Ns Ao Ar jname Ac Ns Va _interface .
4027 .It Li vnet.interface
4029 .Va jail_ Ns Ao Ar jname Ac Ns Va _vnet_interface .
4032 parameter will be enabled and cannot be specified with
4033 .Va jail_ Ns Ao Ar jname Ac Ns Va _interface ,
4034 .Va jail_ Ns Ao Ar jname Ac Ns Va _ip
4036 .Va jail_ Ns Ao Ar jname Ac Ns Va _ip_multi Ns Aq Ar n
4040 .Va jail_ Ns Ao Ar jname Ac Ns Va _fstab
4043 .Va jail_ Ns Ao Ar jname Ac Ns Va _procfs_enable .
4046 .Va jail_ Ns Ao Ar jname Ac Ns Va _fib
4049 .Va jail_ Ns Ao Ar jname Ac Ns Va _exec_start .
4050 The parameter name was
4052 in some older releases.
4053 .It Li exec.prestart
4055 .Va jail_ Ns Ao Ar jname Ac Ns Va _exec_prestart
4056 .It Li exec.poststart
4058 .Va jail_ Ns Ao Ar jname Ac Ns Va _exec_poststart
4061 .Va jail_ Ns Ao Ar jname Ac Ns Va _exec_stop
4064 .Va jail_ Ns Ao Ar jname Ac Ns Va _exec_prestop
4065 .It Li exec.poststop
4067 .Va jail_ Ns Ao Ar jname Ac Ns Va _exec_poststop
4070 .Va jail_ Ns Ao Ar jname Ac Ns Va _ip
4072 .Va jail_ Ns Ao Ar jname Ac Ns Va _ip_multi Ns Aq Ar n
4073 contain IPv4 addresses
4076 .Va jail_ Ns Ao Ar jname Ac Ns Va _ip
4078 .Va jail_ Ns Ao Ar jname Ac Ns Va _ip_multi Ns Aq Ar n
4079 contain IPv6 addresses
4082 .Va jail_ Ns Ao Ar jname Ac Ns Va _mount_enable
4085 .Va jail_ Ns Ao Ar jname Ac Ns Va _devfs_enable
4086 .It Li devfs_ruleset
4088 .Va jail_ Ns Ao Ar jname Ac Ns Va _devfs_ruleset .
4089 This must be an integer,
4091 .It Li mount.fdescfs
4093 .Va jail_ Ns Ao Ar jname Ac Ns Va _fdescfs_enable
4094 .It Li allow.set_hostname
4096 .Va jail_ Ns Ao Ar jname Ac Ns Va _set_hostname_allow
4097 .It Li allow.rawsocket
4099 .Va jail_ Ns Ao Ar jname Ac Ns Va _socket_unixiproute_only
4100 .It Li allow.sysvipc
4102 .Va jail_ Ns Ao Ar jname Ac Ns Va _sysvipc_allow
4104 .\" -----------------------------------------------------
4105 .It Va harvest_interrupt
4109 to use hardware interrupts as an entropy source.
4112 for more information.
4113 .It Va harvest_ethernet
4117 to use LAN traffic as an entropy source.
4120 for more information.
4121 .It Va harvest_p_to_p
4125 to use serial line traffic as an entropy source.
4128 for more information.
4133 to disable caching entropy via
4135 Otherwise set to the directory used to store entropy files in.
4140 to disable caching entropy through reboots.
4141 Otherwise set to the filename used to store cached entropy through
4143 This file should be located on the root file system to seed the
4145 device as early as possible in the boot process.
4146 .It Va entropy_save_sz
4148 Size of the entropy cache files saved by
4151 .It Va entropy_save_num
4153 Number of entropy cache files to save by
4167 Configuration file for
4176 .Pa /var/run/dmesg.boot
4178 .It Va rcshutdown_timeout
4180 If set, start a watchdog timer in the background which will terminate
4184 has not completed within the specified time (in seconds).
4185 Notice that in addition to this soft timeout,
4187 also applies a hard timeout for the execution of
4189 This is configured via
4192 .Va kern.init_shutdown_timeout
4193 and defaults to 120 seconds.
4194 Setting the value of
4195 .Va rcshutdown_timeout
4196 to more than 120 seconds will have no effect until the
4199 .Va kern.init_shutdown_timeout
4201 .It Va virecover_enable
4205 to prevent the system from trying to
4206 recover pre-maturely terminated
4209 .It Va ugidfw_enable
4214 .Xr mac_bsdextended 4
4215 module upon system initialization and load a default
4217 .It Va bsdextended_script
4220 .Xr mac_bsdextended 4
4221 ruleset file to load.
4222 The default value of this variable is
4223 .Pa /etc/rc.bsdextended .
4224 .It Va newsyslog_enable
4231 .It Va newsyslog_flags
4234 .Va newsyslog_enable
4237 these are the flags to pass to the
4242 which causes log files flagged with a
4245 .It Va mdconfig_md Ns Aq Ar X
4255 must be specified and either a
4257 for malloc or swap backed
4265 .Va mdconfig_md Ns Aq Ar X
4266 variables are evaluated until one variable is unset or null.
4267 .It Va mdconfig_md Ns Ao Ar X Ac Ns Va _newfs
4269 Optional arguments passed to
4275 .It Va mdconfig_md Ns Ao Ar X Ac Ns Va _owner
4277 An ownership specification passed to
4286 device and the mount point will be changed.
4287 .It Va mdconfig_md Ns Ao Ar X Ac Ns Va _perms
4289 A mode string passed to
4298 device and the mount point will be changed.
4299 .It Va mdconfig_md Ns Ao Ar X Ac Ns Va _files
4301 Files to be copied to the mount point of the
4305 after it has been mounted.
4306 .It Va mdconfig_md Ns Ao Ar X Ac Ns Va _cmd
4308 Command to execute after the specified
4313 Note that the command is passed to
4319 variables can be used to reference respectively the
4321 device and the mount point.
4326 one could set the following:
4328 mdconfig_md0_cmd="tar xfzC /var/file.tgz \e${_mp}"
4330 .It Va autobridge_interfaces
4332 Set to the list of bridge interfaces that will have newly arriving interfaces
4333 checked against to be automatically added.
4336 then for each whitespace separated
4339 .Va autobridge_ Ns Aq Ar element
4340 variable is assumed to exist which has a whitespace separated list of interface
4341 names to match, these names can use wildcards.
4344 autobridge_interfaces="bridge0"
4345 autobridge_bridge0="tap* dc0 vlan[345]"
4351 enable support for sound mixer.
4352 .It Va hcsecd_enable
4356 enable Bluetooth security daemon.
4357 .It Va hcsecd_config
4359 Configuration file for
4362 .Pa /etc/bluetooth/hcsecd.conf .
4367 enable Bluetooth Service Discovery Protocol daemon.
4375 .It Va sdpd_groupname
4379 group to run as after it initializes.
4382 .It Va sdpd_username
4386 user to run as after it initializes.
4389 .It Va bthidd_enable
4393 enable Bluetooth Human Interface Device daemon.
4394 .It Va bthidd_config
4396 Configuration file for
4399 .Pa /etc/bluetooth/bthidd.conf .
4402 Path to a file, where
4404 will store information about known HID devices.
4406 .Pa /var/db/bthidd.hids .
4407 .It Va rfcomm_pppd_server_enable
4411 enable Bluetooth RFCOMM PPP wrapper daemon.
4412 .It Va rfcomm_pppd_server_profile
4414 The name of the profile to use from
4415 .Pa /etc/ppp/ppp.conf .
4416 Multiple profiles can be specified here.
4417 Also used to specify per-profile overrides.
4418 When the profile name contains any of the characters
4420 they are translated to
4422 for the proposes of the override variable names.
4423 .It Va rfcomm_pppd_server_ Ns Ao Ar profile Ac Ns _bdaddr
4425 Overrides local address to listen on.
4431 The address can be specified as BD_ADDR or name.
4432 .It Va rfcomm_pppd_server_ Ns Ao Ar profile Ac Ns _channel
4434 Overrides local RFCOMM channel to listen on.
4437 will listen on RFCOMM channel 1.
4438 Must set properly if multiple profiles used in the same time.
4439 .It Va rfcomm_pppd_server_ Ns Ao Ar profile Ac Ns _register_sp
4443 if it should register Serial Port service on the specified RFCOMM channel.
4446 .It Va rfcomm_pppd_server_ Ns Ao Ar profile Ac Ns _register_dun
4450 if it should register Dial-Up Networking service on the specified
4454 .It Va ubthidhci_enable
4458 change the USB Bluetooth controller from HID mode to HCI mode.
4459 You also need to specify the location of USB Bluetooth controller with the
4460 .Va ubthidhci_busnum
4464 .It Va ubthidhci_busnum
4465 Bus number where the USB Bluetooth controller is located.
4468 on your system to find this information.
4469 .It Va ubthidhci_addr
4470 Bus address of the USB Bluetooth controller.
4473 on your system to find this information.
4474 .It Va netwait_enable
4478 delays the start of network-reliant services until
4480 is up and ICMP packets to a destination defined in
4483 Link state is examined first, followed by
4485 an IP address to verify network usability.
4486 If no destination can be reached or timeouts are exceeded,
4487 network services are started anyway with no guarantee that
4488 the network is usable.
4489 Use of this variable requires both
4497 This variable contains a space-delimited list of IP addresses to
4499 DNS hostnames should not be used as resolution is not guaranteed
4500 to be functional at this point.
4501 If multiple IP addresses are specified,
4502 each will be tried until one is successful or the list is exhausted.
4503 .It Va netwait_timeout
4505 Indicates the total number of seconds to perform a
4507 against each IP address in
4509 at a rate of one ping per second.
4510 If any of the pings are successful,
4511 full network connectivity is considered reliable.
4516 Defines the name of the network interface on which watch for link.
4518 is used to monitor the interface, looking for
4519 .Dq Li status: no carrier .
4520 Once gone, the link is considered up.
4523 interface if desired.
4524 .It Va netwait_if_timeout
4526 Defines the total number of seconds to wait for link to become usable,
4527 polled at a 1-second interval.
4535 rules from the defined ruleset.
4536 The kernel must be built with
4539 .Cd "options RCTL" .
4545 This variables contains the
4549 .It Va autofs_enable
4559 daemons at boot time.
4560 .It Va automount_flags
4566 these are the flags to pass to the
4569 By default no flags are passed.
4570 .It Va automountd_flags
4576 these are the flags to pass to the
4579 By default no flags are passed.
4580 .It Va autounmountd_flags
4586 these are the flags to pass to the
4589 By default no flags are passed.
4596 daemon at boot time.
4597 .It Va iscsid_enable
4603 daemon at boot time.
4604 .It Va iscsictl_enable
4610 utility at boot time.
4611 .It Va iscsictl_flags
4617 these are the flags to pass to the
4622 which configures sessions based on the
4627 .Bl -tag -width ".Pa /etc/defaults/rc.conf" -compact
4628 .It Pa /etc/defaults/rc.conf
4630 .It Pa /etc/rc.conf.local
4660 .Xr newsyslog.conf 5 ,
4731 .An Jordan K. Hubbard .
projects / FreeBSD / stable / 10.git / blob