summaryrefslogtreecommitdiffstats
path: root/etc/rc.network
Commit message (Collapse)AuthorAgeFilesLines
...
* This brings support for IP Filter into rc.network and rc.conf withdarrenr2000-10-061-0/+31
| | | | | | | | | | | | the appropriate documentation added to rc.conf(5). If all goes well with this over the next few weeks, the PR will be closed with the pullup of patches back to 4-STABLE. PR: 20202 Submitted by: Gerhard Sittig <Gerhard.Sittig@gmx.net> Reviewed by: Darren Reed <darrenr@freebsd.org> Approved by: Darren Reed <darrenr@freebsd.org> Obtained from: Gerhard Sittig <Gerhard.Sittig@gmx.net>
* Use su -m instead of just su to avoid reading the users login profilebrian2000-09-281-1/+1
|
* Add nsswitch support. By creating an /etc/nsswitch.conf file, you cannectar2000-09-061-0/+29
| | | | | | | | | | | | | | | | | | | | | | | | | | configure FreeBSD so that various databases such as passwd and group can be looked up using flat files, NIS, or Hesiod. = Hesiod has been added to libc (see hesiod(3)). = A library routine for parsing nsswitch.conf and invoking callback functions as specified has been added to libc (see nsdispatch(3)). = The following C library functions have been modified to use nsdispatch: . getgrent, getgrnam, getgrgid . getpwent, getpwnam, getpwuid . getusershell . getaddrinfo . gethostbyname, gethostbyname2, gethostbyaddr . getnetbyname, getnetbyaddr . getipnodebyname, getipnodebyaddr, getnodebyname, getnodebyaddr = host.conf has been removed from src/etc. rc.network has been modified to warn that host.conf is no longer used at boot time. In addition, if there is a host.conf but no nsswitch.conf, the latter is created at boot time from the former. Obtained from: NetBSD
* Fix a whitespace bogon.jhb2000-08-161-1/+1
|
* Allow a ppp_user specification to run ppp at startupbrian2000-08-101-8/+9
| | | | PR: 20258
* Add to, don't overwrite, user-settable mountd_flags.nbm2000-07-141-1/+1
| | | | | PR: conf/15745 Submitted by: Vivek Khera <khera@kciLink.com>
* Add ip_portrange_first and ip_portrange_last rc.conf/rc.networkdillon2000-06-221-0/+19
| | | | | | | options. This allows you to set the standard dynamic port assignment range prior to any network daemons (like named) starting up, necessary if you are also using a firewall to restrict lower ports. will be MFC'd in a few days
* Add ipsec_enable and ipsec_file options to run IPSEC's setkey programdillon2000-05-161-0/+11
| | | | with the specified configuration file at the appropriate time.
* Remove extraneous ";;" in previous commitkris2000-05-151-1/+0
| | | | Submitted by: jedgar
* Create a DSA host key if one does not already exist, and teach sshd_configkris2000-05-151-1/+6
| | | | about it.
* Add firewall_logging knob to enable/disablle events logging, disabledache2000-05-061-0/+10
| | | | | by default. Needed mainly for ipfw kernel module to enable logging disabled there.
* Add a sysctl to specify the amount of UDP receive space NFS shoulddillon2000-03-271-0/+5
| | | | | | | | | | | reserve, in maximal NFS packets. Originally only 2 packets worth of space was reserved. The default is now 4, which appears to greatly improve performance for slow to mid-speed machines on gigabit networks. Add documentation and correct some prior documentation. Problem Researched by: Andrew Gallatin <gallatin@cs.duke.edu> Approved by: jkh
* cosmetic fix - add a space.jkh2000-02-291-1/+1
|
* Get the order of things right; the keys need to be generatedmarkm2000-02-281-4/+0
| | | | | early to allow entropy to replenish. sshd must start late to catch the full effects of ldconfig.
* Generate new sshd host key when necessary. I'm tired ofjkh2000-02-281-1/+7
| | | | waiting for someone to commit this. :)
* Run sshd at boot time if the sysadmin wants it. Also installmarkm2000-02-241-0/+7
| | | | ssh[d] config files in the right place.
* Approved by: jkhhm2000-02-061-10/+10
| | | | | | | | | | | Reviewed by: joerg The isdnd is able to listen on a socket for isdnmonitor to connect to it to remotely control it (similar to ppp and pppctl). When this is enabled in the isdnd config file, it will fail currently because isdnd is started before the network interfaces are configured. It is necessary to move the isdnd start after the ifconfig of the network interfaces, then this problem will not occur.
* This is another in Martin Blapp's N-series of mount-related cleanups :)green2000-01-151-0/+7
| | | | | | | | | | | | | Changes are: - rpc.umntall is called at the right places now in /etc/rc* - rpc.umntall timeout has been lowered from two days (too high) to one - verbose messages in rpc.umntall have been clarified - kill double entries in /var/db/mounttab when rpc.umntall is invoked - ${early_nfs_mounts} has been removed from /etc/rc - patched mount(8) -p to print different pass/dump values for ufs filesystems. (last patch recieved from dan <bugg@bugg.strangled.net>) Submitted by: Martin Blapp <mbr@imp.ch>, dan <bugg@bugg.strangled.net>
* xntpd -> ntpd.roberto1999-12-171-1/+1
| | | | Submitted by: ru
* Suport multiple ``ifconfig_*?="DHCP"'' configurations.obrien1999-12-121-11/+19
| | | | | | | | | Currently we have a problem in that `dhclient' bails when configuring the second interface as port 68 is already in use (by the `dhclient' started for the first interface). PR: 14810 Submitted by: n_hibma
* Oops, typobrian1999-11-231-1/+1
|
* Add pppoed startup optionsbrian1999-11-231-0/+10
|
* Add network pass4 - after all local (/usr/local/etc/rc.d f.e.)ache1999-11-171-10/+16
| | | | | | daemons started. Move log_in_vain option there. It is needed to avoid lot of connections to port 80 logged on production WWW server prior Apache started from /usr/local/etc/rc.d
* Add single_mountd_enable hook to run mountd but not NFS serverache1999-11-141-0/+17
| | | | Needed for machine with CFS but without real NFS
* Make the firewall file variable space-safe.green1999-09-191-2/+2
|
* Apply a consistent style to most of the etc scripts. Particularly, usesheldonh1999-09-131-377/+551
| | | | | | | | | case instead of test where appropriate, since case allows case is a sh builtin and (as a side-effect) allows case-insensitivity. Changes discussed on freebsd-hackers. Submitted by: Doug Barton <Doug@gorean.org>
* Add the net.inet.tcp.restrict_rst and net.inet.tcp.drop_synfin sysctldes1999-09-121-0/+10
| | | | | variables, conditional on the TCP_RESTRICT_RST and TCP_DROP_SYNFIN kernel options, respectively. See the comments in LINT for details.
* -background is also a legitimate ppp mode. Don't change it to -auto.peter1999-09-011-1/+2
|
* $Id$ -> $FreeBSD$peter1999-08-271-1/+1
|
* Catch an extra X on DHCP.jkh1999-08-271-2/+2
| | | | Spotted by the eagle eyes of: Pierre DAVID <Pierre.David@prism.uvsq.fr>
* Style clean-up:sheldonh1999-08-251-60/+60
| | | | | | | | | | | | | | | | * All variables are now embraced: ${foo} * All comparisons against some value now take the form: [ "${foo}" ? "value" ] where ? is a comparison operator * All empty string tests now take the form: [ -z "${foo}" ] * All non-empty string tests now take the form: [ -n "${foo}" ] Submitted by: jkh
* ppp_alias -> ppp_natbrian1999-08-221-3/+3
| | | | Submitted by: Josef L. Karthauser <joe@FreeBSD.org.uk>
* Quieten ppp at startup.brian1999-08-191-2/+2
|
* Add net.inet.icmp.log_redirect and net.inet.icmp.drop_redirect, fordes1999-08-101-1/+11
| | | | | | | respectively logging and dropping ICMP REDIRECT packets. Note that there is no rate limiting on the log messages, so log_redirect should be used with caution (preferrably only for debugging purposes).
* Start ppp before natd, not afterwards.brian1999-07-261-18/+18
| | | | Submitted by: Josef L. Karthauser <joe@uk.FreeBSD.org>
* Add a default ppp.conf (mode 600).brian1999-07-261-1/+18
| | | | | | | | | | | | Originally submitted by: Wayne Self <wself@cdrom.com> Allow a ppp startup option in rc.conf. Adjust sysinstall so that it appends to the end of ppp.conf and uses the generated profile to start ppp in auto mode on boot. Submitted by: Josef L. Karthauser <joe@uk.FreeBSD.org>
* Allow DHCP to be used in an ifconfig variable instead of the usualjkh1999-07-161-2/+7
| | | | | | address information, producing the obvious effect (dhcp configuration). Submitted by: "Sean O'Connell" <sean@stat.Duke.EDU>
* Tweak previous commit. Only sense the configuration if network_interfacespeter1999-07-081-3/+5
| | | | | is set to "auto". Any network_interfaces settings will be treated as before.
* Do away with ${network_interfaces} in rc.conf. Just use `ifconfig -l` topeter1999-07-071-3/+12
| | | | | | | | | get a list of interfaces, and then automatically configure them if ${ifconfig_${ifn}} or /etc/start_if.${ifn} exists. This makes it a lot easier to deal with machines that constantly change their network configuration as you can leave ifconfig settings for all the possible cards - just the ones that are present will be configured.
* If amd_flags is empty, don't add -p as it makes amd abend.brian1999-06-081-2/+7
|
* Don't discard error output from sysctl(8).bde1999-06-051-14/+16
| | | | | | | | | | Do discard standard output from the sysctl for approxy_all, and echo what this sysctl is doing in the usual way. This fix is probably backwards. We should probably just use the standard sysctl output in all cases (it needs to have a newline filtered out). Echo what the sysctls for nfs_reserved_port_only and nfs_access_cache are doing.
* Add handle to control global TCP keepalives and turn them on asphk1999-06-051-1/+6
| | | | | | | | | | | | | | | | | default. Despite their name it doesn't keep TCP sessions alive, it kills them if the other end has gone AWOL. This happens a lot with clients which use NAT, dynamic IP assignment or which has a 2^32 * 10^-3 seconds upper bound on their uptime. There is no detectable increase in network trafic because of this: two minimal TCP packets every two hours for a live TCP connection. Many servers already enable keepalives themselves. The host requirements RFC is 10 years old, and doesn't know about the loosing clients of todays InterNet.
* Remove extraneous spacebrian1999-04-121-2/+2
| | | | PR: 11096
* Allow the user to specify a different firewall script than /etc/rc.firewall.des1999-04-101-3/+6
|
* Add two features:imp1999-03-281-1/+7
| | | | | | | | | | | | | log_in_vain: log_in_vain turns on logging for packets to ports for which there is no listener. rc.sysctl: A generic way to set sysctl values. It reads /etc/syslog.conf and sets values based on that. No /etc/syslog.conf has been checked in yet, and I've not added this to the makefile yet until I get more feedback. Reviewed by: -current, -hackers and bde especially
* Move natd from network_pass3 to network_pass1brian1999-03-241-16/+15
|
* Add ${lpd_program} and ${portmap_program} as variables in rc.conf, withjfitz1999-03-111-2/+2
| | | | | | suitable defaults pointing to the FreeBSD-shipped versions. This will allow for easier integration of third-party replacements for these daemons. Reviewed by: Several members of -committers
* Add some special hooks for sppp(4) interfaces. In addition to thejoerg1999-01-131-1/+15
| | | | | | | | | | | normal ifconfig stuff, one might need to pass down authentication parameters for them. This is closely tied to Hellmuth's impending rc patches for ISDN, but sppp can also be used separately (thus it doesn't go directly into the planned ISDN section of rc.conf). Reviewed by: hm
* Integrate the ISDN subsystem into the /etc/rc frameworkhm1999-01-131-1/+6
| | | | Reviewed by: Joerg Wunsch
* Allow rwhod to take flags.jkh1999-01-031-2/+2
| | | | | PR: 7705 Submitted by: Johan Karlsson <k@numeri.campus.luth.se>
OpenPOWER on IntegriCloud