1 | Files in /etc/sysconfig |
---|
2 | ======================= |
---|
3 | |
---|
4 | /etc/sysconfig/authconfig |
---|
5 | |
---|
6 | used by authconfig to store information about the system's user |
---|
7 | information and authentication setup; changes made to this file |
---|
8 | have no effect until the next time authconfig is run |
---|
9 | |
---|
10 | USEHESIOD=no |
---|
11 | Whether or not the hesiod naming service is in use. If not set, |
---|
12 | authconfig examines the passwd setting in /etc/nsswitch.conf. |
---|
13 | USELDAP=no |
---|
14 | Whether or not LDAP is used as a naming service. If not set, |
---|
15 | authconfig examines the passwd setting in /etc/nsswitch.conf. |
---|
16 | USENIS=no |
---|
17 | Whether or not NIS is in use. If not set, authconfig examines |
---|
18 | the passwd setting in /etc/nsswitch.conf. |
---|
19 | |
---|
20 | USEKERBEROS=no |
---|
21 | Whether or not Kerberos is in use. If not set, authconfig examines |
---|
22 | the settings in /etc/pam.d/system-auth. |
---|
23 | USELDAPAUTH=no |
---|
24 | Whether or not LDAP is being used for authentication. If not set, |
---|
25 | authconfig examines the settings in /etc/pam.d/system-auth. Note |
---|
26 | that this option is separate from USELDAP, and that neither implies |
---|
27 | the other. |
---|
28 | USEMD5=no |
---|
29 | Whether or not MD5-based hashing should be used when setting passwords. |
---|
30 | If not set, authconfig examines the settings in /etc/pam.d/system-auth. |
---|
31 | This option affects authentication using both local files and LDAP. |
---|
32 | USESHADOW=no |
---|
33 | Whether or not shadow passwords are in use. If not set, authconfig |
---|
34 | checks for the existence of /etc/shadow. |
---|
35 | USESMBAUTH=no |
---|
36 | Whether or not SMB authentication is in use. If not set, authconfig |
---|
37 | examines the settings in /etc/pam.d/system-auth. |
---|
38 | |
---|
39 | /etc/sysconfig/autofsck |
---|
40 | |
---|
41 | does not normally exist; if it does, it can influence a choice |
---|
42 | whether or not to fsck after a crash |
---|
43 | |
---|
44 | AUTOFSCK_DEF_CHECK=no |
---|
45 | If the user does not respond, choose whether or not to fsck |
---|
46 | AUTOFSCK_SINGLEUSER= |
---|
47 | If this is set, drop to single user mode before fsck. |
---|
48 | |
---|
49 | /etc/sysconfig/clock: |
---|
50 | |
---|
51 | deprecated values from earlier releases: |
---|
52 | |
---|
53 | CLOCKMODE=GMT indicates that the clock is set to UTC |
---|
54 | CLOCKMODE=ARC on alpha only indicates the ARC console's |
---|
55 | 42-year time offset is in effect |
---|
56 | |
---|
57 | currently correct values: |
---|
58 | |
---|
59 | UTC=true,yes |
---|
60 | Indicates that the hardware clock is set to UTC. |
---|
61 | UTC=no,false |
---|
62 | Indicates that the hardware clock is set to Local Time. |
---|
63 | |
---|
64 | Not having UTC set defaults to the last used (if recorded |
---|
65 | in the adjtime file), or to localtime, if not adjtime file |
---|
66 | exists. |
---|
67 | |
---|
68 | ARC=true on alpha only indicates the ARC console's |
---|
69 | 42-year time offset is in effect; otherwise the normal |
---|
70 | Unix epoch is assumed. |
---|
71 | |
---|
72 | SRM=true on alpha only indicates the SRM 1900 epoch is in |
---|
73 | effect; otherwise the normal Unix epoch is assumed. |
---|
74 | |
---|
75 | ZONE="filename" indicates the zonefile under /usr/share/zoneinfo |
---|
76 | that /etc/localtime is a copy of, for example: |
---|
77 | ZONE="US/Eastern" |
---|
78 | |
---|
79 | /etc/sysconfig/desktop: |
---|
80 | DESKTOP=GNOME|KDE |
---|
81 | This determines the default desktop for new users. |
---|
82 | DISPLAYMANAGER=GNOME|KDE|XDM |
---|
83 | This determines display manager started by /etc/X11/prefdm, |
---|
84 | independent of the desktop. |
---|
85 | |
---|
86 | /etc/sysconfig/init: |
---|
87 | |
---|
88 | BOOTUP=<some bootup mode> |
---|
89 | BOOTUP=color means colorized text mode boot display. |
---|
90 | BOOTUP=verbose means old style display |
---|
91 | Anything else means simplified display, but without color or ANSI-formatting |
---|
92 | LOGLEVEL=<a number> |
---|
93 | Sets the initial console logging level for the kernel. |
---|
94 | The default is 7. 8 means everything (including debugging); |
---|
95 | 1 means nothing except kernel panics. syslogd will override |
---|
96 | this once it starts. |
---|
97 | RES_COL=<a number> |
---|
98 | Column of the screen to start status labels at. Defaults to 60 |
---|
99 | MOVE_TO_COL=<a command> |
---|
100 | A command to move the cursor to $RES_COL. Defaults to nasty |
---|
101 | ANSI sequences output by echo -e. |
---|
102 | SETCOLOR_SUCCESS=<a command> |
---|
103 | A command to set the color to a color indicating success. |
---|
104 | Defaults to nasty ANSI sequences output by echo -e setting |
---|
105 | the color to green. |
---|
106 | SETCOLOR_FAILURE=<a command> |
---|
107 | A command to set the color to a color indicating failure. |
---|
108 | Defaults to nasty ANSI sequences output by echo -e setting |
---|
109 | the color to red. |
---|
110 | SETCOLOR_WARNING=<a command> |
---|
111 | A command to set the color to a color indicating warning. |
---|
112 | Defaults to nasty ANSI sequences output by echo -e setting |
---|
113 | the color to yellow. |
---|
114 | SETCOLOR_NORMAL=<a command> |
---|
115 | A command to set the color to 'normal'. Defaults to nasty |
---|
116 | ANSI sequences output by echo -e. |
---|
117 | PROMPT=yes|no |
---|
118 | Set to 'yes' to enable the key check for interactive mode as well as |
---|
119 | asking if a filesystem check should be done. Default is 'no' and |
---|
120 | the kernel command line option "forcefsck" can be used to check the |
---|
121 | filesystems and "confirm" can be used to enable interactive startup |
---|
122 | questions. |
---|
123 | AUTOSWAP=yes|no |
---|
124 | Set to 'yes' to enable automatic swapon of all partitions with |
---|
125 | the proper swap magic. This allows setting up swap without editing |
---|
126 | /etc/fstab. |
---|
127 | |
---|
128 | obsoleted values from earlier releases: |
---|
129 | |
---|
130 | MAGIC_SYSRQ=yes|no |
---|
131 | Setting this to 'no' used to disable the magic sysrq key and |
---|
132 | Stop-A (break on serial console) on SPARC. This setting has been |
---|
133 | moved into kernel.sysrq and kernel.stop-a settings respectively in |
---|
134 | /etc/sysctl.conf. Setting either of them there to 0 disables it, |
---|
135 | setting it to 1 enables it. |
---|
136 | STOP_A=yes|no |
---|
137 | Setting this to 'no' used to disable the Stop-A (break on |
---|
138 | serial console) key on SPARC. |
---|
139 | This setting has been moved into kernel.stop-a setting in |
---|
140 | /etc/sysctl.conf. Setting it there to 0 disables it, |
---|
141 | setting it to 1 enables it. The setting should be present |
---|
142 | on SPARC only. |
---|
143 | |
---|
144 | /etc/sysconfig/keyboard: |
---|
145 | |
---|
146 | KEYTABLE=<keytable file> |
---|
147 | for example: KEYTABLE="/usr/lib/kbd/keytables/us.map" |
---|
148 | |
---|
149 | If you dump a keymap (using 'dumpkeys') to |
---|
150 | /etc/sysconfig/console/default.kmap |
---|
151 | it will be loaded on bootup before filesystems are mounted/checked. |
---|
152 | This could be useful if you need to emergency type the root password. |
---|
153 | This has to be a dumped keymap, as opposed to copying the shipped |
---|
154 | keymap files, as the shipped files include other maps from the |
---|
155 | /usr/lib/kbd/keytables directory. |
---|
156 | |
---|
157 | KEYBOARDTYPE=sun|pc |
---|
158 | on SPARC only, sun means a sun keyboard is attached on /dev/kbd, |
---|
159 | pc means a PS/2 keyboard is on ps/2 port. |
---|
160 | |
---|
161 | /etc/sysconfig/mouse: |
---|
162 | |
---|
163 | MOUSETYPE=microsoft|mouseman|mousesystems|ps/2|msbm|logibm|atibm| |
---|
164 | logitech|mmseries|mmhittab |
---|
165 | XEMU3=yes|no (emulate three buttons with two buttons whenever |
---|
166 | necessary, most notably in X) |
---|
167 | DEVICE=<a device node> (the device of the mouse) |
---|
168 | |
---|
169 | In addition, /dev/mouse points to the mouse device. |
---|
170 | |
---|
171 | /etc/sysconfig/network: |
---|
172 | |
---|
173 | NETWORKING=yes|no |
---|
174 | HOSTNAME=<fqdn by default, but whatever hostname you want> |
---|
175 | GATEWAY=<gateway IP> |
---|
176 | GATEWAYDEV=<gateway device to use, when multiple devices have GATEWAY=> (e.g. eth0) |
---|
177 | NISDOMAIN=<nis domain name> |
---|
178 | VLAN=yes|no |
---|
179 | IPX=yes|no |
---|
180 | IPXAUTOPRIMARY=on|off (note, that MUST be on|off, not yes|no) |
---|
181 | IPXAUTOFRAME=on|off (again, not yes|no) |
---|
182 | IPXINTERNALNETNUM=<netnum> |
---|
183 | IPXINTERNALNODENUM=<nodenum> |
---|
184 | NOZEROCONF= |
---|
185 | Set this to not set a route for dynamic link-local addresses. |
---|
186 | |
---|
187 | All the IPX stuff is optional, and should default to off. |
---|
188 | |
---|
189 | NETWORKDELAY=<delay in seconds> |
---|
190 | Delay in seconds after all network interfaces are initialized. Useful if |
---|
191 | network has spanning tree running and must wait for STP convergence. |
---|
192 | Default: 0 (no delay) |
---|
193 | |
---|
194 | IPV6FORWARDING=yes|no |
---|
195 | Enable or disable global forwarding of incoming IPv6 packets |
---|
196 | on all interfaces. |
---|
197 | Note: Actual packet forwarding cannot be controlled per-device, use netfilter6 for such issues |
---|
198 | Default: no |
---|
199 | IPV6INIT=yes|no |
---|
200 | Enable or disable IPv6 configuration for all interfaces |
---|
201 | Use with caution! |
---|
202 | Default: value not set in this file |
---|
203 | |
---|
204 | IPV6_AUTOCONF=yes|no |
---|
205 | Sets the default for device-based autoconfiguration. |
---|
206 | Default: yes if IPV6FORWARDING=no, no if IPV6FORWARDING=yes |
---|
207 | IPV6_ROUTER=yes|no |
---|
208 | Sets the default for device-based Host/Router behaviour. |
---|
209 | Default: yes if IPV6FORWARDING=yes, no if IPV6FORWARDING=no |
---|
210 | IPV6_AUTOTUNNEL=yes|no |
---|
211 | Controls automatic IPv6 tunneling. |
---|
212 | Default: no |
---|
213 | |
---|
214 | IPV6_DEFAULTGW=<IPv6 address[%interface]> (optional) |
---|
215 | Add a default route through specified gateway |
---|
216 | An interface can be specified: required for link-local addresses |
---|
217 | Examples: |
---|
218 | IPV6_DEFAULTGW="3ffe:ffff:1234:5678::1" |
---|
219 | Add default route through 3ffe:ffff:1234:5678::1 |
---|
220 | IPV6_DEFAULTGW="3ffe:ffff:1234:5678::1%eth0" |
---|
221 | Add default route through 3ffe:ffff:1234:5678::1 and device eth0 |
---|
222 | IPV6_DEFAULTGW="fe80::1%eth0" |
---|
223 | Add default route through fe80::1 and device eth0 |
---|
224 | |
---|
225 | Note: if IPV6_DEFAULTGW is specified with %interface scope and it |
---|
226 | doesn't match IPV6_DEFAULTDEV, IPV6_DEFAULTDEV is ignored. |
---|
227 | Note: it's preferred to use %interface for all addresses, not |
---|
228 | just link-local if you have multiple IPv6-enabled interfaces. |
---|
229 | |
---|
230 | IPV6_DEFAULTDEV=<interface> (optional) |
---|
231 | Add a default route through specified interface without specifying next hop |
---|
232 | Type of interface will be tested whether this is allowed |
---|
233 | Examples: |
---|
234 | IPV6_DEFAULTDEV="eth0" INVALID example! |
---|
235 | IPV6_DEFAULTDEV="ppp0" |
---|
236 | IPV6_DEFAULTDEV="sit1" |
---|
237 | Examples for 6to4 |
---|
238 | IPV6_DEFAULTDEV="tun6to4" |
---|
239 | Add default route through dedicated 6to4 tunnel device "tun6to4", if configured |
---|
240 | |
---|
241 | Note: "tun6to4" does not support an additional IPV6_DEFAULTGW. |
---|
242 | Other interfaces prefer IPV6_DEFAULTGW, if specified. |
---|
243 | |
---|
244 | IPV6_RADVD_PIDFILE=<pid-file> (optional) |
---|
245 | Location of PID file for controlling radvd, see IPV6_CONTROL_RADVD |
---|
246 | Default: "/var/run/radvd/radvd.pid" |
---|
247 | Example: |
---|
248 | IPV6_RADVD_PIDFILE="/some/other/location/radvd.pid" |
---|
249 | IPV6TO4_RADVD_PIDFILE=<pid-file> (obsolete) |
---|
250 | As above, still supported for a while for backward compatibility. |
---|
251 | IPV6_RADVD_TRIGGER_ACTION=startstop|reload|restart|SIGHUP (optional) |
---|
252 | How to trigger radvd in case of 6to4 or PPP action |
---|
253 | startstop: radvd starts if interface goes up and stops |
---|
254 | if interface goes down using initscript call of radvd with related parameter |
---|
255 | reload|restart: initscript of radvd is called with this parameter |
---|
256 | SIGHUP: signal HUP is sent to radvd, pidfile must be specified, if not the default |
---|
257 | Default: SIGHUP |
---|
258 | |
---|
259 | IPv6 options above can be overridden in interface-specific configuration. |
---|
260 | |
---|
261 | obsoleted values from earlier releases: |
---|
262 | |
---|
263 | FORWARD_IPV4=yes|no |
---|
264 | This setting has been moved into net.ipv4.ip_forward setting |
---|
265 | in /etc/sysctl.conf. Setting it to 1 there enables IP forwarding, |
---|
266 | setting it to 0 disables it (which is the default for RFC compliance). |
---|
267 | DEFRAG_IPV4=yes|no |
---|
268 | Setting this to yes used to automatically defragment IPv4 |
---|
269 | packets. This is a good idea for masquerading, and |
---|
270 | a bad idea otherwise. This setting was moved into |
---|
271 | net.ipv4.ip_always_defrag setting in /etc/sysctl.conf. It |
---|
272 | is no longer valid for 2.4 kernels. |
---|
273 | NETWORKING_IPV6=yes|no |
---|
274 | Enable or disable global IPv6 initialization |
---|
275 | |
---|
276 | To do this properly, add a rule in /etc/modprobe.conf that |
---|
277 | disables loading of the ipv6 module. Example: |
---|
278 | install ipv6 /bin/true |
---|
279 | |
---|
280 | /etc/sysconfig/static-routes-ipv6: |
---|
281 | Contains lines of the form: |
---|
282 | |
---|
283 | <device> IPv6-network IPv6-gateway |
---|
284 | <tunneldevice> IPv6-network |
---|
285 | |
---|
286 | <device> must be a device name to have the route brought up and |
---|
287 | down with the device |
---|
288 | |
---|
289 | For example: |
---|
290 | |
---|
291 | eth0 fec0:0:0:2::/64 fec0:0:0:1:0:0:0:20 |
---|
292 | adds a route for IPv6 network fec0:0:0:2::/64 through fec0:0:0:1:0:0:0:20 |
---|
293 | |
---|
294 | eth0 2000::/3 3ffe:ffff:0:1::1 |
---|
295 | so-called "default" routes for clients |
---|
296 | |
---|
297 | sit1 2000::/3 |
---|
298 | adds routes through dedicated tunnel interface sit1 |
---|
299 | |
---|
300 | tun6to4 3ffe:ffff:1234::/56 |
---|
301 | adds routes through hardwired 6to4 tunnel interface tun6to4 |
---|
302 | tun6to4 3ffe:ffff:5678::/56 ::5.6.7.8 |
---|
303 | adds routes through hardwired 6to4 tunnel interface tun6to4, |
---|
304 | specifying next hop |
---|
305 | |
---|
306 | Notes: |
---|
307 | * default routes (such as the "2000::/3" shown above) should be set with |
---|
308 | IPV6_DEFAULTGW and IPV6_DEFAULTDEV, see more above. |
---|
309 | * tunnel device "sit0" is not supported here, routes will never be applied |
---|
310 | |
---|
311 | /etc/sysconfig/routed: |
---|
312 | |
---|
313 | SILENT=yes|no |
---|
314 | EXPORT_GATEWAY=yes|no |
---|
315 | |
---|
316 | /etc/sysconfig/rawdevices: |
---|
317 | |
---|
318 | This is used for setting up raw device to block device mappings. |
---|
319 | It has the format: |
---|
320 | <rawdev> <major> <minor> |
---|
321 | <rawdev> <blockdev> |
---|
322 | For example: |
---|
323 | /dev/raw/raw1 /dev/sda1 |
---|
324 | /dev/raw/raw2 8 5 |
---|
325 | |
---|
326 | /etc/sysconfig/pcmcia: |
---|
327 | |
---|
328 | PCMCIA=yes|no |
---|
329 | PCIC=i82365|tcic |
---|
330 | PCIC_OPTS=<socket driver (i82365 or tcic) timing parameters> |
---|
331 | CORE_OPTS=<pcmcia_core options> |
---|
332 | CARDMGR_OPTS=<cardmgr options> |
---|
333 | |
---|
334 | /etc/sysconfig/amd: |
---|
335 | |
---|
336 | ADIR=/.automount (normally never changed) |
---|
337 | MOUNTPTS='/net /etc/amd.conf' (standard automount stuff) |
---|
338 | AMDOPTS= (extra options for AMD) |
---|
339 | |
---|
340 | /etc/sysconfig/tape: |
---|
341 | |
---|
342 | DEV=/dev/nst0 |
---|
343 | Tape device. Use the non-rewinding one for these scripts. |
---|
344 | |
---|
345 | For SCSI tapes this is /dev/nst#, where # is the number of the |
---|
346 | tape drive you want to use. If you only have one then use |
---|
347 | nst0. |
---|
348 | |
---|
349 | For IDE tapes you use /dev/ht#, where # is the number of the tape |
---|
350 | drive you want to use (usually ht0). |
---|
351 | |
---|
352 | For floppy tape drives use /dev/ftape. |
---|
353 | |
---|
354 | ADMIN=root |
---|
355 | Person to mail to if the backup fails for any reason |
---|
356 | |
---|
357 | SLEEP=5 |
---|
358 | Time to sleep between tape operations. Some drives need a bit |
---|
359 | more than others, but 5 seems to work for 8mm, 4mm, and DLT |
---|
360 | |
---|
361 | BLOCKSIZE=32768 |
---|
362 | This worked fine for 8mm, then 4mm, and now DLT. An optimal |
---|
363 | setting is probably however much data your drive writes at one |
---|
364 | time. |
---|
365 | |
---|
366 | SHORTDATE=$(date +%y:%m:%d:%H:%M) |
---|
367 | A short date string, used in backup log filenames. |
---|
368 | |
---|
369 | DAY=$(date +log-%y:%m:%d) |
---|
370 | This is used for the log file directory. |
---|
371 | |
---|
372 | DATE=$(date) |
---|
373 | Regular date string, used in log files. |
---|
374 | |
---|
375 | LOGROOT=/var/log/backup |
---|
376 | Root of the logging directory |
---|
377 | |
---|
378 | LIST=$LOGROOT/incremental-list |
---|
379 | This is the file name the incremental backup will use to store |
---|
380 | the incremental list. It will be $LIST-{some number}. |
---|
381 | |
---|
382 | DOTCOUNT=$LOGROOT/.count |
---|
383 | For counting as you go to know which incremental list to use |
---|
384 | |
---|
385 | COUNTER=$LOGROOT/counter-file |
---|
386 | For rewinding when done...might not use. |
---|
387 | |
---|
388 | BACKUPTAB=/etc/backuptab |
---|
389 | The file in which we keep our list of backup(s) we want to make. |
---|
390 | |
---|
391 | /etc/sysconfig/saslauthd: |
---|
392 | |
---|
393 | used by the saslauthd init script (part of the cyrus-sasl package) to |
---|
394 | control which arguments are passed to saslauthd at startup time; changes |
---|
395 | made to this file have no effect until saslauthd is restarted |
---|
396 | |
---|
397 | MECH=shadow |
---|
398 | controls which data source saslauthd will consult when checking user |
---|
399 | passwords; run 'saslauthd -a' to get a full list of available |
---|
400 | authentication mechanisms |
---|
401 | SOCKETDIR=/var/run/saslauthd |
---|
402 | controls in which directory saslauthd will be directed to create its |
---|
403 | listening socket; any change to this value will require a corresponding |
---|
404 | change in client configuration files |
---|
405 | |
---|
406 | /etc/sysconfig/sendmail: |
---|
407 | DAEMON=yes|no |
---|
408 | yes implies -bd (i.e., listen on port 25 for new mail) |
---|
409 | QUEUE=1h |
---|
410 | given to sendmail as -q$QUEUE |
---|
411 | -q option is not given to sendmail if /etc/sysconfig/sendmail |
---|
412 | exists and QUEUE is empty or undefined. |
---|
413 | |
---|
414 | /etc/sysconfig/i18n |
---|
415 | If ~/.i18n exists, it is used in addition to /etc/sysconfig/i18n and allows |
---|
416 | per-user customization of the locales. |
---|
417 | |
---|
418 | LANG= set locale for all categories, can be any two letter ISO |
---|
419 | language code |
---|
420 | LC_CTYPE= locale data configuration for classification and conversion |
---|
421 | of characters |
---|
422 | LC_COLLATE= locale data configuration for collation (sort order) of |
---|
423 | strings |
---|
424 | LC_MESSAGES= locale data configuration for translation of messages |
---|
425 | LC_NUMERIC= locale data configuration for non-monetary numeric data |
---|
426 | LC_MONETARY= locale data configuration for monetary data |
---|
427 | LC_TIME= locale data configuration for date and time |
---|
428 | LC_ALL= locale data configuration overriding all of the above |
---|
429 | LANGUAGE= can be a : separated list of ISO language codes |
---|
430 | LINGUAS= can be a ' ' separated list of ISO language codes |
---|
431 | |
---|
432 | The above variables are used in /etc/profile.d/lang.sh. |
---|
433 | |
---|
434 | SYSFONT= Console font. Fonts are found in /lib/kbd/consolefonts. |
---|
435 | |
---|
436 | UNIMAP= Unicode font map. Most fonts have these built-in. Font maps |
---|
437 | can be found in /lib/kbd/unimaps. These are applied via setfont's |
---|
438 | -u option. |
---|
439 | |
---|
440 | SYSFONTACM= Console map. These are applied via setfont's -m option, |
---|
441 | and are found in /lib/kbd/consoletrans. |
---|
442 | |
---|
443 | The above are used by the /sbin/setsysfont command (which is run |
---|
444 | by rc.sysinit at boot time.) For more information, see setfont(8). |
---|
445 | |
---|
446 | Files in /etc/sysconfig/network-scripts/ |
---|
447 | ======================================== |
---|
448 | |
---|
449 | /etc/sysconfig/network-scripts/ifup: |
---|
450 | /etc/sysconfig/network-scripts/ifdown: |
---|
451 | |
---|
452 | Symlinks to /sbin/ifup and /sbin/ifdown, respectively. |
---|
453 | These are the only two scripts "in" this directory that should |
---|
454 | be called directly; these two scripts call all the other |
---|
455 | scripts as needed. These symlinks are here for legacy purposes -- |
---|
456 | only /sbin/ifup and /sbin/ifdown should currently be used |
---|
457 | at the user level. |
---|
458 | |
---|
459 | These scripts take one argument normally: the name of the device |
---|
460 | (e.g. eth0). They are called with a second argument of "boot" |
---|
461 | during the boot sequence so that devices that are not meant to |
---|
462 | be brought up on boot (ONBOOT=no, see below) can be ignored at |
---|
463 | that time. |
---|
464 | |
---|
465 | Also, interfaces may be brought up via the hotplug scripts; |
---|
466 | in this case, HOTPLUG=no needs to be set to no to avoid this. |
---|
467 | This is useful e.g. to prevent bonding device activation by merely |
---|
468 | loading the bonding kernel module. |
---|
469 | |
---|
470 | /etc/sysconfig/network-scripts/init.ipv6-global: |
---|
471 | Not really a public file. Contains different basic settings that |
---|
472 | are set from /etc/[rc.d]/init.d/network at different stages of |
---|
473 | network initialization. |
---|
474 | |
---|
475 | /etc/sysconfig/network-scripts/network-functions: |
---|
476 | |
---|
477 | Not really a public file. Contains functions which the scripts use |
---|
478 | for bringing interfaces up and down. In particular, it contains |
---|
479 | most of the code for handling alternative interface configurations |
---|
480 | and interface change notification through netreport. |
---|
481 | |
---|
482 | /etc/sysconfig/network-scripts/network-functions-ipv6: |
---|
483 | |
---|
484 | Not really a public file. Contains functions which the scripts use |
---|
485 | for bringing IPv6 on interfaces up and down, like addresses, routes, |
---|
486 | forwarding handling and static or automatic tunneling. |
---|
487 | |
---|
488 | /etc/sysconfig/network-scripts/ifcfg-<interface-name> and |
---|
489 | /etc/sysconfig/network-scripts/ifcfg-<interface-name>:<alias-name>: |
---|
490 | |
---|
491 | The first defines an interface, and the second contains |
---|
492 | only the parts of the definition that are different in a |
---|
493 | "alias" (or alternative) interface. For example, the |
---|
494 | network numbers might be different, but everything else |
---|
495 | might be the same, so only the network numbers would be |
---|
496 | in the alias file, but all the device information would |
---|
497 | be in the base ifcfg file. |
---|
498 | |
---|
499 | The items that can be defined in an ifcfg file depend on the |
---|
500 | interface type. The really obvious ones I'm not going to |
---|
501 | bother to define; you can figure out what "IPADDR" is, I |
---|
502 | think... :-) |
---|
503 | |
---|
504 | Base items: |
---|
505 | NAME=<friendly name for users to see> |
---|
506 | Most important for PPP. Only used in front ends. |
---|
507 | DEVICE=<name of physical device (except dynamically-allocated PPP |
---|
508 | devices where it is the "logical name")> |
---|
509 | IPADDR= |
---|
510 | NETMASK= |
---|
511 | GATEWAY= |
---|
512 | METRIC= |
---|
513 | Metric for the default route using GATEWAY |
---|
514 | ONBOOT=yes|no (not valid for alias devices; use ONPARENT) |
---|
515 | HOTPLUG=yes|no |
---|
516 | USERCTL=yes|no |
---|
517 | BOOTPROTO=none|bootp|dhcp |
---|
518 | MTU= |
---|
519 | Default MTU for this device |
---|
520 | WINDOW= |
---|
521 | Default window for routes from this device |
---|
522 | PEERDNS=yes|no |
---|
523 | modify /etc/resolv.conf if peer uses msdns extension (PPP only) or |
---|
524 | DNS{1,2} are set, or if using dhclient. default to "yes". |
---|
525 | DNS{1,2}=<ip address> |
---|
526 | provide DNS addresses that are dropped into the resolv.conf |
---|
527 | file if PEERDNS is not set to "no". |
---|
528 | SCOPE= |
---|
529 | Set to "scope SCOPE-ID" to set a non-default scope. Supported only on |
---|
530 | Ethernet with BOOTPROTO=none. |
---|
531 | SRCADDR= |
---|
532 | use the specified source address for outgoing packets |
---|
533 | HWADDR= |
---|
534 | ethernet hardware address for this device |
---|
535 | MACADDR= |
---|
536 | Set the hardware address for this device to this. |
---|
537 | Use of this in conjunction with HWADDR= may cause |
---|
538 | unintended behavior. |
---|
539 | NOZEROCONF= |
---|
540 | Set this to not set a route for dynamic link-local addresses |
---|
541 | over this device. |
---|
542 | PERSISTENT_DHCLIENT=yes|no|1|0 |
---|
543 | Without this option, or if it is 'no'/'0', and BOOTPROTO=dhcp, |
---|
544 | dhclient is run for the interface in "one-shot" mode; if the |
---|
545 | dhcp server does not respond for a configurable timeout, then |
---|
546 | dhclient exits and the interface is not brought up - |
---|
547 | the '-1' option is given to dhclient. |
---|
548 | If PERSISTENT_DHCLIENT=yes, then dhclient will keep on trying |
---|
549 | to contact the dhcp server when it does not respond - no '-1' |
---|
550 | option is given to dhclient. Note: this disables the automatic |
---|
551 | checking for the presence of a link before starting dhclient. |
---|
552 | DHCPRELEASE=yes|no|1|0 |
---|
553 | With this option set to 'yes' (1), when a dhcp configured |
---|
554 | interface is brought down with 'ifdown', the lease will be |
---|
555 | released. Otherwise, leases are not released. |
---|
556 | DHCLIENT_IGNORE_GATEWAY=yes|no|1|0 |
---|
557 | If set to 'yes', it will cause dhclient-script to ignore any $GATEWAY |
---|
558 | setting that may be in the ifcfg file for this interface. |
---|
559 | Otherwise, the dhclient session which obtains an ip-address |
---|
560 | on the same subnet as $GATEWAY will set the default route |
---|
561 | to be via $GATEWAY, and no other dhclient session will set |
---|
562 | the default route. |
---|
563 | |
---|
564 | If BOOTPROTO is not "none", then the only other item that |
---|
565 | must be set is the DEVICE item; all the rest will be determined |
---|
566 | by the boot protocol. No "dummy" entries need to be created. |
---|
567 | |
---|
568 | Base items being deprecated: |
---|
569 | NETWORK=<will be calculated automatically with ipcalc> |
---|
570 | BROADCAST=<will be calculated automatically with ipcalc> |
---|
571 | |
---|
572 | Alias specific items: |
---|
573 | ONPARENT=yes|no |
---|
574 | Whether to bring up the device when the parent device is brought |
---|
575 | up. |
---|
576 | Default: yes |
---|
577 | |
---|
578 | IPv6-only items for real interfaces: |
---|
579 | IPV6INIT=yes|no |
---|
580 | Enable or disable IPv6 configuration for this interface |
---|
581 | Default: no |
---|
582 | IPV6FORWARDING=yes|no |
---|
583 | Enable or disable global forwarding of incoming IPv6 packets |
---|
584 | Note: Obsolete in interface specification! |
---|
585 | Default: no |
---|
586 | IPV6ADDR=<IPv6 address>[/<prefix length>] |
---|
587 | Specify a primary static IPv6 address here |
---|
588 | Optional, if normal host and a router advertisement daemon is on local link |
---|
589 | Required, if node is a router and interface should route packets |
---|
590 | Note: if prefix length is omitted, 64 is assumed |
---|
591 | Example: |
---|
592 | IPV6ADDR="3ffe:ffff:0:5::1" |
---|
593 | IPV6ADDR="3ffe:ffff:0:1::1/128" |
---|
594 | IPV6ADDR_SECONDARIES="<IPv6 address>[/<prefix length>] ..." (optional) |
---|
595 | A list of secondary IPv6 addresses (e.g. useful for virtual hosting) |
---|
596 | Example: |
---|
597 | IPV6ADDR_SECONDARIES="3ffe:ffff:0:1::10 3ffe:ffff:0:2::11/128" |
---|
598 | IPV6_MTU=<MTU of link> (optional) |
---|
599 | Optional, dedicated MTU of this link |
---|
600 | Note: Must be greater or equal to 1280. |
---|
601 | Example: |
---|
602 | IPV6_MTU="1280" |
---|
603 | IPV6_PRIVACY=rfc3041 |
---|
604 | Enables RFC 3041 IPv6 privacy support if set. |
---|
605 | Default: RFC 3041 support disabled |
---|
606 | |
---|
607 | Special configuration options for multi-homed hosts etc. |
---|
608 | IPV6_ROUTER=yes|no: Controls IPv6 autoconfiguration |
---|
609 | IPV6_AUTOCONF=yes|no: Controls IPv6 autoconfiguration |
---|
610 | Defaults: |
---|
611 | Global IPV6FORWARDING=yes: IPV6_AUTOCONF=no, IPV6_ROUTER=yes |
---|
612 | Global IPV6FORWARDING=no: IPV6_AUTOCONF=yes |
---|
613 | |
---|
614 | Optional settings for a 6to4 tunnel |
---|
615 | IPV6TO4INIT=yes|no |
---|
616 | Enable or disable 6to4 tunneling setup |
---|
617 | Default: no |
---|
618 | IPV6TO4_RELAY=<IPv4 address> (optional) |
---|
619 | IPv4 address of the remote 6to4 relay |
---|
620 | Note: if this is omitted, ::192.88.99.1 (the anycast relay address) is chosen |
---|
621 | IPV6TO4_IPV4ADDR=<IPv6 address>[/<prefix length>] (optional) |
---|
622 | Overwrite local IPv4 address which is accessible from the Internet |
---|
623 | (optional, in case of static IPv4-NAT behind a router or other special scenarios) |
---|
624 | IPV6TO4_MTU=<MTU for IPv6> (optional) |
---|
625 | Controls IPv6 MTU for the 6to4 tunnel |
---|
626 | Note: Must be greater or equal to 1280 |
---|
627 | Example: |
---|
628 | IPV6TO4_MTU="1280" |
---|
629 | Default: MTU of master device - 20 |
---|
630 | IPV6TO4_ROUTING="<device>-<suffix>/<prefix length> ..." (optional) |
---|
631 | A list of routing tokens to setup proper IPv6 interfaces on the LAN |
---|
632 | Example: |
---|
633 | IPV6TO4_ROUTING="eth0-:0004::1/64 eth1-:0005::1/64" |
---|
634 | Will create one address per eth0 and eth1, taking given SLA |
---|
635 | |
---|
636 | Optional settings for a 6to4 tunnel or a ppp link |
---|
637 | IPV6_CONTROL_RADVD=yes|no (optional) |
---|
638 | Enable signaling radvd that the 6to4 prefix has been changed or a |
---|
639 | preconfigured dynamic device is up or down |
---|
640 | Default: no |
---|
641 | |
---|
642 | IPv6-only items for static tunnel interface: |
---|
643 | Interface name: sitX (X => 1) |
---|
644 | IPV6INIT=yes|no |
---|
645 | Enable or disable IPv6 configuration for this interface |
---|
646 | Default: no |
---|
647 | IPV6TUNNELIPV4=<IPv4 address> |
---|
648 | Specify IPv4 address of a foreign IPv6-in-IPv4 tunnel endpoint |
---|
649 | Example: |
---|
650 | IPV6TUNNELIPV4="1.2.3.4" |
---|
651 | IPV6TUNNELIPV4LOCAL=<IPv4 address> |
---|
652 | Specify local IPv4 address of tunnel, useful on interfaces with multiple IPv4 addresses |
---|
653 | IPV6ADDR=<IPv6 address>[/<prefix length>] (optional) |
---|
654 | local IPv6 address of a numbered tunnel |
---|
655 | IPV6ADDR_SECONDARIES="<IPv6 address>[/<prefix length>] ..." (optional) |
---|
656 | A list of secondary IPv6 addresses (example see above) |
---|
657 | IPV6_MTU=<MTU of tunnel> (optional) |
---|
658 | Optional, dedicated MTU of this tunnel |
---|
659 | Note: Must be greater or equal to 1280 |
---|
660 | Example: |
---|
661 | IPV6_MTU="1280" |
---|
662 | |
---|
663 | IPv6-only option to enable DHCPv6 client: |
---|
664 | DHCPV6C=yes|no |
---|
665 | This will enable the DHCPv6 client, dhcp6c, to be run for the interface. |
---|
666 | See man dhcp6c(8) and dhcp6c.conf(5). |
---|
667 | |
---|
668 | Ethernet-only items: |
---|
669 | {IPXNETNUM,IPXPRIMARY,IPXACTIVE}_{802_2,802_3,ETHERII,SNAP} |
---|
670 | configuration matrix for IPX. Only used if IPX is active. |
---|
671 | Managed from /etc/sysconfig/network-scripts/ifup-ipx |
---|
672 | ARP=yes|no (adds 'arp' flag to ifconfig, for use with the |
---|
673 | ethertap device) |
---|
674 | LINKDELAY=<time in seconds> |
---|
675 | Time that the system should pause after the specific interface is |
---|
676 | enabled. This may be useful if one interface is connected to a |
---|
677 | switch which has spanning tree enabled and must wait for STP to |
---|
678 | converge before the interface should be considered usable. |
---|
679 | BRIDGE=<br* device> |
---|
680 | If set, the ethernet device is not assigned an address. It is added to |
---|
681 | the specified bridge device instead. |
---|
682 | |
---|
683 | Deprecated, but supported: |
---|
684 | ETHTOOL_OPTS=... |
---|
685 | Any device-specific options supported by ethtool. For example, |
---|
686 | if you wanted to force 100Mb full duplex: |
---|
687 | ETHTOOL_OPTS="speed 100 duplex full autoneg off" |
---|
688 | Note that changing speed or duplex settings almost always |
---|
689 | requires disabling autonegotiation with 'autoneg off'. |
---|
690 | |
---|
691 | Long term, this should be done by sysadmin-written udev rules. |
---|
692 | |
---|
693 | No longer supported: |
---|
694 | PROMISC=yes|no (enable or disable promiscuous mode) |
---|
695 | ALLMULTI=yes|no (enable or disable all-multicast mode) |
---|
696 | |
---|
697 | To properly set these, use the packet socket interface. |
---|
698 | |
---|
699 | Ethernet 802.1q VLAN items: |
---|
700 | DEVICE=eth0.42 |
---|
701 | Initscripts use DEV_PLUS_VID_NO_PAD naming mode for VLAN |
---|
702 | devices. |
---|
703 | Example: eth0.42 for vlan 42 on device eth0. |
---|
704 | Valid VLAN ID range is 0-4095. Most ethernet switches reserve |
---|
705 | VLAN ID 1 to be used as management VLAN; starting from VLAN |
---|
706 | ID 2 is recommended. |
---|
707 | REORDER_HDR=yes|no |
---|
708 | When enabled the VLAN device will move the ethernet header |
---|
709 | around to make it look exactly like a real ethernet device. |
---|
710 | This may help programs such as ISC dhcpd which read the raw |
---|
711 | ethernet packet and make assumptions about the location of |
---|
712 | bytes. If you don't need it turn it off because there |
---|
713 | is a small performance penalty. Default is on. |
---|
714 | |
---|
715 | PPP/SLIP items: |
---|
716 | PERSIST=yes|no |
---|
717 | MODEMPORT=<device, say /dev/modem> |
---|
718 | LINESPEED=<speed, say 115200> |
---|
719 | DEFABORT=yes|no (tells netcfg whether or not to put default |
---|
720 | abort strings in when creating/editing the chat script and/or |
---|
721 | dip script for this interface) |
---|
722 | (meaningless with WVDIALSECT) |
---|
723 | |
---|
724 | PPP-specific items |
---|
725 | WVDIALSECT=<list of sections from wvdial.conf to use> |
---|
726 | If this variable is set, then the chat script (if it |
---|
727 | exists) is ignored, and wvdial is used to open the |
---|
728 | PPP connection. |
---|
729 | DEFROUTE=yes|no (set this interface as default route? yes is default) |
---|
730 | DEBUG=yes|no (defaults to yes) |
---|
731 | turns on/off pppd and chat (if used) debugging. |
---|
732 | ESCAPECHARS=yes|no (simplified interface here doesn't let people |
---|
733 | specify which characters to escape; almost everyone can use |
---|
734 | asyncmap 00000000 anyway, and they can set PPPOPTIONS to |
---|
735 | asyncmap foobar if they want to set options perfectly) |
---|
736 | HARDFLOWCTL=yes|no (yes implies "modem crtscts" options) |
---|
737 | PPPOPTIONS=<arbitrary option string; is placed last on the |
---|
738 | command line, so it can override other options like asyncmap |
---|
739 | that were specified differently> |
---|
740 | PAPNAME=<"name $PAPNAME" on pppd command line> (note that |
---|
741 | the "remotename" option is always specified as the logical |
---|
742 | ppp device name, like "ppp0" (which might perhaps be the |
---|
743 | physical device ppp1 if some other ppp device was brought |
---|
744 | up earlier...), which makes it easy to manage pap/chap |
---|
745 | files -- name/password pairs are associated with the |
---|
746 | logical ppp device name so that they can be managed |
---|
747 | together. |
---|
748 | REMIP=<remote ip address, normally unspecified> |
---|
749 | MTU= |
---|
750 | MRU= |
---|
751 | DISCONNECTTIMEOUT=<number of seconds, default currently 5> |
---|
752 | (time to wait before re-establishing the connection after |
---|
753 | a successfully-connected session terminates before attempting |
---|
754 | to establish a new connection.) |
---|
755 | RETRYTIMEOUT=<number of seconds, default currently 60> |
---|
756 | (time to wait before re-attempting to establish a connection |
---|
757 | after a previous attempt fails.) |
---|
758 | RETRYCONNECT=yes|no (defaults to yes) |
---|
759 | If this is yes, then we will re-run pppd if it exits with a |
---|
760 | "connect script failed" status. Otherwise, only one attempt |
---|
761 | is made to bring up the connection. Note that some connect |
---|
762 | scripts (for example, wvdial) might do their own retries (such |
---|
763 | as BUSY or NO DIALTONE conditions). |
---|
764 | MAXFAIL=<number> |
---|
765 | If this is set, this will cause ppp-watch to exit after |
---|
766 | the specified number of attempts. |
---|
767 | DEMAND=yes|no |
---|
768 | Switches on demand-dialing mode using pppd's "demand" option. |
---|
769 | IDLETIMEOUT=600 |
---|
770 | The amount of time the link needs to be inactive before pppd will |
---|
771 | bring it down automatically. |
---|
772 | BOOTTIMEOUT=30 |
---|
773 | The amount of time to wait at boot before giving up on the |
---|
774 | connection. |
---|
775 | |
---|
776 | IPPP-specific items (ISDN) |
---|
777 | PROVIDER=<ProviderName> |
---|
778 | USER=<Login> |
---|
779 | PASSWORD=<Password> |
---|
780 | ENCAP=[syncppp|] |
---|
781 | DIALMODE=[manual|auto] |
---|
782 | SECURE=off|on |
---|
783 | MSN=<> |
---|
784 | PHONE_IN=<Callback.Number> |
---|
785 | AREACODE=<> |
---|
786 | REGIONCODE=<> |
---|
787 | PHONE_OUT=<PhoneNumber> |
---|
788 | BUNDLING=off|on |
---|
789 | HUPTIMEOUT=<number> |
---|
790 | DNS1=<PrimaryDNS> |
---|
791 | DNS2=<SecondaryDNS> |
---|
792 | DOMAIN="" |
---|
793 | LAYER=[HDLC|] |
---|
794 | CALLBACK=off|on |
---|
795 | CHARGEHUP=<number> |
---|
796 | CHARGEINT=<number> |
---|
797 | CBHUP=<number> |
---|
798 | CBDELAY=<number> |
---|
799 | DIALMAX=<number> |
---|
800 | AUTH=[+pap] [-chap] |
---|
801 | IHUP=<> |
---|
802 | DELDEFAULTROUTE=[enabled|disabled] |
---|
803 | CBCP=off|on |
---|
804 | VJ=off|on |
---|
805 | VJCCOMP=off|on |
---|
806 | AC=off|on |
---|
807 | PC=off|on |
---|
808 | BSDCOMP=off|on |
---|
809 | CCP=off|on |
---|
810 | SLAVE_DEVICE=ippp[0-9] |
---|
811 | |
---|
812 | ippp0 items being deprecated: |
---|
813 | BOOT=[on|off] will be converted to ONBOOT=[yes|no] by netconf |
---|
814 | LOCAL_IP= will be converted to IPADDR by netconf |
---|
815 | REMOTE_IP= will be converted to GATEWAY by netconf |
---|
816 | |
---|
817 | Wireless-specific items: |
---|
818 | See iwconfig(8) for additional information. |
---|
819 | MODE=[Ad-Hoc|Managed|Master|Repeater|Secondary|Monitor|Auto] |
---|
820 | ESSID= |
---|
821 | Defaults to "any". |
---|
822 | NWID= |
---|
823 | FREQ= |
---|
824 | Ignored if MODE=Managed. |
---|
825 | CHANNEL= |
---|
826 | Ignored if MODE=Managed. |
---|
827 | SENS=<sensitivity threshold> |
---|
828 | RATE= |
---|
829 | KEY{1,2,3,4}=<WEP key with the given index> |
---|
830 | DEFAULTKEY=<default key index> |
---|
831 | KEY=<default WEP key> |
---|
832 | SECURITYMODE=[on|off|open|restricted] |
---|
833 | RTS=[auto|fixed|off|<rts threshold>] |
---|
834 | FRAG=[off|<fragmentation threshold>] |
---|
835 | IWCONFIG=<other iwconfig(8) options> |
---|
836 | SPYIPS=<list of IP addresses to monitor for link quality> |
---|
837 | IWPRIV=<iwpriv(8) commands> |
---|
838 | |
---|
839 | IPSEC specific items |
---|
840 | SRC=source address. Not required. |
---|
841 | DST=destination address |
---|
842 | TYPE=IPSEC |
---|
843 | SRCNET=source net (for tunneling) |
---|
844 | DSTNET=destination network (for tunneling) |
---|
845 | |
---|
846 | Manual keying: |
---|
847 | |
---|
848 | AH_PROTO{,_IN,_OUT}=protocol to use for AH (defaults to hmac-sha1) |
---|
849 | ESP_PROTO{,_IN,_OUT}=protocol to use for ESP (defaults to 3des-cbc) |
---|
850 | AESP_PROTO{,_IN,_OUT}=protocol to use for ESP authentication (defaults to |
---|
851 | hmac-sha1) |
---|
852 | KEY_AH{,_IN,_OUT}=AH key |
---|
853 | KEY_ESP{,_IN,_OUT}=ESP encryption key |
---|
854 | KEY_AESP{,_IN,_OUT}=ESP authentication key (optional) |
---|
855 | SPI_{ESP,AH}_{IN,OUT}=SPIs to use |
---|
856 | |
---|
857 | _IN and _OUT specifiers are for using different keys or protocols for |
---|
858 | incoming and outgoing packets. If neither _IN or _OUT variants are set for |
---|
859 | protocols or keys, the same will be used for both. Hexadecimal keys need to |
---|
860 | be prefixed with "0x". |
---|
861 | |
---|
862 | Automatic keying: |
---|
863 | |
---|
864 | IKE_DHGROUP=<number> (defaults to 2) |
---|
865 | IKE_METHOD=PSK|X509|GSSAPI |
---|
866 | PSK=preshared keys (shared secret) |
---|
867 | X509=X.509 certificates |
---|
868 | GSSPI=GSSAPI authentication |
---|
869 | IKE_PSK=preshared key for this connection |
---|
870 | IKE_CERTFILE=our certificate file name for X509 IKE |
---|
871 | IKE_PEER_CERTFILE=peer public cert filename for X509 IKE |
---|
872 | IKE_DNSSEC=retrieve peer public certs from DNS |
---|
873 | (otherwise uses certificate information sent over IKE) |
---|
874 | |
---|
875 | To manage the racoon configuration manually (e.g. when there is more than |
---|
876 | one IPSEC configuration with the same DST), set KEYING=automatic and leave |
---|
877 | all IKE_* parameters unspecified. |
---|
878 | |
---|
879 | To override the identifier to use with a preshared key: |
---|
880 | |
---|
881 | MYID_TYPE=address|fqdn|user_fqdn |
---|
882 | MYID_VALUE=fqdn or user_fqdn string for this connection |
---|
883 | |
---|
884 | Usage of AH or ESP may be disabled by setting {AH,ESP}_PROTO to "none". |
---|
885 | |
---|
886 | Bonding-specific items |
---|
887 | |
---|
888 | SLAVE=yes |
---|
889 | Specifies device as a slave |
---|
890 | MASTER=bondXX |
---|
891 | Specifies master device to bind to |
---|
892 | |
---|
893 | Tunnel-specific items: |
---|
894 | TYPE=GRE|IPIP |
---|
895 | MY_INNER_IPADDR=local IP address of the tunnel interface |
---|
896 | PEER_OUTER_IPADDR=IP address of the remote tunnel endpoint |
---|
897 | MY_OUTER_IPADDR=IP address of the local tunnel endpoint |
---|
898 | If unspecified, an IP address is selected automatically for outgoing |
---|
899 | tunnel packets, and incoming tunnel packets are accepted on all local |
---|
900 | IP addresses. |
---|
901 | PEER_INNER_IPADDR=IP address of the remote end of the tunnel interface |
---|
902 | If this is specified, a route to PEER_INNER_IPADDR through the tunnel |
---|
903 | is added automatically. |
---|
904 | TTL=TTL value for tunnel packets |
---|
905 | Default is to use the TTL of the packet transported through the tunnel |
---|
906 | |
---|
907 | Bridge-specific items: |
---|
908 | TYPE=Bridge |
---|
909 | STP=off|on (see 'brctl stp') |
---|
910 | DELAY=forward delay time in seconds (see 'brctl setfd') |
---|
911 | GCINT=garbage collection interval in seconds (see 'brctl setgcint') |
---|
912 | |
---|
913 | /etc/sysconfig/network-scripts/chat-<interface-name>: |
---|
914 | |
---|
915 | chat script for PPP or SLIP connection intended to establish |
---|
916 | the connection. For SLIP devices, a DIP script is written |
---|
917 | from the chat script; for PPP devices, the chat script is used |
---|
918 | directly. |
---|
919 | |
---|
920 | /etc/sysconfig/network-scripts/dip-<interface-name> |
---|
921 | |
---|
922 | A write-only script created from the chat script by netcfg. |
---|
923 | Do not modify this. In the future, this file may disappear |
---|
924 | by default and created on-the-fly from the chat script if |
---|
925 | it does not exist. |
---|
926 | |
---|
927 | /etc/sysconfig/network-scripts/ifup-post |
---|
928 | |
---|
929 | Called when any network device EXCEPT a SLIP device comes |
---|
930 | up. Calls /etc/sysconfig/network-scripts/ifup-routes to |
---|
931 | bring up static routes that depend on that device. Calls |
---|
932 | /etc/sysconfig/network-scripts/ifup-aliases to bring up |
---|
933 | aliases for that device. Sets the hostname if it is not |
---|
934 | already set and a hostname can be found for the IP for that |
---|
935 | device. Sends SIGIO to any programs that have requested |
---|
936 | notification of network events. |
---|
937 | |
---|
938 | Could be extended to fix up nameservice configuration, call |
---|
939 | arbitrary scripts, etc, as needed. |
---|
940 | |
---|
941 | /etc/sysconfig/network-scripts/ifup-routes |
---|
942 | |
---|
943 | Set up static routes for a device. |
---|
944 | |
---|
945 | /etc/sysconfig/network-scripts/ifup-aliases |
---|
946 | |
---|
947 | Bring up aliases for a device. |
---|
948 | |
---|
949 | /etc/sysconfig/network-scripts/ifdhcpc-done |
---|
950 | |
---|
951 | Called by dhcpcd once dhcp configuration is complete; sets |
---|
952 | up /etc/resolv.conf from the version dhcpcd dropped in |
---|
953 | /etc/dhcpc/resolv.conf |
---|
954 | |
---|
955 | /etc/sysconfig/network-scripts/route-<interface-name> |
---|
956 | |
---|
957 | Contains lines that specify additional routes that should be added when the |
---|
958 | associated interface is brought up. |
---|
959 | |
---|
960 | The files are processed by the ifup-routes script and uses the /sbin/ipcalc |
---|
961 | utility for all network masks and numbers. Routes are specified using the |
---|
962 | syntax: |
---|
963 | |
---|
964 | ADDRESSn=<network> |
---|
965 | NETMASKn=<network/prefix mask> |
---|
966 | GATEWAYn=<next-hop router/gateway IP address> |
---|
967 | |
---|
968 | The "n" can be any integer number, but is expected to be monotonically |
---|
969 | increasing and counting starts from 0. For example: |
---|
970 | |
---|
971 | ADDRESS0=192.168.2.0 |
---|
972 | NETMASK0=255.255.255.0 |
---|
973 | GATEWAY0=192.168.1.1 |
---|
974 | |
---|
975 | adds a network route to the 192.168.2.0 network via the gateway at |
---|
976 | 192.168.1.1. Since you must already have a route to the network of the |
---|
977 | gateway, there is no need to specify a device. |
---|
978 | |
---|
979 | Note: The ifup-routes script also supports an older syntax designed to be |
---|
980 | used directly as an argument to "/sbin/ip route add". This syntax is |
---|
981 | deprecated, but if no "ADDRESSn" lines are found the following will still |
---|
982 | work: |
---|
983 | |
---|
984 | 192.168.2.0/24 dev ppp0 |
---|
985 | |
---|
986 | adds a network route to the 192.168.2.0 network through ppp0. |
---|
987 | |
---|
988 | /etc/sysconfig/network-scripts/route6-<interface-name> |
---|
989 | |
---|
990 | Contains lines that are arguments to "/sbin/ip -6 route add" |
---|
991 | For example: |
---|
992 | |
---|
993 | site-local route for network fec0:0:0:2::/64 |
---|
994 | via gateway fec0:0:0:1:0:0:0:20 (e.g. on eth0): |
---|
995 | |
---|
996 | fec0:0:0:2::/64 via fec0:0:0:1:0:0:0:20 |
---|
997 | |
---|
998 | additional prefix configured to be on-link on eth0: |
---|
999 | |
---|
1000 | 3ffe:fffe:1:2::/64 dev eth0 |
---|
1001 | |
---|
1002 | 6to4 route for network 3ffe:ffff:1::/48, either: |
---|
1003 | |
---|
1004 | 3ffe:ffff:1::/48 |
---|
1005 | 3ffe:ffff:1::/48 via ::192.168.1.2 |
---|
1006 | |
---|
1007 | Note the special case of 6to4 interface: 'via [relay]' is |
---|
1008 | automatically added if explicit 'via' wasn't specified. |
---|
1009 | |
---|
1010 | /etc/sysconfig/network-scripts/rule-<interface-name> |
---|
1011 | |
---|
1012 | Contains lines that specify additional routing rules that should be added |
---|
1013 | when the associated interface is brought up. |
---|
1014 | |
---|
1015 | Each non-comment line is used directly as an argument to "/sbin/ip rule add". |
---|
1016 | |
---|