[1108] | 1 | Files in /etc/sysconfig |
---|
| 2 | ======================= |
---|
| 3 | |
---|
| 4 | /etc/sysconfig/authconfig |
---|
| 5 | |
---|
| 6 | used by authconfig to store information about the system's user |
---|
| 7 | information and authentication setup; changes made to this file |
---|
| 8 | have no effect until the next time authconfig is run |
---|
| 9 | |
---|
| 10 | USEHESIOD=no |
---|
| 11 | Whether or not the hesiod naming service is in use. If not set, |
---|
| 12 | authconfig examines the passwd setting in /etc/nsswitch.conf. |
---|
| 13 | USELDAP=no |
---|
| 14 | Whether or not LDAP is used as a naming service. If not set, |
---|
| 15 | authconfig examines the passwd setting in /etc/nsswitch.conf. |
---|
| 16 | USENIS=no |
---|
| 17 | Whether or not NIS is in use. If not set, authconfig examines |
---|
| 18 | the passwd setting in /etc/nsswitch.conf. |
---|
| 19 | |
---|
| 20 | USEKERBEROS=no |
---|
| 21 | Whether or not Kerberos is in use. If not set, authconfig examines |
---|
| 22 | the settings in /etc/pam.d/system-auth. |
---|
| 23 | USELDAPAUTH=no |
---|
| 24 | Whether or not LDAP is being used for authentication. If not set, |
---|
| 25 | authconfig examines the settings in /etc/pam.d/system-auth. Note |
---|
| 26 | that this option is separate from USELDAP, and that neither implies |
---|
| 27 | the other. |
---|
| 28 | USEMD5=no |
---|
| 29 | Whether or not MD5-based hashing should be used when setting passwords. |
---|
| 30 | If not set, authconfig examines the settings in /etc/pam.d/system-auth. |
---|
| 31 | This option affects authentication using both local files and LDAP. |
---|
| 32 | USESHADOW=no |
---|
| 33 | Whether or not shadow passwords are in use. If not set, authconfig |
---|
| 34 | checks for the existence of /etc/shadow. |
---|
| 35 | USESMBAUTH=no |
---|
| 36 | Whether or not SMB authentication is in use. If not set, authconfig |
---|
| 37 | examines the settings in /etc/pam.d/system-auth. |
---|
| 38 | |
---|
| 39 | /etc/sysconfig/autofsck |
---|
| 40 | |
---|
| 41 | does not normally exist; if it does, it can influence a choice |
---|
| 42 | whether or not to fsck after a crash |
---|
| 43 | |
---|
| 44 | AUTOFSCK_DEF_CHECK=no |
---|
| 45 | If the user does not respond, choose whether or not to fsck |
---|
| 46 | AUTOFSCK_SINGLEUSER= |
---|
| 47 | If this is set, drop to single user mode before fsck. |
---|
| 48 | |
---|
| 49 | /etc/sysconfig/clock: |
---|
| 50 | |
---|
| 51 | deprecated values from earlier releases: |
---|
| 52 | |
---|
| 53 | CLOCKMODE=GMT indicates that the clock is set to UTC |
---|
| 54 | CLOCKMODE=ARC on alpha only indicates the ARC console's |
---|
| 55 | 42-year time offset is in effect |
---|
| 56 | |
---|
| 57 | currently correct values: |
---|
| 58 | |
---|
| 59 | UTC=true,yes |
---|
| 60 | Indicates that the hardware clock is set to UTC. |
---|
| 61 | UTC=no,false |
---|
| 62 | Indicates that the hardware clock is set to Local Time. |
---|
| 63 | |
---|
| 64 | Not having UTC set defaults to the last used (if recorded |
---|
| 65 | in the adjtime file), or to localtime, if not adjtime file |
---|
| 66 | exists. |
---|
| 67 | |
---|
| 68 | ARC=true on alpha only indicates the ARC console's |
---|
| 69 | 42-year time offset is in effect; otherwise the normal |
---|
| 70 | Unix epoch is assumed. |
---|
| 71 | |
---|
| 72 | SRM=true on alpha only indicates the SRM 1900 epoch is in |
---|
| 73 | effect; otherwise the normal Unix epoch is assumed. |
---|
| 74 | |
---|
| 75 | ZONE="filename" indicates the zonefile under /usr/share/zoneinfo |
---|
| 76 | that /etc/localtime is a copy of, for example: |
---|
| 77 | ZONE="US/Eastern" |
---|
| 78 | |
---|
| 79 | /etc/sysconfig/desktop: |
---|
| 80 | DESKTOP=GNOME|KDE |
---|
| 81 | This determines the default desktop for new users. |
---|
| 82 | DISPLAYMANAGER=GNOME|KDE|XDM |
---|
| 83 | This determines display manager started by /etc/X11/prefdm, |
---|
| 84 | independent of the desktop. |
---|
| 85 | |
---|
| 86 | /etc/sysconfig/init: |
---|
| 87 | |
---|
| 88 | BOOTUP=<some bootup mode> |
---|
| 89 | BOOTUP=color means colorized text mode boot display. |
---|
| 90 | BOOTUP=verbose means old style display |
---|
| 91 | Anything else means simplified display, but without color or ANSI-formatting |
---|
| 92 | LOGLEVEL=<a number> |
---|
| 93 | Sets the initial console logging level for the kernel. |
---|
| 94 | The default is 7. 8 means everything (including debugging); |
---|
| 95 | 1 means nothing except kernel panics. syslogd will override |
---|
| 96 | this once it starts. |
---|
| 97 | RES_COL=<a number> |
---|
| 98 | Column of the screen to start status labels at. Defaults to 60 |
---|
| 99 | MOVE_TO_COL=<a command> |
---|
| 100 | A command to move the cursor to $RES_COL. Defaults to nasty |
---|
| 101 | ANSI sequences output by echo -e. |
---|
| 102 | SETCOLOR_SUCCESS=<a command> |
---|
| 103 | A command to set the color to a color indicating success. |
---|
| 104 | Defaults to nasty ANSI sequences output by echo -e setting |
---|
| 105 | the color to green. |
---|
| 106 | SETCOLOR_FAILURE=<a command> |
---|
| 107 | A command to set the color to a color indicating failure. |
---|
| 108 | Defaults to nasty ANSI sequences output by echo -e setting |
---|
| 109 | the color to red. |
---|
| 110 | SETCOLOR_WARNING=<a command> |
---|
| 111 | A command to set the color to a color indicating warning. |
---|
| 112 | Defaults to nasty ANSI sequences output by echo -e setting |
---|
| 113 | the color to yellow. |
---|
| 114 | SETCOLOR_NORMAL=<a command> |
---|
| 115 | A command to set the color to 'normal'. Defaults to nasty |
---|
| 116 | ANSI sequences output by echo -e. |
---|
| 117 | PROMPT=yes|no |
---|
| 118 | Set to 'yes' to enable the key check for interactive mode as well as |
---|
| 119 | asking if a filesystem check should be done. Default is 'no' and |
---|
| 120 | the kernel command line option "forcefsck" can be used to check the |
---|
| 121 | filesystems and "confirm" can be used to enable interactive startup |
---|
| 122 | questions. |
---|
| 123 | AUTOSWAP=yes|no |
---|
| 124 | Set to 'yes' to enable automatic swapon of all partitions with |
---|
| 125 | the proper swap magic. This allows setting up swap without editing |
---|
| 126 | /etc/fstab. |
---|
| 127 | |
---|
| 128 | obsoleted values from earlier releases: |
---|
| 129 | |
---|
| 130 | MAGIC_SYSRQ=yes|no |
---|
| 131 | Setting this to 'no' used to disable the magic sysrq key and |
---|
| 132 | Stop-A (break on serial console) on SPARC. This setting has been |
---|
| 133 | moved into kernel.sysrq and kernel.stop-a settings respectively in |
---|
| 134 | /etc/sysctl.conf. Setting either of them there to 0 disables it, |
---|
| 135 | setting it to 1 enables it. |
---|
| 136 | STOP_A=yes|no |
---|
| 137 | Setting this to 'no' used to disable the Stop-A (break on |
---|
| 138 | serial console) key on SPARC. |
---|
| 139 | This setting has been moved into kernel.stop-a setting in |
---|
| 140 | /etc/sysctl.conf. Setting it there to 0 disables it, |
---|
| 141 | setting it to 1 enables it. The setting should be present |
---|
| 142 | on SPARC only. |
---|
| 143 | |
---|
| 144 | /etc/sysconfig/keyboard: |
---|
| 145 | |
---|
| 146 | KEYTABLE=<keytable file> |
---|
| 147 | for example: KEYTABLE="/usr/lib/kbd/keytables/us.map" |
---|
| 148 | |
---|
| 149 | If you dump a keymap (using 'dumpkeys') to |
---|
| 150 | /etc/sysconfig/console/default.kmap |
---|
| 151 | it will be loaded on bootup before filesystems are mounted/checked. |
---|
| 152 | This could be useful if you need to emergency type the root password. |
---|
| 153 | This has to be a dumped keymap, as opposed to copying the shipped |
---|
| 154 | keymap files, as the shipped files include other maps from the |
---|
| 155 | /usr/lib/kbd/keytables directory. |
---|
| 156 | |
---|
| 157 | KEYBOARDTYPE=sun|pc |
---|
| 158 | on SPARC only, sun means a sun keyboard is attached on /dev/kbd, |
---|
| 159 | pc means a PS/2 keyboard is on ps/2 port. |
---|
| 160 | |
---|
| 161 | /etc/sysconfig/mouse: |
---|
| 162 | |
---|
| 163 | MOUSETYPE=microsoft|mouseman|mousesystems|ps/2|msbm|logibm|atibm| |
---|
| 164 | logitech|mmseries|mmhittab |
---|
| 165 | XEMU3=yes|no (emulate three buttons with two buttons whenever |
---|
| 166 | necessary, most notably in X) |
---|
| 167 | DEVICE=<a device node> (the device of the mouse) |
---|
| 168 | |
---|
| 169 | In addition, /dev/mouse points to the mouse device. |
---|
| 170 | |
---|
| 171 | /etc/sysconfig/network: |
---|
| 172 | |
---|
| 173 | NETWORKING=yes|no |
---|
| 174 | HOSTNAME=<fqdn by default, but whatever hostname you want> |
---|
| 175 | GATEWAY=<gateway IP> |
---|
| 176 | GATEWAYDEV=<gateway device to use, when multiple devices have GATEWAY=> (e.g. eth0) |
---|
| 177 | NISDOMAIN=<nis domain name> |
---|
| 178 | VLAN=yes|no |
---|
| 179 | IPX=yes|no |
---|
| 180 | IPXAUTOPRIMARY=on|off (note, that MUST be on|off, not yes|no) |
---|
| 181 | IPXAUTOFRAME=on|off (again, not yes|no) |
---|
| 182 | IPXINTERNALNETNUM=<netnum> |
---|
| 183 | IPXINTERNALNODENUM=<nodenum> |
---|
| 184 | NOZEROCONF= |
---|
| 185 | Set this to not set a route for dynamic link-local addresses. |
---|
| 186 | |
---|
| 187 | All the IPX stuff is optional, and should default to off. |
---|
| 188 | |
---|
| 189 | NETWORKDELAY=<delay in seconds> |
---|
| 190 | Delay in seconds after all network interfaces are initialized. Useful if |
---|
| 191 | network has spanning tree running and must wait for STP convergence. |
---|
| 192 | Default: 0 (no delay) |
---|
| 193 | |
---|
| 194 | IPV6FORWARDING=yes|no |
---|
| 195 | Enable or disable global forwarding of incoming IPv6 packets |
---|
| 196 | on all interfaces. |
---|
| 197 | Note: Actual packet forwarding cannot be controlled per-device, use netfilter6 for such issues |
---|
| 198 | Default: no |
---|
| 199 | IPV6INIT=yes|no |
---|
| 200 | Enable or disable IPv6 configuration for all interfaces |
---|
| 201 | Use with caution! |
---|
| 202 | Default: value not set in this file |
---|
| 203 | |
---|
| 204 | IPV6_AUTOCONF=yes|no |
---|
| 205 | Sets the default for device-based autoconfiguration. |
---|
| 206 | Default: yes if IPV6FORWARDING=no, no if IPV6FORWARDING=yes |
---|
| 207 | IPV6_ROUTER=yes|no |
---|
| 208 | Sets the default for device-based Host/Router behaviour. |
---|
| 209 | Default: yes if IPV6FORWARDING=yes, no if IPV6FORWARDING=no |
---|
| 210 | IPV6_AUTOTUNNEL=yes|no |
---|
| 211 | Controls automatic IPv6 tunneling. |
---|
| 212 | Default: no |
---|
| 213 | |
---|
| 214 | IPV6_DEFAULTGW=<IPv6 address[%interface]> (optional) |
---|
| 215 | Add a default route through specified gateway |
---|
| 216 | An interface can be specified: required for link-local addresses |
---|
| 217 | Examples: |
---|
| 218 | IPV6_DEFAULTGW="3ffe:ffff:1234:5678::1" |
---|
| 219 | Add default route through 3ffe:ffff:1234:5678::1 |
---|
| 220 | IPV6_DEFAULTGW="3ffe:ffff:1234:5678::1%eth0" |
---|
| 221 | Add default route through 3ffe:ffff:1234:5678::1 and device eth0 |
---|
| 222 | IPV6_DEFAULTGW="fe80::1%eth0" |
---|
| 223 | Add default route through fe80::1 and device eth0 |
---|
| 224 | |
---|
| 225 | Note: if IPV6_DEFAULTGW is specified with %interface scope and it |
---|
| 226 | doesn't match IPV6_DEFAULTDEV, IPV6_DEFAULTDEV is ignored. |
---|
| 227 | Note: it's preferred to use %interface for all addresses, not |
---|
| 228 | just link-local if you have multiple IPv6-enabled interfaces. |
---|
| 229 | |
---|
| 230 | IPV6_DEFAULTDEV=<interface> (optional) |
---|
| 231 | Add a default route through specified interface without specifying next hop |
---|
| 232 | Type of interface will be tested whether this is allowed |
---|
| 233 | Examples: |
---|
| 234 | IPV6_DEFAULTDEV="eth0" INVALID example! |
---|
| 235 | IPV6_DEFAULTDEV="ppp0" |
---|
| 236 | IPV6_DEFAULTDEV="sit1" |
---|
| 237 | Examples for 6to4 |
---|
| 238 | IPV6_DEFAULTDEV="tun6to4" |
---|
| 239 | Add default route through dedicated 6to4 tunnel device "tun6to4", if configured |
---|
| 240 | |
---|
| 241 | Note: "tun6to4" does not support an additional IPV6_DEFAULTGW. |
---|
| 242 | Other interfaces prefer IPV6_DEFAULTGW, if specified. |
---|
| 243 | |
---|
| 244 | IPV6_RADVD_PIDFILE=<pid-file> (optional) |
---|
| 245 | Location of PID file for controlling radvd, see IPV6_CONTROL_RADVD |
---|
| 246 | Default: "/var/run/radvd/radvd.pid" |
---|
| 247 | Example: |
---|
| 248 | IPV6_RADVD_PIDFILE="/some/other/location/radvd.pid" |
---|
| 249 | IPV6TO4_RADVD_PIDFILE=<pid-file> (obsolete) |
---|
| 250 | As above, still supported for a while for backward compatibility. |
---|
| 251 | IPV6_RADVD_TRIGGER_ACTION=startstop|reload|restart|SIGHUP (optional) |
---|
| 252 | How to trigger radvd in case of 6to4 or PPP action |
---|
| 253 | startstop: radvd starts if interface goes up and stops |
---|
| 254 | if interface goes down using initscript call of radvd with related parameter |
---|
| 255 | reload|restart: initscript of radvd is called with this parameter |
---|
| 256 | SIGHUP: signal HUP is sent to radvd, pidfile must be specified, if not the default |
---|
| 257 | Default: SIGHUP |
---|
| 258 | |
---|
| 259 | IPv6 options above can be overridden in interface-specific configuration. |
---|
| 260 | |
---|
| 261 | obsoleted values from earlier releases: |
---|
| 262 | |
---|
| 263 | FORWARD_IPV4=yes|no |
---|
| 264 | This setting has been moved into net.ipv4.ip_forward setting |
---|
| 265 | in /etc/sysctl.conf. Setting it to 1 there enables IP forwarding, |
---|
| 266 | setting it to 0 disables it (which is the default for RFC compliance). |
---|
| 267 | DEFRAG_IPV4=yes|no |
---|
| 268 | Setting this to yes used to automatically defragment IPv4 |
---|
| 269 | packets. This is a good idea for masquerading, and |
---|
| 270 | a bad idea otherwise. This setting was moved into |
---|
| 271 | net.ipv4.ip_always_defrag setting in /etc/sysctl.conf. It |
---|
| 272 | is no longer valid for 2.4 kernels. |
---|
| 273 | NETWORKING_IPV6=yes|no |
---|
| 274 | Enable or disable global IPv6 initialization |
---|
| 275 | |
---|
| 276 | To do this properly, add a rule in /etc/modprobe.conf that |
---|
| 277 | disables loading of the ipv6 module. Example: |
---|
| 278 | install ipv6 /bin/true |
---|
| 279 | |
---|
| 280 | /etc/sysconfig/static-routes-ipv6: |
---|
| 281 | Contains lines of the form: |
---|
| 282 | |
---|
| 283 | <device> IPv6-network IPv6-gateway |
---|
| 284 | <tunneldevice> IPv6-network |
---|
| 285 | |
---|
| 286 | <device> must be a device name to have the route brought up and |
---|
| 287 | down with the device |
---|
| 288 | |
---|
| 289 | For example: |
---|
| 290 | |
---|
| 291 | eth0 fec0:0:0:2::/64 fec0:0:0:1:0:0:0:20 |
---|
| 292 | adds a route for IPv6 network fec0:0:0:2::/64 through fec0:0:0:1:0:0:0:20 |
---|
| 293 | |
---|
| 294 | eth0 2000::/3 3ffe:ffff:0:1::1 |
---|
| 295 | so-called "default" routes for clients |
---|
| 296 | |
---|
| 297 | sit1 2000::/3 |
---|
| 298 | adds routes through dedicated tunnel interface sit1 |
---|
| 299 | |
---|
| 300 | tun6to4 3ffe:ffff:1234::/56 |
---|
| 301 | adds routes through hardwired 6to4 tunnel interface tun6to4 |
---|
| 302 | tun6to4 3ffe:ffff:5678::/56 ::5.6.7.8 |
---|
| 303 | adds routes through hardwired 6to4 tunnel interface tun6to4, |
---|
| 304 | specifying next hop |
---|
| 305 | |
---|
| 306 | Notes: |
---|
| 307 | * default routes (such as the "2000::/3" shown above) should be set with |
---|
| 308 | IPV6_DEFAULTGW and IPV6_DEFAULTDEV, see more above. |
---|
| 309 | * tunnel device "sit0" is not supported here, routes will never be applied |
---|
| 310 | |
---|
| 311 | /etc/sysconfig/routed: |
---|
| 312 | |
---|
| 313 | SILENT=yes|no |
---|
| 314 | EXPORT_GATEWAY=yes|no |
---|
| 315 | |
---|
| 316 | /etc/sysconfig/rawdevices: |
---|
| 317 | |
---|
| 318 | This is used for setting up raw device to block device mappings. |
---|
| 319 | It has the format: |
---|
| 320 | <rawdev> <major> <minor> |
---|
| 321 | <rawdev> <blockdev> |
---|
| 322 | For example: |
---|
| 323 | /dev/raw/raw1 /dev/sda1 |
---|
| 324 | /dev/raw/raw2 8 5 |
---|
| 325 | |
---|
| 326 | /etc/sysconfig/pcmcia: |
---|
| 327 | |
---|
| 328 | PCMCIA=yes|no |
---|
| 329 | PCIC=i82365|tcic |
---|
| 330 | PCIC_OPTS=<socket driver (i82365 or tcic) timing parameters> |
---|
| 331 | CORE_OPTS=<pcmcia_core options> |
---|
| 332 | CARDMGR_OPTS=<cardmgr options> |
---|
| 333 | |
---|
| 334 | /etc/sysconfig/amd: |
---|
| 335 | |
---|
| 336 | ADIR=/.automount (normally never changed) |
---|
| 337 | MOUNTPTS='/net /etc/amd.conf' (standard automount stuff) |
---|
| 338 | AMDOPTS= (extra options for AMD) |
---|
| 339 | |
---|
| 340 | /etc/sysconfig/tape: |
---|
| 341 | |
---|
| 342 | DEV=/dev/nst0 |
---|
| 343 | Tape device. Use the non-rewinding one for these scripts. |
---|
| 344 | |
---|
| 345 | For SCSI tapes this is /dev/nst#, where # is the number of the |
---|
| 346 | tape drive you want to use. If you only have one then use |
---|
| 347 | nst0. |
---|
| 348 | |
---|
| 349 | For IDE tapes you use /dev/ht#, where # is the number of the tape |
---|
| 350 | drive you want to use (usually ht0). |
---|
| 351 | |
---|
| 352 | For floppy tape drives use /dev/ftape. |
---|
| 353 | |
---|
| 354 | ADMIN=root |
---|
| 355 | Person to mail to if the backup fails for any reason |
---|
| 356 | |
---|
| 357 | SLEEP=5 |
---|
| 358 | Time to sleep between tape operations. Some drives need a bit |
---|
| 359 | more than others, but 5 seems to work for 8mm, 4mm, and DLT |
---|
| 360 | |
---|
| 361 | BLOCKSIZE=32768 |
---|
| 362 | This worked fine for 8mm, then 4mm, and now DLT. An optimal |
---|
| 363 | setting is probably however much data your drive writes at one |
---|
| 364 | time. |
---|
| 365 | |
---|
| 366 | SHORTDATE=$(date +%y:%m:%d:%H:%M) |
---|
| 367 | A short date string, used in backup log filenames. |
---|
| 368 | |
---|
| 369 | DAY=$(date +log-%y:%m:%d) |
---|
| 370 | This is used for the log file directory. |
---|
| 371 | |
---|
| 372 | DATE=$(date) |
---|
| 373 | Regular date string, used in log files. |
---|
| 374 | |
---|
| 375 | LOGROOT=/var/log/backup |
---|
| 376 | Root of the logging directory |
---|
| 377 | |
---|
| 378 | LIST=$LOGROOT/incremental-list |
---|
| 379 | This is the file name the incremental backup will use to store |
---|
| 380 | the incremental list. It will be $LIST-{some number}. |
---|
| 381 | |
---|
| 382 | DOTCOUNT=$LOGROOT/.count |
---|
| 383 | For counting as you go to know which incremental list to use |
---|
| 384 | |
---|
| 385 | COUNTER=$LOGROOT/counter-file |
---|
| 386 | For rewinding when done...might not use. |
---|
| 387 | |
---|
| 388 | BACKUPTAB=/etc/backuptab |
---|
| 389 | The file in which we keep our list of backup(s) we want to make. |
---|
| 390 | |
---|
| 391 | /etc/sysconfig/saslauthd: |
---|
| 392 | |
---|
| 393 | used by the saslauthd init script (part of the cyrus-sasl package) to |
---|
| 394 | control which arguments are passed to saslauthd at startup time; changes |
---|
| 395 | made to this file have no effect until saslauthd is restarted |
---|
| 396 | |
---|
| 397 | MECH=shadow |
---|
| 398 | controls which data source saslauthd will consult when checking user |
---|
| 399 | passwords; run 'saslauthd -a' to get a full list of available |
---|
| 400 | authentication mechanisms |
---|
| 401 | SOCKETDIR=/var/run/saslauthd |
---|
| 402 | controls in which directory saslauthd will be directed to create its |
---|
| 403 | listening socket; any change to this value will require a corresponding |
---|
| 404 | change in client configuration files |
---|
| 405 | |
---|
| 406 | /etc/sysconfig/sendmail: |
---|
| 407 | DAEMON=yes|no |
---|
| 408 | yes implies -bd (i.e., listen on port 25 for new mail) |
---|
| 409 | QUEUE=1h |
---|
| 410 | given to sendmail as -q$QUEUE |
---|
| 411 | -q option is not given to sendmail if /etc/sysconfig/sendmail |
---|
| 412 | exists and QUEUE is empty or undefined. |
---|
| 413 | |
---|
| 414 | /etc/sysconfig/i18n |
---|
| 415 | If ~/.i18n exists, it is used in addition to /etc/sysconfig/i18n and allows |
---|
| 416 | per-user customization of the locales. |
---|
| 417 | |
---|
| 418 | LANG= set locale for all categories, can be any two letter ISO |
---|
| 419 | language code |
---|
| 420 | LC_CTYPE= locale data configuration for classification and conversion |
---|
| 421 | of characters |
---|
| 422 | LC_COLLATE= locale data configuration for collation (sort order) of |
---|
| 423 | strings |
---|
| 424 | LC_MESSAGES= locale data configuration for translation of messages |
---|
| 425 | LC_NUMERIC= locale data configuration for non-monetary numeric data |
---|
| 426 | LC_MONETARY= locale data configuration for monetary data |
---|
| 427 | LC_TIME= locale data configuration for date and time |
---|
| 428 | LC_ALL= locale data configuration overriding all of the above |
---|
| 429 | LANGUAGE= can be a : separated list of ISO language codes |
---|
| 430 | LINGUAS= can be a ' ' separated list of ISO language codes |
---|
| 431 | |
---|
| 432 | The above variables are used in /etc/profile.d/lang.sh. |
---|
| 433 | |
---|
| 434 | SYSFONT= Console font. Fonts are found in /lib/kbd/consolefonts. |
---|
| 435 | |
---|
| 436 | UNIMAP= Unicode font map. Most fonts have these built-in. Font maps |
---|
| 437 | can be found in /lib/kbd/unimaps. These are applied via setfont's |
---|
| 438 | -u option. |
---|
| 439 | |
---|
| 440 | SYSFONTACM= Console map. These are applied via setfont's -m option, |
---|
| 441 | and are found in /lib/kbd/consoletrans. |
---|
| 442 | |
---|
| 443 | The above are used by the /sbin/setsysfont command (which is run |
---|
| 444 | by rc.sysinit at boot time.) For more information, see setfont(8). |
---|
| 445 | |
---|
| 446 | Files in /etc/sysconfig/network-scripts/ |
---|
| 447 | ======================================== |
---|
| 448 | |
---|
| 449 | /etc/sysconfig/network-scripts/ifup: |
---|
| 450 | /etc/sysconfig/network-scripts/ifdown: |
---|
| 451 | |
---|
| 452 | Symlinks to /sbin/ifup and /sbin/ifdown, respectively. |
---|
| 453 | These are the only two scripts "in" this directory that should |
---|
| 454 | be called directly; these two scripts call all the other |
---|
| 455 | scripts as needed. These symlinks are here for legacy purposes -- |
---|
| 456 | only /sbin/ifup and /sbin/ifdown should currently be used |
---|
| 457 | at the user level. |
---|
| 458 | |
---|
| 459 | These scripts take one argument normally: the name of the device |
---|
| 460 | (e.g. eth0). They are called with a second argument of "boot" |
---|
| 461 | during the boot sequence so that devices that are not meant to |
---|
| 462 | be brought up on boot (ONBOOT=no, see below) can be ignored at |
---|
| 463 | that time. |
---|
| 464 | |
---|
| 465 | Also, interfaces may be brought up via the hotplug scripts; |
---|
| 466 | in this case, HOTPLUG=no needs to be set to no to avoid this. |
---|
| 467 | This is useful e.g. to prevent bonding device activation by merely |
---|
| 468 | loading the bonding kernel module. |
---|
| 469 | |
---|
| 470 | /etc/sysconfig/network-scripts/init.ipv6-global: |
---|
| 471 | Not really a public file. Contains different basic settings that |
---|
| 472 | are set from /etc/[rc.d]/init.d/network at different stages of |
---|
| 473 | network initialization. |
---|
| 474 | |
---|
| 475 | /etc/sysconfig/network-scripts/network-functions: |
---|
| 476 | |
---|
| 477 | Not really a public file. Contains functions which the scripts use |
---|
| 478 | for bringing interfaces up and down. In particular, it contains |
---|
| 479 | most of the code for handling alternative interface configurations |
---|
| 480 | and interface change notification through netreport. |
---|
| 481 | |
---|
| 482 | /etc/sysconfig/network-scripts/network-functions-ipv6: |
---|
| 483 | |
---|
| 484 | Not really a public file. Contains functions which the scripts use |
---|
| 485 | for bringing IPv6 on interfaces up and down, like addresses, routes, |
---|
| 486 | forwarding handling and static or automatic tunneling. |
---|
| 487 | |
---|
| 488 | /etc/sysconfig/network-scripts/ifcfg-<interface-name> and |
---|
| 489 | /etc/sysconfig/network-scripts/ifcfg-<interface-name>:<alias-name>: |
---|
| 490 | |
---|
| 491 | The first defines an interface, and the second contains |
---|
| 492 | only the parts of the definition that are different in a |
---|
| 493 | "alias" (or alternative) interface. For example, the |
---|
| 494 | network numbers might be different, but everything else |
---|
| 495 | might be the same, so only the network numbers would be |
---|
| 496 | in the alias file, but all the device information would |
---|
| 497 | be in the base ifcfg file. |
---|
| 498 | |
---|
| 499 | The items that can be defined in an ifcfg file depend on the |
---|
| 500 | interface type. The really obvious ones I'm not going to |
---|
| 501 | bother to define; you can figure out what "IPADDR" is, I |
---|
| 502 | think... :-) |
---|
| 503 | |
---|
| 504 | Base items: |
---|
| 505 | NAME=<friendly name for users to see> |
---|
| 506 | Most important for PPP. Only used in front ends. |
---|
| 507 | DEVICE=<name of physical device (except dynamically-allocated PPP |
---|
| 508 | devices where it is the "logical name")> |
---|
| 509 | IPADDR= |
---|
| 510 | NETMASK= |
---|
| 511 | GATEWAY= |
---|
| 512 | METRIC= |
---|
| 513 | Metric for the default route using GATEWAY |
---|
| 514 | ONBOOT=yes|no (not valid for alias devices; use ONPARENT) |
---|
| 515 | HOTPLUG=yes|no |
---|
| 516 | USERCTL=yes|no |
---|
| 517 | BOOTPROTO=none|bootp|dhcp |
---|
| 518 | MTU= |
---|
| 519 | Default MTU for this device |
---|
| 520 | WINDOW= |
---|
| 521 | Default window for routes from this device |
---|
| 522 | PEERDNS=yes|no |
---|
| 523 | modify /etc/resolv.conf if peer uses msdns extension (PPP only) or |
---|
| 524 | DNS{1,2} are set, or if using dhclient. default to "yes". |
---|
| 525 | DNS{1,2}=<ip address> |
---|
| 526 | provide DNS addresses that are dropped into the resolv.conf |
---|
| 527 | file if PEERDNS is not set to "no". |
---|
| 528 | SCOPE= |
---|
| 529 | Set to "scope SCOPE-ID" to set a non-default scope. Supported only on |
---|
| 530 | Ethernet with BOOTPROTO=none. |
---|
| 531 | SRCADDR= |
---|
| 532 | use the specified source address for outgoing packets |
---|
| 533 | HWADDR= |
---|
| 534 | ethernet hardware address for this device |
---|
| 535 | MACADDR= |
---|
| 536 | Set the hardware address for this device to this. |
---|
| 537 | Use of this in conjunction with HWADDR= may cause |
---|
| 538 | unintended behavior. |
---|
| 539 | NOZEROCONF= |
---|
| 540 | Set this to not set a route for dynamic link-local addresses |
---|
| 541 | over this device. |
---|
| 542 | PERSISTENT_DHCLIENT=yes|no|1|0 |
---|
| 543 | Without this option, or if it is 'no'/'0', and BOOTPROTO=dhcp, |
---|
| 544 | dhclient is run for the interface in "one-shot" mode; if the |
---|
| 545 | dhcp server does not respond for a configurable timeout, then |
---|
| 546 | dhclient exits and the interface is not brought up - |
---|
| 547 | the '-1' option is given to dhclient. |
---|
| 548 | If PERSISTENT_DHCLIENT=yes, then dhclient will keep on trying |
---|
| 549 | to contact the dhcp server when it does not respond - no '-1' |
---|
| 550 | option is given to dhclient. Note: this disables the automatic |
---|
| 551 | checking for the presence of a link before starting dhclient. |
---|
| 552 | DHCPRELEASE=yes|no|1|0 |
---|
| 553 | With this option set to 'yes' (1), when a dhcp configured |
---|
| 554 | interface is brought down with 'ifdown', the lease will be |
---|
| 555 | released. Otherwise, leases are not released. |
---|
| 556 | DHCLIENT_IGNORE_GATEWAY=yes|no|1|0 |
---|
| 557 | If set to 'yes', it will cause dhclient-script to ignore any $GATEWAY |
---|
| 558 | setting that may be in the ifcfg file for this interface. |
---|
| 559 | Otherwise, the dhclient session which obtains an ip-address |
---|
| 560 | on the same subnet as $GATEWAY will set the default route |
---|
| 561 | to be via $GATEWAY, and no other dhclient session will set |
---|
| 562 | the default route. |
---|
| 563 | |
---|
| 564 | If BOOTPROTO is not "none", then the only other item that |
---|
| 565 | must be set is the DEVICE item; all the rest will be determined |
---|
| 566 | by the boot protocol. No "dummy" entries need to be created. |
---|
| 567 | |
---|
| 568 | Base items being deprecated: |
---|
| 569 | NETWORK=<will be calculated automatically with ipcalc> |
---|
| 570 | BROADCAST=<will be calculated automatically with ipcalc> |
---|
| 571 | |
---|
| 572 | Alias specific items: |
---|
| 573 | ONPARENT=yes|no |
---|
| 574 | Whether to bring up the device when the parent device is brought |
---|
| 575 | up. |
---|
| 576 | Default: yes |
---|
| 577 | |
---|
| 578 | IPv6-only items for real interfaces: |
---|
| 579 | IPV6INIT=yes|no |
---|
| 580 | Enable or disable IPv6 configuration for this interface |
---|
| 581 | Default: no |
---|
| 582 | IPV6FORWARDING=yes|no |
---|
| 583 | Enable or disable global forwarding of incoming IPv6 packets |
---|
| 584 | Note: Obsolete in interface specification! |
---|
| 585 | Default: no |
---|
| 586 | IPV6ADDR=<IPv6 address>[/<prefix length>] |
---|
| 587 | Specify a primary static IPv6 address here |
---|
| 588 | Optional, if normal host and a router advertisement daemon is on local link |
---|
| 589 | Required, if node is a router and interface should route packets |
---|
| 590 | Note: if prefix length is omitted, 64 is assumed |
---|
| 591 | Example: |
---|
| 592 | IPV6ADDR="3ffe:ffff:0:5::1" |
---|
| 593 | IPV6ADDR="3ffe:ffff:0:1::1/128" |
---|
| 594 | IPV6ADDR_SECONDARIES="<IPv6 address>[/<prefix length>] ..." (optional) |
---|
| 595 | A list of secondary IPv6 addresses (e.g. useful for virtual hosting) |
---|
| 596 | Example: |
---|
| 597 | IPV6ADDR_SECONDARIES="3ffe:ffff:0:1::10 3ffe:ffff:0:2::11/128" |
---|
| 598 | IPV6_MTU=<MTU of link> (optional) |
---|
| 599 | Optional, dedicated MTU of this link |
---|
| 600 | Note: Must be greater or equal to 1280. |
---|
| 601 | Example: |
---|
| 602 | IPV6_MTU="1280" |
---|
| 603 | IPV6_PRIVACY=rfc3041 |
---|
| 604 | Enables RFC 3041 IPv6 privacy support if set. |
---|
| 605 | Default: RFC 3041 support disabled |
---|
| 606 | |
---|
| 607 | Special configuration options for multi-homed hosts etc. |
---|
| 608 | IPV6_ROUTER=yes|no: Controls IPv6 autoconfiguration |
---|
| 609 | IPV6_AUTOCONF=yes|no: Controls IPv6 autoconfiguration |
---|
| 610 | Defaults: |
---|
| 611 | Global IPV6FORWARDING=yes: IPV6_AUTOCONF=no, IPV6_ROUTER=yes |
---|
| 612 | Global IPV6FORWARDING=no: IPV6_AUTOCONF=yes |
---|
| 613 | |
---|
| 614 | Optional settings for a 6to4 tunnel |
---|
| 615 | IPV6TO4INIT=yes|no |
---|
| 616 | Enable or disable 6to4 tunneling setup |
---|
| 617 | Default: no |
---|
| 618 | IPV6TO4_RELAY=<IPv4 address> (optional) |
---|
| 619 | IPv4 address of the remote 6to4 relay |
---|
| 620 | Note: if this is omitted, ::192.88.99.1 (the anycast relay address) is chosen |
---|
| 621 | IPV6TO4_IPV4ADDR=<IPv6 address>[/<prefix length>] (optional) |
---|
| 622 | Overwrite local IPv4 address which is accessible from the Internet |
---|
| 623 | (optional, in case of static IPv4-NAT behind a router or other special scenarios) |
---|
| 624 | IPV6TO4_MTU=<MTU for IPv6> (optional) |
---|
| 625 | Controls IPv6 MTU for the 6to4 tunnel |
---|
| 626 | Note: Must be greater or equal to 1280 |
---|
| 627 | Example: |
---|
| 628 | IPV6TO4_MTU="1280" |
---|
| 629 | Default: MTU of master device - 20 |
---|
| 630 | IPV6TO4_ROUTING="<device>-<suffix>/<prefix length> ..." (optional) |
---|
| 631 | A list of routing tokens to setup proper IPv6 interfaces on the LAN |
---|
| 632 | Example: |
---|
| 633 | IPV6TO4_ROUTING="eth0-:0004::1/64 eth1-:0005::1/64" |
---|
| 634 | Will create one address per eth0 and eth1, taking given SLA |
---|
| 635 | |
---|
| 636 | Optional settings for a 6to4 tunnel or a ppp link |
---|
| 637 | IPV6_CONTROL_RADVD=yes|no (optional) |
---|
| 638 | Enable signaling radvd that the 6to4 prefix has been changed or a |
---|
| 639 | preconfigured dynamic device is up or down |
---|
| 640 | Default: no |
---|
| 641 | |
---|
| 642 | IPv6-only items for static tunnel interface: |
---|
| 643 | Interface name: sitX (X => 1) |
---|
| 644 | IPV6INIT=yes|no |
---|
| 645 | Enable or disable IPv6 configuration for this interface |
---|
| 646 | Default: no |
---|
| 647 | IPV6TUNNELIPV4=<IPv4 address> |
---|
| 648 | Specify IPv4 address of a foreign IPv6-in-IPv4 tunnel endpoint |
---|
| 649 | Example: |
---|
| 650 | IPV6TUNNELIPV4="1.2.3.4" |
---|
| 651 | IPV6TUNNELIPV4LOCAL=<IPv4 address> |
---|
| 652 | Specify local IPv4 address of tunnel, useful on interfaces with multiple IPv4 addresses |
---|
| 653 | IPV6ADDR=<IPv6 address>[/<prefix length>] (optional) |
---|
| 654 | local IPv6 address of a numbered tunnel |
---|
| 655 | IPV6ADDR_SECONDARIES="<IPv6 address>[/<prefix length>] ..." (optional) |
---|
| 656 | A list of secondary IPv6 addresses (example see above) |
---|
| 657 | IPV6_MTU=<MTU of tunnel> (optional) |
---|
| 658 | Optional, dedicated MTU of this tunnel |
---|
| 659 | Note: Must be greater or equal to 1280 |
---|
| 660 | Example: |
---|
| 661 | IPV6_MTU="1280" |
---|
| 662 | |
---|
| 663 | IPv6-only option to enable DHCPv6 client: |
---|
| 664 | DHCPV6C=yes|no |
---|
| 665 | This will enable the DHCPv6 client, dhcp6c, to be run for the interface. |
---|
| 666 | See man dhcp6c(8) and dhcp6c.conf(5). |
---|
| 667 | |
---|
| 668 | Ethernet-only items: |
---|
| 669 | {IPXNETNUM,IPXPRIMARY,IPXACTIVE}_{802_2,802_3,ETHERII,SNAP} |
---|
| 670 | configuration matrix for IPX. Only used if IPX is active. |
---|
| 671 | Managed from /etc/sysconfig/network-scripts/ifup-ipx |
---|
| 672 | ARP=yes|no (adds 'arp' flag to ifconfig, for use with the |
---|
| 673 | ethertap device) |
---|
| 674 | LINKDELAY=<time in seconds> |
---|
| 675 | Time that the system should pause after the specific interface is |
---|
| 676 | enabled. This may be useful if one interface is connected to a |
---|
| 677 | switch which has spanning tree enabled and must wait for STP to |
---|
| 678 | converge before the interface should be considered usable. |
---|
| 679 | BRIDGE=<br* device> |
---|
| 680 | If set, the ethernet device is not assigned an address. It is added to |
---|
| 681 | the specified bridge device instead. |
---|
| 682 | |
---|
| 683 | Deprecated, but supported: |
---|
| 684 | ETHTOOL_OPTS=... |
---|
| 685 | Any device-specific options supported by ethtool. For example, |
---|
| 686 | if you wanted to force 100Mb full duplex: |
---|
| 687 | ETHTOOL_OPTS="speed 100 duplex full autoneg off" |
---|
| 688 | Note that changing speed or duplex settings almost always |
---|
| 689 | requires disabling autonegotiation with 'autoneg off'. |
---|
| 690 | |
---|
| 691 | Long term, this should be done by sysadmin-written udev rules. |
---|
| 692 | |
---|
| 693 | No longer supported: |
---|
| 694 | PROMISC=yes|no (enable or disable promiscuous mode) |
---|
| 695 | ALLMULTI=yes|no (enable or disable all-multicast mode) |
---|
| 696 | |
---|
| 697 | To properly set these, use the packet socket interface. |
---|
| 698 | |
---|
| 699 | Ethernet 802.1q VLAN items: |
---|
| 700 | DEVICE=eth0.42 |
---|
| 701 | Initscripts use DEV_PLUS_VID_NO_PAD naming mode for VLAN |
---|
| 702 | devices. |
---|
| 703 | Example: eth0.42 for vlan 42 on device eth0. |
---|
| 704 | Valid VLAN ID range is 0-4095. Most ethernet switches reserve |
---|
| 705 | VLAN ID 1 to be used as management VLAN; starting from VLAN |
---|
| 706 | ID 2 is recommended. |
---|
| 707 | REORDER_HDR=yes|no |
---|
| 708 | When enabled the VLAN device will move the ethernet header |
---|
| 709 | around to make it look exactly like a real ethernet device. |
---|
| 710 | This may help programs such as ISC dhcpd which read the raw |
---|
| 711 | ethernet packet and make assumptions about the location of |
---|
| 712 | bytes. If you don't need it turn it off because there |
---|
| 713 | is a small performance penalty. Default is on. |
---|
| 714 | |
---|
| 715 | PPP/SLIP items: |
---|
| 716 | PERSIST=yes|no |
---|
| 717 | MODEMPORT=<device, say /dev/modem> |
---|
| 718 | LINESPEED=<speed, say 115200> |
---|
| 719 | DEFABORT=yes|no (tells netcfg whether or not to put default |
---|
| 720 | abort strings in when creating/editing the chat script and/or |
---|
| 721 | dip script for this interface) |
---|
| 722 | (meaningless with WVDIALSECT) |
---|
| 723 | |
---|
| 724 | PPP-specific items |
---|
| 725 | WVDIALSECT=<list of sections from wvdial.conf to use> |
---|
| 726 | If this variable is set, then the chat script (if it |
---|
| 727 | exists) is ignored, and wvdial is used to open the |
---|
| 728 | PPP connection. |
---|
| 729 | DEFROUTE=yes|no (set this interface as default route? yes is default) |
---|
| 730 | DEBUG=yes|no (defaults to yes) |
---|
| 731 | turns on/off pppd and chat (if used) debugging. |
---|
| 732 | ESCAPECHARS=yes|no (simplified interface here doesn't let people |
---|
| 733 | specify which characters to escape; almost everyone can use |
---|
| 734 | asyncmap 00000000 anyway, and they can set PPPOPTIONS to |
---|
| 735 | asyncmap foobar if they want to set options perfectly) |
---|
| 736 | HARDFLOWCTL=yes|no (yes implies "modem crtscts" options) |
---|
| 737 | PPPOPTIONS=<arbitrary option string; is placed last on the |
---|
| 738 | command line, so it can override other options like asyncmap |
---|
| 739 | that were specified differently> |
---|
| 740 | PAPNAME=<"name $PAPNAME" on pppd command line> (note that |
---|
| 741 | the "remotename" option is always specified as the logical |
---|
| 742 | ppp device name, like "ppp0" (which might perhaps be the |
---|
| 743 | physical device ppp1 if some other ppp device was brought |
---|
| 744 | up earlier...), which makes it easy to manage pap/chap |
---|
| 745 | files -- name/password pairs are associated with the |
---|
| 746 | logical ppp device name so that they can be managed |
---|
| 747 | together. |
---|
| 748 | REMIP=<remote ip address, normally unspecified> |
---|
| 749 | MTU= |
---|
| 750 | MRU= |
---|
| 751 | DISCONNECTTIMEOUT=<number of seconds, default currently 5> |
---|
| 752 | (time to wait before re-establishing the connection after |
---|
| 753 | a successfully-connected session terminates before attempting |
---|
| 754 | to establish a new connection.) |
---|
| 755 | RETRYTIMEOUT=<number of seconds, default currently 60> |
---|
| 756 | (time to wait before re-attempting to establish a connection |
---|
| 757 | after a previous attempt fails.) |
---|
| 758 | RETRYCONNECT=yes|no (defaults to yes) |
---|
| 759 | If this is yes, then we will re-run pppd if it exits with a |
---|
| 760 | "connect script failed" status. Otherwise, only one attempt |
---|
| 761 | is made to bring up the connection. Note that some connect |
---|
| 762 | scripts (for example, wvdial) might do their own retries (such |
---|
| 763 | as BUSY or NO DIALTONE conditions). |
---|
| 764 | MAXFAIL=<number> |
---|
| 765 | If this is set, this will cause ppp-watch to exit after |
---|
| 766 | the specified number of attempts. |
---|
| 767 | DEMAND=yes|no |
---|
| 768 | Switches on demand-dialing mode using pppd's "demand" option. |
---|
| 769 | IDLETIMEOUT=600 |
---|
| 770 | The amount of time the link needs to be inactive before pppd will |
---|
| 771 | bring it down automatically. |
---|
| 772 | BOOTTIMEOUT=30 |
---|
| 773 | The amount of time to wait at boot before giving up on the |
---|
| 774 | connection. |
---|
| 775 | |
---|
| 776 | IPPP-specific items (ISDN) |
---|
| 777 | PROVIDER=<ProviderName> |
---|
| 778 | USER=<Login> |
---|
| 779 | PASSWORD=<Password> |
---|
| 780 | ENCAP=[syncppp|] |
---|
| 781 | DIALMODE=[manual|auto] |
---|
| 782 | SECURE=off|on |
---|
| 783 | MSN=<> |
---|
| 784 | PHONE_IN=<Callback.Number> |
---|
| 785 | AREACODE=<> |
---|
| 786 | REGIONCODE=<> |
---|
| 787 | PHONE_OUT=<PhoneNumber> |
---|
| 788 | BUNDLING=off|on |
---|
| 789 | HUPTIMEOUT=<number> |
---|
| 790 | DNS1=<PrimaryDNS> |
---|
| 791 | DNS2=<SecondaryDNS> |
---|
| 792 | DOMAIN="" |
---|
| 793 | LAYER=[HDLC|] |
---|
| 794 | CALLBACK=off|on |
---|
| 795 | CHARGEHUP=<number> |
---|
| 796 | CHARGEINT=<number> |
---|
| 797 | CBHUP=<number> |
---|
| 798 | CBDELAY=<number> |
---|
| 799 | DIALMAX=<number> |
---|
| 800 | AUTH=[+pap] [-chap] |
---|
| 801 | IHUP=<> |
---|
| 802 | DELDEFAULTROUTE=[enabled|disabled] |
---|
| 803 | CBCP=off|on |
---|
| 804 | VJ=off|on |
---|
| 805 | VJCCOMP=off|on |
---|
| 806 | AC=off|on |
---|
| 807 | PC=off|on |
---|
| 808 | BSDCOMP=off|on |
---|
| 809 | CCP=off|on |
---|
| 810 | SLAVE_DEVICE=ippp[0-9] |
---|
| 811 | |
---|
| 812 | ippp0 items being deprecated: |
---|
| 813 | BOOT=[on|off] will be converted to ONBOOT=[yes|no] by netconf |
---|
| 814 | LOCAL_IP= will be converted to IPADDR by netconf |
---|
| 815 | REMOTE_IP= will be converted to GATEWAY by netconf |
---|
| 816 | |
---|
| 817 | Wireless-specific items: |
---|
| 818 | See iwconfig(8) for additional information. |
---|
| 819 | MODE=[Ad-Hoc|Managed|Master|Repeater|Secondary|Monitor|Auto] |
---|
| 820 | ESSID= |
---|
| 821 | Defaults to "any". |
---|
| 822 | NWID= |
---|
| 823 | FREQ= |
---|
| 824 | Ignored if MODE=Managed. |
---|
| 825 | CHANNEL= |
---|
| 826 | Ignored if MODE=Managed. |
---|
| 827 | SENS=<sensitivity threshold> |
---|
| 828 | RATE= |
---|
| 829 | KEY{1,2,3,4}=<WEP key with the given index> |
---|
| 830 | DEFAULTKEY=<default key index> |
---|
| 831 | KEY=<default WEP key> |
---|
| 832 | SECURITYMODE=[on|off|open|restricted] |
---|
| 833 | RTS=[auto|fixed|off|<rts threshold>] |
---|
| 834 | FRAG=[off|<fragmentation threshold>] |
---|
| 835 | IWCONFIG=<other iwconfig(8) options> |
---|
| 836 | SPYIPS=<list of IP addresses to monitor for link quality> |
---|
| 837 | IWPRIV=<iwpriv(8) commands> |
---|
| 838 | |
---|
| 839 | IPSEC specific items |
---|
| 840 | SRC=source address. Not required. |
---|
| 841 | DST=destination address |
---|
| 842 | TYPE=IPSEC |
---|
| 843 | SRCNET=source net (for tunneling) |
---|
| 844 | DSTNET=destination network (for tunneling) |
---|
| 845 | |
---|
| 846 | Manual keying: |
---|
| 847 | |
---|
| 848 | AH_PROTO{,_IN,_OUT}=protocol to use for AH (defaults to hmac-sha1) |
---|
| 849 | ESP_PROTO{,_IN,_OUT}=protocol to use for ESP (defaults to 3des-cbc) |
---|
| 850 | AESP_PROTO{,_IN,_OUT}=protocol to use for ESP authentication (defaults to |
---|
| 851 | hmac-sha1) |
---|
| 852 | KEY_AH{,_IN,_OUT}=AH key |
---|
| 853 | KEY_ESP{,_IN,_OUT}=ESP encryption key |
---|
| 854 | KEY_AESP{,_IN,_OUT}=ESP authentication key (optional) |
---|
| 855 | SPI_{ESP,AH}_{IN,OUT}=SPIs to use |
---|
| 856 | |
---|
| 857 | _IN and _OUT specifiers are for using different keys or protocols for |
---|
| 858 | incoming and outgoing packets. If neither _IN or _OUT variants are set for |
---|
| 859 | protocols or keys, the same will be used for both. Hexadecimal keys need to |
---|
| 860 | be prefixed with "0x". |
---|
| 861 | |
---|
| 862 | Automatic keying: |
---|
| 863 | |
---|
| 864 | IKE_DHGROUP=<number> (defaults to 2) |
---|
| 865 | IKE_METHOD=PSK|X509|GSSAPI |
---|
| 866 | PSK=preshared keys (shared secret) |
---|
| 867 | X509=X.509 certificates |
---|
| 868 | GSSPI=GSSAPI authentication |
---|
| 869 | IKE_PSK=preshared key for this connection |
---|
| 870 | IKE_CERTFILE=our certificate file name for X509 IKE |
---|
| 871 | IKE_PEER_CERTFILE=peer public cert filename for X509 IKE |
---|
| 872 | IKE_DNSSEC=retrieve peer public certs from DNS |
---|
| 873 | (otherwise uses certificate information sent over IKE) |
---|
| 874 | |
---|
| 875 | To manage the racoon configuration manually (e.g. when there is more than |
---|
| 876 | one IPSEC configuration with the same DST), set KEYING=automatic and leave |
---|
| 877 | all IKE_* parameters unspecified. |
---|
| 878 | |
---|
| 879 | To override the identifier to use with a preshared key: |
---|
| 880 | |
---|
| 881 | MYID_TYPE=address|fqdn|user_fqdn |
---|
| 882 | MYID_VALUE=fqdn or user_fqdn string for this connection |
---|
| 883 | |
---|
| 884 | Usage of AH or ESP may be disabled by setting {AH,ESP}_PROTO to "none". |
---|
| 885 | |
---|
| 886 | Bonding-specific items |
---|
| 887 | |
---|
| 888 | SLAVE=yes |
---|
| 889 | Specifies device as a slave |
---|
| 890 | MASTER=bondXX |
---|
| 891 | Specifies master device to bind to |
---|
| 892 | |
---|
| 893 | Tunnel-specific items: |
---|
| 894 | TYPE=GRE|IPIP |
---|
| 895 | MY_INNER_IPADDR=local IP address of the tunnel interface |
---|
| 896 | PEER_OUTER_IPADDR=IP address of the remote tunnel endpoint |
---|
| 897 | MY_OUTER_IPADDR=IP address of the local tunnel endpoint |
---|
| 898 | If unspecified, an IP address is selected automatically for outgoing |
---|
| 899 | tunnel packets, and incoming tunnel packets are accepted on all local |
---|
| 900 | IP addresses. |
---|
| 901 | PEER_INNER_IPADDR=IP address of the remote end of the tunnel interface |
---|
| 902 | If this is specified, a route to PEER_INNER_IPADDR through the tunnel |
---|
| 903 | is added automatically. |
---|
| 904 | TTL=TTL value for tunnel packets |
---|
| 905 | Default is to use the TTL of the packet transported through the tunnel |
---|
| 906 | |
---|
| 907 | Bridge-specific items: |
---|
| 908 | TYPE=Bridge |
---|
| 909 | STP=off|on (see 'brctl stp') |
---|
| 910 | DELAY=forward delay time in seconds (see 'brctl setfd') |
---|
| 911 | GCINT=garbage collection interval in seconds (see 'brctl setgcint') |
---|
| 912 | |
---|
| 913 | /etc/sysconfig/network-scripts/chat-<interface-name>: |
---|
| 914 | |
---|
| 915 | chat script for PPP or SLIP connection intended to establish |
---|
| 916 | the connection. For SLIP devices, a DIP script is written |
---|
| 917 | from the chat script; for PPP devices, the chat script is used |
---|
| 918 | directly. |
---|
| 919 | |
---|
| 920 | /etc/sysconfig/network-scripts/dip-<interface-name> |
---|
| 921 | |
---|
| 922 | A write-only script created from the chat script by netcfg. |
---|
| 923 | Do not modify this. In the future, this file may disappear |
---|
| 924 | by default and created on-the-fly from the chat script if |
---|
| 925 | it does not exist. |
---|
| 926 | |
---|
| 927 | /etc/sysconfig/network-scripts/ifup-post |
---|
| 928 | |
---|
| 929 | Called when any network device EXCEPT a SLIP device comes |
---|
| 930 | up. Calls /etc/sysconfig/network-scripts/ifup-routes to |
---|
| 931 | bring up static routes that depend on that device. Calls |
---|
| 932 | /etc/sysconfig/network-scripts/ifup-aliases to bring up |
---|
| 933 | aliases for that device. Sets the hostname if it is not |
---|
| 934 | already set and a hostname can be found for the IP for that |
---|
| 935 | device. Sends SIGIO to any programs that have requested |
---|
| 936 | notification of network events. |
---|
| 937 | |
---|
| 938 | Could be extended to fix up nameservice configuration, call |
---|
| 939 | arbitrary scripts, etc, as needed. |
---|
| 940 | |
---|
| 941 | /etc/sysconfig/network-scripts/ifup-routes |
---|
| 942 | |
---|
| 943 | Set up static routes for a device. |
---|
| 944 | |
---|
| 945 | /etc/sysconfig/network-scripts/ifup-aliases |
---|
| 946 | |
---|
| 947 | Bring up aliases for a device. |
---|
| 948 | |
---|
| 949 | /etc/sysconfig/network-scripts/ifdhcpc-done |
---|
| 950 | |
---|
| 951 | Called by dhcpcd once dhcp configuration is complete; sets |
---|
| 952 | up /etc/resolv.conf from the version dhcpcd dropped in |
---|
| 953 | /etc/dhcpc/resolv.conf |
---|
| 954 | |
---|
| 955 | /etc/sysconfig/network-scripts/route-<interface-name> |
---|
| 956 | |
---|
| 957 | Contains lines that specify additional routes that should be added when the |
---|
| 958 | associated interface is brought up. |
---|
| 959 | |
---|
| 960 | The files are processed by the ifup-routes script and uses the /sbin/ipcalc |
---|
| 961 | utility for all network masks and numbers. Routes are specified using the |
---|
| 962 | syntax: |
---|
| 963 | |
---|
| 964 | ADDRESSn=<network> |
---|
| 965 | NETMASKn=<network/prefix mask> |
---|
| 966 | GATEWAYn=<next-hop router/gateway IP address> |
---|
| 967 | |
---|
| 968 | The "n" can be any integer number, but is expected to be monotonically |
---|
| 969 | increasing and counting starts from 0. For example: |
---|
| 970 | |
---|
| 971 | ADDRESS0=192.168.2.0 |
---|
| 972 | NETMASK0=255.255.255.0 |
---|
| 973 | GATEWAY0=192.168.1.1 |
---|
| 974 | |
---|
| 975 | adds a network route to the 192.168.2.0 network via the gateway at |
---|
| 976 | 192.168.1.1. Since you must already have a route to the network of the |
---|
| 977 | gateway, there is no need to specify a device. |
---|
| 978 | |
---|
| 979 | Note: The ifup-routes script also supports an older syntax designed to be |
---|
| 980 | used directly as an argument to "/sbin/ip route add". This syntax is |
---|
| 981 | deprecated, but if no "ADDRESSn" lines are found the following will still |
---|
| 982 | work: |
---|
| 983 | |
---|
| 984 | 192.168.2.0/24 dev ppp0 |
---|
| 985 | |
---|
| 986 | adds a network route to the 192.168.2.0 network through ppp0. |
---|
| 987 | |
---|
| 988 | /etc/sysconfig/network-scripts/route6-<interface-name> |
---|
| 989 | |
---|
| 990 | Contains lines that are arguments to "/sbin/ip -6 route add" |
---|
| 991 | For example: |
---|
| 992 | |
---|
| 993 | site-local route for network fec0:0:0:2::/64 |
---|
| 994 | via gateway fec0:0:0:1:0:0:0:20 (e.g. on eth0): |
---|
| 995 | |
---|
| 996 | fec0:0:0:2::/64 via fec0:0:0:1:0:0:0:20 |
---|
| 997 | |
---|
| 998 | additional prefix configured to be on-link on eth0: |
---|
| 999 | |
---|
| 1000 | 3ffe:fffe:1:2::/64 dev eth0 |
---|
| 1001 | |
---|
| 1002 | 6to4 route for network 3ffe:ffff:1::/48, either: |
---|
| 1003 | |
---|
| 1004 | 3ffe:ffff:1::/48 |
---|
| 1005 | 3ffe:ffff:1::/48 via ::192.168.1.2 |
---|
| 1006 | |
---|
| 1007 | Note the special case of 6to4 interface: 'via [relay]' is |
---|
| 1008 | automatically added if explicit 'via' wasn't specified. |
---|
| 1009 | |
---|
| 1010 | /etc/sysconfig/network-scripts/rule-<interface-name> |
---|
| 1011 | |
---|
| 1012 | Contains lines that specify additional routing rules that should be added |
---|
| 1013 | when the associated interface is brought up. |
---|
| 1014 | |
---|
| 1015 | Each non-comment line is used directly as an argument to "/sbin/ip rule add". |
---|
| 1016 | |
---|