source: projects/initscripts/trunk/sysconfig.txt @ 1108

Revision 1108, 38.2 KB checked in by daisuke, 13 years ago (diff)

import initscripts-8.90.6 from internal cvs repository

Line 
1Files in /etc/sysconfig
2=======================
3
4/etc/sysconfig/authconfig
5
6  used by authconfig to store information about the system's user
7  information and authentication setup; changes made to this file
8  have no effect until the next time authconfig is run
9
10    USEHESIOD=no
11      Whether or not the hesiod naming service is in use.  If not set,
12      authconfig examines the passwd setting in /etc/nsswitch.conf.
13    USELDAP=no
14      Whether or not LDAP is used as a naming service.  If not set,
15      authconfig examines the passwd setting in /etc/nsswitch.conf.
16    USENIS=no
17      Whether or not NIS is in use.  If not set, authconfig examines
18      the passwd setting in /etc/nsswitch.conf.
19
20    USEKERBEROS=no
21      Whether or not Kerberos is in use.  If not set, authconfig examines
22      the settings in /etc/pam.d/system-auth.
23    USELDAPAUTH=no
24      Whether or not LDAP is being used for authentication.  If not set,
25      authconfig examines the settings in /etc/pam.d/system-auth.  Note
26      that this option is separate from USELDAP, and that neither implies
27      the other.
28    USEMD5=no
29      Whether or not MD5-based hashing should be used when setting passwords.
30      If not set, authconfig examines the settings in /etc/pam.d/system-auth.
31      This option affects authentication using both local files and LDAP.
32    USESHADOW=no
33      Whether or not shadow passwords are in use.  If not set, authconfig
34      checks for the existence of /etc/shadow.
35    USESMBAUTH=no
36      Whether or not SMB authentication is in use.  If not set, authconfig
37      examines the settings in /etc/pam.d/system-auth.
38
39/etc/sysconfig/autofsck
40
41  does not normally exist; if it does, it can influence a choice
42  whether or not to fsck after a crash
43
44    AUTOFSCK_DEF_CHECK=no
45      If the user does not respond, choose whether or not to fsck
46    AUTOFSCK_SINGLEUSER=
47      If this is set, drop to single user mode before fsck.
48   
49/etc/sysconfig/clock:
50
51  deprecated values from earlier releases:
52
53    CLOCKMODE=GMT indicates that the clock is set to UTC
54    CLOCKMODE=ARC on alpha only indicates the ARC console's
55      42-year time offset is in effect
56
57  currently correct values:
58
59    UTC=true,yes
60      Indicates that the hardware clock is set to UTC.
61    UTC=no,false
62      Indicates that the hardware clock is set to Local Time.
63   
64    Not having UTC set defaults to the last used (if recorded
65    in the adjtime file), or to localtime, if not adjtime file
66    exists.
67
68    ARC=true on alpha only indicates the ARC console's
69      42-year time offset is in effect; otherwise the normal
70      Unix epoch is assumed.
71     
72    SRM=true on alpha only indicates the SRM 1900 epoch is in
73      effect; otherwise the normal Unix epoch is assumed.
74     
75    ZONE="filename" indicates the zonefile under /usr/share/zoneinfo
76      that /etc/localtime is a copy of, for example:
77        ZONE="US/Eastern"
78
79/etc/sysconfig/desktop:
80  DESKTOP=GNOME|KDE
81     This determines the default desktop for new users.
82  DISPLAYMANAGER=GNOME|KDE|XDM
83     This determines display manager started by /etc/X11/prefdm,
84     independent of the desktop.
85
86/etc/sysconfig/init:
87
88  BOOTUP=<some bootup mode>
89     BOOTUP=color means colorized text mode boot display.
90     BOOTUP=verbose means old style display
91     Anything else means simplified display, but without color or ANSI-formatting
92  LOGLEVEL=<a number>
93     Sets the initial console logging level for the kernel.
94     The default is 7. 8 means everything (including debugging);
95     1 means nothing except kernel panics. syslogd will override
96     this once it starts.
97  RES_COL=<a number>
98     Column of the screen to start status labels at. Defaults to 60
99  MOVE_TO_COL=<a command>
100     A command to move the cursor to $RES_COL. Defaults to nasty
101     ANSI sequences output by echo -e.
102  SETCOLOR_SUCCESS=<a command>
103     A command to set the color to a color indicating success.
104     Defaults to nasty ANSI sequences output by echo -e setting
105     the color to green.
106  SETCOLOR_FAILURE=<a command>
107     A command to set the color to a color indicating failure.
108     Defaults to nasty ANSI sequences output by echo -e setting
109     the color to red.
110  SETCOLOR_WARNING=<a command>
111     A command to set the color to a color indicating warning.
112     Defaults to nasty ANSI sequences output by echo -e setting
113     the color to yellow.
114  SETCOLOR_NORMAL=<a command>
115     A command to set the color to 'normal'. Defaults to nasty
116     ANSI sequences output by echo -e.
117  PROMPT=yes|no
118     Set to 'yes' to enable the key check for interactive mode as well as
119     asking if a filesystem check should be done. Default is 'no' and
120     the kernel command line option "forcefsck" can be used to check the
121     filesystems and "confirm" can be used to enable interactive startup
122     questions.
123  AUTOSWAP=yes|no
124     Set to 'yes' to enable automatic swapon of all partitions with
125     the proper swap magic. This allows setting up swap without editing
126     /etc/fstab.
127
128  obsoleted values from earlier releases:
129
130    MAGIC_SYSRQ=yes|no
131       Setting this to 'no' used to disable the magic sysrq key and
132       Stop-A (break on serial console) on SPARC. This setting has been
133       moved into kernel.sysrq and kernel.stop-a settings respectively in
134       /etc/sysctl.conf. Setting either of them there to 0 disables it,
135       setting it to 1 enables it.
136    STOP_A=yes|no
137       Setting this to 'no' used to disable the Stop-A (break on
138       serial console) key on SPARC.
139       This setting has been moved into kernel.stop-a setting in
140       /etc/sysctl.conf. Setting it there to 0 disables it,
141       setting it to 1 enables it. The setting should be present
142       on SPARC only.
143
144/etc/sysconfig/keyboard:
145
146  KEYTABLE=<keytable file>
147     for example: KEYTABLE="/usr/lib/kbd/keytables/us.map"
148   
149     If you dump a keymap (using 'dumpkeys') to
150        /etc/sysconfig/console/default.kmap
151     it will be loaded on bootup before filesystems are mounted/checked.
152     This could be useful if you need to emergency type the root password.
153     This has to be a dumped keymap, as opposed to copying the shipped
154     keymap files, as the shipped files include other maps from the
155     /usr/lib/kbd/keytables directory.
156     
157  KEYBOARDTYPE=sun|pc
158    on SPARC only, sun means a sun keyboard is attached on /dev/kbd,
159    pc means a PS/2 keyboard is on ps/2 port.
160 
161/etc/sysconfig/mouse:
162
163  MOUSETYPE=microsoft|mouseman|mousesystems|ps/2|msbm|logibm|atibm|
164    logitech|mmseries|mmhittab
165  XEMU3=yes|no (emulate three buttons with two buttons whenever
166    necessary, most notably in X)
167  DEVICE=<a device node> (the device of the mouse)
168
169  In addition, /dev/mouse points to the mouse device.
170
171/etc/sysconfig/network:
172
173  NETWORKING=yes|no
174  HOSTNAME=<fqdn by default, but whatever hostname you want>
175  GATEWAY=<gateway IP>
176  GATEWAYDEV=<gateway device to use, when multiple devices have GATEWAY=> (e.g. eth0)
177  NISDOMAIN=<nis domain name>
178  VLAN=yes|no
179  IPX=yes|no
180  IPXAUTOPRIMARY=on|off (note, that MUST be on|off, not yes|no)
181  IPXAUTOFRAME=on|off (again, not yes|no)
182  IPXINTERNALNETNUM=<netnum>
183  IPXINTERNALNODENUM=<nodenum>
184  NOZEROCONF=
185    Set this to not set a route for dynamic link-local addresses.
186
187  All the IPX stuff is optional, and should default to off.
188
189  NETWORKDELAY=<delay in seconds>
190    Delay in seconds after all network interfaces are initialized.  Useful if
191    network has spanning tree running and must wait for STP convergence.
192    Default: 0 (no delay)
193
194  IPV6FORWARDING=yes|no
195    Enable or disable global forwarding of incoming IPv6 packets
196    on all interfaces.
197    Note: Actual packet forwarding cannot be controlled per-device, use netfilter6 for such issues
198    Default: no
199  IPV6INIT=yes|no
200    Enable or disable IPv6 configuration for all interfaces
201    Use with caution!
202    Default: value not set in this file
203
204  IPV6_AUTOCONF=yes|no
205    Sets the default for device-based autoconfiguration.
206    Default: yes if IPV6FORWARDING=no, no if IPV6FORWARDING=yes
207  IPV6_ROUTER=yes|no
208    Sets the default for device-based Host/Router behaviour.
209    Default: yes if IPV6FORWARDING=yes, no if IPV6FORWARDING=no
210  IPV6_AUTOTUNNEL=yes|no
211    Controls automatic IPv6 tunneling.
212    Default: no
213
214  IPV6_DEFAULTGW=<IPv6 address[%interface]> (optional)
215    Add a default route through specified gateway
216    An interface can be specified: required for link-local addresses
217    Examples:
218      IPV6_DEFAULTGW="3ffe:ffff:1234:5678::1"
219        Add default route through 3ffe:ffff:1234:5678::1
220      IPV6_DEFAULTGW="3ffe:ffff:1234:5678::1%eth0"
221        Add default route through 3ffe:ffff:1234:5678::1 and device eth0
222      IPV6_DEFAULTGW="fe80::1%eth0"
223        Add default route through fe80::1 and device eth0
224
225  Note: if IPV6_DEFAULTGW is specified with %interface scope and it
226        doesn't match IPV6_DEFAULTDEV, IPV6_DEFAULTDEV is ignored.
227  Note: it's preferred to use %interface for all addresses, not
228        just link-local if you have multiple IPv6-enabled interfaces.
229
230  IPV6_DEFAULTDEV=<interface> (optional)
231    Add a default route through specified interface without specifying next hop
232    Type of interface will be tested whether this is allowed
233    Examples:
234      IPV6_DEFAULTDEV="eth0" INVALID example!
235      IPV6_DEFAULTDEV="ppp0"
236      IPV6_DEFAULTDEV="sit1"
237    Examples for 6to4
238      IPV6_DEFAULTDEV="tun6to4"
239        Add default route through dedicated 6to4 tunnel device "tun6to4", if configured
240
241  Note: "tun6to4" does not support an additional IPV6_DEFAULTGW.
242        Other interfaces prefer IPV6_DEFAULTGW, if specified.
243
244  IPV6_RADVD_PIDFILE=<pid-file> (optional)
245    Location of PID file for controlling radvd, see IPV6_CONTROL_RADVD
246    Default: "/var/run/radvd/radvd.pid"
247    Example:
248       IPV6_RADVD_PIDFILE="/some/other/location/radvd.pid"
249  IPV6TO4_RADVD_PIDFILE=<pid-file> (obsolete)
250    As above, still supported for a while for backward compatibility.
251  IPV6_RADVD_TRIGGER_ACTION=startstop|reload|restart|SIGHUP (optional)
252    How to trigger radvd in case of 6to4 or PPP action
253     startstop: radvd starts if interface goes up and stops
254       if interface goes down using initscript call of radvd with related parameter
255     reload|restart: initscript of radvd is called with this parameter
256     SIGHUP: signal HUP is sent to radvd, pidfile must be specified, if not the default
257    Default: SIGHUP
258
259  IPv6 options above can be overridden in interface-specific configuration.
260
261  obsoleted values from earlier releases:
262
263    FORWARD_IPV4=yes|no
264      This setting has been moved into net.ipv4.ip_forward setting
265      in /etc/sysctl.conf. Setting it to 1 there enables IP forwarding,
266      setting it to 0 disables it (which is the default for RFC compliance).
267    DEFRAG_IPV4=yes|no
268      Setting this to yes used to automatically defragment IPv4
269      packets. This is a good idea for masquerading, and
270      a bad idea otherwise. This setting was moved into
271      net.ipv4.ip_always_defrag setting in /etc/sysctl.conf. It
272      is no longer valid for 2.4 kernels.
273    NETWORKING_IPV6=yes|no
274      Enable or disable global IPv6 initialization
275     
276      To do this properly, add a rule in /etc/modprobe.conf that
277      disables loading of the ipv6 module. Example:
278         install ipv6 /bin/true
279
280/etc/sysconfig/static-routes-ipv6:
281  Contains lines of the form:
282
283    <device> IPv6-network IPv6-gateway
284    <tunneldevice> IPv6-network
285
286  <device> must be a device name to have the route brought up and
287  down with the device
288
289  For example:
290 
291  eth0   fec0:0:0:2::/64                         fec0:0:0:1:0:0:0:20
292   adds a route for IPv6 network fec0:0:0:2::/64 through fec0:0:0:1:0:0:0:20
293   
294  eth0    2000::/3                               3ffe:ffff:0:1::1
295   so-called "default" routes for clients
296
297  sit1    2000::/3
298   adds routes through dedicated tunnel interface sit1
299
300  tun6to4  3ffe:ffff:1234::/56                 
301   adds routes through hardwired 6to4 tunnel interface tun6to4
302  tun6to4  3ffe:ffff:5678::/56                  ::5.6.7.8
303   adds routes through hardwired 6to4 tunnel interface tun6to4,
304   specifying next hop   
305
306  Notes:
307    * default routes (such as the "2000::/3" shown above) should be set with
308       IPV6_DEFAULTGW and IPV6_DEFAULTDEV, see more above.
309    * tunnel device "sit0" is not supported here, routes will never be applied
310
311/etc/sysconfig/routed:
312
313  SILENT=yes|no
314  EXPORT_GATEWAY=yes|no
315 
316/etc/sysconfig/rawdevices:
317
318  This is used for setting up raw device to block device mappings.
319  It has the format:
320        <rawdev> <major> <minor>
321        <rawdev> <blockdev>
322  For example:
323     /dev/raw/raw1 /dev/sda1
324     /dev/raw/raw2 8 5
325
326/etc/sysconfig/pcmcia:
327
328  PCMCIA=yes|no
329  PCIC=i82365|tcic
330  PCIC_OPTS=<socket driver (i82365 or tcic) timing parameters>
331  CORE_OPTS=<pcmcia_core options>
332  CARDMGR_OPTS=<cardmgr options>
333
334/etc/sysconfig/amd:
335
336  ADIR=/.automount  (normally never changed)
337  MOUNTPTS='/net /etc/amd.conf'  (standard automount stuff)
338  AMDOPTS=  (extra options for AMD)
339
340/etc/sysconfig/tape:
341
342  DEV=/dev/nst0
343    Tape device.  Use the non-rewinding one for these scripts.
344 
345    For SCSI tapes this is /dev/nst#, where # is the number of the
346    tape drive you want to use.  If you only have one then use
347    nst0.
348 
349    For IDE tapes you use /dev/ht#, where # is the number of the tape
350    drive you want to use (usually ht0).
351 
352    For floppy tape drives use /dev/ftape.
353
354  ADMIN=root
355    Person to mail to if the backup fails for any reason
356
357  SLEEP=5
358    Time to sleep between tape operations.  Some drives need a bit
359    more than others, but 5 seems to work for 8mm, 4mm, and DLT
360
361  BLOCKSIZE=32768
362    This worked fine for 8mm, then 4mm, and now DLT.  An optimal
363    setting is probably however much data your drive writes at one
364    time.
365
366  SHORTDATE=$(date +%y:%m:%d:%H:%M)
367    A short date string, used in backup log filenames.
368
369  DAY=$(date +log-%y:%m:%d)
370    This is used for the log file directory.
371
372  DATE=$(date)
373    Regular date string, used in log files.
374
375  LOGROOT=/var/log/backup
376    Root of the logging directory
377
378  LIST=$LOGROOT/incremental-list
379    This is the file name the incremental backup will use to store
380    the incremental list.  It will be $LIST-{some number}.
381
382  DOTCOUNT=$LOGROOT/.count
383    For counting as you go to know which incremental list to use
384
385  COUNTER=$LOGROOT/counter-file
386    For rewinding when done...might not use.
387
388  BACKUPTAB=/etc/backuptab
389    The file in which we keep our list of backup(s) we want to make.
390
391/etc/sysconfig/saslauthd:
392
393  used by the saslauthd init script (part of the cyrus-sasl package) to
394  control which arguments are passed to saslauthd at startup time; changes
395  made to this file have no effect until saslauthd is restarted
396
397  MECH=shadow
398    controls which data source saslauthd will consult when checking user
399    passwords; run 'saslauthd -a' to get a full list of available
400    authentication mechanisms
401  SOCKETDIR=/var/run/saslauthd
402    controls in which directory saslauthd will be directed to create its
403    listening socket; any change to this value will require a corresponding
404    change in client configuration files
405
406/etc/sysconfig/sendmail:
407  DAEMON=yes|no
408    yes implies -bd (i.e., listen on port 25 for new mail)
409  QUEUE=1h
410    given to sendmail as -q$QUEUE
411    -q option is not given to sendmail if /etc/sysconfig/sendmail
412    exists and QUEUE is empty or undefined.
413
414/etc/sysconfig/i18n
415  If ~/.i18n exists, it is used in addition to /etc/sysconfig/i18n and allows
416  per-user customization of the locales.
417
418  LANG= set locale for all categories, can be any two letter ISO
419    language code
420  LC_CTYPE= locale data configuration for classification and conversion
421    of characters
422  LC_COLLATE= locale data configuration for collation (sort order) of
423    strings
424  LC_MESSAGES= locale data configuration for translation of messages
425  LC_NUMERIC= locale data configuration for non-monetary numeric data
426  LC_MONETARY= locale data configuration for monetary data
427  LC_TIME= locale data configuration for date and time
428  LC_ALL= locale data configuration overriding all of the above
429  LANGUAGE= can be a : separated list of ISO language codes
430  LINGUAS= can be a ' ' separated list of ISO language codes
431
432  The above variables are used in /etc/profile.d/lang.sh.
433
434  SYSFONT= Console font. Fonts are found in /lib/kbd/consolefonts.
435
436  UNIMAP= Unicode font map. Most fonts have these built-in. Font maps
437  can be found in /lib/kbd/unimaps. These are applied via setfont's
438  -u option.
439 
440  SYSFONTACM= Console map. These are applied via setfont's -m option,
441  and are found in /lib/kbd/consoletrans.
442 
443  The above are used by the /sbin/setsysfont command (which is run
444  by rc.sysinit at boot time.) For more information, see setfont(8).
445
446Files in /etc/sysconfig/network-scripts/
447========================================
448
449/etc/sysconfig/network-scripts/ifup:
450/etc/sysconfig/network-scripts/ifdown:
451
452  Symlinks to /sbin/ifup and /sbin/ifdown, respectively.
453  These are the only two scripts "in" this directory that should
454  be called directly; these two scripts call all the other
455  scripts as needed.  These symlinks are here for legacy purposes --
456  only /sbin/ifup and /sbin/ifdown should currently be used
457  at the user level.
458
459  These scripts take one argument normally: the name of the device
460  (e.g. eth0).  They are called with a second argument of "boot"
461  during the boot sequence so that devices that are not meant to
462  be brought up on boot (ONBOOT=no, see below) can be ignored at
463  that time.
464
465  Also, interfaces may be brought up via the hotplug scripts;
466  in this case, HOTPLUG=no needs to be set to no to avoid this.
467  This is useful e.g. to prevent bonding device activation by merely
468  loading the bonding kernel module.
469
470/etc/sysconfig/network-scripts/init.ipv6-global:
471  Not really a public file.  Contains different basic settings that
472  are set from /etc/[rc.d]/init.d/network at different stages of
473  network initialization.
474
475/etc/sysconfig/network-scripts/network-functions:
476
477  Not really a public file.  Contains functions which the scripts use
478  for bringing interfaces up and down.  In particular, it contains
479  most of the code for handling alternative interface configurations
480  and interface change notification through netreport.
481
482/etc/sysconfig/network-scripts/network-functions-ipv6:
483
484  Not really a public file.  Contains functions which the scripts use
485  for bringing IPv6 on interfaces up and down, like addresses, routes,
486  forwarding handling and static or automatic tunneling.
487
488/etc/sysconfig/network-scripts/ifcfg-<interface-name> and
489/etc/sysconfig/network-scripts/ifcfg-<interface-name>:<alias-name>:
490
491  The first defines an interface, and the second contains
492  only the parts of the definition that are different in a
493  "alias" (or alternative) interface.  For example, the
494  network numbers might be different, but everything else
495  might be the same, so only the network numbers would be
496  in the alias file, but all the device information would
497  be in the base ifcfg file.
498
499  The items that can be defined in an ifcfg file depend on the
500  interface type.  The really obvious ones I'm not going to
501  bother to define; you can figure out what "IPADDR" is, I
502  think...  :-)
503
504  Base items:
505    NAME=<friendly name for users to see>
506      Most important for PPP.  Only used in front ends.
507    DEVICE=<name of physical device (except dynamically-allocated PPP
508      devices where it is the "logical name")>
509    IPADDR=
510    NETMASK=
511    GATEWAY=
512    METRIC=
513      Metric for the default route using GATEWAY
514    ONBOOT=yes|no (not valid for alias devices; use ONPARENT)
515    HOTPLUG=yes|no
516    USERCTL=yes|no
517    BOOTPROTO=none|bootp|dhcp
518    MTU=
519      Default MTU for this device
520    WINDOW=
521      Default window for routes from this device
522    PEERDNS=yes|no
523      modify /etc/resolv.conf if peer uses msdns extension (PPP only) or
524      DNS{1,2} are set, or if using dhclient. default to "yes".
525    DNS{1,2}=<ip address>
526      provide DNS addresses that are dropped into the resolv.conf
527      file if PEERDNS is not set to "no".
528    SCOPE=
529      Set to "scope SCOPE-ID" to set a non-default scope.  Supported only on
530      Ethernet with BOOTPROTO=none.
531    SRCADDR=
532      use the specified source address for outgoing packets
533    HWADDR=
534      ethernet hardware address for this device
535    MACADDR=
536      Set the hardware address for this device to this.
537      Use of this in conjunction with HWADDR= may cause
538      unintended behavior.
539    NOZEROCONF=
540      Set this to not set a route for dynamic link-local addresses
541      over this device.
542    PERSISTENT_DHCLIENT=yes|no|1|0
543      Without this option, or if it is 'no'/'0', and BOOTPROTO=dhcp,
544      dhclient is run for the interface in "one-shot" mode; if the
545      dhcp server does not respond for a configurable timeout, then
546      dhclient exits and the interface is not brought up -
547      the '-1' option is given to dhclient.
548      If PERSISTENT_DHCLIENT=yes, then dhclient will keep on trying
549      to contact the dhcp server when it does not respond - no '-1'
550      option is given to dhclient. Note: this disables the automatic
551      checking for the presence of a link before starting dhclient.
552    DHCPRELEASE=yes|no|1|0
553      With this option set to 'yes' (1), when a dhcp configured
554      interface is brought down with 'ifdown', the lease will be
555      released. Otherwise, leases are not released.
556    DHCLIENT_IGNORE_GATEWAY=yes|no|1|0
557      If set to 'yes', it will cause dhclient-script to ignore any $GATEWAY
558      setting that may be in the ifcfg file for this interface.
559      Otherwise, the dhclient session which obtains an ip-address
560      on the same subnet as $GATEWAY will set the default route
561      to be via $GATEWAY, and no other dhclient session will set
562      the default route.
563
564  If BOOTPROTO is not "none", then the only other item that
565  must be set is the DEVICE item; all the rest will be determined
566  by the boot protocol.  No "dummy" entries need to be created.
567
568  Base items being deprecated:
569    NETWORK=<will be calculated automatically with ipcalc>
570    BROADCAST=<will be calculated automatically with ipcalc>
571
572  Alias specific items:
573    ONPARENT=yes|no
574      Whether to bring up the device when the parent device is brought
575      up.
576      Default: yes
577
578  IPv6-only items for real interfaces:
579    IPV6INIT=yes|no
580      Enable or disable IPv6 configuration for this interface
581      Default: no
582    IPV6FORWARDING=yes|no
583      Enable or disable global forwarding of incoming IPv6 packets
584      Note: Obsolete in interface specification!
585      Default: no
586    IPV6ADDR=<IPv6 address>[/<prefix length>]
587      Specify a primary static IPv6 address here
588      Optional, if normal host and a router advertisement daemon is on local link
589      Required, if node is a router and interface should route packets
590      Note: if prefix length is omitted, 64 is assumed
591      Example:
592        IPV6ADDR="3ffe:ffff:0:5::1"
593        IPV6ADDR="3ffe:ffff:0:1::1/128"
594    IPV6ADDR_SECONDARIES="<IPv6 address>[/<prefix length>] ..." (optional)
595      A list of secondary IPv6 addresses (e.g. useful for virtual hosting)
596      Example:
597        IPV6ADDR_SECONDARIES="3ffe:ffff:0:1::10 3ffe:ffff:0:2::11/128"
598    IPV6_MTU=<MTU of link> (optional)
599      Optional, dedicated MTU of this link
600      Note: Must be greater or equal to 1280.
601      Example:
602        IPV6_MTU="1280"
603    IPV6_PRIVACY=rfc3041
604      Enables RFC 3041 IPv6 privacy support if set.
605      Default: RFC 3041 support disabled
606
607  Special configuration options for multi-homed hosts etc.
608        IPV6_ROUTER=yes|no: Controls IPv6 autoconfiguration
609        IPV6_AUTOCONF=yes|no: Controls IPv6 autoconfiguration
610         Defaults:
611          Global IPV6FORWARDING=yes: IPV6_AUTOCONF=no, IPV6_ROUTER=yes
612          Global IPV6FORWARDING=no: IPV6_AUTOCONF=yes
613
614  Optional settings for a 6to4 tunnel
615    IPV6TO4INIT=yes|no
616      Enable or disable 6to4 tunneling setup
617      Default: no
618    IPV6TO4_RELAY=<IPv4 address> (optional)
619      IPv4 address of the remote 6to4 relay
620      Note: if this is omitted, ::192.88.99.1 (the anycast relay address) is chosen
621    IPV6TO4_IPV4ADDR=<IPv6 address>[/<prefix length>] (optional)
622      Overwrite local IPv4 address which is accessible from the Internet
623       (optional, in case of static IPv4-NAT behind a router or other special scenarios)
624    IPV6TO4_MTU=<MTU for IPv6> (optional)
625      Controls IPv6 MTU for the 6to4 tunnel
626      Note: Must be greater or equal to 1280
627      Example:
628        IPV6TO4_MTU="1280"
629      Default: MTU of master device - 20
630    IPV6TO4_ROUTING="<device>-<suffix>/<prefix length> ..." (optional)
631      A list of routing tokens to setup proper IPv6 interfaces on the LAN
632      Example:
633         IPV6TO4_ROUTING="eth0-:0004::1/64 eth1-:0005::1/64"
634         Will create one address per eth0 and eth1, taking given SLA
635
636  Optional settings for a 6to4 tunnel or a ppp link
637    IPV6_CONTROL_RADVD=yes|no (optional)
638      Enable signaling radvd that the 6to4 prefix has been changed or a
639       preconfigured dynamic device is up or down
640      Default: no
641
642  IPv6-only items for static tunnel interface:
643    Interface name: sitX (X => 1)
644    IPV6INIT=yes|no
645      Enable or disable IPv6 configuration for this interface
646      Default: no
647    IPV6TUNNELIPV4=<IPv4 address>
648      Specify IPv4 address of a foreign IPv6-in-IPv4 tunnel endpoint
649      Example:
650        IPV6TUNNELIPV4="1.2.3.4"
651    IPV6TUNNELIPV4LOCAL=<IPv4 address>
652      Specify local IPv4 address of tunnel, useful on interfaces with multiple IPv4 addresses
653    IPV6ADDR=<IPv6 address>[/<prefix length>] (optional)
654     local IPv6 address of a numbered tunnel
655    IPV6ADDR_SECONDARIES="<IPv6 address>[/<prefix length>] ..." (optional)
656      A list of secondary IPv6 addresses (example see above)
657    IPV6_MTU=<MTU of tunnel> (optional)
658      Optional, dedicated MTU of this tunnel
659      Note: Must be greater or equal to 1280
660      Example:
661        IPV6_MTU="1280"
662
663   IPv6-only option to enable DHCPv6 client:
664      DHCPV6C=yes|no
665      This will enable the DHCPv6 client, dhcp6c, to be run for the interface.
666      See man dhcp6c(8) and dhcp6c.conf(5).
667
668  Ethernet-only items:
669    {IPXNETNUM,IPXPRIMARY,IPXACTIVE}_{802_2,802_3,ETHERII,SNAP}
670    configuration matrix for IPX.  Only used if IPX is active.
671    Managed from /etc/sysconfig/network-scripts/ifup-ipx
672    ARP=yes|no (adds 'arp' flag to ifconfig, for use with the
673      ethertap device)
674    LINKDELAY=<time in seconds>
675      Time that the system should pause after the specific interface is
676      enabled.  This may be useful if one interface is connected to a
677      switch which has spanning tree enabled and must wait for STP to
678      converge before the interface should be considered usable.
679    BRIDGE=<br* device>
680      If set, the ethernet device is not assigned an address.  It is added to
681      the specified bridge device instead.
682
683   Deprecated, but supported:
684    ETHTOOL_OPTS=...
685      Any device-specific options supported by ethtool. For example,
686      if you wanted to force 100Mb full duplex:
687        ETHTOOL_OPTS="speed 100 duplex full autoneg off"
688      Note that changing speed or duplex settings almost always
689      requires disabling autonegotiation with 'autoneg off'.
690
691      Long term, this should be done by sysadmin-written udev rules.
692
693    No longer supported:
694     PROMISC=yes|no (enable or disable promiscuous mode)
695     ALLMULTI=yes|no (enable or disable all-multicast mode)
696     
697     To properly set these, use the packet socket interface.
698
699  Ethernet 802.1q VLAN items:
700     DEVICE=eth0.42
701       Initscripts use DEV_PLUS_VID_NO_PAD naming mode for VLAN
702       devices.
703               Example: eth0.42 for vlan 42 on device eth0.
704       Valid VLAN ID range is 0-4095. Most ethernet switches reserve
705       VLAN ID 1 to be used as management VLAN; starting from VLAN
706       ID 2 is recommended.
707     REORDER_HDR=yes|no
708       When enabled the VLAN device will move the ethernet header
709       around to make it look exactly like a real ethernet device.
710       This may help programs such as ISC dhcpd which read the raw
711       ethernet packet and make assumptions about the location of
712       bytes. If you don't need it turn it off because there
713       is a small performance penalty. Default is on.
714
715  PPP/SLIP items:
716    PERSIST=yes|no
717    MODEMPORT=<device, say /dev/modem>
718    LINESPEED=<speed, say 115200>
719    DEFABORT=yes|no (tells netcfg whether or not to put default
720      abort strings in when creating/editing the chat script and/or
721      dip script for this interface)
722      (meaningless with WVDIALSECT)
723 
724  PPP-specific items
725    WVDIALSECT=<list of sections from wvdial.conf to use>
726      If this variable is set, then the chat script (if it
727      exists) is ignored, and wvdial is used to open the
728      PPP connection.
729    DEFROUTE=yes|no (set this interface as default route? yes is default)
730    DEBUG=yes|no (defaults to yes)
731      turns on/off pppd and chat (if used) debugging.
732    ESCAPECHARS=yes|no (simplified interface here doesn't let people
733      specify which characters to escape; almost everyone can use
734      asyncmap 00000000 anyway, and they can set PPPOPTIONS to
735      asyncmap foobar if they want to set options perfectly)
736    HARDFLOWCTL=yes|no (yes implies "modem crtscts" options)
737    PPPOPTIONS=<arbitrary option string; is placed last on the
738      command line, so it can override other options like asyncmap
739      that were specified differently>
740    PAPNAME=<"name $PAPNAME" on pppd command line> (note that
741      the "remotename" option is always specified as the logical
742      ppp device name, like "ppp0" (which might perhaps be the
743      physical device ppp1 if some other ppp device was brought
744      up earlier...), which makes it easy to manage pap/chap
745      files -- name/password pairs are associated with the
746      logical ppp device name so that they can be managed
747      together.
748    REMIP=<remote ip address, normally unspecified>
749    MTU=
750    MRU=
751    DISCONNECTTIMEOUT=<number of seconds, default currently 5>
752      (time to wait before re-establishing the connection after
753      a successfully-connected session terminates before attempting
754      to establish a new connection.)
755    RETRYTIMEOUT=<number of seconds, default currently 60>
756      (time to wait before re-attempting to establish a connection
757      after a previous attempt fails.)
758    RETRYCONNECT=yes|no (defaults to yes)
759      If this is yes, then we will re-run pppd if it exits with a
760      "connect script failed" status.  Otherwise, only one attempt
761      is made to bring up the connection.  Note that some connect
762      scripts (for example, wvdial) might do their own retries (such
763      as BUSY or NO DIALTONE conditions).
764    MAXFAIL=<number>
765      If this is set, this will cause ppp-watch to exit after
766      the specified number of attempts.
767    DEMAND=yes|no
768      Switches on demand-dialing mode using pppd's "demand" option.
769    IDLETIMEOUT=600
770      The amount of time the link needs to be inactive before pppd will
771      bring it down automatically.
772    BOOTTIMEOUT=30
773      The amount of time to wait at boot before giving up on the
774      connection.
775
776  IPPP-specific items (ISDN)
777    PROVIDER=<ProviderName>
778         USER=<Login>
779    PASSWORD=<Password>
780         ENCAP=[syncppp|]
781    DIALMODE=[manual|auto]
782    SECURE=off|on
783         MSN=<>
784         PHONE_IN=<Callback.Number>
785                 AREACODE=<>
786         REGIONCODE=<>
787         PHONE_OUT=<PhoneNumber>
788    BUNDLING=off|on
789    HUPTIMEOUT=<number>
790    DNS1=<PrimaryDNS>
791    DNS2=<SecondaryDNS>
792    DOMAIN=""
793    LAYER=[HDLC|]
794    CALLBACK=off|on
795    CHARGEHUP=<number>
796    CHARGEINT=<number>
797    CBHUP=<number>
798    CBDELAY=<number>
799    DIALMAX=<number>
800    AUTH=[+pap] [-chap]
801    IHUP=<>
802    DELDEFAULTROUTE=[enabled|disabled]
803    CBCP=off|on
804    VJ=off|on
805    VJCCOMP=off|on
806    AC=off|on
807    PC=off|on
808    BSDCOMP=off|on
809    CCP=off|on
810    SLAVE_DEVICE=ippp[0-9]
811
812  ippp0 items being deprecated:
813    BOOT=[on|off] will be converted to ONBOOT=[yes|no] by netconf
814    LOCAL_IP=     will be converted to IPADDR by netconf
815    REMOTE_IP=    will be converted to GATEWAY by netconf
816
817  Wireless-specific items:
818    See iwconfig(8) for additional information.
819    MODE=[Ad-Hoc|Managed|Master|Repeater|Secondary|Monitor|Auto]
820    ESSID=
821      Defaults to "any".
822    NWID=
823    FREQ=
824      Ignored if MODE=Managed.
825    CHANNEL=
826      Ignored if MODE=Managed.
827    SENS=<sensitivity threshold>
828    RATE=
829    KEY{1,2,3,4}=<WEP key with the given index>
830    DEFAULTKEY=<default key index>
831    KEY=<default WEP key>
832    SECURITYMODE=[on|off|open|restricted]
833    RTS=[auto|fixed|off|<rts threshold>]
834    FRAG=[off|<fragmentation threshold>]
835    IWCONFIG=<other iwconfig(8) options>
836    SPYIPS=<list of IP addresses to monitor for link quality>
837    IWPRIV=<iwpriv(8) commands>
838
839  IPSEC specific items
840     SRC=source address. Not required.
841     DST=destination address
842     TYPE=IPSEC
843     SRCNET=source net (for tunneling)
844     DSTNET=destination network (for tunneling)
845
846   Manual keying:
847
848     AH_PROTO{,_IN,_OUT}=protocol to use for AH (defaults to hmac-sha1)
849     ESP_PROTO{,_IN,_OUT}=protocol to use for ESP (defaults to 3des-cbc)
850     AESP_PROTO{,_IN,_OUT}=protocol to use for ESP authentication (defaults to
851        hmac-sha1)
852     KEY_AH{,_IN,_OUT}=AH key
853     KEY_ESP{,_IN,_OUT}=ESP encryption key
854     KEY_AESP{,_IN,_OUT}=ESP authentication key (optional)
855     SPI_{ESP,AH}_{IN,OUT}=SPIs to use
856
857   _IN and _OUT specifiers are for using different keys or protocols for
858   incoming and outgoing packets.  If neither _IN or _OUT variants are set for
859   protocols or keys, the same will be used for both.  Hexadecimal keys need to
860   be prefixed with "0x".
861
862   Automatic keying:
863
864     IKE_DHGROUP=<number> (defaults to 2)
865     IKE_METHOD=PSK|X509|GSSAPI
866         PSK=preshared keys (shared secret)
867         X509=X.509 certificates
868         GSSPI=GSSAPI authentication
869     IKE_PSK=preshared key for this connection
870     IKE_CERTFILE=our certificate file name for X509 IKE
871       IKE_PEER_CERTFILE=peer public cert filename for X509 IKE
872       IKE_DNSSEC=retrieve peer public certs from DNS
873     (otherwise uses certificate information sent over IKE)
874
875     To manage the racoon configuration manually (e.g. when there is more than
876     one IPSEC configuration with the same DST), set KEYING=automatic and leave
877     all IKE_* parameters unspecified.
878
879     To override the identifier to use with a preshared key:
880
881       MYID_TYPE=address|fqdn|user_fqdn
882       MYID_VALUE=fqdn or user_fqdn string for this connection
883
884   Usage of AH or ESP may be disabled by setting {AH,ESP}_PROTO to "none".
885
886  Bonding-specific items
887
888    SLAVE=yes
889      Specifies device as a slave
890    MASTER=bondXX
891      Specifies master device to bind to
892
893  Tunnel-specific items:
894    TYPE=GRE|IPIP
895    MY_INNER_IPADDR=local IP address of the tunnel interface
896    PEER_OUTER_IPADDR=IP address of the remote tunnel endpoint
897    MY_OUTER_IPADDR=IP address of the local tunnel endpoint
898      If unspecified, an IP address is selected automatically for outgoing
899      tunnel packets, and incoming tunnel packets are accepted on all local
900      IP addresses.
901    PEER_INNER_IPADDR=IP address of the remote end of the tunnel interface
902      If this is specified, a route to PEER_INNER_IPADDR through the tunnel
903      is added automatically.
904    TTL=TTL value for tunnel packets
905      Default is to use the TTL of the packet transported through the tunnel
906
907  Bridge-specific items:
908    TYPE=Bridge
909    STP=off|on (see 'brctl stp')
910    DELAY=forward delay time in seconds (see 'brctl setfd')
911    GCINT=garbage collection interval in seconds (see 'brctl setgcint')
912
913/etc/sysconfig/network-scripts/chat-<interface-name>:
914
915  chat script for PPP or SLIP connection intended to establish
916  the connection.  For SLIP devices, a DIP script is written
917  from the chat script; for PPP devices, the chat script is used
918  directly.
919
920/etc/sysconfig/network-scripts/dip-<interface-name>
921
922  A write-only script created from the chat script by netcfg.
923  Do not modify this.  In the future, this file may disappear
924  by default and created on-the-fly from the chat script if
925  it does not exist.
926
927/etc/sysconfig/network-scripts/ifup-post
928
929  Called when any network device EXCEPT a SLIP device comes
930  up.  Calls /etc/sysconfig/network-scripts/ifup-routes to
931  bring up static routes that depend on that device.  Calls
932  /etc/sysconfig/network-scripts/ifup-aliases to bring up
933  aliases for that device.  Sets the hostname if it is not
934  already set and a hostname can be found for the IP for that
935  device.  Sends SIGIO to any programs that have requested
936  notification of network events.
937
938  Could be extended to fix up nameservice configuration, call
939  arbitrary scripts, etc, as needed.
940
941/etc/sysconfig/network-scripts/ifup-routes
942
943  Set up static routes for a device.
944
945/etc/sysconfig/network-scripts/ifup-aliases
946
947  Bring up aliases for a device.
948
949/etc/sysconfig/network-scripts/ifdhcpc-done
950
951  Called by dhcpcd once dhcp configuration is complete; sets
952  up /etc/resolv.conf from the version dhcpcd dropped in
953  /etc/dhcpc/resolv.conf
954
955/etc/sysconfig/network-scripts/route-<interface-name>
956
957  Contains lines that specify additional routes that should be added when the
958  associated interface is brought up.
959
960  The files are processed by the ifup-routes script and uses the /sbin/ipcalc
961  utility for all network masks and numbers. Routes are specified using the
962  syntax:
963
964    ADDRESSn=<network>
965    NETMASKn=<network/prefix mask>
966    GATEWAYn=<next-hop router/gateway IP address>
967
968  The "n" can be any integer number, but is expected to be monotonically
969  increasing and counting starts from 0. For example:
970
971    ADDRESS0=192.168.2.0
972    NETMASK0=255.255.255.0
973    GATEWAY0=192.168.1.1
974
975  adds a network route to the 192.168.2.0 network via the gateway at
976  192.168.1.1. Since you must already have a route to the network of the
977  gateway, there is no need to specify a device.
978
979  Note: The ifup-routes script also supports an older syntax designed to be
980  used directly as an argument to "/sbin/ip route add". This syntax is
981  deprecated, but if no "ADDRESSn" lines are found the following will still
982  work:
983 
984  192.168.2.0/24 dev ppp0
985 
986  adds a network route to the 192.168.2.0 network through ppp0.
987
988/etc/sysconfig/network-scripts/route6-<interface-name>
989
990  Contains lines that are arguments to "/sbin/ip -6 route add"
991  For example:
992
993  site-local route for network fec0:0:0:2::/64
994   via gateway fec0:0:0:1:0:0:0:20 (e.g. on eth0):
995
996  fec0:0:0:2::/64 via fec0:0:0:1:0:0:0:20
997
998  additional prefix configured to be on-link on eth0:
999
1000  3ffe:fffe:1:2::/64 dev eth0
1001 
1002  6to4 route for network 3ffe:ffff:1::/48, either:
1003
1004  3ffe:ffff:1::/48
1005  3ffe:ffff:1::/48 via ::192.168.1.2
1006
1007  Note the special case of 6to4 interface: 'via [relay]' is
1008  automatically added if explicit 'via' wasn't specified.
1009
1010/etc/sysconfig/network-scripts/rule-<interface-name>
1011
1012  Contains lines that specify additional routing rules that should be added
1013  when the associated interface is brought up.
1014
1015  Each non-comment line is used directly as an argument to "/sbin/ip rule add".
1016
Note: See TracBrowser for help on using the repository browser.