From nobody Wed Dec 03 09:15:00 2025
X-Original-To: freebsd-current@mlmmj.nyi.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1])
	by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4dLsRk38n4z6J0b6
	for <freebsd-current@mlmmj.nyi.freebsd.org>; Wed, 03 Dec 2025 09:15:14 +0000 (UTC)
	(envelope-from freebsd@walstatt-de.de)
Received: from smtp052.goneo.de (smtp052.goneo.de [85.220.129.60])
	(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
	 key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256)
	(Client did not present a certificate)
	by mx1.freebsd.org (Postfix) with ESMTPS id 4dLsRj4l4Rz3hpX;
	Wed, 03 Dec 2025 09:15:13 +0000 (UTC)
	(envelope-from freebsd@walstatt-de.de)
Authentication-Results: mx1.freebsd.org;
	none
Received: from hub2.goneo.de (hub2.goneo.de [85.220.129.53])
	(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
	 key-exchange X25519 server-signature RSA-PSS (4096 bits))
	(No client certificate requested)
	by smtp5.goneo.de (Postfix) with ESMTPS id CBD12240C8D;
	Wed,  3 Dec 2025 10:15:11 +0100 (CET)
Received: from hub2.goneo.de (localhost [127.0.0.1])
	(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
	 key-exchange X25519 server-signature RSA-PSS (4096 bits))
	(No client certificate requested)
	by hub2.goneo.de (Postfix) with ESMTPS id 12AC1240327;
	Wed,  3 Dec 2025 10:15:10 +0100 (CET)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=walstatt-de.de;
	s=DKIM001; t=1764753310;
	h=from:from:reply-to:subject:subject:date:date:message-id:message-id:
	 to:to:cc:cc:mime-version:mime-version:content-type:content-type:
	 in-reply-to:in-reply-to:references:references;
	bh=z6/tMjBvx/GUHBikHN48k9kND5+TuYnV5MP6GHFRvQg=;
	b=sJrlaC4vDlRjBYawgU7za78ihQSY3Nj87vfvwKutaZo20X4WEy34+3tHQs3BWy1pSDvY2k
	x3lGCsCx7eN71xA4uOk7nvh0XFVVambBUNOoJQJrEgDOV43Yf3z+NnAbE+87tvr0sHrckU
	aa5PNfjlOov/urCnKIrkWZoF/oKK+6d4SqvdOmChek2/TbJafyMpsqMfz4izZLQkffCJwm
	9ihIbLirvoD3Q+L/8VWmwYP3PuEcJbAGpRmG3ujaaOBPv6kVtQU8wtOyEpjsKGwyxxKA9S
	vQK+oC+KX/eLy6y5iQ9kY8upEzuzoAum+B6pRUOcCm9+xnsTK7w2NkyVsiOgGQ==
Received: from hermann (dynamic-2a02-3100-2e69-c406-843e-af5b-61de-9172.310.pool.telefonica.de [IPv6:2a02:3100:2e69:c406:843e:af5b:61de:9172])
	(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
	 key-exchange ECDHE (prime256v1) server-signature RSA-PSS (4096 bits) server-digest SHA256)
	(No client certificate requested)
	by hub2.goneo.de (Postfix) with ESMTPSA id A0D7024027A;
	Wed,  3 Dec 2025 10:15:09 +0100 (CET)
Date: Wed, 3 Dec 2025 10:15:00 +0100
From: FreeBSD User <freebsd@walstatt-de.de>
To: Dag-Erling =?UTF-8?B?U23DuHJncmF2?= <des@FreeBSD.org>
Cc: FreeBSD CURRENT <freebsd-current@freebsd.org>
Subject: Re: 15-STABLE: dhclient fails on em0 (Lenovo T580)
Message-ID: <20251203101500.36545493@hermann>
In-Reply-To: <86a500hdbu.fsf@ltc.des.dev>
References: <20251128082630.3dbea678@hermann>
	<20251128110534.3987f908@hermann>
	<86fr9yie5u.fsf@ltc.des.dev>
	<20251201132649.5aef71e8@thor.sb211.local>
	<86a500hdbu.fsf@ltc.des.dev>
List-Id: Discussions about the use of FreeBSD-current <freebsd-current.freebsd.org>
List-Archive: https://lists.freebsd.org/archives/freebsd-current
List-Help: <mailto:freebsd-current+help@freebsd.org>
List-Post: <mailto:freebsd-current@freebsd.org>
List-Subscribe: <mailto:freebsd-current+subscribe@freebsd.org>
List-Unsubscribe: <mailto:freebsd-current+unsubscribe@freebsd.org>
Sender: owner-freebsd-current@FreeBSD.org
MIME-Version: 1.0
Content-Type: multipart/signed; boundary="Sig_/qbN2Gv7LDW6b_+GpAkVwsVp";
 protocol="application/pgp-signature"; micalg=pgp-sha512
X-Rspamd-UID: 7a41bb
X-Rspamd-UID: c91f20
X-Spamd-Bar: ----
X-Spamd-Result: default: False [-4.00 / 15.00];
	REPLY(-4.00)[]
X-Rspamd-Pre-Result: action=no action;
	module=replies;
	Message is reply to one we originated
X-Rspamd-Queue-Id: 4dLsRj4l4Rz3hpX

--Sig_/qbN2Gv7LDW6b_+GpAkVwsVp
Content-Type: multipart/mixed; boundary="MP_/VSGqIKl_etOMTNEMi4Bd5Wg"

--MP_/VSGqIKl_etOMTNEMi4Bd5Wg
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: quoted-printable
Content-Disposition: inline

On Tue, 02 Dec 2025 20:51:33 +0100
Dag-Erling Sm=C3=B8rgrav <des@FreeBSD.org> wrote:

> A FreeBSD User <freebsd@walstatt-de.de> writes:
> > Dag-Erling Sm=C3=B8rgrav <des@FreeBSD.org> writes: =20
> > > As a workaround, add this to /boot/loader.conf:
> > >=20
> > >     net.inet.ip.fw.default_to_accept=3D"1" =20
> > the above "trick" doesn't help. =20
>=20
> This is concerning.
>=20
> The fact that `dhclient em0` works after the firewall is up proves that
> the firewall rules themselves are not the issue.  I therefore assumed
> that the problem was that dhclient was trying to acquire a lease before
> the firewall was configured.  Switching default_to_accept on should have
> made that possible.  The fact that it doesn't means the firewall isn't
> to blame at all.  Something else is causing dhclient not to run at boot.
>=20
> Could you please provide the output from the following command:
>=20
>     grep -r '^[^#]' /etc/rc.conf*
>=20
> Could you please also provide a log of the boot messages, if possible?
>=20
> DES

Having had a feeling that statically compiling in FIREWALL (ipw) support in=
to
my kernel, I tested by excluding the appropritae lines and adding the
/boot/loader.conf.local line again allow packets by default. Result is the =
very
same.

Attached you'll find the requested files.

A side note: I do etcupdate on a regular basis on all of the maintained box=
es.

Kind regards,

oh=20

--MP_/VSGqIKl_etOMTNEMi4Bd5Wg
Content-Type: text/plain
Content-Transfer-Encoding: quoted-printable
Content-Disposition: attachment; filename=rc_conf_ast.txt

/etc/rc.conf:: ${_localbase:=3D"$(/sbin/sysctl -n user.localbase 2> /dev/nu=
ll)"}
/etc/rc.conf:: ${_localbase:=3D"/usr/local"}
/etc/rc.conf:rc_info=3D"NO"		# Enables display of informational messages at=
 boot.
/etc/rc.conf:rc_startmsgs=3D"YES" 	# Show "Starting foo:" messages at boot
/etc/rc.conf:rcshutdown_timeout=3D"90" # Seconds to wait before terminating=
 rc.shutdown
/etc/rc.conf:precious_machine=3D"NO"	# Set to YES to get some guards agains=
t mis-directed
/etc/rc.conf:                        # shutdown(8) commands
/etc/rc.conf:early_late_divider=3D"FILESYSTEMS"	# Script that separates ear=
ly/late
/etc/rc.conf:			# stages of the boot process.  Make sure you know
/etc/rc.conf:			# the ramifications if you change this.
/etc/rc.conf:			# See rc.conf(5) for more details.
/etc/rc.conf:always_force_depends=3D"NO"	# Set to check that indicated depe=
ndencies are
/etc/rc.conf:				# running during boot (can increase boot time).
/etc/rc.conf:apm_enable=3D"NO"		# Set to YES to enable APM BIOS functions (=
or NO).
/etc/rc.conf:apmd_enable=3D"NO"	# Run apmd to handle APM event from userlan=
d.
/etc/rc.conf:apmd_flags=3D""		# Flags to apmd (if enabled).
/etc/rc.conf:ddb_enable=3D"NO"		# Set to YES to load ddb scripts at boot.
/etc/rc.conf:ddb_config=3D"/etc/ddb.conf"	# ddb(8) config file.
/etc/rc.conf:devd_enable=3D"YES" 	# Run devd, to trigger programs on device=
 tree changes.
/etc/rc.conf:devd_flags=3D""		# Additional flags for devd(8).
/etc/rc.conf:devmatch_enable=3D"YES"	# Demand load kernel modules based on =
device ids.
/etc/rc.conf:devmatch_blocklist=3D""	# List of modules (w/o .ko) to exclude=
 from devmatch.
/etc/rc.conf:kldxref_enable=3D"YES"	# Build linker.hints files with kldxref=
(8).
/etc/rc.conf:kldxref_clobber=3D"NO"	# Overwrite old linker.hints at boot.
/etc/rc.conf:kldxref_module_path=3D""	# Override kern.module_path. A ';'-de=
limited list.
/etc/rc.conf:powerd_enable=3D"YES" 	# Run powerd to lower our power usage.
/etc/rc.conf:powerd_flags=3D""		# Flags to powerd (if enabled).
/etc/rc.conf:tmpmfs=3D"AUTO"		# Set to YES to always create an mfs /tmp, NO=
 to never
/etc/rc.conf:tmpsize=3D"20m"		# Size of mfs /tmp if created
/etc/rc.conf:tmpmfs_flags=3D"-S"	# Extra mdmfs options for the mfs /tmp
/etc/rc.conf:utx_enable=3D"YES"	# Enable user accounting
/etc/rc.conf:varmfs=3D"AUTO"		# Set to YES to always create an mfs /var, NO=
 to never
/etc/rc.conf:varsize=3D"32m"		# Size of mfs /var if created
/etc/rc.conf:varmfs_flags=3D"-S"	# Extra mount options for the mfs /var
/etc/rc.conf:mfs_type=3D"auto"		# "md", "tmpfs", "auto" to prefer tmpfs wit=
h md as fallback
/etc/rc.conf:populate_var=3D"AUTO"	# Set to YES to always (re)populate /var=
, NO to never
/etc/rc.conf:cleanvar_enable=3D"YES" 	# Clean the /var directory
/etc/rc.conf:var_run_enable=3D"YES" 	# Save/restore /var/run structure at s=
hutdown/reboot
/etc/rc.conf:var_run_autosave=3D"YES" 	# Only restore /var/run structure at=
 shutdown/reboot
/etc/rc.conf:			# The user is expected to issue service var_run save to
/etc/rc.conf:			# manually save the /var/run mtree
/etc/rc.conf:var_run_mtree=3D"/var/db/mtree/BSD.var-run.mtree"
/etc/rc.conf:			# Where to save /var/run mtree
/etc/rc.conf:local_startup=3D"${_localbase}/etc/rc.d" # startup script dirs.
/etc/rc.conf:script_name_sep=3D" "	# Change if your startup scripts' names =
contain spaces
/etc/rc.conf:rc_conf_files=3D"/etc/rc.conf /etc/rc.conf.local"
/etc/rc.conf:zfs_enable=3D"YES"		# Set to YES to automatically mount ZFS fi=
le systems
/etc/rc.conf:zfskeys_enable=3D"NO"	# Set YES to autoload ZFS encryption keys
/etc/rc.conf:zfs_bootonce_activate=3D"NO" # Set YES to make successful boot=
once BE permanent
/etc/rc.conf:zpool_reguid=3D""		# Set to zpools for which the GUID should b=
e replaced
/etc/rc.conf:			# upon first boot.
/etc/rc.conf:zpool_upgrade=3D""	# Set to zpools for which the version shoul=
d be upgraded
/etc/rc.conf:			# upon first boot.
/etc/rc.conf:zfsd_enable=3D"NO"	# Set to YES to automatically start the ZFS=
 fault
/etc/rc.conf:			# management daemon.
/etc/rc.conf:gptboot_enable=3D"YES"	# GPT boot success/failure reporting.
/etc/rc.conf:geli_devices=3D""		# List of devices to automatically attach i=
n addition to
/etc/rc.conf:			# GELI devices listed in /etc/fstab.
/etc/rc.conf:geli_groups=3D""		# List of groups containing devices to autom=
atically
/etc/rc.conf:			# attach with the same keyfiles and passphrase
/etc/rc.conf:geli_tries=3D""		# Number of times to attempt attaching geli d=
evice.
/etc/rc.conf:			# If empty, kern.geom.eli.tries will be used.
/etc/rc.conf:geli_default_flags=3D""	# Default flags for geli(8).
/etc/rc.conf:geli_autodetach=3D"YES"	# Automatically detach on last close.
/etc/rc.conf:			# Providers are marked as such when all file systems are
/etc/rc.conf:			# mounted.
/etc/rc.conf:root_rw_mount=3D"YES"	# Set to NO to inhibit remounting root r=
ead-write.
/etc/rc.conf:root_hold_delay=3D"30"	# Time to wait for root mount hold rele=
ase.
/etc/rc.conf:fsck_flags=3D"-p"		# May be changed to -f (or -f -y) to force =
a full fsck
/etc/rc.conf:fsck_y_enable=3D"YES"	# Set to YES to do fsck -y if the initia=
l preen fails.
/etc/rc.conf:fsck_y_flags=3D"-T ffs:-R -T ufs:-R"	# Additional flags for fs=
ck -y
/etc/rc.conf:background_fsck=3D"YES"	# Attempt to run fsck in the backgroun=
d where possible.
/etc/rc.conf:background_fsck_delay=3D"60" # Time to wait (seconds) before s=
tarting the fsck.
/etc/rc.conf:growfs_enable=3D"NO"	# Set to YES to attempt to grow the root =
filesystem on boot
/etc/rc.conf:growfs_swap_size=3D""	# Set to 0 to disable growfs swap, "" to=
 default size,
/etc/rc.conf:			# size in bytes to specify swap size.
/etc/rc.conf:netfs_types=3D"nfs:NFS smbfs:SMB" # Net filesystems.
/etc/rc.conf:extra_netfs_types=3D"NO"	# List of network extra filesystem ty=
pes for delayed
/etc/rc.conf:			# mount at startup (or NO).
/etc/rc.conf:hostname=3D"hermann"			# Set this!
/etc/rc.conf:hostid_enable=3D"YES"		# Set host UUID.
/etc/rc.conf:hostid_file=3D"/etc/hostid"	# File with hostuuid.
/etc/rc.conf:hostid_uuidgen_flags=3D"-r"	# Flags to uuidgen.
/etc/rc.conf:machine_id_file=3D"/etc/machine-id"	# File with machine-id.
/etc/rc.conf:nisdomainname=3D"NO"		# Set to NIS domain if using NIS (or NO).
/etc/rc.conf:dhclient_program=3D"/sbin/dhclient"	# Path to dhcp client prog=
ram.
/etc/rc.conf:dhclient_flags=3D""		# Extra flags to pass to dhcp client.
/etc/rc.conf:background_dhclient=3D"NO"	# Start dhcp client in the backgrou=
nd.
/etc/rc.conf:dhclient_arpwait=3D"YES"		# Wait for ARP resolution
/etc/rc.conf:synchronous_dhclient=3D"NO"	# Start dhclient directly on confi=
gured
/etc/rc.conf:				# interfaces during startup.
/etc/rc.conf:defaultroute_delay=3D"30"		# Time to wait for a default route =
on a DHCP interface.
/etc/rc.conf:defaultroute_carrier_delay=3D"5"	# Time to wait for carrier wh=
ile waiting for a default route.
/etc/rc.conf:netif_enable=3D"YES"		# Set to YES to initialize network inter=
faces
/etc/rc.conf:netif_ipexpand_max=3D"2048"	# Maximum number of IP addrs in a =
range spec.
/etc/rc.conf:wpa_supplicant_program=3D"/usr/sbin/wpa_supplicant"
/etc/rc.conf:wpa_supplicant_flags=3D"-s"	# Extra flags to pass to wpa_suppl=
icant
/etc/rc.conf:wpa_supplicant_conf_file=3D"/etc/wpa_supplicant.conf"
/etc/rc.conf:firewall_enable=3D"YES"		# Set to YES to enable firewall funct=
ionality
/etc/rc.conf:firewall_script=3D"/etc/rc.firewall" # Which script to run to =
set up the firewall
/etc/rc.conf:firewall_type=3D"workstation"		# Firewall type (see /etc/rc.fi=
rewall)
/etc/rc.conf:firewall_quiet=3D"NO"		# Set to YES to suppress rule display
/etc/rc.conf:firewall_logging=3D"NO"		# Set to YES to enable events logging
/etc/rc.conf:firewall_logif=3D"YES"		# Set to YES to create logging-pseudo =
interface
/etc/rc.conf:firewall_flags=3D""		# Flags passed to ipfw when type is a file
/etc/rc.conf:firewall_coscripts=3D""		# List of executables/scripts to run =
after
/etc/rc.conf:				# firewall starts/stops
/etc/rc.conf:firewall_client_net=3D"192.0.2.0/24" # IPv4 Network address fo=
r "client"
/etc/rc.conf:				# firewall.
/etc/rc.conf:				# "client" firewall.
/etc/rc.conf:firewall_simple_iif=3D"em1"	# Inside network interface for "si=
mple"
/etc/rc.conf:				# firewall.
/etc/rc.conf:firewall_simple_inet=3D"192.0.2.16/28" # Inside network addres=
s for "simple"
/etc/rc.conf:				# firewall.
/etc/rc.conf:firewall_simple_oif=3D"em0"	# Outside network interface for "s=
imple"
/etc/rc.conf:				# firewall.
/etc/rc.conf:firewall_simple_onet=3D"192.0.2.0/28" # Outside network addres=
s for "simple"
/etc/rc.conf:				# firewall.
/etc/rc.conf:				# firewall.
/etc/rc.conf:				# for "simple" firewall.
/etc/rc.conf:				# firewall.
/etc/rc.conf:				# for "simple" firewall.
/etc/rc.conf:firewall_myservices=3D"22/tcp"		# List of ports/protocols on w=
hich this host
/etc/rc.conf:				# offers services for "workstation" firewall.
/etc/rc.conf:firewall_allowservices=3D"any"	# List of IPs which have access=
 to
/etc/rc.conf:				# $firewall_myservices for "workstation"
/etc/rc.conf:				# firewall.
/etc/rc.conf:firewall_trusted=3D""		# List of IPs which have full access to=
 this
/etc/rc.conf:				# host for "workstation" firewall.
/etc/rc.conf:firewall_logdeny=3D"NO"		# Set to YES to log default denied in=
coming
/etc/rc.conf:				# packets for "workstation" firewall.
/etc/rc.conf:firewall_nologports=3D"135-139,445 1026,1027 1433,1434" # List=
 of TCP/UDP ports
/etc/rc.conf:				# for which denied incoming packets are not
/etc/rc.conf:				# logged for "workstation" firewall.
/etc/rc.conf:firewall_nat_enable=3D"NO"	# Enable kernel NAT (if firewall_en=
able =3D=3D YES)
/etc/rc.conf:firewall_nat_interface=3D""	# Public interface or IPaddress to=
 use
/etc/rc.conf:firewall_nat_flags=3D""		# Additional configuration parameters
/etc/rc.conf:firewall_nat64_enable=3D"NO"	# Enable kernel NAT64 module.
/etc/rc.conf:firewall_nptv6_enable=3D"NO"	# Enable kernel NPTv6 module.
/etc/rc.conf:firewall_pmod_enable=3D"NO"	# Enable kernel protocols modifica=
tion module.
/etc/rc.conf:dummynet_enable=3D"NO"		# Load the dummynet(4) module
/etc/rc.conf:ipfw_netflow_enable=3D"NO"	# Enable netflow logging via ng_net=
flow
/etc/rc.conf:ip_portrange_first=3D"NO"		# Set first dynamically allocated p=
ort
/etc/rc.conf:ip_portrange_last=3D"NO"		# Set last dynamically allocated port
/etc/rc.conf:ike_enable=3D"NO"			# Enable IKE daemon (usually racoon or isa=
kmpd)
/etc/rc.conf:ike_program=3D"${_localbase}/sbin/isakmpd"	# Path to IKE daemon
/etc/rc.conf:ike_flags=3D""			# Additional flags for IKE daemon
/etc/rc.conf:ipsec_enable=3D"NO"		# Set to YES to run setkey on ipsec_file
/etc/rc.conf:ipsec_file=3D"/etc/ipsec.conf"	# Name of config file for setkey
/etc/rc.conf:natd_program=3D"/sbin/natd"	# path to natd, if you want a diff=
erent one.
/etc/rc.conf:natd_enable=3D"NO"		# Enable natd (if firewall_enable =3D=3D Y=
ES).
/etc/rc.conf:natd_interface=3D""		# Public interface or IPaddress to use.
/etc/rc.conf:natd_flags=3D""			# Additional flags for natd.
/etc/rc.conf:ipfilter_enable=3D"NO"		# Set to YES to enable ipfilter functi=
onality
/etc/rc.conf:ipfilter_program=3D"/sbin/ipf"	# where the ipfilter program li=
ves
/etc/rc.conf:ipfilter_rules=3D"/etc/ipf.rules"	# rules definition file for =
ipfilter, see
/etc/rc.conf:				# /usr/src/share/examples/ipfilter for examples
/etc/rc.conf:ipfilter_flags=3D""		# additional flags for ipfilter
/etc/rc.conf:ipfilter_optionlist=3D""		# optionlist for ipf(8) -T
/etc/rc.conf:ippool_enable=3D"NO"		# Set to YES to enable ip filter pools
/etc/rc.conf:ippool_program=3D"/sbin/ippool"	# where the ippool program liv=
es
/etc/rc.conf:ippool_rules=3D"/etc/ippool.tables"	# rules definition file fo=
r ippool
/etc/rc.conf:ippool_flags=3D""			# additional flags for ippool
/etc/rc.conf:ipnat_enable=3D"NO"		# Set to YES to enable ipnat functionality
/etc/rc.conf:ipnat_program=3D"/sbin/ipnat"	# where the ipnat program lives
/etc/rc.conf:ipnat_rules=3D"/etc/ipnat.rules"	# rules definition file for i=
pnat
/etc/rc.conf:ipnat_flags=3D""			# additional flags for ipnat
/etc/rc.conf:ipmon_enable=3D"NO"		# Set to YES for ipmon; needs ipfilter or=
 ipnat
/etc/rc.conf:ipmon_program=3D"/sbin/ipmon"	# where the ipfilter monitor pro=
gram lives
/etc/rc.conf:ipmon_flags=3D"-Ds"		# typically "-Ds" or "-D /var/log/ipflog"
/etc/rc.conf:ipfs_enable=3D"NO"		# Set to YES to enable saving and restoring
/etc/rc.conf:				# of state tables at shutdown and boot
/etc/rc.conf:ipfs_program=3D"/sbin/ipfs"	# where the ipfs program lives
/etc/rc.conf:ipfs_flags=3D""			# additional flags for ipfs
/etc/rc.conf:pf_enable=3D"NO"			# Set to YES to enable packet filter (pf)
/etc/rc.conf:pf_rules=3D"/etc/pf.conf"		# rules definition file for pf (non=
existent
/etc/rc.conf:				# by default)
/etc/rc.conf:pf_program=3D"/sbin/pfctl"	# where the pfctl program lives
/etc/rc.conf:pf_flags=3D""			# additional flags for pfctl
/etc/rc.conf:pf_fallback_rules_enable=3D"NO"	# fallback if loading ruleset =
fails
/etc/rc.conf:pf_fallback_rules=3D"block drop log all"	# rules to load on pf=
 ruleset failure
/etc/rc.conf:pf_fallback_rules_file=3D"/etc/pf-fallback.conf"	# rules file =
on ruleset failure
/etc/rc.conf:pflog_enable=3D"NO"		# Set to YES to enable packet filter logg=
ing
/etc/rc.conf:pflog_logfile=3D"/var/log/pflog"	# where pflogd should store t=
he logfile
/etc/rc.conf:pflog_program=3D"/sbin/pflogd"	# where the pflogd program lives
/etc/rc.conf:pflog_flags=3D""			# additional flags for pflogd
/etc/rc.conf:dnctl_enable=3D"NO"
/etc/rc.conf:dnctl_program=3D"/sbin/dnctl"
/etc/rc.conf:dnctl_rules=3D"/etc/dnctl.conf"
/etc/rc.conf:ftpproxy_enable=3D"NO"		# Set to YES to enable ftp-proxy(8) fo=
r pf
/etc/rc.conf:ftpproxy_flags=3D""		# additional flags for ftp-proxy(8)
/etc/rc.conf:pfsync_enable=3D"NO"		# Expose pf state to other hosts for syn=
cing
/etc/rc.conf:pfsync_syncdev=3D""		# Interface for pfsync to work through
/etc/rc.conf:pfsync_syncpeer=3D""		# IP address of pfsync peer host
/etc/rc.conf:pfsync_ifconfig=3D""		# Additional options to ifconfig(8) for =
pfsync
/etc/rc.conf:tcp_extensions=3D"YES"		# Set to NO to turn off RFC1323 extens=
ions.
/etc/rc.conf:log_in_vain=3D"0"			# >=3D1 to log connects to ports w/o liste=
ners.
/etc/rc.conf:tcp_keepalive=3D"YES"		# Enable stale TCP connection timeout (=
or NO).
/etc/rc.conf:tcp_drop_synfin=3D"NO"		# Set to YES to drop TCP packets with =
SYN+FIN
/etc/rc.conf:				# NOTE: this violates the TCP specification
/etc/rc.conf:icmp_drop_redirect=3D"auto" 	# Set to YES to ignore ICMP REDIR=
ECT packets
/etc/rc.conf:icmp_log_redirect=3D"NO"		# Set to YES to log ICMP REDIRECT pa=
ckets
/etc/rc.conf:network_interfaces=3D"auto"	# List of network interfaces (or "=
auto").
/etc/rc.conf:cloned_interfaces=3D"lagg0"		# List of cloned network interfac=
es to create.
/etc/rc.conf:wlandebug_wlan0=3D"+state+crypto+node+auth+assoc+dot1xsm+wpa+p=
ower"	# Set debug flags with wlandebug(8)
/etc/rc.conf:ppp_enable=3D"NO"		# Start user-ppp (or NO).
/etc/rc.conf:ppp_program=3D"/usr/sbin/ppp"	# Path to user-ppp program.
/etc/rc.conf:ppp_mode=3D"auto"		# Choice of "auto", "ddial", "direct" or "d=
edicated".
/etc/rc.conf:			# For details see man page for ppp(8). Default is auto.
/etc/rc.conf:ppp_nat=3D"YES"		# Use PPP's internal network address translat=
ion or NO.
/etc/rc.conf:ppp_profile=3D"papchap"	# Which profile to use from /etc/ppp/p=
pp.conf.
/etc/rc.conf:ppp_user=3D"root"		# Which user to run ppp as
/etc/rc.conf:ifconfig_em0=3D"DHCP"
/etc/rc.conf:ifconfig_em0_ipv6=3D"inet6 accept_rtadv -ifdisabled nud -no_ra=
dr auto_linklocal"
/etc/rc.conf:ifconfig_ue0=3D"up"
/etc/rc.conf:ifconfig_ue0_ipv6=3D"inet6 accept_rtadv -ifdisabled nud -no_ra=
dr auto_linklocal"
/etc/rc.conf:wlans_iwlwifi0=3D"wlan0"
/etc/rc.conf:ifconfig_wlan0=3D"DHCP WPA"
/etc/rc.conf:ifconfig_wlan0_ipv6=3D"inet6 accept_rtadv -ifdisabled nud -no_=
radr auto_linklocal"
/etc/rc.conf:create_args_wlan0=3D"country DE regdomain ETSI"
/etc/rc.conf:hostapd_program=3D"/usr/sbin/hostapd"
/etc/rc.conf:hostapd_enable=3D"NO"		# Run hostap daemon.
/etc/rc.conf:syslogd_enable=3D"YES"		# Run syslog daemon (or NO).
/etc/rc.conf:syslogd_program=3D"/usr/sbin/syslogd" # path to syslogd, if yo=
u want a different one.
/etc/rc.conf:syslogd_flags=3D"-C -v -s"		# Flags to syslogd (if enabled).
/etc/rc.conf:syslogd_oomprotect=3D"YES"	# Don't kill syslogd when swap spac=
e is exhausted.=20
/etc/rc.conf:altlog_proglist=3D""		# List of chrooted applicatioins in /var
/etc/rc.conf:inetd_enable=3D"NO"		# Run the network daemon dispatcher (YES/=
NO).
/etc/rc.conf:inetd_program=3D"/usr/sbin/inetd"	# path to inetd, if you want=
 a different one.
/etc/rc.conf:inetd_flags=3D"-wW -C 60"		# Optional flags to inetd
/etc/rc.conf:iscsid_enable=3D"NO"		# iSCSI initiator daemon.
/etc/rc.conf:iscsictl_enable=3D"NO"		# iSCSI initiator autostart.
/etc/rc.conf:iscsictl_flags=3D"-Aa"		# Optional flags to iscsictl.
/etc/rc.conf:hastd_enable=3D"NO"		# Run the HAST daemon (YES/NO).
/etc/rc.conf:hastd_program=3D"/sbin/hastd"	# path to hastd, if you want a d=
ifferent one.
/etc/rc.conf:hastd_flags=3D""			# Optional flags to hastd.
/etc/rc.conf:ggated_enable=3D"NO"		# Run the ggate daemon (YES/NO).
/etc/rc.conf:ggated_config=3D"/etc/gg.exports"	# ggated(8) exports file.
/etc/rc.conf:ggated_flags=3D""			# Extra parameters like which port to bind=
 to.
/etc/rc.conf:ctld_enable=3D"YES"		# CAM Target Layer / iSCSI target daemon.
/etc/rc.conf:local_unbound_enable=3D"YES"	# Local caching resolver
/etc/rc.conf:local_unbound_oomprotect=3D"YES"	# Don't kill local_unbound wh=
en swap space is exhausted.
/etc/rc.conf:local_unbound_tls=3D"NO"		# Use DNS over TLS
/etc/rc.conf:blacklistd_enable=3D"NO"		# Renamed to blocklistd_enable.
/etc/rc.conf:blacklistd_flags=3D""		# Renamed to blocklistd_flags.
/etc/rc.conf:blocklistd_enable=3D"YES"		# Run blocklistd daemon (YES/NO).
/etc/rc.conf:blocklistd_flags=3D""		# Optional flags for blocklistd(8).
/etc/rc.conf:resolv_enable=3D"YES"		# Enable resolv / resolvconf
/etc/rc.conf:kdc_enable=3D"NO"			# Run a kerberos 5 KDC (or NO).
/etc/rc.conf:kdc_program=3D""			# path to kerberos 5 KDC
/etc/rc.conf:kdc_flags=3D""			# Additional flags to the kerberos 5 KDC
/etc/rc.conf:kdc_restart=3D"NO"		# Auto restart kdc on abnormal termination
/etc/rc.conf:kdc_restart_delay=3D""		# Auto restart delay seconds
/etc/rc.conf:kadmind_enable=3D"NO"		# Run kadmind (or NO)
/etc/rc.conf:kadmind_program=3D"/usr/libexec/kadmind"	# path to kadmind
/etc/rc.conf:kpasswdd_enable=3D"NO"		# Run kpasswdd (or NO)
/etc/rc.conf:kpasswdd_program=3D"/usr/libexec/kpasswdd" # path to kpasswdd
/etc/rc.conf:kfd_enable=3D"NO"			# Run kfd (or NO)
/etc/rc.conf:kfd_program=3D"/usr/libexec/kfd"	# path to kerberos 5 kfd daem=
on
/etc/rc.conf:kfd_flags=3D""
/etc/rc.conf:ipropd_master_enable=3D"NO"	# Run Heimdal incremental propagat=
ion daemon
/etc/rc.conf:				# (master daemon).
/etc/rc.conf:ipropd_master_program=3D"/usr/libexec/ipropd-master"
/etc/rc.conf:ipropd_master_flags=3D""		# Flags to ipropd-master.
/etc/rc.conf:ipropd_master_keytab=3D"/etc/krb5.keytab"	# keytab for ipropd-=
master.
/etc/rc.conf:ipropd_master_slaves=3D""		# slave node names used for /var/he=
imdal/slaves.
/etc/rc.conf:ipropd_slave_enable=3D"NO"	# Run Heimdal incremental propagati=
on daemon
/etc/rc.conf:				# (slave daemon).
/etc/rc.conf:ipropd_slave_program=3D"/usr/libexec/ipropd-slave"
/etc/rc.conf:ipropd_slave_flags=3D""		# Flags to ipropd-slave.
/etc/rc.conf:ipropd_slave_keytab=3D"/etc/krb5.keytab"	# keytab for ipropd-s=
lave.
/etc/rc.conf:ipropd_slave_master=3D""		# master node name.
/etc/rc.conf:gssd_enable=3D"NO"		# Run the gssd daemon (or NO).
/etc/rc.conf:gssd_program=3D"/usr/sbin/gssd"	# Path to gssd.
/etc/rc.conf:gssd_flags=3D""			# Flags for gssd.
/etc/rc.conf:rwhod_enable=3D"NO"		# Run the rwho daemon (or NO).
/etc/rc.conf:rwhod_flags=3D""			# Flags for rwhod
/etc/rc.conf:rarpd_enable=3D"NO"		# Run rarpd (or NO).
/etc/rc.conf:rarpd_flags=3D"-a"		# Flags to rarpd.
/etc/rc.conf:bootparamd_enable=3D"NO"		# Run bootparamd (or NO).
/etc/rc.conf:bootparamd_flags=3D""		# Flags to bootparamd
/etc/rc.conf:pppoed_enable=3D"NO"		# Run the PPP over Ethernet daemon.
/etc/rc.conf:pppoed_provider=3D"*"		# Provider and ppp(8) config file entry.
/etc/rc.conf:pppoed_flags=3D"-P /var/run/pppoed.pid"	# Flags to pppoed (if =
enabled).
/etc/rc.conf:pppoed_interface=3D"em0"		# The interface that pppoed runs on.
/etc/rc.conf:sshd_enable=3D"YES"		# Enable sshd
/etc/rc.conf:sshd_oomprotect=3D"YES"		# Don't kill sshd when swap space is =
exhausted.
/etc/rc.conf:sshd_program=3D"/usr/sbin/sshd"	# path to sshd, if you want a =
different one.
/etc/rc.conf:sshd_flags=3D""			# Additional flags for sshd.
/etc/rc.conf:autofs_enable=3D"YES"		# Run autofs daemons.
/etc/rc.conf:automount_flags=3D""		# Flags to automount(8) (if autofs enabl=
ed).
/etc/rc.conf:automountd_flags=3D""		# Flags to automountd(8) (if autofs ena=
bled).
/etc/rc.conf:autounmountd_flags=3D""		# Flags to autounmountd(8) (if autofs=
 enabled).
/etc/rc.conf:nfs_client_enable=3D"NO"		# This host is an NFS client (or NO).
/etc/rc.conf:nfs_access_cache=3D"60"		# Client cache timeout in seconds
/etc/rc.conf:nfs_server_enable=3D"NO"		# This host is an NFS server (or NO).
/etc/rc.conf:nfs_server_flags=3D"-u -t"	# Flags to nfsd (if enabled).
/etc/rc.conf:nfs_server_managegids=3D"NO"	# The NFS server maps gids for AU=
TH_SYS (or NO).
/etc/rc.conf:nfs_server_maxio=3D"131072"	# Maximum I/O size for the nfsd.
/etc/rc.conf:mountd_enable=3D"NO"		# Run mountd (or NO).
/etc/rc.conf:mountd_flags=3D"-r -S"		# Flags to mountd (if NFS server enabl=
ed).
/etc/rc.conf:weak_mountd_authentication=3D"NO"	# Allow non-root mount reque=
sts to be served.
/etc/rc.conf:nfs_reserved_port_only=3D"YES"	# Provide NFS only on secure po=
rt (or NO).
/etc/rc.conf:nfs_bufpackets=3D""		# bufspace (in packets) for client
/etc/rc.conf:rpc_lockd_enable=3D"NO"		# Run NFS rpc.lockd needed for client=
/server.
/etc/rc.conf:rpc_lockd_flags=3D""		# Flags to rpc.lockd (if enabled).
/etc/rc.conf:rpc_statd_enable=3D"NO"		# Run NFS rpc.statd needed for client=
/server.
/etc/rc.conf:rpc_statd_flags=3D""		# Flags to rpc.statd (if enabled).
/etc/rc.conf:rpcbind_enable=3D"YES"		# Run the portmapper service (YES/NO).
/etc/rc.conf:rpcbind_program=3D"/usr/sbin/rpcbind"	# path to rpcbind, if yo=
u want a different one.
/etc/rc.conf:rpcbind_flags=3D""		# Flags to rpcbind (if enabled).
/etc/rc.conf:rpc_ypupdated_enable=3D"NO"	# Run if NIS master and SecureRPC =
(or NO).
/etc/rc.conf:nfsv4_server_enable=3D"NO"	# Enable support for NFSv4
/etc/rc.conf:nfsv4_server_only=3D"NO"		# Set NFS server to NFSv4 only
/etc/rc.conf:nfscbd_enable=3D"NO"		# NFSv4 client side callback daemon
/etc/rc.conf:nfscbd_flags=3D""			# Flags for nfscbd
/etc/rc.conf:nfsuserd_enable=3D"NO"		# NFSv4 user/group name mapping daemon
/etc/rc.conf:nfsuserd_flags=3D""		# Flags for nfsuserd
/etc/rc.conf:tlsclntd_enable=3D"NO"		# Run rpc.tlsclntd needed for NFS-over=
-TLS mount
/etc/rc.conf:tlsclntd_flags=3D""		# Flags for rpc.tlsclntd
/etc/rc.conf:tlsservd_enable=3D"NO"		# Run rpc.tlsservd needed for NFS-over=
-TLS nfsd
/etc/rc.conf:tlsservd_flags=3D""		# Flags for rpc.tlsservd
/etc/rc.conf:ntpdate_enable=3D"NO"		# Run ntpdate to sync time on boot (or =
NO).
/etc/rc.conf:ntpdate_program=3D"/usr/sbin/ntpdate"	# path to ntpdate, if yo=
u want a different one.
/etc/rc.conf:ntpdate_flags=3D"-b"		# Flags to ntpdate (if enabled).
/etc/rc.conf:ntpdate_config=3D"/etc/ntp.conf"	# ntpdate(8) configuration fi=
le
/etc/rc.conf:ntpdate_hosts=3D""		# Whitespace-separated list of ntpdate(8) =
servers.
/etc/rc.conf:ntpd_enable=3D"YES"		# Run ntpd Network Time Protocol (or NO).
/etc/rc.conf:ntpd_program=3D"/usr/sbin/ntpd"	# path to ntpd, if you want a =
different one.
/etc/rc.conf:ntpd_config=3D"/etc/ntp.conf"	# ntpd(8) configuration file
/etc/rc.conf:ntpd_sync_on_start=3D"NO"		# Sync time on ntpd startup, even i=
f offset is high
/etc/rc.conf:ntpd_flags=3D""			# Additional flags to ntpd
/etc/rc.conf:ntp_src_leapfile=3D"/etc/ntp/leap-seconds"
/etc/rc.conf:				# Initial source for ntpd leapfile
/etc/rc.conf:ntp_db_leapfile=3D"/var/db/ntpd.leap-seconds.list"
/etc/rc.conf:				# Canonical place to get the leap seconds from
/etc/rc.conf:ntp_leapfile_sources=3D"https://hpiers.obspm.fr/iers/bul/bulc/=
ntp/leap-seconds.list https://data.iana.org/time-zones/tzdb/leap-seconds.li=
st"
/etc/rc.conf:				# Source from which to fetch leapfile
/etc/rc.conf:ntp_leapfile_fetch_opts=3D"-mq"	# Options to use for ntp leapf=
ile fetch,
/etc/rc.conf:				# e.g. --no-verify-peer
/etc/rc.conf:ntp_leapfile_expiry_days=3D30	# Check for new leapfile 30 days=
 prior to
/etc/rc.conf:				# expiry.
/etc/rc.conf:ntp_leapfile_fetch_verbose=3D"NO"	# Be verbose during NTP leap=
file fetch
/etc/rc.conf:nis_client_enable=3D"NO"		# We're an NIS client (or NO).
/etc/rc.conf:nis_client_flags=3D""		# Flags to ypbind (if enabled).
/etc/rc.conf:nis_ypset_enable=3D"NO"		# Run ypset at boot time (or NO).
/etc/rc.conf:nis_ypset_flags=3D""		# Flags to ypset (if enabled).
/etc/rc.conf:nis_server_enable=3D"NO"		# We're an NIS server (or NO).
/etc/rc.conf:nis_server_flags=3D""		# Flags to ypserv (if enabled).
/etc/rc.conf:nis_ypxfrd_enable=3D"NO"		# Run rpc.ypxfrd at boot time (or NO=
).
/etc/rc.conf:nis_ypxfrd_flags=3D""		# Flags to rpc.ypxfrd (if enabled).
/etc/rc.conf:nis_yppasswdd_enable=3D"NO"	# Run rpc.yppasswdd at boot time (=
or NO).
/etc/rc.conf:nis_yppasswdd_flags=3D""		# Flags to rpc.yppasswdd (if enabled=
).
/etc/rc.conf:nis_ypldap_enable=3D"NO"		# Run ypldap at boot time (or NO).
/etc/rc.conf:nis_ypldap_flags=3D""		# Flags to ypldap (if enabled).
/etc/rc.conf:bsnmpd_enable=3D"NO"		# Run the SNMP daemon (or NO).
/etc/rc.conf:bsnmpd_flags=3D""			# Flags for bsnmpd.
/etc/rc.conf:defaultrouter=3D"NO"		# Set to default gateway (or NO).
/etc/rc.conf:static_arp_pairs=3D""		# Set to static ARP list (or leave empt=
y).
/etc/rc.conf:static_ndp_pairs=3D""		# Set to static NDP list (or leave empt=
y).
/etc/rc.conf:static_routes=3D""		# Set to static route list (or leave empty=
).
/etc/rc.conf:gateway_enable=3D"NO"		# Set to YES if this host will be a gat=
eway.
/etc/rc.conf:routed_enable=3D"NO"		# Set to YES to enable a routing daemon.
/etc/rc.conf:routed_program=3D"/sbin/routed"	# Name of routing daemon to us=
e if enabled.
/etc/rc.conf:routed_flags=3D"-q"		# Flags for routing daemon.
/etc/rc.conf:arpproxy_all=3D"NO"		# replaces obsolete kernel option ARP_PRO=
XYALL.
/etc/rc.conf:forward_sourceroute=3D"NO"	# do source routing (only if gatewa=
y_enable is set to "YES")
/etc/rc.conf:accept_sourceroute=3D"NO"		# accept source routed packets to us
/etc/rc.conf:hcsecd_enable=3D"YES"		# Enable hcsecd(8) (or NO)
/etc/rc.conf:hcsecd_config=3D"/etc/bluetooth/hcsecd.conf" # hcsecd(8) confi=
guration file
/etc/rc.conf:sdpd_enable=3D"NO"		# Enable sdpd(8) (or NO)
/etc/rc.conf:sdpd_control=3D"/var/run/sdp"	# sdpd(8) control socket
/etc/rc.conf:sdpd_groupname=3D"nobody"		# set spdp(8) user/group to run as =
after
/etc/rc.conf:sdpd_username=3D"nobody"		# it initializes
/etc/rc.conf:bthidd_enable=3D"NO"		# Enable bthidd(8) (or NO)
/etc/rc.conf:bthidd_config=3D"/etc/bluetooth/bthidd.conf" # bthidd(8) confi=
guration file
/etc/rc.conf:bthidd_hids=3D"/var/db/bthidd.hids" # bthidd(8) known HID devi=
ces file
/etc/rc.conf:bthidd_evdev_support=3D"AUTO"	# AUTO depends on EVDEV_SUPPORT =
kernel option
/etc/rc.conf:rfcomm_pppd_server_enable=3D"NO"	# Enable rfcomm_pppd(8) in se=
rver mode (or NO)
/etc/rc.conf:rfcomm_pppd_server_profile=3D"one two"	# Profile to use from /=
etc/ppp/ppp.conf
/etc/rc.conf:rfcomm_pppd_server_one_channel=3D"1"	# Override local channel =
for 'one'
/etc/rc.conf:rfcomm_pppd_server_two_channel=3D"3"	# Override local channel =
for 'two'
/etc/rc.conf:ubthidhci_enable=3D"NO"		# Switch an USB BT controller present=
 on
/etc/rc.conf:				# numbers for your system.
/etc/rc.conf:netwait_enable=3D"NO"		# Enable rc.d/netwait (or NO)
/etc/rc.conf:netwait_timeout=3D"60"		# Total number of seconds to perform p=
ings.
/etc/rc.conf:netwait_if_timeout=3D"30"		# Total number of seconds to monito=
r link state.
/etc/rc.conf:netwait_dad=3D"NO"		# Wait for DAD to complete
/etc/rc.conf:netwait_dad_timeout=3D""		# Total number of seconds to wait fo=
r DAD, zero
/etc/rc.conf:				# or unset to autodetect
/etc/rc.conf:icmp_bmcastecho=3D"NO"	# respond to broadcast ping packets
/etc/rc.conf:ipv6_network_interfaces=3D"auto"	# List of IPv6 network interf=
aces
/etc/rc.conf:				# (or "auto" or "none").
/etc/rc.conf:ipv6_activate_all_interfaces=3D"NO"	# If NO, interfaces which =
have no
/etc/rc.conf:					# corresponding $ifconfig_IF_ipv6 is
/etc/rc.conf:					# marked as IFDISABLED for security
/etc/rc.conf:					# reason.
/etc/rc.conf:ipv6_defaultrouter=3D"NO"		# Set to IPv6 default gateway (or N=
O).
/etc/rc.conf:ipv6_static_routes=3D""		# Set to static route list (or leave =
empty).
/etc/rc.conf:				#  route toward loopback interface.
/etc/rc.conf:ipv6_gateway_enable=3D"NO"	# Set to YES if this host will be a=
 gateway.
/etc/rc.conf:ipv6_cpe_wanif=3D"NO"		# Set to the upstream interface name if=
 this
/etc/rc.conf:				# node will work as a router to forward IPv6
/etc/rc.conf:				# packets not explicitly addressed to itself.
/etc/rc.conf:ipv6_privacy=3D"YES"		# Use privacy address on RA-receiving IFs
/etc/rc.conf:				# (RFC 4941)
/etc/rc.conf:route6d_enable=3D"NO"		# Set to YES to enable an IPv6 routing =
daemon.
/etc/rc.conf:route6d_program=3D"/usr/sbin/route6d"	# Name of IPv6 routing d=
aemon.
/etc/rc.conf:route6d_flags=3D""		# Flags to IPv6 routing daemon.
/etc/rc.conf:				# addrs.
/etc/rc.conf:				# node, you should stop advertisement.
/etc/rc.conf:					# or static configuration for end node.
/etc/rc.conf:					# Choose correct prefix value.
/etc/rc.conf:ipv6_default_interface=3D"NO"	# Default output interface for s=
coped addrs.
/etc/rc.conf:				# This works only with
/etc/rc.conf:				# ipv6_gateway_enable=3D"NO".
/etc/rc.conf:rtsol_flags=3D"-i"		# Flags to IPv6 router solicitation.
/etc/rc.conf:rtsold_enable=3D"YES"		# Set to YES to enable an IPv6 router
/etc/rc.conf:				# solicitation daemon.
/etc/rc.conf:rtsold_flags=3D"-a -mi"		# Flags to an IPv6 router solicitation
/etc/rc.conf:				# daemon.
/etc/rc.conf:rtadvd_enable=3D"NO"		# Set to YES to enable an IPv6 router
/etc/rc.conf:				# advertisement daemon. If set to YES,
/etc/rc.conf:				# this router becomes a possible candidate
/etc/rc.conf:				# IPv6 default router for local subnets.
/etc/rc.conf:rtadvd_flags=3D""			# Flags to the IPv6 router advertisement d=
aemon.
/etc/rc.conf:rtadvd_interfaces=3D""		# Interfaces rtadvd sends RA packets.
/etc/rc.conf:stf_interface_ipv4addr=3D""	# Local IPv4 addr for 6to4 IPv6 ov=
er IPv4
/etc/rc.conf:				# tunneling interface. Specify this entry
/etc/rc.conf:				# to enable 6to4 interface.
/etc/rc.conf:stf_interface_ipv4plen=3D"0"	# Prefix length for 6to4 IPv4 add=
r,
/etc/rc.conf:				# to limit peer addr range. Effective value
/etc/rc.conf:				# is 0-31.
/etc/rc.conf:stf_interface_ipv6_ifid=3D"0:0:0:1"	# IPv6 interface id for st=
f0.
/etc/rc.conf:				# If you like, you can set "AUTO" for this.
/etc/rc.conf:stf_interface_ipv6_slaid=3D"0000"	# IPv6 Site Level Aggregator=
 for stf0
/etc/rc.conf:ipv6_ipv4mapping=3D"NO"		# Set to "YES" to enable IPv4 mapped =
IPv6 addr
/etc/rc.conf:				# communication. (like ::ffff:a.b.c.d)
/etc/rc.conf:ip6addrctl_enable=3D"YES"	# Set to YES to enable default addre=
ss selection
/etc/rc.conf:ip6addrctl_verbose=3D"NO"	# Set to YES to enable verbose confi=
guration messages
/etc/rc.conf:ip6addrctl_policy=3D"AUTO"	# A pre-defined address selection p=
olicy
/etc/rc.conf:				# (ipv4_prefer, ipv6_prefer, or AUTO)
/etc/rc.conf:keyboard=3D""		# keyboard device to use (default /dev/kbd0).
/etc/rc.conf:keymap=3D"de.kbd"		# keymap in /usr/share/{syscons,vt}/keymaps=
/* (or NO).
/etc/rc.conf:keyrate=3D"fast"		# keyboard rate to: slow, normal, fast (or N=
O).
/etc/rc.conf:keybell=3D"NO" 		# See kbdcontrol(1) for options.  Use "off" t=
o disable.
/etc/rc.conf:keychange=3D"NO"		# function keys default values (or NO).
/etc/rc.conf:cursor=3D"blink"		# cursor type {normal|blink|destructive} (or=
 NO).
/etc/rc.conf:scrnmap=3D"NO"		# screen map in /usr/share/syscons/scrnmaps/* =
(or NO).
/etc/rc.conf:font8x16=3D"NO"		# font 8x16 from /usr/share/{syscons,vt}/font=
s/* (or NO).
/etc/rc.conf:font8x14=3D"NO"		# font 8x14 from /usr/share/{syscons,vt}/font=
s/* (or NO).
/etc/rc.conf:font8x8=3D"NO"		# font 8x8 from /usr/share/{syscons,vt}/fonts/=
* (or NO).
/etc/rc.conf:blanktime=3D"300"		# blank time (in seconds) or "NO" to turn i=
t off.
/etc/rc.conf:saver=3D"NO"		# screen saver: Uses /boot/kernel/${saver}_saver=
.ko
/etc/rc.conf:moused_nondefault_enable=3D"YES" # Treat non-default mice as e=
nabled unless
/etc/rc.conf:			       # specifically overridden in rc.conf(5).
/etc/rc.conf:moused_enable=3D"NO"	# Run the mouse daemon.
/etc/rc.conf:moused_type=3D"evdev"	# See man page for rc.conf(5) for availa=
ble settings.
/etc/rc.conf:moused_port=3D"auto"	# Set to your mouse port.
/etc/rc.conf:moused_flags=3D""		# Any additional flags to moused.
/etc/rc.conf:mousechar_start=3D"NO"	# if 0xd0-0xd3 default range is occupie=
d in your
/etc/rc.conf:			# language code table, specify alternative range
/etc/rc.conf:			# start like mousechar_start=3D3, see vidcontrol(1)
/etc/rc.conf:msconvd_enable=3D"NO"	# Run the mouse protocol conversion daem=
on.
/etc/rc.conf:msconvd_type=3D"auto"	# See rc.conf(5) man page for available =
moused_type-s.
/etc/rc.conf:msconvd_ports=3D""	# List of msconvd ports.
/etc/rc.conf:msconvd_flags=3D""	# Any additional flags to msconvd.
/etc/rc.conf:allscreens_flags=3D""	# Set this vidcontrol mode for all virtu=
al screens
/etc/rc.conf:allscreens_kbdflags=3D"-b quiet.visual"	# Set this kbdcontrol =
mode for all virtual screens
/etc/rc.conf:sendmail_enable=3D"NONE"	# Run the sendmail inbound daemon (YE=
S/NO/NONE).
/etc/rc.conf:			# If NONE, don't start any sendmail processes.
/etc/rc.conf:sendmail_pidfile=3D"/var/run/sendmail.pid"	# sendmail pid file
/etc/rc.conf:sendmail_procname=3D"/usr/sbin/sendmail"		# sendmail process n=
ame
/etc/rc.conf:sendmail_flags=3D"-L sm-mta -bd -q30m" # Flags to sendmail (as=
 a server)
/etc/rc.conf:sendmail_cert_create=3D"YES"	# Create a server certificate if =
none (YES/NO)
/etc/rc.conf:sendmail_submit_enable=3D"YES"	# Start a localhost-only MTA fo=
r mail submission
/etc/rc.conf:sendmail_submit_flags=3D"-L sm-mta -bd -q30m -ODaemonPortOptio=
ns=3DAddr=3Dlocalhost"
/etc/rc.conf:				# Flags for localhost-only MTA
/etc/rc.conf:sendmail_outbound_enable=3D"YES"	# Dequeue stuck mail (YES/NO).
/etc/rc.conf:sendmail_outbound_flags=3D"-L sm-queue -q30m" # Flags to sendm=
ail (outbound only)
/etc/rc.conf:sendmail_msp_queue_enable=3D"YES"	# Dequeue stuck clientmqueue=
 mail (YES/NO).
/etc/rc.conf:sendmail_msp_queue_flags=3D"-L sm-msp-queue -Ac -q30m"
/etc/rc.conf:				# Flags for sendmail_msp_queue daemon.
/etc/rc.conf:sendmail_rebuild_aliases=3D"NO"	# Run newaliases if necessary =
(YES/NO).
/etc/rc.conf:auditd_enable=3D"NO"	# Run the audit daemon.
/etc/rc.conf:auditd_program=3D"/usr/sbin/auditd"	# Path to the audit daemon.
/etc/rc.conf:auditd_flags=3D""		# Which options to pass to the audit daemon.
/etc/rc.conf:auditdistd_enable=3D"NO"	# Run the audit daemon.
/etc/rc.conf:auditdistd_program=3D"/usr/sbin/auditdistd"	# Path to the audi=
tdistd daemon.
/etc/rc.conf:auditdistd_flags=3D""	# Which options to pass to the auditdist=
d daemon.
/etc/rc.conf:cron_enable=3D"YES"	# Run the periodic job daemon.
/etc/rc.conf:cron_program=3D"/usr/sbin/cron"	# Which cron executable to run=
 (if enabled).
/etc/rc.conf:cron_dst=3D"YES"		# Handle DST transitions intelligently (YES/=
NO)
/etc/rc.conf:cron_flags=3D""		# Which options to pass to the cron daemon.
/etc/rc.conf:cfumass_enable=3D"NO"	# Create default LUN for cfumass(4).
/etc/rc.conf:cfumass_dir=3D"/var/cfumass"	# File to LUN's contents.
/etc/rc.conf:cfumass_image=3D"/var/tmp/cfumass.img"	# LUN's backing file pa=
th.
/etc/rc.conf:lpd_enable=3D"NO"		# Run the line printer daemon.
/etc/rc.conf:lpd_program=3D"/usr/sbin/lpd"	# path to lpd, if you want a dif=
ferent one.
/etc/rc.conf:lpd_flags=3D""		# Flags to lpd (if enabled).
/etc/rc.conf:nscd_enable=3D"NO"	# Run the nsswitch caching daemon.
/etc/rc.conf:chkprintcap_enable=3D"NO"	# Run chkprintcap(8) before running =
lpd.
/etc/rc.conf:chkprintcap_flags=3D"-d"	# Create missing directories by defau=
lt.
/etc/rc.conf:dumpdev=3D"NO"		# Device to crashdump to (device name, AUTO, o=
r NO);
/etc/rc.conf:			# this should be commented out here
/etc/rc.conf:			# for stable branches to respect kenv.
/etc/rc.conf:dumpon_flags=3D""		# Options to pass to dumpon(8), followed by=
 dumpdev.
/etc/rc.conf:dumpdir=3D"/var/crash"	# Directory where crash dumps are to be=
 stored
/etc/rc.conf:savecore_enable=3D"YES"	# Extract core from dump devices if any
/etc/rc.conf:savecore_flags=3D"-m 10"	# Used if dumpdev is enabled above, a=
nd present.
/etc/rc.conf:			# By default, only the 10 most recent kernel dumps
/etc/rc.conf:			# are saved.
/etc/rc.conf:service_delete_empty=3D"NO" # Have 'service delete' remove emp=
ty rc.conf.d files.
/etc/rc.conf:crashinfo_enable=3D"YES"	# Automatically generate crash dump s=
ummary.
/etc/rc.conf:crashinfo_program=3D"/usr/sbin/crashinfo"	# Script to generate=
 crash dump summary.
/etc/rc.conf:quota_enable=3D"NO"	# turn on quotas on startup (or NO).
/etc/rc.conf:check_quotas=3D"YES"	# Check quotas on startup (or NO).
/etc/rc.conf:quotaon_flags=3D"-a"	# Turn quotas on for all file systems (if=
 enabled)
/etc/rc.conf:quotaoff_flags=3D"-a"	# Turn quotas off for all file systems a=
t shutdown
/etc/rc.conf:quotacheck_flags=3D"-a"	# Check all file system quotas (if ena=
bled)
/etc/rc.conf:accounting_enable=3D"NO"	# Turn on process accounting (or NO).
/etc/rc.conf:firstboot_sentinel=3D"/firstboot"	# Scripts with "firstboot" k=
eyword are run if
/etc/rc.conf:			# this file exists.  Should be on a R/W filesystem so
/etc/rc.conf:			# the file can be deleted after the boot completes.
/etc/rc.conf:sysvipc_enable=3D"NO"	# Load System V IPC primitives at startu=
p (or NO).
/etc/rc.conf:linux_enable=3D"NO"	# Linux binary compatibility loaded at sta=
rtup (or NO).
/etc/rc.conf:linux_mounts_enable=3D"YES" # If linux_enable is set to YES, m=
ount Linux-specific
/etc/rc.conf:			# filesystems at startup.
/etc/rc.conf:clear_tmp_enable=3D"YES"	# Clear /tmp at startup.
/etc/rc.conf:clear_tmp_X=3D"YES" 	# Clear and recreate X11-related director=
ies in /tmp
/etc/rc.conf:ldconfig_insecure=3D"NO"	# Set to YES to disable ldconfig secu=
rity checks
/etc/rc.conf:ldconfig_paths=3D"/usr/lib/compat ${_localbase}/lib ${_localba=
se}/lib/compat/pkg"
/etc/rc.conf:			# shared library search paths
/etc/rc.conf:ldconfig32_paths=3D"/usr/lib32/compat"
/etc/rc.conf:			# 32-bit compatibility shared library search paths
/etc/rc.conf:ldconfig_local_dirs=3D"${_localbase}/libdata/ldconfig"
/etc/rc.conf:			# Local directories with ldconfig configuration files.
/etc/rc.conf:ldconfig_local32_dirs=3D"${_localbase}/libdata/ldconfig32"
/etc/rc.conf:			# Local directories with 32-bit compatibility ldconfig
/etc/rc.conf:			# configuration files.
/etc/rc.conf:kern_securelevel_enable=3D"NO"	# kernel security level (see se=
curity(7))
/etc/rc.conf:kern_securelevel=3D"-1"	# range: -1..3 ; `-1' is the most inse=
cure
/etc/rc.conf:			# Note that setting securelevel to 0 will result
/etc/rc.conf:			# in the system booting with securelevel set to 1, as
/etc/rc.conf:			# init(8) will raise the level when rc(8) completes.
/etc/rc.conf:update_motd=3D"YES"	# update version info in /var/run/motd (or=
 NO)
/etc/rc.conf:entropy_boot_file=3D"/boot/entropy"	# Set to NO to disable ver=
y early
/etc/rc.conf:			# (used at early boot time) entropy caching through reboots.
/etc/rc.conf:entropy_file=3D"/entropy"	# Set to NO to disable late (used wh=
en going multi-user)
/etc/rc.conf:			# entropy through reboots.
/etc/rc.conf:			# /var/db/entropy-file is preferred if / is not avail.
/etc/rc.conf:entropy_dir=3D"/var/db/entropy" # Set to NO to disable caching=
 entropy via cron.
/etc/rc.conf:entropy_save_sz=3D"4096"	# Size of the entropy cache files.
/etc/rc.conf:entropy_save_num=3D"8"	# Number of entropy cache files to save.
/etc/rc.conf:harvest_mask=3D"4607"	# Entropy device harvests all but the ve=
ry invasive sources.
/etc/rc.conf:			# (See 'sysctl kern.random.harvest' and random(4))
/etc/rc.conf:osrelease_enable=3D"YES"	# Update /var/run/os-release on boot =
(or NO).
/etc/rc.conf:osrelease_file=3D"/var/run/os-release" # File to update for os=
-release.
/etc/rc.conf:osrelease_perms=3D"444"	# Default permission for os-release fi=
le.
/etc/rc.conf:dmesg_enable=3D"YES"	# Save dmesg(8) to /var/run/dmesg.boot
/etc/rc.conf:dmesg_umask=3D"022"	# Default umask for /var/run/dmesg.boot fi=
le.
/etc/rc.conf:watchdogd_enable=3D"NO"	# Start the software watchdog daemon
/etc/rc.conf:watchdogd_flags=3D""	# Flags to watchdogd (if enabled)
/etc/rc.conf:watchdogd_timeout=3D""	# watchdogd timeout, overrides -t in wa=
tchdogd_flags
/etc/rc.conf:watchdogd_shutdown_timeout=3D""	# Timeout to use after watchdo=
gd is stopped.
/etc/rc.conf:				# Has effect only for system shutdown.
/etc/rc.conf:				# Overrides -x in watchdogd_flags.
/etc/rc.conf:devfs_rulesets=3D"/etc/defaults/devfs.rules /etc/devfs.rules" =
# Files containing
/etc/rc.conf:							    # devfs(8) rules.
/etc/rc.conf:devfs_system_ruleset=3D""	# The name (NOT number) of a ruleset=
 to apply to /dev
/etc/rc.conf:devfs_set_rulesets=3D""	# A list of /mount/dev=3Druleset_name =
settings to
/etc/rc.conf:			# apply (must be mounted already, i.e. fstab(5))
/etc/rc.conf:devfs_load_rulesets=3D"YES"	# Enable to always load the defaul=
t rulesets
/etc/rc.conf:performance_cx_lowest=3D"NONE"	# Online CPU idle state
/etc/rc.conf:performance_cpu_freq=3D"NONE"	# Online CPU frequency
/etc/rc.conf:economy_cx_lowest=3D"Cmax"	# Offline CPU idle state
/etc/rc.conf:economy_cpu_freq=3D"NONE"		# Offline CPU frequency
/etc/rc.conf:virecover_enable=3D"YES"	# Perform housekeeping for the vi(1) =
editor
/etc/rc.conf:ugidfw_enable=3D"NO"	# Load mac_bsdextended(4) rules on boot
/etc/rc.conf:bsdextended_script=3D"/etc/rc.bsdextended"	# Default mac_bsdex=
tended(4)
/etc/rc.conf:						# ruleset file.
/etc/rc.conf:newsyslog_enable=3D"YES"	# Run newsyslog at startup.
/etc/rc.conf:newsyslog_flags=3D"-CN"	# Newsyslog flags to create marked fil=
es
/etc/rc.conf:mixer_enable=3D"YES"	# Run the sound mixer.
/etc/rc.conf:opensm_enable=3D"NO"	# Opensm(8) for infiniband devices defaul=
ts to off
/etc/rc.conf:nuageinit_enable=3D"NO"	# Run nuageinit at startup
/etc/rc.conf:rctl_enable=3D"YES"		# Load rctl(8) rules on boot
/etc/rc.conf:rctl_rules=3D"/etc/rctl.conf"	# rctl(8) ruleset. See rctl.conf=
(5).
/etc/rc.conf:iovctl_files=3D""		# Config files for iovctl(8)
/etc/rc.conf:jail_enable=3D"NO"	# Set to NO to disable starting of any jails
/etc/rc.conf:jail_conf=3D"/etc/jail.conf"	# Configuration file for jail(8)
/etc/rc.conf:jail_confwarn=3D"YES"	# Prevent warning about obsolete per-jai=
l configuration
/etc/rc.conf:jail_parallel_start=3D"NO"	# Start jails in the background
/etc/rc.conf:jail_list=3D""		# Space separated list of names of jails
/etc/rc.conf.local:microcode_update_enable=3D"YES"
/etc/rc.conf.local:nslcd_enable=3D"NO"
/etc/rc.conf.local:dhcp6c_enable=3D"YES"
/etc/rc.conf.local:dhcp6c_interfaces=3D"lagg0"
/etc/rc.conf.local:dhcp6c_flags=3D"-nD"
/etc/rc.conf.local:strongswan_enable=3D"NO"
/etc/rc.conf.local:fusefs_enable=3D"YES"
/etc/rc.conf.local:samba_enable=3D"NO"
/etc/rc.conf.local:nmbd_enable=3D"NO"
/etc/rc.conf.local:smbd_enable=3D"NO"
/etc/rc.conf.local:winbindd_enable=3D"NO"
/etc/rc.conf.local:cupsd_enable=3D"YES"
/etc/rc.conf.local:dbus_enable=3D"YES"
/etc/rc.conf.local:vboxnet_enable=3D"NO"
/etc/rc.conf.local:vboxwebsrv_enable=3D"NO"
/etc/rc.conf.local:saned_enable=3D"YES"
/etc/rc.conf.local:webcamd_enable=3D"YES"
/etc/rc.conf.local:webcamd_flags=3D"-B"
/etc/rc.conf.local:webcamd_0_flags=3D"-d ugen0.6"
/etc/rc.conf.local:smartd_enable=3D"YES"
/etc/rc.conf.local:clamav_clamd_enable=3D"YES"
/etc/rc.conf.local:clamav_milter_enable=3D"YES"
/etc/rc.conf.local:clamav_freshclam_enable=3D"YES"
/etc/rc.conf.local:vm_enable=3D"YES"
/etc/rc.conf.local:vm_dir=3D"zfs:zroot/bhyve"
/etc/rc.conf.local:devmatch_blocklist=3D"${devmatch_blocklist} if_iwm" # Li=
st of modules (w/o .ko) to exclude from devmatch.
/etc/rc.conf.local:kld_list=3D"${kld_list} linux linux64 i915kms if_ure"
/etc/rc.conf.local.bak:microcode_update_enable=3D"YES"
/etc/rc.conf.local.bak:nslcd_enable=3D"NO"
/etc/rc.conf.local.bak:dhcp6c_enable=3D"YES"
/etc/rc.conf.local.bak:dhcp6c_interfaces=3D"lagg0"
/etc/rc.conf.local.bak:dhcp6c_flags=3D"-nD"
/etc/rc.conf.local.bak:strongswan_enable=3D"YES"
/etc/rc.conf.local.bak:fusefs_enable=3D"YES"
/etc/rc.conf.local.bak:samba_enable=3D"NO"
/etc/rc.conf.local.bak:nmbd_enable=3D"NO"
/etc/rc.conf.local.bak:smbd_enable=3D"NO"
/etc/rc.conf.local.bak:winbindd_enable=3D"NO"
/etc/rc.conf.local.bak:cupsd_enable=3D"YES"
/etc/rc.conf.local.bak:dbus_enable=3D"YES"
/etc/rc.conf.local.bak:vboxnet_enable=3D"NO"
/etc/rc.conf.local.bak:vboxwebsrv_enable=3D"NO"
/etc/rc.conf.local.bak:saned_enable=3D"YES"
/etc/rc.conf.local.bak:webcamd_enable=3D"YES"
/etc/rc.conf.local.bak:webcamd_flags=3D"-B"
/etc/rc.conf.local.bak:webcamd_0_flags=3D"-d ugen0.6"
/etc/rc.conf.local.bak:smartd_enable=3D"YES"
/etc/rc.conf.local.bak:clamav_clamd_enable=3D"YES"
/etc/rc.conf.local.bak:clamav_milter_enable=3D"YES"
/etc/rc.conf.local.bak:clamav_freshclam_enable=3D"YES"
/etc/rc.conf.local.bak:vm_enable=3D"YES"
/etc/rc.conf.local.bak:vm_dir=3D"zfs:zroot/bhyve"
/etc/rc.conf.local.bak:kld_list=3D"linux linux64 /boot/modules/i915kms.ko u=
arduno"

--MP_/VSGqIKl_etOMTNEMi4Bd5Wg--

--Sig_/qbN2Gv7LDW6b_+GpAkVwsVp
Content-Type: application/pgp-signature
Content-Description: OpenPGP digital signature

-----BEGIN PGP SIGNATURE-----

iHUEARYKAB0WIQRQheDybVktG5eW/1Kxzvs8OqokrwUCaS//lAAKCRCxzvs8Oqok
r7tJAQDUbDHqCuOov7ZwpyszcROuMpfPdX8029KEdEq6DkGlpgD7BoK7s1UJDtsM
HdIuItABXEXSa5FjpHhxyZrlE8D9Qg0=
=i22C
-----END PGP SIGNATURE-----

--Sig_/qbN2Gv7LDW6b_+GpAkVwsVp--