git: e471259313c2 - main - rpc.tlsservd.8: Update man page for new -N/--numdaemons option

Go to: [ bottom of page ] [ top of archives ] [ this month ]
From: Rick Macklem <rmacklem_at_FreeBSD.org>
Date: Tue, 15 Nov 2022 21:31:46 UTC
The branch main has been updated by rmacklem:

URL: https://cgit.FreeBSD.org/src/commit/?id=e471259313c25b9b386299b288023135bc298cd4

commit e471259313c25b9b386299b288023135bc298cd4
Author:     Rick Macklem <rmacklem@FreeBSD.org>
AuthorDate: 2022-11-15 21:30:41 +0000
Commit:     Rick Macklem <rmacklem@FreeBSD.org>
CommitDate: 2022-11-15 21:30:41 +0000

    rpc.tlsservd.8: Update man page for new -N/--numdaemons option
    
    Commit 1e588a9ceb36 added a new command line option -N/numdaemons
    that specifies how many daemons to run. This allows a server
    to be configured with more than one rpc.tlsservd daemon, which
    may be necessary to handle a reboot for an NFS server with
    many NFS-over-TLS client mounts.
    
    This patch updates the man page for this commit.
    
    This is a content change.
    
    Reviewed by:    karels, pauamma (man pages)
    Differential Revision:  https://reviews.freebsd.org/D37382
---
 usr.sbin/rpc.tlsservd/rpc.tlsservd.8 | 13 ++++++++++++-
 1 file changed, 12 insertions(+), 1 deletion(-)

diff --git a/usr.sbin/rpc.tlsservd/rpc.tlsservd.8 b/usr.sbin/rpc.tlsservd/rpc.tlsservd.8
index 9b15a1d59812..95082d445d45 100644
--- a/usr.sbin/rpc.tlsservd/rpc.tlsservd.8
+++ b/usr.sbin/rpc.tlsservd/rpc.tlsservd.8
@@ -26,7 +26,7 @@
 .\" $FreeBSD$
 .\"
 .\" Modified from gssd.8 for rpc.tlsservd.8 by Rick Macklem.
-.Dd September 23, 2022
+.Dd November 10, 2022
 .Dt RPC.TLSSERVD 8
 .Os
 .Sh NAME
@@ -41,6 +41,7 @@
 .Op Fl h
 .Op Fl l Ar CAfile
 .Op Fl m
+.Op Fl N Ar num_servers
 .Op Fl n Ar domain
 .Op Fl p Ar CApath
 .Op Fl r Ar CRLfile
@@ -237,6 +238,16 @@ may be used to require a client to provide a certificate
 that verifies.
 See
 .Xr exports 5 .
+.It Fl N Ar num_servers , Fl Fl numdaemons= Ns Ar num_servers
+For a server with a large number of NFS-over-TLS client mounts,
+this daemon might get overloaded after a reboot, when many
+clients attempt to do a TLS handshake at the same time.
+This option may be used to specify that
+.Dq num_servers
+daemons are to be run instead of a single daemon.
+When this is done, the TLS handshakes are spread across the
+.Dq num_servers
+daemons in a round robin fashion to spread out the load.
 .It Fl n Ar domain , Fl Fl domain= Ns Ar domain
 This option specifies what the
 .Dq domain