#
256281 |
|
10-Oct-2013 |
gjb |
Copy head (r256279) to stable/10 as part of the 10.0-RELEASE cycle.
Approved by: re (implicit) Sponsored by: The FreeBSD Foundation |
#
213270 |
|
29-Sep-2010 |
emaste |
/etc/rc.d/defaultroute currently bails immediately if all interfaces set to use DHCP have no carrier. This can cause grief as it may take some time for link to be established, and defaultroute may terminate before this happens.
Introduce a defaultroute_carrier_delay variable and then wait that long in defaultroute before bailing if no interfaces have carrier. With the default settings defaultroute will wait for five seconds for this, and the original 30 second wait for a default route to appear is unchanged. Note that there is in discussion an alternative approach to the broader problem of waiting for DHCP-configured routes. However, this change addresses a real problem in the current defaultroute script.
Discussed on: freebsd-rc@
|
#
208060 |
|
14-May-2010 |
dougb |
Remove trailing white space. No functional changes.
|
#
197697 |
|
02-Oct-2009 |
hrs |
- Add AF_IPX and AF_NATM to afexists().
- Add afexists() check to address family specific rc.d scripts. A script for an AF will be silently ignored if the kernel has no support for the AF.
|
#
197527 |
|
26-Sep-2009 |
hrs |
Move rc.d/{stf,faith} to just before rc.d/routing.
Pointed out by: tegge
|
#
197139 |
|
12-Sep-2009 |
hrs |
Integrate rc.d/network_ipv6 into rc.d/netif:
- Add rc.d/stf and rc.d/faith for stf(4) and faith(4). - Remove rc.d/auto_linklocal and rc.d/network_ipv6. - Move rc.d/sysctl to just before FILESYSTEMS because rc.d/netif depends on some sysctl variables.
Reviewed by: brooks MFC after: 3 days
|
#
188710 |
|
17-Feb-2009 |
mtm |
Rename the rc.conf(5) knob if_up_delay to defaultroute_delay to better reflect its purpose.
|
#
188478 |
|
11-Feb-2009 |
mtm |
Reword informational message by rc.d/defaultroute.
PR: conf/131458
|
#
188009 |
|
02-Feb-2009 |
mtm |
The 30 second wait for network interfaces to show up effectively makes the time to boot an unplugged system 30 sec. longer for no good reason. Therefore, add a check to make sure that any DHCP interfaces are plugged in before waiting.
|
#
187909 |
|
30-Jan-2009 |
imp |
Spawn one fewer shells on startup. We don't use dhcp_interfaces at all in this function, and grep shows no other instances of it (besides, this is a function, and in a sub-shell, so all changes are local).
|
#
186237 |
|
17-Dec-2008 |
brooks |
Correct a bug where /etc/rc.d/defaultroute fails to finish by printing a newline when it fails to obtain an address via DHCP. This made the next rc script begin its output on the same line.
PR: conf Submitted by: Bruce Cran <bruce at cran dot org dot uk> MFC after: 3 days
|
#
183714 |
|
09-Oct-2008 |
peter |
Clean out some empty mergeinfo records, presumably by people doing local cp/mv operations. The full repo-relative URL should be specified for the source in these cases.
|
#
180563 |
|
16-Jul-2008 |
dougb |
As previously discussed, add the svn:executable property to all scripts
|
#
179566 |
|
05-Jun-2008 |
brooks |
Fix the wait for default route change I made a few weeks ago by creating a new defaultroute script that just does the wait. The previous attempt created a circular dependency through network_ipv6.
Pointy hat to: brooks
|
#
179079 |
|
18-May-2008 |
brooks |
Move the wait for a default route to rc.d/routing. Once we test for non-dhcp interfaces to negotiate/associate this will make more sense.
This also correctly gets run after both devd and netif are run so it has a chance of working.
|
#
169217 |
|
02-May-2007 |
mtm |
Move options that do not have anything to do with routing out of rc.d/routing and in to rc.d/netoptions. Also instead of saying "TCP options" say "IP options".
|
#
151806 |
|
28-Oct-2005 |
yar |
Transforming "ppp-user" into just "ppp", step 1: The rcorder(8) condition PROVIDE'd by the script and REQUIRE'd by the others becomes "ppp".
The ultimate goal of the transformation is to reduce confusion resulting from the fact that $name has been "ppp" already.
Discussed with: pjd, -rc
|
#
136224 |
|
07-Oct-2004 |
mtm |
Remove the requirement for the FreeBSD keyword as it no longer makes any sense.
Discussed with: dougb, brooks MFC after: 3 days
|
#
126744 |
|
08-Mar-2004 |
pjd |
Mark scripts as not usable inside a jail by adding keyword 'nojail'.
Some suggestions from: rwatson, Ruben de Groot <mail25@bzerk.org>
|
#
118908 |
|
14-Aug-2003 |
harti |
Now that routes for IP over ATM may look much more complex than before, use the atmconfig(8) utility instead of route(8) to install those routes. For this we need a new rc.conf variable natm_static_routes that works just like static_routes except that the referenced routes use the syntax of atmconfig(8).
Okay'ed by: mtm
|
#
117032 |
|
29-Jun-2003 |
mtm |
Ugh. Remove debugging echo.
|
#
117019 |
|
29-Jun-2003 |
mtm |
o Repocopied routing and netoptions from network2 and network3, respectively. o Change the provider names. o Separate routing into two parts: static routing and routing options. The start command will run both parts, but they can be run separately using the static and options command, respectively: (/etc/rc.d/routing static; /etc/rc.d/routing options)
|
#
113676 |
|
18-Apr-2003 |
mtm |
o Hook the new files up to the build. o Make sure all the scripts reference rc.d/netif and not rc.d/network1
Approved by: markm (mentor)
|
#
100280 |
|
18-Jul-2002 |
gordon |
Merge in all the changes that Mike Makonnen has been maintaining for a while. This is only the script pieces, the glue for the build comes next.
Submitted by: Mike Makonnen <makonnen@pacbell.net> Reviewed by: silence on -current and -hackers Prodded by: rwatson
|
#
94465 |
|
11-Apr-2002 |
des |
Cosmetic changes to the previous commit, bringing it closer to what I already had in my tree but didn't want to commit.
|
#
94391 |
|
10-Apr-2002 |
peter |
Since sshd expects /etc/ssh/ssh_host_rsa_key to exist, we had better create it. Also specify protocol v1/v2 in case people wonder why we generate two RSA keys.
|
#
93566 |
|
01-Apr-2002 |
dougb |
The good news is that my initial PR was correct... the bad news is that I was apparently smoking something when I committed the last fix, because as ume was kindly enough to set me straight on, amd *will* start with no arguments at all, as long as there is an /etc/amd.conf file for it to read. What it won't do is start with *just* -p.
In any case, now it's fixed.
|
#
92638 |
|
19-Mar-2002 |
des |
Don't try to generate ssh keys if ssh isn't installed.
|
#
92628 |
|
18-Mar-2002 |
cjc |
IPFilter may need to be re-sync'ed even if we are not filtering, but only doing ipnat(8). Go back to using $ipfilter_active, but turn off $ipfilter_active when loading ipl.ko has failed.
Submitted by: devet@devet.org (Arjan de Vet) MFC after: 3 days
|
#
92478 |
|
17-Mar-2002 |
dougb |
Answer the question posed in 1.126. amd won't start without either a conf file, or command line options. I brought this up in PR 12432, which (ironically) obrien assigned to me after I became a committer. :)
PR: conf/12432 Submitted by: Me
|
#
92184 |
|
12-Mar-2002 |
cjc |
The reload of ipf(8) rules should depend on $ipfilter_enable, not $ipfilter_active. $ipfilter_enable is set to "NO" if modules fail to load, and $ipfilter_active can be "YES" when we are not using ipf(8).
MFC after: 3 days
|
#
92127 |
|
11-Mar-2002 |
obrien |
Background the startup of `Amd', it often blocks on startup.
|
#
92126 |
|
11-Mar-2002 |
obrien |
Why shouldn't amd always write its PID to a file? Since I cannot answer that question, make it.
|
#
91626 |
|
04-Mar-2002 |
dd |
Redirect stdout of `ipf -y' to /dev/null. This removes a stray "filter sync'd" in the middle of the boot output if IPFilter is enabled, but does not hide any potential errors, which go to stderr.
|
#
90957 |
|
20-Feb-2002 |
cjc |
There is no reason to demand the administrator set 'natd_interface' when running natd(8) out of the rc-files. It is perfectly valid for the interface or alias address to be set in a natd(8) configuration file, not on the command line. Also, loosen up the restrictions on identifying an IP address argument in 'natd_interface.'
Fix the documentation, rc.conf(5), to reflect this change.
Take the bogus default for 'natd_interface' out of /etc/defaults/rc.conf.
MFC after: 3 days
|
#
90403 |
|
08-Feb-2002 |
cjc |
peter points out that we probably should not mess with the sysctl(8) values at all if they are not purposefully set. What if the administrator messed with them in /etc/sysctl.conf? We don't want to overwrite them.
If 'log_in_vain' is zero, do not force the issue. If it is non-zero, set it.
|
#
89912 |
|
28-Jan-2002 |
sheldonh |
(forced commit)
The previous change is subject to:
MFC after: 1 month
|
#
89911 |
|
28-Jan-2002 |
sheldonh |
Register amd's dependency on NFS.
This change was submitted to the freebsd-audit mailing list for review but received no feedback. Hindsight-enabled reviews are welcome.
PR: conf/31358 Submitted: Thomas Quinot <thomas@cuivre.fr.eu.org>
|
#
89808 |
|
26-Jan-2002 |
cjc |
Make the rc.conf(5) 'log_in_vain' knob an integer.
Try this out in -CURRENT, MFC, and then consider dropping the 'log_in_vain' knob all together. It really is something for sysctl.conf(5).
PR: bin/32953 Reviewed by: -bugs discussion MFC after: 1 week
|
#
87781 |
|
13-Dec-2001 |
alfred |
rpc.lockd needs rpc.statd to be running for it to start up properly. so swap the order.
Also allow rpc.lockd and rpc.statd to be turned on if nfsclient is enabled. They are needed to provide client side locking support.
PR: conf/27811
|
#
87646 |
|
11-Dec-2001 |
ru |
s/sysctl -w/sysctl/
|
#
87500 |
|
07-Dec-2001 |
rwatson |
o Update rc.network to reflect the recent change of default in the kernel TCP timer code: rather than checking for tcp_keepalive being set to "YES", check for "NO" and turn off keepalives if the variable is set in that manner.
o Note: eventually, it would make sense to remove this variable from rc.conf management, and instead rely on sysctl.conf. In fact, this is probably true of a number of rc.conf variables whose sole aim is to drive the setting of sysctls at boot time.
|
#
87443 |
|
06-Dec-2001 |
cjc |
Protect the '*' in pppoed_provider (the default) from metacharacter expansion in the rc-scripts.
PR: 32552 Submitted by: Gleb Smirnoff <glebius@rinet.ru> Approved by: ru Obtained from: ru MFC after: 1 day
|
#
86882 |
|
24-Nov-2001 |
dd |
Spelling police: sucessful -> successful.
|
#
86863 |
|
24-Nov-2001 |
ru |
(Forced commit to list actual problems fixed / PRs affected).
Overview of problems fixed:
- fix support for saving and restoring filter/NAT state information (across reboots for example);
- ipmon(8) is started before loading any filter/NAT rules;
- ipmon(8) and ipfs(8) do not solely depend on ipfilter_enable anymore, they now also work when only ipnat_enable is true;
- the multiple occurrences of code loading the ipfilter kernel module have been removed;
- the options have been removed from the _program variables in defaults/rc.conf and the comments in that file have been updated to reflect (possibly new) reality;
- the rc.conf.5 manual page has been updated to reflect the changes.
Submitted by: Arjan de Vet <devet@devet.org> PR: conf/25223, kern/25344, conf/25809, conf/26275, bin/27016, conf/31482
|
#
86851 |
|
24-Nov-2001 |
darrenr |
Resolve all the ipfilter startup issues in rc.network with one big patch to get it all right, allowing ipnat to be enabled independantly of ipfilter in rc.conf (among other things).
PR: multiple Submitted by: Arjan de Vet <devet@devet.org> Reviewed by: Giorgos Keramidas <keramida@FreeBSD.org>
|
#
86342 |
|
14-Nov-2001 |
sheldonh |
Avoid unnecessary calls to expr(1) by using standard shell arithmetic expansion instead.
|
#
86163 |
|
06-Nov-2001 |
fenner |
Update the nsswitch.conf -> host.conf generator to handle criteria, continuation lines, extra whitespace, and to use the last matching line in the file. This syncs the host.conf generation with how the nsswitch.conf is parsed. Only print " host.conf" instead of a multi-line message, since this happens on every boot.
|
#
85831 |
|
01-Nov-2001 |
des |
Modify the way host.conf and nsswitch.conf are treated at boot time:
- if nsswitch.conf exists, host.conf is auto-generated for compatibility with legacy applications and libraries.
- if host.conf exists but nsswitch.conf does not, nsswitch.conf is auto- generated as usual.
|
#
85222 |
|
20-Oct-2001 |
darrenr |
Do an ipf -y after bringing up ppp to ensure rules which mention ppp get matched. Moification on PR to handle ipnat not being dependant on ipfilter_enable
PR: 22859
|
#
85221 |
|
20-Oct-2001 |
darrenr |
Allow ipnat_enable to be set to "yes" without requiring ipfiltre_enable to be set to "yes"
PR: 25223
|
#
85219 |
|
20-Oct-2001 |
darrenr |
Put in place for using ipfs use on shutdown and startup.
PR: 27070
|
#
85136 |
|
19-Oct-2001 |
dougb |
Handle the lack of nfs server or client support in the kernel by kldload'ing the appropriate modules before enabling the service.
|
#
84780 |
|
10-Oct-2001 |
jhb |
Remove references to nfsiod and nfs_client_flags now that they are obsolete.
Submitted by: Gordon Tetlow <gordont@gnf.org>
|
#
83677 |
|
19-Sep-2001 |
brooks |
Add a new rc.conf variable, cloned_interfaces, to create cloned interfaces at boot.
|
#
83656 |
|
18-Sep-2001 |
peter |
The vfs.nfs.bufpackets sysctl is in the client, not the server. Move it to the client section. Turn off nfsiod, it no longer exists (now just kthreads). I need revisit nfsiod so that we have an argument passthrough.
|
#
80683 |
|
30-Jul-2001 |
darrenr |
Merge in patch to automagically decide whether or not a kldload of ipfilter is required into rc.network.
Person failed to use a real name so both email addresses from PR included (Sent was different to From).
PR: 22998 Submitted by: dl@leo.org/spock@empire.trek.org
|
#
80515 |
|
28-Jul-2001 |
markm |
Upgraded launchpad for kerberos. Noe kerberos IV OR kerberos 5 may be started at boot for kerberos servers.
|
#
79107 |
|
02-Jul-2001 |
brooks |
Create gif devices in the "gifconfig" stage while configuring them.
Reviewed by: ru, ume Obtained from: NetBSD MFC after: 1 week
|
#
78354 |
|
16-Jun-2001 |
schweikh |
Fix misindented esac.
MFC after: 1 week
|
#
78064 |
|
11-Jun-2001 |
ume |
Sync with recent KAME. This work was based on kame-20010528-freebsd43-snap.tgz and some critical problem after the snap was out were fixed. There are many many changes since last KAME merge.
TODO: - The definitions of SADB_* in sys/net/pfkeyv2.h are still different from RFC2407/IANA assignment because of binary compatibility issue. It should be fixed under 5-CURRENT. - ip6po_m member of struct ip6_pktopts is no longer used. But, it is still there because of binary compatibility issue. It should be removed under 5-CURRENT.
Reviewed by: itojun Obtained from: KAME MFC after: 3 weeks
|
#
77992 |
|
10-Jun-2001 |
brian |
Add a missing \n
Submitted by: Andre Albsmeier <andre.albsmeier@mchp.siemens.de> PR: 28014 MFC after: 1 week
|
#
77651 |
|
03-Jun-2001 |
brian |
Move gif_interfaces from an IP6 option to a regular IP option.
PR: 26543 Submitted by: Brooks Davis <brooks@one-eyed-alien.net> MFC after: 3 weeks
|
#
76820 |
|
18-May-2001 |
obrien |
Restore the RSA host key to /etc/ssh/ssh_host_key. Also fix $FreeBSD$ spamage in crypto/openssh/sshd_config rev. 1.16.
|
#
76695 |
|
16-May-2001 |
jesper |
Link /etc/ssh/ssh_host_key to /etc/ssh/ssh_host_rsa_key to deal with gratutious changes in the latest SSH
Reviewed by: obrien Approved by: obrien
|
#
76400 |
|
09-May-2001 |
peter |
s/ssh_host_key/ssh_host_rsa_key/ since that is what openssh uses now after a mergemaster.
|
#
74493 |
|
19-Mar-2001 |
des |
Axe TCP_RESTRICT_RST. It was never a particularly good idea except for a few very specific scenarios, and now that we have had net.inet.tcp.blackhole for quite some time there is really no reason to use it any more.
(second of three commits)
|
#
74462 |
|
19-Mar-2001 |
alfred |
Bring in a hybrid of SunSoft's transport-independent RPC (TI-RPC) and associated changes that had to happen to make this possible as well as bugs fixed along the way.
Bring in required TLI library routines to support this.
Since we don't support TLI we've essentially copied what NetBSD has done, adding a thin layer to emulate direct the TLI calls into BSD socket calls.
This is mostly from Sun's tirpc release that was made in 1994, however some fixes were backported from the 1999 release (supposedly only made available after this porting effort was underway).
The submitter has agreed to continue on and bring us up to the 1999 release.
Several key features are introduced with this update: Client calls are thread safe. (1999 code has server side thread safe) Updated, a more modern interface.
Many userland updates were done to bring the code up to par with the recent RPC API.
There is an update to the pthreads library, a function pthread_main_np() was added to emulate a function of Sun's threads library.
While we're at it, bring in NetBSD's lockd, it's been far too long of a wait.
New rpcbind(8) replaces portmap(8) (supporting communication over an authenticated Unix-domain socket, and by default only allowing set and unset requests over that channel). It's much more secure than the old portmapper.
Umount(8), mountd(8), mount_nfs(8), nfsd(8) have also been upgraded to support TI-RPC and to support IPV6.
Umount(8) is also fixed to unmount pathnames longer than 80 chars, which are currently truncated by the Kernel statfs structure.
Submitted by: Martin Blapp <mb@imp.ch> Manpage review: ru Secure RPC implemented by: wpaul
|
#
70129 |
|
17-Dec-2000 |
dougb |
* Add an eval so that ipnat_flags=">/dev/null" works, per the PR * Do some line length and specify full path cleanups while I'm here
PR: conf/22937 Submitted by: Andre Albsmeier <andre.albsmeier@mchp.siemens.de>
|
#
70108 |
|
17-Dec-2000 |
dougb |
Apply a more consistent style to the echo statements in /etc/ scripts. * Put quotes around each line * Single quotes for lines with no variable interpolation * Double quotes if there is * Capitalize each word that begins a line * Make echo -n 'Doing foo:' ... echo '.' more of a standard
No functionality changes
|
#
67012 |
|
12-Oct-2000 |
ru |
Fixed the reporting of ip_portrange_{first|last}.
|
#
66830 |
|
08-Oct-2000 |
obrien |
Add copyright notices. Other systems have been barrowing our /etc files w/o giving any credit.
|
#
66745 |
|
06-Oct-2000 |
darrenr |
This brings support for IP Filter into rc.network and rc.conf with the appropriate documentation added to rc.conf(5). If all goes well with this over the next few weeks, the PR will be closed with the pullup of patches back to 4-STABLE.
PR: 20202 Submitted by: Gerhard Sittig <Gerhard.Sittig@gmx.net> Reviewed by: Darren Reed <darrenr@freebsd.org> Approved by: Darren Reed <darrenr@freebsd.org> Obtained from: Gerhard Sittig <Gerhard.Sittig@gmx.net>
|
#
66422 |
|
28-Sep-2000 |
brian |
Use su -m instead of just su to avoid reading the users login profile
|
#
65532 |
|
06-Sep-2000 |
nectar |
Add nsswitch support. By creating an /etc/nsswitch.conf file, you can configure FreeBSD so that various databases such as passwd and group can be looked up using flat files, NIS, or Hesiod.
= Hesiod has been added to libc (see hesiod(3)).
= A library routine for parsing nsswitch.conf and invoking callback functions as specified has been added to libc (see nsdispatch(3)).
= The following C library functions have been modified to use nsdispatch: . getgrent, getgrnam, getgrgid . getpwent, getpwnam, getpwuid . getusershell . getaddrinfo . gethostbyname, gethostbyname2, gethostbyaddr . getnetbyname, getnetbyaddr . getipnodebyname, getipnodebyaddr, getnodebyname, getnodebyaddr
= host.conf has been removed from src/etc. rc.network has been modified to warn that host.conf is no longer used at boot time. In addition, if there is a host.conf but no nsswitch.conf, the latter is created at boot time from the former.
Obtained from: NetBSD
|
#
64731 |
|
16-Aug-2000 |
jhb |
Fix a whitespace bogon.
|
#
64471 |
|
09-Aug-2000 |
brian |
Allow a ppp_user specification to run ppp at startup
PR: 20258
|
#
63147 |
|
14-Jul-2000 |
nbm |
Add to, don't overwrite, user-settable mountd_flags.
PR: conf/15745 Submitted by: Vivek Khera <khera@kciLink.com>
|
#
61961 |
|
22-Jun-2000 |
dillon |
Add ip_portrange_first and ip_portrange_last rc.conf/rc.network options. This allows you to set the standard dynamic port assignment range prior to any network daemons (like named) starting up, necessary if you are also using a firewall to restrict lower ports. will be MFC'd in a few days
|
#
60628 |
|
16-May-2000 |
dillon |
Add ipsec_enable and ipsec_file options to run IPSEC's setkey program with the specified configuration file at the appropriate time.
|
#
60613 |
|
15-May-2000 |
kris |
Remove extraneous ";;" in previous commit
Submitted by: jedgar
|
#
60578 |
|
15-May-2000 |
kris |
Create a DSA host key if one does not already exist, and teach sshd_config about it.
|
#
60103 |
|
06-May-2000 |
ache |
Add firewall_logging knob to enable/disablle events logging, disabled by default. Needed mainly for ipfw kernel module to enable logging disabled there.
|
#
58710 |
|
27-Mar-2000 |
dillon |
Add a sysctl to specify the amount of UDP receive space NFS should reserve, in maximal NFS packets. Originally only 2 packets worth of space was reserved. The default is now 4, which appears to greatly improve performance for slow to mid-speed machines on gigabit networks.
Add documentation and correct some prior documentation.
Problem Researched by: Andrew Gallatin <gallatin@cs.duke.edu> Approved by: jkh
|
#
57627 |
|
29-Feb-2000 |
jkh |
cosmetic fix - add a space.
|
#
57572 |
|
28-Feb-2000 |
markm |
Get the order of things right; the keys need to be generated early to allow entropy to replenish. sshd must start late to catch the full effects of ldconfig.
|
#
57567 |
|
28-Feb-2000 |
jkh |
Generate new sshd host key when necessary. I'm tired of waiting for someone to commit this. :)
|
#
57459 |
|
24-Feb-2000 |
markm |
Run sshd at boot time if the sysadmin wants it. Also install ssh[d] config files in the right place.
|
#
57012 |
|
06-Feb-2000 |
hm |
Approved by: jkh Reviewed by: joerg
The isdnd is able to listen on a socket for isdnmonitor to connect to it to remotely control it (similar to ppp and pppctl). When this is enabled in the isdnd config file, it will fail currently because isdnd is started before the network interfaces are configured. It is necessary to move the isdnd start after the ifconfig of the network interfaces, then this problem will not occur.
|
#
56038 |
|
15-Jan-2000 |
green |
This is another in Martin Blapp's N-series of mount-related cleanups :) Changes are: - rpc.umntall is called at the right places now in /etc/rc* - rpc.umntall timeout has been lowered from two days (too high) to one - verbose messages in rpc.umntall have been clarified - kill double entries in /var/db/mounttab when rpc.umntall is invoked - ${early_nfs_mounts} has been removed from /etc/rc - patched mount(8) -p to print different pass/dump values for ufs filesystems. (last patch recieved from dan <bugg@bugg.strangled.net>)
Submitted by: Martin Blapp <mbr@imp.ch>, dan <bugg@bugg.strangled.net>
|
#
54739 |
|
17-Dec-1999 |
roberto |
xntpd -> ntpd.
Submitted by: ru
|
#
54458 |
|
11-Dec-1999 |
obrien |
Suport multiple ``ifconfig_*?="DHCP"'' configurations.
Currently we have a problem in that `dhclient' bails when configuring the second interface as port 68 is already in use (by the `dhclient' started for the first interface).
PR: 14810 Submitted by: n_hibma
|
#
53613 |
|
22-Nov-1999 |
brian |
Oops, typo
|
#
53611 |
|
22-Nov-1999 |
brian |
Add pppoed startup options
|
#
53314 |
|
17-Nov-1999 |
ache |
Add network pass4 - after all local (/usr/local/etc/rc.d f.e.) daemons started. Move log_in_vain option there. It is needed to avoid lot of connections to port 80 logged on production WWW server prior Apache started from /usr/local/etc/rc.d
|
#
53158 |
|
14-Nov-1999 |
ache |
Add single_mountd_enable hook to run mountd but not NFS server Needed for machine with CFS but without real NFS
|
#
51426 |
|
19-Sep-1999 |
green |
Make the firewall file variable space-safe.
|
#
51231 |
|
13-Sep-1999 |
sheldonh |
Apply a consistent style to most of the etc scripts. Particularly, use case instead of test where appropriate, since case allows case is a sh builtin and (as a side-effect) allows case-insensitivity.
Changes discussed on freebsd-hackers.
Submitted by: Doug Barton <Doug@gorean.org>
|
#
51209 |
|
12-Sep-1999 |
des |
Add the net.inet.tcp.restrict_rst and net.inet.tcp.drop_synfin sysctl variables, conditional on the TCP_RESTRICT_RST and TCP_DROP_SYNFIN kernel options, respectively. See the comments in LINT for details.
|
#
50735 |
|
01-Sep-1999 |
peter |
-background is also a legitimate ppp mode. Don't change it to -auto.
|
#
50472 |
|
27-Aug-1999 |
peter |
$Id$ -> $FreeBSD$
|
#
50470 |
|
27-Aug-1999 |
jkh |
Catch an extra X on DHCP.
Spotted by the eagle eyes of: Pierre DAVID <Pierre.David@prism.uvsq.fr>
|
#
50357 |
|
25-Aug-1999 |
sheldonh |
Style clean-up:
* All variables are now embraced: ${foo}
* All comparisons against some value now take the form: [ "${foo}" ? "value" ] where ? is a comparison operator
* All empty string tests now take the form: [ -z "${foo}" ]
* All non-empty string tests now take the form: [ -n "${foo}" ]
Submitted by: jkh
|
#
50193 |
|
22-Aug-1999 |
brian |
ppp_alias -> ppp_nat
Submitted by: Josef L. Karthauser <joe@FreeBSD.org.uk>
|
#
50063 |
|
19-Aug-1999 |
brian |
Quieten ppp at startup.
|
#
49603 |
|
10-Aug-1999 |
des |
Add net.inet.icmp.log_redirect and net.inet.icmp.drop_redirect, for respectively logging and dropping ICMP REDIRECT packets.
Note that there is no rate limiting on the log messages, so log_redirect should be used with caution (preferrably only for debugging purposes).
|
#
49122 |
|
26-Jul-1999 |
brian |
Start ppp before natd, not afterwards.
Submitted by: Josef L. Karthauser <joe@uk.FreeBSD.org>
|
#
49110 |
|
26-Jul-1999 |
brian |
Add a default ppp.conf (mode 600).
Originally submitted by: Wayne Self <wself@cdrom.com>
Allow a ppp startup option in rc.conf.
Adjust sysinstall so that it appends to the end of ppp.conf and uses the generated profile to start ppp in auto mode on boot.
Submitted by: Josef L. Karthauser <joe@uk.FreeBSD.org>
|
#
48842 |
|
16-Jul-1999 |
jkh |
Allow DHCP to be used in an ifconfig variable instead of the usual address information, producing the obvious effect (dhcp configuration).
Submitted by: "Sean O'Connell" <sean@stat.Duke.EDU>
|
#
48687 |
|
08-Jul-1999 |
peter |
Tweak previous commit. Only sense the configuration if network_interfaces is set to "auto". Any network_interfaces settings will be treated as before.
|
#
48662 |
|
07-Jul-1999 |
peter |
Do away with ${network_interfaces} in rc.conf. Just use `ifconfig -l` to get a list of interfaces, and then automatically configure them if ${ifconfig_${ifn}} or /etc/start_if.${ifn} exists.
This makes it a lot easier to deal with machines that constantly change their network configuration as you can leave ifconfig settings for all the possible cards - just the ones that are present will be configured.
|
#
47838 |
|
08-Jun-1999 |
brian |
If amd_flags is empty, don't add -p as it makes amd abend.
|
#
47755 |
|
05-Jun-1999 |
bde |
Don't discard error output from sysctl(8).
Do discard standard output from the sysctl for approxy_all, and echo what this sysctl is doing in the usual way. This fix is probably backwards. We should probably just use the standard sysctl output in all cases (it needs to have a newline filtered out).
Echo what the sysctls for nfs_reserved_port_only and nfs_access_cache are doing.
|
#
47752 |
|
05-Jun-1999 |
phk |
Add handle to control global TCP keepalives and turn them on as default.
Despite their name it doesn't keep TCP sessions alive, it kills them if the other end has gone AWOL. This happens a lot with clients which use NAT, dynamic IP assignment or which has a 2^32 * 10^-3 seconds upper bound on their uptime.
There is no detectable increase in network trafic because of this: two minimal TCP packets every two hours for a live TCP connection.
Many servers already enable keepalives themselves.
The host requirements RFC is 10 years old, and doesn't know about the loosing clients of todays InterNet.
|
#
45622 |
|
12-Apr-1999 |
brian |
Remove extraneous space PR: 11096
|
#
45542 |
|
10-Apr-1999 |
des |
Allow the user to specify a different firewall script than /etc/rc.firewall.
|
#
45096 |
|
28-Mar-1999 |
imp |
Add two features: log_in_vain: log_in_vain turns on logging for packets to ports for which there is no listener. rc.sysctl: A generic way to set sysctl values. It reads /etc/syslog.conf and sets values based on that. No /etc/syslog.conf has been checked in yet, and I've not added this to the makefile yet until I get more feedback.
Reviewed by: -current, -hackers and bde especially
|
#
44992 |
|
24-Mar-1999 |
brian |
Move natd from network_pass3 to network_pass1
|
#
44668 |
|
11-Mar-1999 |
jfitz |
Add ${lpd_program} and ${portmap_program} as variables in rc.conf, with suitable defaults pointing to the FreeBSD-shipped versions. This will allow for easier integration of third-party replacements for these daemons. Reviewed by: Several members of -committers
|
#
42627 |
|
13-Jan-1999 |
joerg |
Add some special hooks for sppp(4) interfaces. In addition to the normal ifconfig stuff, one might need to pass down authentication parameters for them.
This is closely tied to Hellmuth's impending rc patches for ISDN, but sppp can also be used separately (thus it doesn't go directly into the planned ISDN section of rc.conf).
Reviewed by: hm
|
#
42621 |
|
13-Jan-1999 |
hm |
Integrate the ISDN subsystem into the /etc/rc framework Reviewed by: Joerg Wunsch
|
#
42270 |
|
03-Jan-1999 |
jkh |
Allow rwhod to take flags.
PR: 7705 Submitted by: Johan Karlsson <k@numeri.campus.luth.se>
|
#
41371 |
|
27-Nov-1998 |
jkoshy |
Direct std{err,out} to /dev/null when invoking sysctl(8) for setting `nfs_access_cache_timeout'.
Submitted by: Andre Albsmeier <andre.albsmeier@mchp.siemens.de>
|
#
41185 |
|
15-Nov-1998 |
msmith |
Implement the nfs_access_cache variable, allowing us to set the timeout for the NFS client's ACCESS cache.
|
#
41077 |
|
11-Nov-1998 |
peter |
kldload ipfw, it's installed always and works on both kernel formats
|
#
40006 |
|
06-Oct-1998 |
phk |
Here are some scripts and man pages for configuring HARP ATM interfaces.
Reviewed by: phk Submitted by: Mike Spengler <mks@networkcs.com>
|
#
39380 |
|
16-Sep-1998 |
cracauer |
rc.conf variable $amd_map_program needs to be eval'ed. PR: misc/7435 Submitted by: David Wolfskill <dhw@whistle.com>
|
#
39267 |
|
15-Sep-1998 |
jkoshy |
Turn off replies to ICMP echo requests for broadcast and multicast addresses by default.
Add a knob "icmp_bmcastecho" to "rc.network" to allow this behaviour to be controlled from "rc.conf".
Document the controlling sysctl variable "net.inet.icmp.bmcastecho" in sysctl(3).
Reviewed by: dg, jkh Reminded on -hackers by: Steinar Haug <sthaug@nethelp.no>
|
#
38876 |
|
06-Sep-1998 |
phk |
tcp_extensions now only applies to RFC1323
|
#
38316 |
|
14-Aug-1998 |
phk |
In /etc/rc.network, near line 242, setting up Kerberos, variable "stash_flag" is set. A few lines later, it is evaluated as "stash_flags" with a trailing "s", and then a bit later the singular version is unset.
PR: 7609 Reviewed by: phk Submitted by: Walt Howard <howard@ee.utah.edu>
|
#
37514 |
|
08-Jul-1998 |
nectar |
Allow either an IP address or an interface to be specified in the rc.conf variable ``natd_interface''. rc.network will determine whether it is an IP address or an interface name, and invoke natd with the -a or -n flag as appropriate.
PR: 6947 Reviewed by: jkh@FreeBSD.ORG
|
#
36985 |
|
14-Jun-1998 |
steve |
Cleanup natd startup test.
PR: 6946 Submitted by: Jacques Vidrine <n@nectar.com>
|
#
36174 |
|
19-May-1998 |
jkh |
cosmetic: clean up startup messages and rearrange some options to go in a more proper order.
|
#
35787 |
|
06-May-1998 |
andreas |
Overlooked, that newer naming convention is xxx_program instead of xxx_prog. So changed it to ntpdate_program and xntpd_program. Backout last change, now we have again named_program, sorry.
|
#
35751 |
|
05-May-1998 |
andreas |
Add variables for the ntpdate and xntpd program, you might want to run the binaries from the new ntp v4 port.
|
#
35459 |
|
26-Apr-1998 |
phk |
Jean-Simon Pendry's paper on amd refers to the use of "ypcat -k" against the "master map" to get the list of mount point/amd map correspondences, and using that list as command-line arguments to start amd.
When I tried to do this with the existing /etc/rc* scripts, I found that I couldn't do this by modifying only /etc/rc.conf: that file gets sourced very early by /etc/rc, well before any networking functionality is present, let alone NIS. Further, I wasn't able to figure out a way to use various levels & types of quoting to defer evaluation of the string to a point subsequent to NIS initialization.
As a result, I resorted to hacking /etc/rc.network -- but I did it in a way that ought to be reasonably general, and avoid breakage for anyone else.
PR: 6387 Reviewed by: phk Submitted by: David Wolfskill <dhw@whistle.com>
|
#
35267 |
|
18-Apr-1998 |
brian |
Add natd support. PR: 6339 Submitted by: cdillon@wolves.k12.mo.us
|
#
35149 |
|
12-Apr-1998 |
markm |
Enable the SecureRPC bits in rc.conf, if the Administrator wants them.
|
#
34395 |
|
09-Mar-1998 |
jkh |
Allow rarpd to be started from rc.conf PR: 5457 Submitted by: Andre Albsmeier <andre.albsmeier@mchp.siemens.de>
|
#
33682 |
|
20-Feb-1998 |
brian |
Remove useless argument to ``. start_if.$ifn'' Pointed out by: Tim Tsai <tim@futuresouth.com>
|
#
33439 |
|
16-Feb-1998 |
guido |
Add 2 new rc.conf variables: forward_sourceroute : controls setting of existing net.inet.ip.sourceroute accept_sourceroute : control setting of new net.inet.ip.accept_sourceroute
|
#
33337 |
|
14-Feb-1998 |
alex |
Avoid using grep when determining ipfw's default policy -- it may not be available at this stage of the boot if /usr is NFS mounted.
|
#
33149 |
|
07-Feb-1998 |
alex |
Don't assume that IP services are disabled just because firewall_enable is not set to YES in rc.conf.
Noticed by: Mikael Karpberg <karpen@ocean.campus.luth.se>
|
#
32949 |
|
31-Jan-1998 |
wollman |
Add an additional `named_program' variable so that we can easily choose between 4.9.6 and the port of 8.x.
|
#
32382 |
|
10-Jan-1998 |
alex |
Compare return code from ipfw against 0 for success instead of == 1 for error.
Pointed out by: Matthew Thyer <thyerm@camtech.net.au>
|
#
31472 |
|
01-Dec-1997 |
obrien |
MF 22s
|
#
31033 |
|
07-Nov-1997 |
sef |
Allow the system to be configured to pass "-n" to kerberos and kadmind or not; also, only run kadmind on a non-slave server. Man page for rc.conf is also updated.
Reviewed by: Mark Murray
|
#
29590 |
|
18-Sep-1997 |
danny |
Fix some problems in the rules file loading and need for modload detection.
Found by: "James E. Housley" <housley@pr-comm.com>
|
#
29300 |
|
11-Sep-1997 |
danny |
Reviewed by: msmith, alex Cosmetic changes to the loading of firewall rules and lkm.
|
#
27218 |
|
05-Jul-1997 |
pst |
Merge from 2.2 (tcp extensions in phase 1)
|
#
25916 |
|
19-May-1997 |
jkh |
Neaten up some things which were inconsistent, add a few more flags to things which need them, general cleanup. Submitted by: Brian Somers <brian@awfulhak.org>
|
#
25765 |
|
13-May-1997 |
jkh |
Add arp_proxyall knob. Submitted by: Christoph Kukulies <kuku@gilberto.physik.RWTH-Aachen.DE>
|
#
25412 |
|
03-May-1997 |
jkh |
Update the etc world from RELENG_2_2 which is now more up-to-date (gotta get myself -current again, this is a drag).
Also-fixes-problems-noted-by: Wolfgang Helbig & Joerg Wunsch
|
#
25365 |
|
01-May-1997 |
jkh |
Ack, learn to spell "extentions" the same way in the same file. Also make the output a little less cryptic for sysctl settings.
Suggested by: bde
|
#
25364 |
|
01-May-1997 |
jkh |
YAMF22 PR: 3456
|
#
25337 |
|
01-May-1997 |
jkh |
YAMF22
|
#
25184 |
|
27-Apr-1997 |
jkh |
Bring in rc file changes from -current.
|