source: hybrid/branches/releng-9.0/nanobsd/files/etc/rc.conf@ 10700

Last change on this file since 10700 was 10700, checked in by rick, 13 years ago

Stop the false 'ath0 no subnet declaration warnings on manual reboot'
  • Property svn:eol-style set to LF
File size: 2.7 KB
Line 
1# Stolen from /sbin/dhclient-script using using no /usr based binaries.
2# Converts an commented list into a SEP (default space) seperated list.
3make_list() {
4 SEP=${2:-' '}
5 oldifs="$IFS"
6 IFS="
7"
8 list=""
9 for line in $1; do
10 line=${line%%[ \t#]*}
11 [ -n "$line" ] && list="$list$SEP$line"
12 done
13 IFS=${oldifs}
14 echo ${list##$SEP}
15}
16
17# No kernel dumps as we don't have a place to store them
18dumpdev="NO"
19
20# We are an router/gateway (wireless to be precise) running the lvrouted
21# routing daemon.
22gateway_enable="YES"
23lvrouted_enable="YES"
24lvrouted_flags="-u -s s00p3rs3kr3t -m 28"
25
26# NTP server needs working config with WL network or internet on boot
27# so some warnings might pop up, but no harm
28ntpdate_enable="YES"
29ntpd_enable="YES"
30ntpd_sync_on_start="YES"
31ntpd_flags="-p /var/run/ntpd.pid -f /var/db/ntp.drift"
32
33# We need no running mail server
34sendmail_enable="NONE"
35
36# Don't let syslog accept input from other remote hosts
37syslogd_enable="YES"
38syslogd_flags="-s -A -c"
39
40# Remote login without DNS checking as it might not also be functionable
41# -u0 prevent sshd from making DNS requests unless the authentication mechanism
42# or configuration requires it.
43sshd_enable="YES"
44sshd_flags="-u0"
45
46# Watchdogd: avoid visits because of unit not reachable. If sshd is not running
47# for -t seconds than reboot. This is checked evert -s seconds.
48watchdogd_enable="YES"
49watchdogd_flags="-t 300 -s 60 -e '/etc/rc.d/sshd status'"
50
51# Monitoring deamons
52nrpe2_enable="YES"
53snmpd_enable="YES"
54snmpd_flags="-Ls 1"
55
56# HTTP(S) proxy server
57tinyproxy_enable="NO"
58
59# Make sure generated ssh keys are saved
60nanobsd_save_sshkeys_enable="YES"
61
62# low-memory footprint DHCP and non-autoritive recursive DNS resolver
63dnsmasq_enable="YES"
64
65# Explicitly disable the memory-hungry alternatives
66dhcpd_enable="NO"
67dhcpd_flags="-q"
68named_enable="NO"
69named_chrootdir=""
70named_auto_forward="YES"
71
72# WL Captive Portal and WL Web Config Overview
73thttpd_enable="YES"
74http302_enable="YES"
75
76# Hybrid setup, requires outgoing VPN Server
77openvpn_enable="NO"
78openvpn_if="tap"
79openvpn_configfile="/usr/local/etc/openvpn/client.conf"
80
81# Enable the firewall by default
82pf_enable="YES"
83pf_rules="/etc/pf.open.conf"
84pf_flags=''
85# Used with Proxy Configuration
86#pf_rules="/etc/pf.proxy.conf"
87#pf_flags="-D ext_if=vr0 -D int_if=vr1 -D publicnat={80,443}"
88# Used with Node Configuration
89#pf_rules="/etc/pf.node.conf"
90#pf_flags="-D captive_portal_interfaces=wlan0,wlan1"
91# Used with Hybrid Configuration
92#pf_rules="/etc/pf.hybrid.conf"
93#pf_flags="-D ext_if=vr0 -D captive_portal_interfaces=wlan0 -D publicnat=80,443"
94
95
96# Autogenerated flags are used during runtime
97rc_conf_running='/etc/rc.conf.running'
98if [ -r $rc_conf_running ]; then
99 . $rc_conf_running
100else
101 : > $rc_conf_running
102fi
Note: See TracBrowser for help on using the repository browser.