TEXT   55


Guest on 7th June 2022 01:27:00 AM

  2. =======================
  4. Generic options:
  6. /etc/sysconfig/*
  9.      List of control groups that the daemon will be run in. For example,
  10.      CGROUP_DAEMON="cpu:daemons cpuacct:/" will run it in the daemons
  11.      group for the CPU controller, and the '/' group for the CPU accounting
  12.      controller.
  14. /etc/sysconfig/authconfig
  16.   used by authconfig to store information about the system's user
  17.   information and authentication setup; changes made to this file
  18.   have no effect until the next time authconfig is run
  20.     USEHESIOD=no
  21.       Whether or not the hesiod naming service is in use.  If not set,
  22.       authconfig examines the passwd setting in /etc/nsswitch.conf.
  23.     USELDAP=no
  24.       Whether or not LDAP is used as a naming service.  If not set,
  25.       authconfig examines the passwd setting in /etc/nsswitch.conf.
  26.     USENIS=no
  27.       Whether or not NIS is in use.  If not set, authconfig examines
  28.       the passwd setting in /etc/nsswitch.conf.
  30.     USEKERBEROS=no
  31.       Whether or not Kerberos is in use.  If not set, authconfig examines
  32.       the settings in /etc/pam.d/system-auth.
  33.     USELDAPAUTH=no
  34.       Whether or not LDAP is being used for authentication.  If not set,
  35.       authconfig examines the settings in /etc/pam.d/system-auth.  Note
  36.       that this option is separate from USELDAP, and that neither implies
  37.       the other.
  38.     USEMD5=no
  39.       Whether or not MD5-based hashing should be used when setting passwords.
  40.       If not set, authconfig examines the settings in /etc/pam.d/system-auth.
  41.       This option affects authentication using both local files and LDAP.
  42.     USESHADOW=no
  43.       Whether or not shadow passwords are in use.  If not set, authconfig
  44.       checks for the existence of /etc/shadow.
  45.     USESMBAUTH=no
  46.       Whether or not SMB authentication is in use.  If not set, authconfig
  47.       examines the settings in /etc/pam.d/system-auth.
  49. /etc/sysconfig/autofsck
  51.   does not normally exist; if it does, it can influence a choice
  52.   whether or not to fsck after a crash
  55.       If the user does not respond, choose whether or not to fsck
  57.       If this is set, drop to single user mode before fsck.
  59. /etc/sysconfig/clock:
  61.   Current releases use the third parameter in the /etc/adjtime
  62.   file (either 'UTC' or 'LOCAL') to determine whether the hwclock
  63.   is in UTC or localtime.
  65.   ZONE="filename" indicates the zonefile under /usr/share/zoneinfo
  66.      that /etc/localtime is a copy of, for example:
  67.      ZONE="US/Eastern"
  69.   deprecated values from earlier releases:
  71.     CLOCKMODE=GMT indicates that the clock is set to UTC
  72.     CLOCKMODE=ARC on alpha only indicates the ARC console's
  73.       42-year time offset is in effect
  74.     UTC=true,yes
  75.       Indicates that the hardware clock is set to UTC.
  76.     UTC=no,false
  77.       Indicates that the hardware clock is set to Local Time.
  78.     ARC=true on alpha only indicates the ARC console's
  79.       42-year time offset is in effect; otherwise the normal
  80.       Unix epoch is assumed.
  82.     SRM=true on alpha only indicates the SRM 1900 epoch is in
  83.       effect; otherwise the normal Unix epoch is assumed.
  85. /etc/sysconfig/init:
  87.   BOOTUP=<some bootup mode>
  88.      BOOTUP=graphical means use X Windows graphical boot up
  89.      BOOTUP=color means colorized text mode boot display.
  90.      BOOTUP=verbose means old style display
  91.      Anything else means simplified display, but without color or ANSI-formatting
  92.   LOGLEVEL=<a number>
  93.      Sets the initial console logging level for the kernel.
  94.      The default is 7. 8 means everything (including debugging);
  95.      1 means nothing except kernel panics. syslogd will override
  96.      this once it starts.
  97.   RES_COL=<a number>
  98.      Column of the screen to start status labels at. Defaults to 60
  99.   MOVE_TO_COL=<a command>
  100.      A command to move the cursor to $RES_COL. Defaults to nasty
  101.      ANSI sequences output by echo -e.
  102.   SETCOLOR_SUCCESS=<a command>
  103.      A command to set the color to a color indicating success.
  104.      Defaults to nasty ANSI sequences output by echo -e setting
  105.      the color to green.
  106.   SETCOLOR_FAILURE=<a command>
  107.      A command to set the color to a color indicating failure.
  108.      Defaults to nasty ANSI sequences output by echo -e setting
  109.      the color to red.
  110.   SETCOLOR_WARNING=<a command>
  111.      A command to set the color to a color indicating warning.
  112.      Defaults to nasty ANSI sequences output by echo -e setting
  113.      the color to yellow.
  114.   SETCOLOR_NORMAL=<a command>
  115.      A command to set the color to 'normal'. Defaults to nasty
  116.      ANSI sequences output by echo -e.
  117.   PROMPT=yes|no
  118.      Set to 'yes' to enable the key check for interactive mode as well as
  119.      asking if a filesystem check should be done. Default is 'no' and
  120.      the kernel command line option "forcefsck" can be used to check the
  121.      filesystems and "confirm" can be used to enable interactive startup
  122.      questions.
  124.   obsoleted values from earlier releases:
  126.     MAGIC_SYSRQ=yes|no
  127.        Setting this to 'no' used to disable the magic sysrq key and
  128.        Stop-A (break on serial console) on SPARC. This setting has been
  129.        moved into kernel.sysrq and kernel.stop-a settings respectively in
  130.        /etc/sysctl.conf. Setting either of them there to 0 disables it,
  131.        setting it to 1 enables it.
  132.     STOP_A=yes|no
  133.        Setting this to 'no' used to disable the Stop-A (break on
  134.        serial console) key on SPARC.
  135.        This setting has been moved into kernel.stop-a setting in
  136.        /etc/sysctl.conf. Setting it there to 0 disables it,
  137.        setting it to 1 enables it. The setting should be present
  138.        on SPARC only.
  140. /etc/sysconfig/keyboard:
  142.   KEYTABLE=<keytable file>
  143.      for example: KEYTABLE="/usr/lib/kbd/keytables/us.map"
  145.      If you dump a keymap (using 'dumpkeys') to
  146.         /etc/sysconfig/console/default.kmap
  147.      it will be loaded on bootup before filesystems are mounted/checked.
  148.      This could be useful if you need to emergency type the root password.
  149.      This has to be a dumped keymap, as opposed to copying the shipped
  150.      keymap files, as the shipped files include other maps from the
  151.      /usr/lib/kbd/keytables directory.
  153.   KEYBOARDTYPE=sun|pc
  154.     on SPARC only, sun means a sun keyboard is attached on /dev/kbd,
  155.     pc means a PS/2 keyboard is on ps/2 port.
  157. /etc/sysconfig/mouse:
  159.   MOUSETYPE=microsoft|mouseman|mousesystems|ps/2|msbm|logibm|atibm|
  160.     logitech|mmseries|mmhittab
  161.   XEMU3=yes|no (emulate three buttons with two buttons whenever
  162.     necessary, most notably in X)
  163.   DEVICE=<a device node> (the device of the mouse)
  165.   In addition, /dev/mouse points to the mouse device.
  167. /etc/sysconfig/network:
  169.   NETWORKING=yes|no
  170.   GATEWAY=<gateway IP>
  171.   GATEWAYDEV=<gateway device to use, when multiple devices have GATEWAY=> (e.g. eth0)
  172.   NISDOMAIN=<nis domain name>
  173.   NOZEROCONF=
  174.     Set this to not set a route for dynamic link-local addresses.
  176.   NETWORKDELAY=<delay in seconds>
  177.     Delay in seconds after all network interfaces are initialized.  Useful if
  178.     network has spanning tree running and must wait for STP convergence.
  179.     Default: 0 (no delay)
  182.   IPV6FORWARDING=yes|no
  183.     Enable or disable global forwarding of incoming IPv6 packets
  184.     on all interfaces.
  185.     Note: Actual packet forwarding cannot be controlled per-device, use netfilter6 for such issues
  186.     Default: no
  188.   IPV6_AUTOCONF=yes|no
  189.     Sets the default for device-based autoconfiguration.
  190.     Default: yes if IPV6FORWARDING=no, no if IPV6FORWARDING=yes
  191.   IPV6_ROUTER=yes|no
  192.     Sets the default for device-based Host/Router behaviour.
  193.     Default: yes if IPV6FORWARDING=yes, no if IPV6FORWARDING=no
  194.   IPV6_AUTOTUNNEL=yes|no
  195.     Controls automatic IPv6 tunneling.
  196.     Default: no
  198.   IPV6_DEFAULTGW=<IPv6 address[%interface]> (optional)
  199.     Add a default route through specified gateway
  200.     An interface can be specified: required for link-local addresses
  201.     Examples:
  202.       IPV6_DEFAULTGW="3ffe:ffff:1234:5678::1"
  203.         Add default route through 3ffe:ffff:1234:5678::1
  204.       IPV6_DEFAULTGW="3ffe:ffff:1234:5678::1%eth0"
  205.         Add default route through 3ffe:ffff:1234:5678::1 and device eth0
  206.       IPV6_DEFAULTGW="fe80::1%eth0"
  207.         Add default route through fe80::1 and device eth0
  209.   Note: if IPV6_DEFAULTGW is specified with %interface scope and it
  210.         doesn't match IPV6_DEFAULTDEV, IPV6_DEFAULTDEV is ignored.
  211.   Note: it's preferred to use %interface for all addresses, not
  212.         just link-local if you have multiple IPv6-enabled interfaces.
  214.   IPV6_DEFAULTDEV=<interface> (optional)
  215.     Add a default route through specified interface without specifying next hop
  216.     Type of interface will be tested whether this is allowed
  217.     Examples:
  218.       IPV6_DEFAULTDEV="eth0" INVALID example!
  219.       IPV6_DEFAULTDEV="ppp0"
  220.       IPV6_DEFAULTDEV="sit1"
  221.     Examples for 6to4
  222.       IPV6_DEFAULTDEV="tun6to4"
  223.         Add default route through dedicated 6to4 tunnel device "tun6to4", if configured
  225.   Note: "tun6to4" does not support an additional IPV6_DEFAULTGW.
  226.         Other interfaces prefer IPV6_DEFAULTGW, if specified.
  228.   IPV6_RADVD_PIDFILE=<pid-file> (optional)
  229.     Location of PID file for controlling radvd, see IPV6_CONTROL_RADVD
  230.     Default: "/var/run/radvd/radvd.pid"
  231.     Example:
  232.        IPV6_RADVD_PIDFILE="/some/other/location/radvd.pid"
  233.   IPV6TO4_RADVD_PIDFILE=<pid-file> (obsolete)
  234.     As above, still supported for a while for backward compatibility.
  235.   IPV6_RADVD_TRIGGER_ACTION=startstop|reload|restart|SIGHUP (optional)
  236.     How to trigger radvd in case of 6to4 or PPP action
  237.      startstop: radvd starts if interface goes up and stops
  238.        if interface goes down using initscript call of radvd with related parameter
  239.      reload|restart: initscript of radvd is called with this parameter
  240.      SIGHUP: signal HUP is sent to radvd, pidfile must be specified, if not the default
  241.     Default: SIGHUP
  243.   IPv6 options above can be overridden in interface-specific configuration.
  245.   obsoleted values from earlier releases:
  247.     FORWARD_IPV4=yes|no
  248.       This setting has been moved into net.ipv4.ip_forward setting
  249.       in /etc/sysctl.conf. Setting it to 1 there enables IP forwarding,
  250.       setting it to 0 disables it (which is the default for RFC compliance).
  252.     NETWORKWAIT=yes|no
  253.       This is not used with the move to systemd.
  255.     HOSTNAME=<fqdn by default, but whatever hostname you want>
  256.       This is now configured in /etc/hostname.
  258. /etc/sysconfig/static-routes-ipv6:
  259.   Contains lines of the form:
  261.     <device> IPv6-network IPv6-gateway
  262.     <tunneldevice> IPv6-network
  264.   <device> must be a device name to have the route brought up and
  265.   down with the device
  267.   For example:
  269.   eth0   fec0:0:0:2::/64                         fec0:0:0:1:0:0:0:20
  270.    adds a route for IPv6 network fec0:0:0:2::/64 through fec0:0:0:1:0:0:0:20
  272.   eth0    2000::/3                               3ffe:ffff:0:1::1
  273.    so-called "default" routes for clients
  275.   sit1    2000::/3
  276.    adds routes through dedicated tunnel interface sit1
  278.   tun6to4  3ffe:ffff:1234::/56                 
  279.    adds routes through hardwired 6to4 tunnel interface tun6to4
  280.   tun6to4  3ffe:ffff:5678::/56                  ::
  281.    adds routes through hardwired 6to4 tunnel interface tun6to4,
  282.    specifying next hop  
  284.   Notes:
  285.     * default routes (such as the "2000::/3" shown above) should be set with
  286.        IPV6_DEFAULTGW and IPV6_DEFAULTDEV, see more above.
  287.     * tunnel device "sit0" is not supported here, routes will never be applied
  289. /etc/sysconfig/routed:
  291.   SILENT=yes|no
  292.   EXPORT_GATEWAY=yes|no
  294. /etc/sysconfig/rawdevices:
  296.   This is used for setting up raw device to block device mappings.
  297.   It has the format:
  298.         <rawdev> <major> <minor>
  299.         <rawdev> <blockdev>
  300.   For example:
  301.      /dev/raw/raw1 /dev/sda1
  302.      /dev/raw/raw2 8 5
  304. /etc/sysconfig/pcmcia:
  306.   PCMCIA=yes|no
  307.   PCIC=i82365|tcic
  308.   PCIC_OPTS=<socket driver (i82365 or tcic) timing parameters>
  309.   CORE_OPTS=<pcmcia_core options>
  310.   CARDMGR_OPTS=<cardmgr options>
  312. /etc/sysconfig/amd:
  314.   ADIR=/.automount  (normally never changed)
  315.   MOUNTPTS='/net /etc/amd.conf'  (standard automount stuff)
  316.   AMDOPTS=  (extra options for AMD)
  318. /etc/sysconfig/tape:
  320.   DEV=/dev/nst0
  321.     Tape device.  Use the non-rewinding one for these scripts.
  323.     For SCSI tapes this is /dev/nst#, where # is the number of the
  324.     tape drive you want to use.  If you only have one then use
  325.     nst0.
  327.     For IDE tapes you use /dev/ht#, where # is the number of the tape
  328.     drive you want to use (usually ht0).
  330.     For floppy tape drives use /dev/ftape.
  332.   ADMIN=root
  333.     Person to mail to if the backup fails for any reason
  335.   SLEEP=5
  336.     Time to sleep between tape operations.  Some drives need a bit
  337.     more than others, but 5 seems to work for 8mm, 4mm, and DLT
  339.   BLOCKSIZE=32768
  340.     This worked fine for 8mm, then 4mm, and now DLT.  An optimal
  341.     setting is probably however much data your drive writes at one
  342.     time.
  344.   SHORTDATE=$(date +%y:%m:%d:%H:%M)
  345.     A short date string, used in backup log filenames.
  347.   DAY=$(date +log-%y:%m:%d)
  348.     This is used for the log file directory.
  350.   DATE=$(date)
  351.     Regular date string, used in log files.
  353.   LOGROOT=/var/log/backup
  354.     Root of the logging directory
  356.   LIST=$LOGROOT/incremental-list
  357.     This is the file name the incremental backup will use to store
  358.     the incremental list.  It will be $LIST-{some number}.
  360.   DOTCOUNT=$LOGROOT/.count
  361.     For counting as you go to know which incremental list to use
  363.   COUNTER=$LOGROOT/counter-file
  364.     For rewinding when done...might not use.
  366.   BACKUPTAB=/etc/backuptab
  367.     The file in which we keep our list of backup(s) we want to make.
  369. /etc/sysconfig/saslauthd:
  371.   used by the saslauthd init script (part of the cyrus-sasl package) to
  372.   control which arguments are passed to saslauthd at startup time; changes
  373.   made to this file have no effect until saslauthd is restarted
  375.   MECH=shadow
  376.     controls which data source saslauthd will consult when checking user
  377.     passwords; run 'saslauthd -v' to get a full list of available
  378.     authentication mechanisms
  379.   SOCKETDIR=/var/run/saslauthd
  380.     controls in which directory saslauthd will be directed to create its
  381.     listening socket; any change to this value will require a corresponding
  382.     change in client configuration files
  384. /etc/sysconfig/sendmail:
  385.   DAEMON=yes|no
  386.     yes implies -bd (i.e., listen on port 25 for new mail)
  387.   QUEUE=1h
  388.     given to sendmail as -q$QUEUE
  389.     -q option is not given to sendmail if /etc/sysconfig/sendmail
  390.     exists and QUEUE is empty or undefined.
  392. /etc/locale.conf
  394.   A configutration file for locale settings. See locale.conf(5) for
  395.   more details.
  397.   LANG= set locale for all categories, can be any two letter ISO
  398.     language code
  399.   LC_CTYPE= locale data configuration for classification and conversion
  400.     of characters
  401.   LC_COLLATE= locale data configuration for collation (sort order) of
  402.     strings
  403.   LC_MESSAGES= locale data configuration for translation of messages
  404.   LC_NUMERIC= locale data configuration for non-monetary numeric data
  405.   LC_MONETARY= locale data configuration for monetary data
  406.   LC_TIME= locale data configuration for date and time
  407.   LC_ALL= locale data configuration overriding all of the above
  408.   LANGUAGE= can be a : separated list of ISO language codes
  409.   LINGUAS= can be a ' ' separated list of ISO language codes
  411.   The above variables are used in /etc/profile.d/lang.sh.
  413.   If ~/.i18n exists, it is used in addition to /etc/locale.conf and
  414.   for per-user customization of the locales.
  416. /etc/vconsole.conf:
  418.   SYSFONT= Console font. Fonts are found in /lib/kbd/consolefonts.
  420.   UNIMAP= Unicode font map. Most fonts have these built-in. Font maps
  421.   can be found in /lib/kbd/unimaps. These are applied via setfont's
  422.   -u option.
  424.   SYSFONTACM= Console map. These are applied via setfont's -m option,
  425.   and are found in /lib/kbd/consoletrans.
  427.   The above are used to set up the keyboard at boot time. For more
  428.   information, see vconsole.conf(5).
  430. Files in /etc/sysconfig/network-scripts/
  431. ========================================
  433. /etc/sysconfig/network-scripts/ifup:
  434. /etc/sysconfig/network-scripts/ifdown:
  436.   Symlinks to /sbin/ifup and /sbin/ifdown, respectively.
  437.   These are the only two scripts "in" this directory that should
  438.   be called directly; these two scripts call all the other
  439.   scripts as needed.  These symlinks are here for legacy purposes --
  440.   only /sbin/ifup and /sbin/ifdown should currently be used
  441.   at the user level.
  443.   These scripts take one argument normally: the name of the device
  444.   (e.g. eth0).  They are called with a second argument of "boot"
  445.   during the boot sequence so that devices that are not meant to
  446.   be brought up on boot (ONBOOT=no, see below) can be ignored at
  447.   that time.
  449.   Also, interfaces may be brought up via the hotplug scripts;
  450.   in this case, HOTPLUG=no needs to be set to no to avoid this.
  451.   This is useful e.g. to prevent bonding device activation by merely
  452.   loading the bonding kernel module.
  454. /etc/sysconfig/network-scripts/init.ipv6-global:
  455.   Not really a public file.  Contains different basic settings that
  456.   are set from /etc/[rc.d]/init.d/network at different stages of
  457.   network initialization.
  459. /etc/sysconfig/network-scripts/network-functions:
  461.   Not really a public file.  Contains functions which the scripts use
  462.   for bringing interfaces up and down.  In particular, it contains
  463.   most of the code for handling alternative interface configurations
  464.   and interface change notification through netreport.
  466. /etc/sysconfig/network-scripts/network-functions-ipv6:
  468.   Not really a public file.  Contains functions which the scripts use
  469.   for bringing IPv6 on interfaces up and down, like addresses, routes,
  470.   forwarding handling and static or automatic tunneling.
  472. /etc/sysconfig/network-scripts/ifcfg-<interface-name> and
  473. /etc/sysconfig/network-scripts/ifcfg-<interface-name>:<alias-name>:
  475.   The first defines an interface, and the second contains
  476.   only the parts of the definition that are different in a
  477.   "alias" (or alternative) interface.  For example, the
  478.   network numbers might be different, but everything else
  479.   might be the same, so only the network numbers would be
  480.   in the alias file, but all the device information would
  481.   be in the base ifcfg file.
  483.   The items that can be defined in an ifcfg file depend on the
  484.   interface type.  The really obvious ones I'm not going to
  485.   bother to define; you can figure out what "IPADDR" is, I
  486.   think...  :-)
  488.   Base items:
  489.     NAME=<friendly name for users to see>
  490.       Most important for PPP.  Only used in front ends.
  491.     DEVICE=<name of physical device (except dynamically-allocated PPP
  492.       devices where it is the "logical name")>
  493.     IPADDRn=
  494.     PREFIXn=
  495.       Network prefix.  It is used for all configurations except aliases
  496.       and ippp devices.  It takes precedence over NETMASK when both
  497.       PREFIX and NETMASK are set.
  498.     NETMASKn=
  499.       Subnet mask; just useful for aliases and ippp devices.  For all other
  500.       configurations, use PREFIX instead.
  502.     The "n" is expected to be consecutive positive integers starting from 0.
  503.     It can be omitted if there is only one address being configured.
  505.     GATEWAY=
  506.     METRIC=
  507.       Metric for the default route using GATEWAY
  508.     ONBOOT=yes|no (not valid for alias devices; use ONPARENT)
  509.     HOTPLUG=yes|no
  510.     USERCTL=yes|no
  511.     BOOTPROTO=none|bootp|dhcp
  512.       'bootp' or 'dhcp' cause a DHCP client to run on the device. Any other
  513.       value causes any static configuration in the file to be applied.
  514.     VLAN=yes|no
  515.     MTU=
  516.       Default MTU for this device
  517.     WINDOW=
  518.       Default window for routes from this device
  519.     PEERDNS=yes|no
  520.       modify /etc/resolv.conf if peer uses msdns extension (PPP only) or
  521.       DNS{1,2} are set, or if using dhclient. default to "yes".
  522.     DNS{1,2}=<ip address>
  523.       provide DNS addresses that are dropped into the resolv.conf
  524.       file if PEERDNS is not set to "no".
  525.     SCOPE=
  526.       Set to "scope SCOPE-ID" to set a non-default scope for a statically
  527.       configured IP address.
  528.     SRCADDR=
  529.       use the specified source address for outgoing packets
  530.     HWADDR=
  531.       ethernet hardware address for this device
  532.     MACADDR=
  533.       Set the hardware address for this device to this.
  534.       Use of this in conjunction with HWADDR= may cause
  535.       unintended behavior.
  536.     NOZEROCONF=
  537.       Set this to not set a route for dynamic link-local addresses
  538.       over this device.
  539.     PERSISTENT_DHCLIENT=yes|no|1|0
  540.       Without this option, or if it is 'no'/'0', and BOOTPROTO=dhcp,
  541.       dhclient is run for the interface in "one-shot" mode; if the
  542.       dhcp server does not respond for a configurable timeout, then
  543.       dhclient exits and the interface is not brought up -
  544.       the '-1' option is given to dhclient.
  545.       If PERSISTENT_DHCLIENT=yes, then dhclient will keep on trying
  546.       to contact the dhcp server when it does not respond - no '-1'
  547.       option is given to dhclient. Note: this disables the automatic
  548.       checking for the presence of a link before starting dhclient.
  549.     DHCPRELEASE=yes|no|1|0
  550.       With this option set to 'yes' (1), when a dhcp configured
  551.       interface is brought down with 'ifdown', the lease will be
  552.       released. Otherwise, leases are not released.
  554.     NO_DHCP_HOSTNAME=yes|no|1|0
  555.       Tells initscripts to not obtain hostname from DHCP server in the ifup-post
  556.       phase. This option might be useful especially with static configuration of
  557.       the interface.
  558.     DHCP_SEND_HOSTNAME=yes|no|1|0
  559.       Tells initscripts whether the DHCP_HOSTNAME or DHCP_FQDN options (below)
  560.       should be sent to DHCP server.
  561.     DHCP_HOSTNAME=<hostname>
  562.       Sends the specified hostname to the DHCP server.
  563.     DHCP_FQDN=<fully.qualified.domain.name>
  564.       Sends the specified FQDN to the DHCP server.
  566.     Please note when both DHCP_HOSTNAME and DHCP_FQDN are specified,
  567.     only DHCP_FQDN will be used. (Same behaviour as with NetworkManager.)
  569.     DHCLIENT_IGNORE_GATEWAY=yes|no|1|0
  570.       If set to 'yes', it will cause dhclient-script to ignore any $GATEWAY
  571.       setting that may be in the ifcfg file for this interface.
  572.       Otherwise, the dhclient session which obtains an ip-address
  573.       on the same subnet as $GATEWAY will set the default route
  574.       to be via $GATEWAY, and no other dhclient session will set
  575.       the default route.
  576.     DHCLIENTARGS=
  577.       Any additional arguments to dhclient.
  578.     NM_CONTROLLED=yes|no
  579.       If set to 'no', NetworkManager will ignore this connection/device.
  580.       Defaults to 'yes'.
  581.     ZONE=
  582.       Network zone (trust level) of this connection.
  583.       If not set, default zone (specified in /etc/firewalld/firewalld.conf)
  584.       is used. To see all available zones, run 'firewall-cmd --get-zones'.
  585.     ARPCHECKn=yes|no
  586.       If set to 'no', ifup will not try to determine, if requested ip address
  587.       is used by other machine in network.
  588.       Defaults to 'yes'.
  589.     ARPUPDATE=yes|no
  590.       If set to 'no' the neighbours in current network will not be updated with
  591.       ARP information about this NIC. This is especially handy using LVS Load
  592.       Balancing with Direct Routing enabled.
  593.       Defaults to 'yes'.
  594.     IPV4_FAILURE_FATAL=yes|no
  595.       If set to yes, ifup-eth will end immediately after ipv4 dhclient fails.
  596.       Defaults to 'no'.
  598.   For dynamic addressing (BOOTPROTO=dhcp) only DEVICE needs to
  599.   be set; all the rest will be determined by the boot protocol.
  601.   Base items being deprecated:
  602.     NETWORK=<will be calculated automatically with ipcalc>
  603.     BROADCAST=<will be calculated automatically with ipcalc>
  605.   Alias specific items:
  606.     ONPARENT=yes|no
  607.       Whether to bring up the device when the parent device is brought
  608.       up.
  609.       Default: yes
  611.   IPv6-only items for real interfaces:
  612.     IPV6INIT=yes|no
  613.       Enable or disable IPv6 static, DHCP, or autoconf configuration for this interface
  614.       Default: yes
  615.     IPV6FORWARDING=yes|no
  616.       Enable or disable global forwarding of incoming IPv6 packets
  617.       Note: Obsolete in interface specification!
  618.       Default: no
  619.     IPV6ADDR=<IPv6 address>[/<prefix length>]
  620.       Specify a primary static IPv6 address here
  621.       Optional, if normal host and a router advertisement daemon is on local link
  622.       Required, if node is a router and interface should route packets
  623.       Note: if prefix length is omitted, 64 is assumed
  624.       Example:
  625.         IPV6ADDR="3ffe:ffff:0:5::1"
  626.         IPV6ADDR="3ffe:ffff:0:1::1/128"
  627.     IPV6ADDR_SECONDARIES="<IPv6 address>[/<prefix length>] ..." (optional)
  628.       A list of secondary IPv6 addresses (e.g. useful for virtual hosting)
  629.       Example:
  630.         IPV6ADDR_SECONDARIES="3ffe:ffff:0:1::10 3ffe:ffff:0:2::11/128"
  631.     IPV6_MTU=<MTU of link> (optional)
  632.       Optional, dedicated MTU of this link
  633.       Note: Must be greater or equal to 1280.
  634.       Example:
  635.         IPV6_MTU="1280"
  636.     IPV6_PRIVACY=rfc3041
  637.       Enables RFC 3041 IPv6 privacy support if set.
  638.       Default: RFC 3041 support disabled
  640.   Special configuration options for multi-homed hosts etc.
  641.         IPV6_ROUTER=yes|no: Controls IPv6 autoconfiguration
  642.         IPV6_AUTOCONF=yes|no: Controls IPv6 autoconfiguration
  643.          Defaults:
  644.           Global IPV6FORWARDING=yes: IPV6_AUTOCONF=no, IPV6_ROUTER=yes
  645.           Global IPV6FORWARDING=no: IPV6_AUTOCONF=yes
  647.   Optional settings for a 6to4 tunnel
  648.     IPV6TO4INIT=yes|no
  649.       Enable or disable 6to4 tunneling setup
  650.       Default: no
  651.     IPV6TO4_RELAY=<IPv4 address> (optional)
  652.       IPv4 address of the remote 6to4 relay
  653.       Note: if this is omitted, :: (the anycast relay address) is chosen
  654.     IPV6TO4_IPV4ADDR=<IPv6 address>[/<prefix length>] (optional)
  655.       Overwrite local IPv4 address which is accessible from the Internet
  656.        (optional, in case of static IPv4-NAT behind a router or other special scenarios)
  657.     IPV6TO4_MTU=<MTU for IPv6> (optional)
  658.       Controls IPv6 MTU for the 6to4 tunnel
  659.       Note: Must be greater or equal to 1280
  660.       Example:
  661.         IPV6TO4_MTU="1280"
  662.       Default: MTU of master device - 20
  663.     IPV6TO4_ROUTING="<device>-<suffix>/<prefix length> ..." (optional)
  664.       A list of routing tokens to setup proper IPv6 interfaces on the LAN
  665.       Example:
  666.          IPV6TO4_ROUTING="eth0-:0004::1/64 eth1-:0005::1/64"
  667.          Will create one address per eth0 and eth1, taking given SLA
  669.   Optional settings for a 6to4 tunnel or a ppp link
  670.     IPV6_CONTROL_RADVD=yes|no (optional)
  671.       Enable signaling radvd that the 6to4 prefix has been changed or a
  672.        preconfigured dynamic device is up or down
  673.       Default: no
  675.   IPv6-only items for static tunnel interface:
  676.     Interface name: sitX (X => 1)
  677.     IPV6INIT=yes|no
  678.       Enable or disable IPv6 configuration for this interface
  679.       Default: no
  680.     IPV6TUNNELIPV4=<IPv4 address>
  681.       Specify IPv4 address of a foreign IPv6-in-IPv4 tunnel endpoint
  682.       Example:
  683.         IPV6TUNNELIPV4=""
  684.     IPV6TUNNELIPV4LOCAL=<IPv4 address>
  685.       Specify local IPv4 address of tunnel, useful on interfaces with multiple IPv4 addresses
  686.     IPV6ADDR=<IPv6 address>[/<prefix length>] (optional)
  687.      local IPv6 address of a numbered tunnel
  688.     IPV6ADDR_SECONDARIES="<IPv6 address>[/<prefix length>] ..." (optional)
  689.       A list of secondary IPv6 addresses (example see above)
  690.     IPV6_MTU=<MTU of tunnel> (optional)
  691.       Optional, dedicated MTU of this tunnel
  692.       Note: Must be greater or equal to 1280
  693.       Example:
  694.         IPV6_MTU="1280"
  696.    IPv6-only option to enable DHCPv6 client:
  697.       DHCPV6C=yes|no
  698.       This will enable the DHCPv6 features of dhclient to be run for the interface.
  699.       See man dhclient(8) and dhclient.conf(5).
  700.       DHCPV6C_OPTIONS=...
  701.       This will pass given arguments to the DHCPv6 client.  For example,
  702.       "-S" option will request network information (e.g., DNS addresses)
  703.       only, not IPv6 addresses.
  705.   Ethernet-only items:
  706.     ARP=yes|no (adds 'arp' flag to ip, for use with the
  707.       ethertap device)
  708.     LINKDELAY=<time in seconds>
  709.       Time that the system should pause after the specific interface is
  710.       enabled.  This may be useful if one interface is connected to a
  711.       switch which has spanning tree enabled and must wait for STP to
  712.       converge before the interface should be considered usable.
  713.     BRIDGE=<br* device>
  714.       If set, the ethernet device is not assigned an address.  It is added to
  715.       the specified bridge device instead.
  717.    Deprecated, but supported:
  718.     ETHTOOL_OPTS=...
  719.       Any device-specific options supported by ethtool. For example,
  720.       if you wanted to force 100Mb full duplex:
  721.         ETHTOOL_OPTS="speed 100 duplex full autoneg off"
  722.       Note that changing speed or duplex settings almost always
  723.       requires disabling autonegotiation with 'autoneg off'.
  725.       Multiple options can also be set like so :
  726.       ETHTOOL_OPTS="-K ${DEVICE} tso on; -G ${DEVICE} rx 256 tx 256"
  728.       Long term, this should be done by sysadmin-written udev rules.
  730.     No longer supported:
  731.      PROMISC=yes|no (enable or disable promiscuous mode)
  732.      ALLMULTI=yes|no (enable or disable all-multicast mode)
  734.      To properly set these, use the packet socket interface.
  736.   Ethernet 802.1q VLAN items:
  737.      DEVICE=eth0.42
  738.        Initscripts use the device name for VLAN devices.
  739.                Example: eth0.42 for vlan 42 on device eth0.
  740.        Valid VLAN ID range is 0-4095. Most ethernet switches reserve
  741.        VLAN ID 1 to be used as management VLAN; starting from VLAN
  742.        ID 2 is recommended.
  743.      REORDER_HDR=yes|no
  744.        When enabled the VLAN device will move the ethernet header
  745.        around to make it look exactly like a real ethernet device.
  746.        This may help programs such as ISC dhcpd which read the raw
  747.        ethernet packet and make assumptions about the location of
  748.        bytes. If you don't need it turn it off because there
  749.        is a small performance penalty. Default is on.
  750.      GVRP=yes|no
  751.        When enabled, this will announce new vlan creation to a GVRP
  752.        enabled trunk port on a switch. Default is off.
  754.   PPP/SLIP items:
  755.     PERSIST=yes|no
  756.     MODEMPORT=<device, say /dev/modem>
  757.     LINESPEED=<speed, say 115200>
  758.     DEFABORT=yes|no (tells netcfg whether or not to put default
  759.       abort strings in when creating/editing the chat script and/or
  760.       dip script for this interface)
  761.       (meaningless with WVDIALSECT)
  763.   PPP-specific items
  764.     WVDIALSECT=<list of sections from wvdial.conf to use>
  765.       If this variable is set, then the chat script (if it
  766.       exists) is ignored, and wvdial is used to open the
  767.       PPP connection.
  768.     DEFROUTE=yes|no (set this interface as default route? yes is default)
  769.     DEBUG=yes|no (defaults to yes)
  770.       turns on/off pppd and chat (if used) debugging.
  771.     ESCAPECHARS=yes|no (simplified interface here doesn't let people
  772.       specify which characters to escape; almost everyone can use
  773.       asyncmap 00000000 anyway, and they can set PPPOPTIONS to
  774.       asyncmap foobar if they want to set options perfectly)
  775.     HARDFLOWCTL=yes|no (yes implies "modem crtscts" options)
  776.     PPPOPTIONS=<arbitrary option string; is placed last on the
  777.       command line, so it can override other options like asyncmap
  778.       that were specified differently>
  779.     PPPOE_EXTRA = any extra arguments to pass to pppoe
  780.     PPPD_EXTRA =  any extra arguments to pass to pppd
  781.     PAPNAME=<"name $PAPNAME" on pppd command line> (note that
  782.       the "remotename" option is always specified as the logical
  783.       ppp device name, like "ppp0" (which might perhaps be the
  784.       physical device ppp1 if some other ppp device was brought
  785.       up earlier...), which makes it easy to manage pap/chap
  786.       files -- name/password pairs are associated with the
  787.       logical ppp device name so that they can be managed
  788.       together.
  789.     REMIP=<remote ip address, normally unspecified>
  790.     MTU=
  791.     MRU=
  792.     DISCONNECTTIMEOUT=<number of seconds, default currently 5>
  793.       (time to wait before re-establishing the connection after
  794.       a successfully-connected session terminates before attempting
  795.       to establish a new connection.)
  796.     RETRYTIMEOUT=<number of seconds, default currently 60>
  797.       (time to wait before re-attempting to establish a connection
  798.       after a previous attempt fails.)
  799.     RETRYCONNECT=yes|no (defaults to yes)
  800.       If this is yes, then we will re-run pppd if it exits with a
  801.       "connect script failed" status.  Otherwise, only one attempt
  802.       is made to bring up the connection.  Note that some connect
  803.       scripts (for example, wvdial) might do their own retries (such
  804.       as BUSY or NO DIALTONE conditions).
  805.     MAXFAIL=<number>
  806.       If this is set, this will cause ppp-watch to exit after
  807.       the specified number of attempts.
  808.     DEMAND=yes|no
  809.       Switches on demand-dialing mode using pppd's "demand" option.
  810.     IDLETIMEOUT=600
  811.       The amount of time the link needs to be inactive before pppd will
  812.       bring it down automatically.
  813.     BOOTTIMEOUT=30
  814.       The amount of time to wait at boot before giving up on the
  815.       connection.
  817.   IPPP-specific items (ISDN)
  818.     PROVIDER=<ProviderName>
  819.          USER=<Login>
  820.     PASSWORD=<Password>
  821.          ENCAP=[syncppp|]
  822.     DIALMODE=[manual|auto]
  823.     SECURE=off|on
  824.          MSN=<>
  825.          PHONE_IN=<Callback.Number>
  826.                  AREACODE=<>
  827.          REGIONCODE=<>
  828.          PHONE_OUT=<PhoneNumber>
  829.     BUNDLING=off|on
  830.     HUPTIMEOUT=<number>
  831.     DNS1=<PrimaryDNS>
  832.     DNS2=<SecondaryDNS>
  833.     DOMAIN=""
  834.     LAYER=[HDLC|]
  835.     CALLBACK=off|on
  836.     CHARGEHUP=<number>
  837.     CHARGEINT=<number>
  838.     CBHUP=<number>
  839.     CBDELAY=<number>
  840.     DIALMAX=<number>
  841.     AUTH=[+pap] [-chap]
  842.     IHUP=<>
  843.     DELDEFAULTROUTE=[enabled|disabled]
  844.     CBCP=off|on
  845.     VJ=off|on
  846.     VJCCOMP=off|on
  847.     AC=off|on
  848.     PC=off|on
  849.     BSDCOMP=off|on
  850.     CCP=off|on
  851.     SLAVE_DEVICE=ippp[0-9]
  853.   ippp0 items being deprecated:
  854.     BOOT=[on|off] will be converted to ONBOOT=[yes|no] by netconf
  855.     LOCAL_IP=     will be converted to IPADDR by netconf
  856.     REMOTE_IP=    will be converted to GATEWAY by netconf
  858.   Wireless-specific items:
  859.     See iw(8) for additional information.
  860.     MODE=[Managed|Ad-Hoc|Monitor]
  861.     ESSID=
  862.       Required.
  863.     FREQ=
  864.       Required if MODE=Ad-Hoc.
  865.     KEY=<default WEP key>
  867.   IPSEC specific items
  868.      SRC=source address. Not required.
  869.      DST=destination address
  870.      TYPE=IPSEC
  871.      SRCNET=source net (for tunneling)
  872.      DSTNET=destination network (for tunneling)
  874.    Manual keying:
  876.      AH_PROTO{,_IN,_OUT}=protocol to use for AH (defaults to hmac-sha1)
  877.      ESP_PROTO{,_IN,_OUT}=protocol to use for ESP (defaults to 3des-cbc)
  878.      AESP_PROTO{,_IN,_OUT}=protocol to use for ESP authentication (defaults to
  879.         hmac-sha1)
  880.      KEY_AH{,_IN,_OUT}=AH key
  881.      KEY_ESP{,_IN,_OUT}=ESP encryption key
  882.      KEY_AESP{,_IN,_OUT}=ESP authentication key (optional)
  883.      SPI_{ESP,AH}_{IN,OUT}=SPIs to use
  885.    _IN and _OUT specifiers are for using different keys or protocols for
  886.    incoming and outgoing packets.  If neither _IN or _OUT variants are set for
  887.    protocols or keys, the same will be used for both.  Hexadecimal keys need to
  888.    be prefixed with "0x".
  890.    Automatic keying:
  892.      IKE_DHGROUP=<number> (defaults to 2)
  893.      IKE_METHOD=PSK|X509|GSSAPI
  894.          PSK=preshared keys (shared secret)
  895.          X509=X.509 certificates
  896.          GSSPI=GSSAPI authentication
  897.      IKE_AUTH=protocol to use for Phase 1 of SA (defaults to sha1)
  898.      IKE_ENC=protocol to use for Phase 1 of SA (defaults to 3des)
  899.      IKE_PSK=preshared key for this connection
  900.      IKE_CERTFILE=our certificate file name for X509 IKE
  901.        IKE_PEER_CERTFILE=peer public cert filename for X509 IKE
  902.        IKE_DNSSEC=retrieve peer public certs from DNS
  903.      (otherwise uses certificate information sent over IKE)
  905.      To manage the racoon configuration manually (e.g. when there is more than
  906.      one IPSEC configuration with the same DST), set KEYING=automatic and leave
  907.      all IKE_* parameters unspecified.
  909.      To override the identifier to use with a preshared key:
  911.        MYID_TYPE=address|fqdn|user_fqdn
  912.        MYID_VALUE=fqdn or user_fqdn string for this connection
  914.    Usage of AH or ESP may be disabled by setting {AH,ESP}_PROTO to "none".
  916.   Bonding-specific items
  918.     SLAVE=yes
  919.       Specifies device as a slave
  920.     MASTER=bondXX
  921.       Specifies master device to bind to
  922.     BONDING_OPTS=
  923.       A space-separated list of options to the bonding driver for this
  924.       interface, such as:
  926.       "mode=active-backup arp_interval=60 arp_ip_target=,"
  928.   Tunnel-specific items:
  929.     TYPE=GRE|IPIP|IPIP6
  930.     MY_INNER_IPADDR=local IP address of the tunnel interface
  931.     PEER_OUTER_IPADDR=IP address of the remote tunnel endpoint
  932.     MY_OUTER_IPADDR=IP address of the local tunnel endpoint
  933.       If unspecified, an IP address is selected automatically for outgoing
  934.       tunnel packets, and incoming tunnel packets are accepted on all local
  935.       IP addresses.
  936.     PEER_INNER_IPADDR=IP address of the remote end of the tunnel interface
  937.       If this is specified, a route to PEER_INNER_IPADDR through the tunnel
  938.       is added automatically.
  939.     TTL=TTL value for tunnel packets
  940.       Default is to use the TTL of the packet transported through the tunnel
  942.   Bridge-specific items:
  943.     TYPE=Bridge
  944.     STP=off|on (see 'brctl stp')
  945.     DELAY=forward delay time in seconds (see 'brctl setfd')
  946.     BRIDGING_OPTS=
  947.       A space-separated list of bridging options for either the bridge
  948.       device, or the port device, such as:
  950.       BRIDGING_OPTS="hello_time=200 priority=65535"
  951.         for bridge devices, or
  952.       BRIDGING_OPTS="hairpin_mode=1"
  953.         for port devices.
  955.   TUN/TAP-specific items:
  956.     OWNER=<owner of the device>
  958. /etc/sysconfig/network-scripts/chat-<interface-name>:
  960.   chat script for PPP or SLIP connection intended to establish
  961.   the connection.  For SLIP devices, a DIP script is written
  962.   from the chat script; for PPP devices, the chat script is used
  963.   directly.
  965. /etc/sysconfig/network-scripts/dip-<interface-name>
  967.   A write-only script created from the chat script by netcfg.
  968.   Do not modify this.  In the future, this file may disappear
  969.   by default and created on-the-fly from the chat script if
  970.   it does not exist.
  972. /etc/sysconfig/network-scripts/ifup-post
  974.   Called when any network device EXCEPT a SLIP device comes
  975.   up.  Calls /etc/sysconfig/network-scripts/ifup-routes to
  976.   bring up static routes that depend on that device.  Calls
  977.   /etc/sysconfig/network-scripts/ifup-aliases to bring up
  978.   aliases for that device.  Sets the hostname if it is not
  979.   already set and a hostname can be found for the IP for that
  980.   device.  Sends SIGIO to any programs that have requested
  981.   notification of network events.
  983.   Could be extended to fix up nameservice configuration, call
  984.   arbitrary scripts, etc, as needed.
  986. /etc/sysconfig/network-scripts/ifup-routes
  988.   Set up static routes for a device.
  990. /etc/sysconfig/network-scripts/ifup-aliases
  992.   Bring up aliases for a device.
  994. /etc/sysconfig/network-scripts/route-<interface-name>
  996.   Contains lines that specify additional routes that should be added when the
  997.   associated interface is brought up.
  999.   The files are processed by the ifup-routes script and uses the /sbin/ipcalc
  1000.   utility for all network masks and numbers. Routes are specified using the
  1001.   syntax:
  1003.     ADDRESSn=<network>
  1004.     NETMASKn=<network/prefix mask>
  1005.     GATEWAYn=<next-hop router/gateway IP address>
  1007.   The "n" is expected to be consecutive positive integers starting from 0.
  1008.   For example:
  1010.     ADDRESS0=
  1011.     NETMASK0=
  1012.     GATEWAY0=
  1014.   adds a network route to the network via the gateway at
  1015. Since you must already have a route to the network of the
  1016.   gateway, there is no need to specify a device.
  1018.   Note: The ifup-routes script also supports an older syntax designed to be
  1019.   used directly as an argument to "/sbin/ip route add".
  1020.   If no "ADDRESSn" lines are found the following will still
  1021.   work:
  1023. dev ppp0
  1025.   adds a network route to the network through ppp0.
  1027. /etc/sysconfig/network-scripts/route6-<interface-name>
  1029.   Contains lines that are arguments to "/sbin/ip -6 route add"
  1030.   For example:
  1032.   site-local route for network fec0:0:0:2::/64
  1033.    via gateway fec0:0:0:1:0:0:0:20 (e.g. on eth0):
  1035.   fec0:0:0:2::/64 via fec0:0:0:1:0:0:0:20
  1037.   additional prefix configured to be on-link on eth0:
  1039.   3ffe:fffe:1:2::/64 dev eth0
  1041.   6to4 route for network 3ffe:ffff:1::/48, either:
  1043.   3ffe:ffff:1::/48
  1044.   3ffe:ffff:1::/48 via ::
  1046.   Note the special case of 6to4 interface: 'via [relay]' is
  1047.   automatically added if explicit 'via' wasn't specified.
  1049. /etc/sysconfig/network-scripts/rule-<interface-name>
  1050. /etc/sysconfig/network-scripts/rule6-<interface-name>
  1052.   Contains lines that specify additional routing rules that should be added
  1053.   when the associated interface is brought up.
  1055.   Each non-comment line is used directly as an argument to "/sbin/ip rule add"
  1056.   or "/sbin/ip -6 rule add" for rule6 files.

Raw Paste

Login or Register to edit or fork this paste. It's free.