API tools faq
paste
Guest User

Untitled

a guest
Mar 26th, 2023
35
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 30.94 KB | None | 0 0
raw download clone embed print report
  1. [fstab.swap]
  2. device = {type = "string", required = "no", default = "-", description = "The swap partition's device node (e.g. sda1)"}
  3. enabled = {type = "boolean", required = "no", default = 1, description = "Enables/disables using UCI section"}
  4. label = {type = "string", required = "no", default = "-", description = "The swap partition's label (e.g. mkswap -L label /dev/sdb2)"}
  5. priority = {type = "integer", required = "no", default = -1, description = "The swap partition's priority"}
  6. uuid = {type = "string", required = "no", default = "-", description = "The swap partition's UUID"}
  7. [fstab.mount]
  8. autofs = {type = "boolean", required = "no", default = 0, description = "Should autofs (on-demand mounting) be used"}
  9. device = {type = "string", required = "-", default = "", description = "The data partition's device node (e.g. sda1)"}
  10. enabled = {type = "boolean", required = "no", default = 1, description = "Enables/disables using UCI section"}
  11. label = {type = "string", required = "-", default = "", description = "The data partition's label"}
  12. options = {type = "string", required = "no", default = "-", description = "The data partition's mount options, e.g. noexec,noatime,nodiratime."}
  13. target = {type = "string", required = "no", default = "-", description = "The data partition's mount point. Some values have special meanings, see the Extroot section below."}
  14. uuid = {type = "string", required = "yes (one)", default = "-", description = "The data partition's file system UUID (not GPT partition UUIDs, aka PARTUUID)"}
  15. [dhcp.dnsmasq]
  16. add_local_domain = {type = "boolean", required = "no", default = 1, description = "Add the local domain as search directive in resolv.conf."}
  17. add_local_fqdn = {type = "integer", required = "no", default = 1, description = "Add A, AAAA, and PTR records for this router only on DHCP served LAN.\n0: Disable.\n1: Hostname on Primary Address.\n2: Hostname on All Addresses.\n3: FDQN on All Addresses.\n4: iface.host.domain on All Addresses."}
  18. add_local_hostname = {type = "boolean", required = "no", default = 1, description = "Add A, AAAA, and PTR records for this router only on DHCP served LAN."}
  19. add_wan_fqdn = {type = "integer", required = "no", default = 0, description = "Labels WAN interfaces like add_local_fqdn instead of your ISP assigned default which may be obscure. WAN is inferred from config dhcp sections with option ignore 1 set, so they do not need to be named WAN"}
  20. addmac = {type = "[0,1,base64,text]", required = "no", default = "0", description = "Add the MAC address of the requester to DNS queries which are forwarded upstream; this may be used to do DNS filtering by the upstream server. The MAC address can only be added if the requester is on the same subnet as the dnsmasq server. Note that the mechanism used to achieve this (an EDNS0 option) is not yet standardised, so this should be considered experimental. Also note that exposing MAC addresses in this way may have security and privacy implications."}
  21. addnhosts = {type = "list of file paths", required = "no", default = "(none)", description = "Additional host files to read for serving DNS responses. Syntax in each file is the same as /etc/hosts"}
  22. address = {type = "list of strings", required = "no", default = "(none)", description = "List of IP addresses for queried domains. See the dnsmasq man page for syntax details."}
  23. allservers = {type = "boolean", required = "no", default = "0", description = "By default, when dnsmasq has more than one upstream server available, it will send queries to just one server. Setting this parameter forces dnsmasq to send all queries to all available servers. The reply from the server which answers first will be returned to the original requester."}
  24. authoritative = {type = "boolean", required = "no", default = 1, description = "Force dnsmasq into authoritative mode. This speeds up DHCP leasing. Used if this is the only server on the network"}
  25. bogusnxdomain = {type = "list of IP addresses", required = "no", default = "(none)", description = "IP addresses to convert into NXDOMAIN responses (to counteract “helpful” upstream DNS servers that never return NXDOMAIN)."}
  26. boguspriv = {type = "boolean", required = "no", default = 1, description = "Reject reverse lookups to private IP ranges where no corresponding entry exists in /etc/hosts"}
  27. cachelocal = {type = "boolean", required = "no", default = 1, description = "When set to 0, use each network interface's dns address in the local /etc/resolv.conf. Normally, only the loopback address is used, and all queries go through dnsmasq."}
  28. cachesize = {type = "integer", required = "no", default = 150, description = "Size of dnsmasq query cache."}
  29. confdir = {type = "directory path", required = "no", default = "/tmp/dnsmasq.d", description = "Directory with additional configuration files."}
  30. dbus = {type = "boolean", required = "no", default = 0, description = "Enable DBus messaging for dnsmasq.\n:!: Standard builds of dnsmasq on OpenWrt do not include DBus support."}
  31. dhcp_boot = {type = "string", required = "no", default = "(none)", description = "Specifies BOOTP options, in most cases just the file name. You can also use: “file name, tftp server name, tftp ip address”"}
  32. dhcphostsfile = {type = "file path", required = "no", default = "(none)", description = "Specify an external file with per host DHCP options"}
  33. dhcpleasemax = {type = "integer", required = "no", default = 150, description = "Maximum number of DHCP leases"}
  34. dhcpscript = {type = "string", required = "no", default = "(none)", description = "Run a custom script upon DHCP lease add / renew / remove actions."}
  35. dnsforwardmax = {type = "integer", required = "no", default = 150, description = "Maximum number of concurrent connections"}
  36. dnssec = {type = "boolean", required = "no", default = 0, description = "Validate DNS replies and cache DNSSEC data.\n:!: Requires the dnsmasq-full package."}
  37. dnsseccheckunsigned = {type = "boolean", required = "no", default = 0, description = "Check the zones of unsigned replies to ensure that unsigned replies are allowed in those zones. This protects against an attacker forging unsigned replies for signed DNS zones, but is slower and requires that the nameservers upstream of dnsmasq are DNSSEC-capable.\n:!: Requires the dnsmasq-full package.\n:!: Caution: If you use this option on a device that doesn't have a hardware clock, dns resolution may break after a reboot of the device due to an incorrect system time."}
  38. domain = {type = "domain name", required = "no", default = "(none)", description = "DNS domain handed out to DHCP clients"}
  39. domainneeded = {type = "boolean", required = "no", default = 1, description = "Tells dnsmasq never to forward queries for plain names, without dots or domain parts, to upstream nameservers. If the name is not known from /etc/hosts or DHCP then a “not found” answer is returned"}
  40. ednspacket_max = {type = "integer", required = "no", default = 1232, description = "Specify the largest EDNS.0 UDP packet which is supported by the DNS forwarder"}
  41. enable_tftp = {type = "boolean", required = "no", default = 0, description = "Enable the builtin TFTP server"}
  42. expandhosts = {type = "boolean", required = "no", default = 1, description = "Add the local domain part to names found in /etc/hosts"}
  43. filterwin2k = {type = "boolean", required = "no", default = 0, description = "Do not forward requests that cannot be answered by public name servers.\nMake sure it is disabled if you need to resolve SRV records or use SIP phones."}
  44. fqdn = {type = "boolean", required = "no", default = 0, description = "Do not resolve unqualifed local hostnames. Needs domain to be set."}
  45. interface = {type = "list of interface names", required = "no", default = "(all interfaces)", description = "List of interfaces to listen on. If unspecified, dnsmasq will listen to all interfaces except those listed in notinterface. Note that dnsmasq listens on loopback by default."}
  46. ipset = {type = "list of strings", required = "no", default = "(none)", description = "The syntax is: list ipset '/example.com/example.org/example_ipv4,example_ipv6'\n:!: Requires the dnsmasq-full package."}
  47. leasefile = {type = "file path", required = "no", default = "(none)", description = "Store DHCP leases in this file"}
  48. local = {type = "string", required = "no", default = "(none)", description = "Look up DNS entries for this domain from /etc/hosts. This follows the same syntax as server entries, see the man page."}
  49. local_ttl = {type = "integer", required = "no", default = 0, description = "Default TTL for locally authoritative answers."}
  50. localise_queries = {type = "boolean", required = "no", default = 1, description = "Choose IP address to match the incoming interface if multiple addresses are assigned to a host name in /etc/hosts. Initially disabled, but still enabled in the config by default.\n:!: Note well the spelling of this option."}
  51. localservice = {type = "boolean", required = "no", default = 1, description = "Accept DNS queries only from hosts whose address is on a local subnet, ie a subnet for which an interface exists on the server."}
  52. localuse = {type = "boolean", required = "no", default = 1, description = "Use dnsmasq as a local system resolver. Initially disabled, but still enabled via the default noresolv and resolvfile options."}
  53. logdhcp = {type = "boolean", required = "no", default = 0, description = "Enables extra DHCP logging; logs all the options sent to the DHCP clients and the tags used to determine them."}
  54. logfacility = {type = "string", required = "no", default = "DAEMON", description = "Set the facility to which dnsmasq will send syslog entries. See the dnsmasq man page for available facilities."}
  55. logqueries = {type = "boolean", required = "no", default = 0, description = "Log the results of DNS queries, dump cache on SIGUSR1, include requesting IP."}
  56. max_cache_ttl = {type = "integer", required = "no", default = "(none)", description = "The maximum time-to-live for any DNS answer, even if higher."}
  57. max_ttl = {type = "integer", required = "no", default = "(none)", description = "Limit the TTL in the DNS answer to this value."}
  58. maxport = {type = "integer", required = "no", default = "0", description = "Dnsmasq picks random ports as source for outbound queries. When this option is given, the ports used will always be smaller than or equal to the specified maxport value (max valid value 65535). Useful for systems behind firewalls."}
  59. min_cache_ttl = {type = "integer", required = "no", default = "(none)", description = "Set the minimum time-to-live of DNS answers, even when the TTL in the answer is lower."}
  60. minport = {type = "integer", required = "no", default = "0", description = "Dnsmasq picks random ports as source for outbound queries. When this option is given, the ports used will always be larger than or equal to the specified minport value (min valid value 1024). Useful for systems behind firewalls."}
  61. nodaemon = {type = "boolean", required = "no", default = 0, description = "Don't daemonize the dnsmasq process."}
  62. nohosts = {type = "boolean", required = "no", default = 0, description = "Don't read DNS names from /etc/hosts."}
  63. nonegcache = {type = "boolean", required = "no", default = 0, description = "Disable caching of negative “no such domain” responses."}
  64. nonwildcard = {type = "boolean", required = "no", default = 1, description = "Bind only configured interface addresses, instead of the wildcard address."}
  65. noping = {type = "boolean", required = "no", default = "0", description = "By default dnsmasq checks if an IPv4 address is in use before allocating it to a host by sending ICMP echo request (aka ping) to the address in question. This parameter allows to disable this check."}
  66. noresolv = {type = "boolean", required = "no", default = 0, description = "Don't read upstream servers from /etc/resolv.conf which is linked to resolvfile by default."}
  67. notinterface = {type = "list of interface names", required = "no", default = "(none)", description = "Interfaces dnsmasq should not listen on."}
  68. port = {type = "port number", required = "no", default = 53, description = "Listening port for DNS queries, disables DNS server functionality if set to 0."}
  69. queryport = {type = "integer", required = "no", default = "(none)", description = "Use a fixed port for outbound DNS queries."}
  70. quietdhcp = {type = "boolean", required = "no", default = "0", description = "Suppress logging of the routine operation of DHCP. Errors and problems will still be logged"}
  71. rapidcommit = {type = "boolean", required = "no", default = 0, description = "Enable DHCPv4 Rapid Commit (fast address assignment) RFC 4039."}
  72. readethers = {type = "boolean", required = "no", default = 0, description = "Read static lease entries from /etc/ethers, re-read on SIGHUP."}
  73. rebind_domain = {type = "list of domain names", required = "no", default = "(none)", description = "List of domains to allow RFC1918 responses for, only takes effect if rebind protection is enabled. The correct syntax is: list rebind_domain '/example.com/'."}
  74. rebind_localhost = {type = "boolean", required = "no", default = 1, description = "Allows upstream 127.0.0.0/8 responses, required for DNS based blacklist services, only takes effect if rebind protection is enabled."}
  75. rebind_protection = {type = "boolean", required = "no", default = 1, description = "Enables DNS rebind attack protection by discarding upstream RFC1918 responses."}
  76. resolvfile = {type = "file path", required = "no", default = "/tmp/resolv.conf.d/resolv.conf.auto", description = "Specifies an alternative resolv file."}
  77. rev_server = {type = "list of strings", required = "no", default = "(none)", description = "List of network range with a DNS server to forward reverse DNS requests to. See the dnsmasq man page for syntax
  78. sequential_ip = {type = "boolean", required = "no", default = "0", description = "Dnsmasq is designed to choose IP addresses for DHCP clients using a hash of the client's MAC address. This normally allows a client's address to remain stable long-term, even if the client sometimes allows its DHCP lease to expire. In this default mode IP addresses are distributed pseudo-randomly over the entire available address range. There are sometimes circumstances (typically server deployment) where it is more convenient to have IP addresses allocated sequentially, starting from the lowest available address, and setting this parameter enables this mode. Note that in the sequential mode, clients which allow a lease to expire are much more likely to move IP address; for this reason it should not be generally used."}
  79. server = {type = "list of strings", required = "no", default = "(none)", description = "List of DNS servers to forward requests to. See the dnsmasq man page for syntax details."}
  80. serverlist = {type = "file path", required = "no", default = "/etc/dnsmasq.servers", description = "Specify upstream servers directly. If one or more optional domains are given, that server is used only for those domains and they are queried only using the specified server. Syntax is server=/*.mydomain.tld/192.168.100.1 or see the dnsmasq man page for details."}
  81. strictorder = {type = "boolean", required = "no", default = "0", description = "Obey order of DNS servers in /etc/resolv.conf"}
  82. tftp_root = {type = "directory path", required = "no", default = "(none)", description = "Specifies the TFTP root directory"}
  83. [dhcp.dhcp]
  84. dhcp_option = {type = "list of strings", required = "no", default = "(none)", description = "The ID dhcp_option here must be with written with an underscore. OpenWrt will translate this to --dhcp-option, with a hyphen, as ultimately used by dnsmasq. Multiple option values can be given for this network-id, with a a space between them and the total string between “”. E.g. '26,1470' or 'option:mtu, 1470' that can assign an MTU per DHCP. Your client must accept MTU by DHCP for this to work. Or “3,192.168.1.1 6,192.168.1.1” to give out gateway and DNS server addresses. A list of options can be found here (note that dnsmasq does not support all options listed there). A list of the symbolic option names that dnsmasq recognises can be found by running dnsmasq --help dhcp."}
  85. dhcp_option_force = {type = "list of strings", required = "no", default = "(none)", description = "Exactly the same as dhcp_option (note the underscores), but it will be translated to --dhcp-option-force, meaning that the DHCP option will be sent regardless on whether the client requested it."}
  86. dhcpv4 = {type = "string", required = "no", default = "(none)", description = "Specifies whether DHCPv4 server should be enabled (server) or disabled (disabled)"}
  87. dhcpv6 = {type = "string", required = "no", default = "(none)", description = "Specifies whether DHCPv6 server should be enabled (server), relayed (relay) or disabled (disabled)"}
  88. dns = {type = "list", required = "no", default = "<local address>", description = "DNS servers to announce on the network. Only IPv6 addresses are accepted. To configure IPv4 DNS servers, use dhcp_option."}
  89. dns_service = {type = "boolean", required = "no", default = "1", description = "Announce the IPv6 address of interface as DNS service if the list of dns option is empty. :!: dns_service available since 21.02"}
  90. dynamicdhcp = {type = "boolean", required = "no", default = 1, description = "Dynamically allocate client addresses, if set to 0 only clients present in the ethers files are served"}
  91. force = {type = "boolean", required = "no", default = 0, description = "Forces DHCP serving on the specified interface even if another DHCP server is detected on the same network segment"}
  92. ignore = {type = "boolean", required = "no", default = 0, description = "Specifies whether dnsmasq should ignore this pool if set to 1"}
  93. instance = {type = "dnsmasq instance", required = "no", default = "(none)", description = "Dnsmasq instance to which the dhcp section is bound; if not specified the section is valid for all dnsmasq instances."}
  94. interface = {type = "logical interface name", required = "yes", default = "(none)", description = "Specifies the interface associated with this DHCP address pool; must be one of the interfaces defined in /etc/config/network."}
  95. leasetime = {type = "string", required = "yes", default = "12h", description = "Specifies the lease time of addresses handed out to clients, for example 12h or 30m"}
  96. limit = {type = "integer", required = "yes", default = "150", description = "Specifies the size of the address pool (e.g. with start=100, limit=150, maximum address will be .249)"}
  97. master = {type = "boolean", required = "no", default = "0", description = "Specifies whether DHCPv6, RA and NDP in relay mode is a master interface or not."}
  98. ndp = {type = "string", required = "no", default = "(none)", description = "Specifies whether NDP should be relayed (relay) or disabled (disabled)"}
  99. ndproxy_routing = {type = "bool", required = "no", default = "1", description = "Learn routes from NDP"}
  100. ndproxy_slave = {type = "bool", required = "no", default = "0", description = "Ignore neighbor messages on slave enabled (1) interfaces"}
  101. networkid = {type = "string", required = "no", default = "(value of interface)", description = "The dhcp functionality defined in the dhcp section is limited to the interface indicated here through its network-id. In case omitted the system tries to know the network-id via the interface setting in this dhcp section, through consultation of /etc/config/network. Some IDs get assigned dynamically, are not provided by network, but still can be set here."}
  102. ra = {type = "string", required = "no", default = "(none)", description = "Specifies whether Router Advertisements should be enabled (server), relayed (relay) or disabled (disabled)"}
  103. ra_default = {type = "integer", required = "no", default = "0", description = "Default router lifetime in the RA message will be set if default route is present and a global IPv6 address (0) or if default route is present but no global IPv6 address (1) or neither of both conditions (2)"}
  104. ra_dns = {type = "boolean", required = "no", default = "1", description = "Announce DNS configuration in RA messages (RFC8106)"}
  105. ra_flags = {type = "list of strings", required = "no", default = "other-config", description = "List of RA flags to be advertised in RA messages: managed-config - get address and other information from DHCPv6 server. If this flag is set, other-config flag is redundant. other-config - get other configuration from DHCPv6 server (such as DNS servers). See here for details. home-agent - see here for details. none. OpenWrt since version 21.02 configures managed-config and other-config by default."}
  106. ra_hoplimit = {type = "integer", required = "no", default = "0", description = "Advertised current hop limit (0-255)"}
  107. ra_lifetime = {type = "integer", required = "no", default = "1800", description = "Advertised router lifetime (in seconds)"}
  108. ra_management = {type = "integer", required = "no", default = "1", description = ":!: This option is deprecated. Use ra_flags and ra_slaac options instead. RA management mode : no M-Flag but A-Flag (0), both M and A flags (1), M flag but not A flag (2)"}
  109. ra_maxinterval = {type = "integer", required = "no", default = "600", description = "Maximum time interval between RAs (in seconds)"}
  110. ra_mininterval = {type = "integer", required = "no", default = "200", description = "Minimum time interval between RAs (in seconds)"}
  111. ra_mtu = {type = "integer", required = "no", default = "(none)", description = "Maximum advertised MTU"}
  112. ra_offlink = {type = "bool", required = "no", default = "0", description = "Announce prefixes as offlink (1) in RAs"}
  113. ra_preference = {type = "string", required = "no", default = "medium", description = "Announce routes with either high (high), medium (medium) or low (low) priority in RAs"}
  114. ra_reachabletime = {type = "integer", required = "no", default = "0", description = "Advertised reachable time (in milliseconds) (0-3600000)"}
  115. ra_retranstime = {type = "integer", required = "no", default = "0", description = "Advertised NS retransmission time (in milliseconds) (0-60000)"}
  116. ra_slaac = {type = "boolean", required = "no", default = "1", description = "Announce SLAAC for a prefix (that is, set the A flag in RA messages)."}
  117. ra_useleasetime = {type = "bool", required = "no", default = "0", description = "Limit the preferred and valid lifetimes of the prefixes in the RA messages to the configured DHCP leasetime"}
  118. start = {type = "integer", required = "yes", default = "100", description = "Specifies the offset from the network address of the underlying interface to calculate the minimum address that may be leased to clients. It may be greater than 255 to span subnets."}
  119. tag = {type = "list of tag names", required = "no", default = "(none)", description = "List of tags that dnsmasq needs to match to use with --dhcp-range."}
  120. [dhcp.host]
  121. broadcast = {type = "boolean", required = "no", default = "0", description = "Force broadcast DHCP response."}
  122. dns = {type = "boolean", required = "no", default = "0", description = "Add static forward and reverse DNS entries for this host."}
  123. duid = {type = "string", required = "no", default = "(none)", description = "The DHCPv6-DUID of this host."}
  124. hostid = {type = "string", required = "no", default = "(none)", description = "The IPv6 interface identifier (address suffix) as hexadecimal number (max. 8 chars)."}
  125. ip = {type = "string", required = "no", default = "(none)", description = "The IP address to be used for this host, or ignore to ignore any DHCP request from this host."}
  126. leasetime = {type = "string", required = "no", default = "(none)", description = "Host-specific lease time, e.g. 2m, 3h, 5d. Note: introduced by r48801 in trunk."}
  127. mac = {type = "string", required = "no", default = "(none)", description = "The hardware address(es) of this host, separated by spaces."}
  128. match_tag = {type = "list of strings", required = "no", default = "(none)", description = "If specified the section will apply only to requests having all the tags; incoming interface name is always auto-assigned, other tags can be added by vendorclass/userclass/etc. sections."}
  129. name = {type = "string", required = "no", default = "(none)", description = "Optional hostname to assign."}
  130. tag = {type = "string", required = "no", default = "(none)", description = "Set the given tag for matching hosts."}
  131. instance = {type = "dnsmasq instance", required = "no", default = "(none)", description = "Dnsmasq instance to which the host section is bound; if not specified the section is valid for all dnsmasq instances."}
  132. [dhcp.boot]
  133. dhcp_option: {type = "list", required = "no", default = "(none)", description = "Additional options to be added for this network-id. If you specify this, you also need to specify the network-id."}
  134. filename: {type = "string", required = "yes", default = "(none)", description = "The filename the host should request from the boot server."}
  135. force: {type = "boolean", required = "no", default = "(none)", description = "dhcp_option will always be sent, even if the client does not ask for it in the parameter request list. This is sometimes needed, for example when sending options to PXELinux."}
  136. instance: {type = "dnsmasq instance", required = "no", default = "(none)", description = "Dnsmasq instance to which the boot section is bound. If not specified the section is valid for all dnsmasq instances."}
  137. networkid: {type = "string", required = "no", default = "(none)", description = "The network-id these boot options should apply to. Applies to all clients if left unspecified."}
  138. serveraddress: {type = "string", required = "yes", default = "(none)", description = "The IP address of the boot server."}
  139. servername: {type = "string", required = "yes", default = "(none)", description = "The hostname of the boot server."}
  140. [dhcp.tag]
  141. <classifier> = {type = "string", required = "yes", default = "(none)", description = "Use section type as option name and classifying filter as option value. mac Hardware address of the client. tag An alphanumeric label which marks the network. vendorclass String sent by the client representing the vendor of the client. dnsmasq performs a substring match on the vendor class string using this value. userclass String sent by the client representing the user of the client. dnsmasq performs a substring match on the user class string using this value. circuitid Matches the circuit ID as sent by the relay agent, as defined in RFC3046. remoteid Matches the remote ID as sent by the relay agent, as defined in RFC3046. subscrid Matches the subscriber ID as sent by the relay agent, as defined in RFC3993. "}
  142. networkid = {type = "string", required = "yes", default = "(none)", description = "The tag that matching clients will get assigned."}
  143. dhcp_option = {type = "list of strings", required = "no", default = "(none)", description = "Additional options to be added for this network-id."}
  144. force = {type = "bool", required = "no", default = "false", description = "Whether to send the additional options from dhcp_option list to the clients that didn't request them."}
  145. [dhcp.ipset]
  146. name = {type = "string", required = "yes", default = "(none)", description = "Name of the ipset."}
  147. family = {type = "string", required = "no", default = "inet", description = "IP protocol family (inet or inet6)."}
  148. option = {type = "string", required = "no", default = "(none)", description = "Additional iptables/ipset command line options."}
  149. storage = {type = "string", required = "no", default = "hash", description = "Ipset storage method (hash, bitmap or list)."}
  150. match_set = {type = "string", required = "no", default = "(none)", description = "Match incoming packets against this ipset."}
  151. domain = {type = "list of strings", required = "no", default = "(none)", description = "Domain names to add to the ipset."}
  152. ipaddr = {type = "list of strings", required = "no", default = "(none)", description = "IP addresses to add to the ipset."}
  153. [dhcp.relay]
  154. id = {type = "string", required = "yes", default = "none", description = "A unique name for the section, which must be different to every other section's name."}
  155. interface = {type = "string", required = "yes", default = "none", description = "OpenWRT interface name (NOT network device name) where the destination DHCP server is located."}
  156. local_addr = {type = "string", required = "yes", default = "none", description = "This OpenWRT device's own IP address on the far subnet, where it will listen for DHCP requests."}
  157. server_addr = {type = "string", required = "yes", default = "none", description = "IP address of the upstream DHCP server accessible through the network given by the interface option. DHCP responses picked up on the far subnet will be relayed to this server. This address must be routed correctly (i.e. you can ping it successfully from the OpenWRT command line)."}
  158. [dropbear.dropbear]
  159. enable = {type = "boolean", required = "no", default = "1", description = "Set to 0 to disable starting dropbear at system boot."}
  160. verbose = {type = "boolean", required = "no", default = "0", description = "Set to 1 to enable verbose output by the start script."}
  161. BannerFile = {type = "string", required = "no", default = "(none)", description = "Name of a file to be printed before the user has authenticated successfully."}
  162. PasswordAuth = {type = "boolean", required = "no", default = "1", description = "Set to 0 to disable authenticating with passwords."}
  163. Port = {type = "integer", required = "no", default = "22", description = "Port number to listen on."}
  164. RootPasswordAuth = {type = "boolean", required = "no", default = "1", description = "Set to 0 to disable authenticating as root with passwords."}
  165. RootLogin = {type = "boolean", required = "no", default = "1", description = "Set to 0 to disable SSH logins as root."}
  166. GatewayPorts = {type = "boolean", required = "no", default = "0", description = "Set to 1 to allow remote hosts to connect to forwarded ports."}
  167. Interface = {type = "string", required = "no", default = "(none)", description = "Write an interface name, for example lan. With this setting you can limit connections to clients that can reach the IP of this interface. So for example the LAN IP of the interface can only be seen from clients in the LAN network, but not from the WAN in the default firewall configuration. It's used in dropbear's -p option that does the following: “Listen on specified address and TCP port. If just a port is given listen on all addresses. up to 10 can be specified (default 22 if none specified). ”"}
  168. keyfile = {type = "file", required = "no", default = "(none)", description = "Path to host key file."}
  169. rsakeyfile = {type = "file", required = "no", default = "(none)", description = "Path to RSA host key file. Deprecated. See keyfile."}
  170. SSHKeepAlive = {type = "integer", required = "no", default = "300", description = "Keep Alive"}
  171. IdleTimeout = {type = "integer", required = "no", default = "0", description = "Idle Timeout"}
  172. mdns = {type = "integer", required = "no", default = "1", description = "Whether to announce the service via mDNS"}
  173. MaxAuthTries = {type = "integer", required = "no", default = "3", description = "Amount of times you can retry writing the password when logging in before the SSH server closes the connection from this commit"}
  174. RecvWindowSize = {type = "integer", required = "no", default = "24576", description = "Specify the per-channel receive window buffer size. Increasing this may improve network performance at the expense of memory use."}
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!