Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- root@helio : ~
- [0] # cat /etc/rc.conf
- clear_tmp_enable="YES"
- # Set dumpdev to "AUTO" to enable crash dumps, "NO" to disable
- dumpdev="NO"
- zfs_enable="YES"
- ###############################################################################
- # Networking
- hostname="helio.home."
- ipv6_activate_all_interfaces="NO"
- ifconfig_igb0="SYNCDHCP"
- ifconfig_igb1="inet 172.18.19.254 netmask 255.255.255.0"
- # Jail ip addresses
- ifconfig_igb1_alias0="inet 172.18.19.253 netmask 255.255.255.255" # unifijail
- ifconfig_igb1_alias1="inet 172.18.19.252 netmask 255.255.255.255" # ircjail
- ifconfig_igb1_alias2="inet 172.18.19.251 netmask 255.255.255.255" # downloadjail
- ifconfig_igb1_alias3="inet 172.18.19.250 netmask 255.255.255.255" # nethack
- gateway_enable="YES"
- ipv6_gateway_enable="NO"
- ###############################################################################
- # Services
- microcode_update_enable="YES"
- syslogd_flags="-ss"
- sendmail_enable="NONE"
- powerd_enable="YES"
- powerd_flags="-a hiadaptive"
- ntpd_enable="YES"
- ntpd_sync_on_start="YES"
- sshd_enable="YES"
- sshd_flags="-4"
- smartd_enable="YES"
- ezjail_enable="YES"
- named_enable="YES"
- named_flags="-4"
- netatalk_enable="YES"
- samba_server_enable="YES"
- dhcpd_enable="YES" # dhcpd enabled?
- dhcpd_flags="-q" # command option(s)
- dhcpd_conf="/usr/local/etc/dhcpd.conf" # configuration file
- dhcpd_ifaces="igb1" # ethernet interface(s)
- dhcpd_withumask="022" # file creation mask
- dhcpd_chuser_enable="YES" # runs w/o privileges?
- dhcpd_withuser="dhcpd" # user name to run as
- dhcpd_withgroup="dhcpd" # group name to run as
- dhcpd_chroot_enable="YES" # runs chrooted?
- dhcpd_devfs_enable="YES" # use devfs if available?
- dhcpd_rootdir="/var/db/dhcpd" # directory to run in
- strongswan_enable="YES"
- mdnsresponderposix_enable="YES"
- mdnsresponderposix_flags="-f /usr/local/etc/mdnsresponderposix.conf"
- ###############################################################################
- # PacketFilter and security related related settings
- pf_enable="YES"
- pf_rules="/etc/pf.conf"
- pflog_enable="NO"
- pflog_logfile="/var/log/pflog"
- root@helio : ~
- [0] #
- root@helio : ~
- [0] # cat /etc/sysctl.conf
- # $FreeBSD: releng/12.0/sbin/sysctl/sysctl.conf 337624 2018-08-11 13:28:03Z brd $
- #
- # This file is read when going to multi-user and its contents piped thru
- # ``sysctl'' to adjust kernel values. ``man 5 sysctl.conf'' for details.
- #
- # Uncomment this to prevent users from seeing information about processes that
- # are being run under another UID.
- #security.bsd.see_other_uids=0
- security.bsd.see_other_uids=0
- security.bsd.see_other_gids=0
- security.bsd.unprivileged_read_msgbuf=0
- security.bsd.unprivileged_proc_debug=0
- kern.randompid=THIS I WILL KEEP PRIVATE ;-)
- security.bsd.stack_guard_page=1
- # ZFS
- vfs.zfs.min_auto_ashift="12" # 4K blocks
- vfs.zfs.scrub_delay=0
- vfs.zfs.top_maxinflight=128
- vfs.zfs.resilver_min_time_ms=5000
- vfs.zfs.resilver_delay=0
- #
- #net.inet.tcp.cc.algorithm=htcp
- #net.inet.tcp.cc.htcp.adaptive_backoff=1
- #net.inet.tcp.cc.htcp.rtt_scaling=1
- net.inet.tcp.abc_l_var=44
- kern.random.fortuna.minpoolsize=256
- net.inet.icmp.drop_redirect=1
- net.inet.ip.check_interface=1
- net.inet.ip.portrange.first=2500
- net.inet.ip.portrange.randomcps=999
- net.inet.ip.portrange.randomtime=1
- net.inet.ip.random_id=1
- net.inet.ip.redirect=0
- net.inet.sctp.blackhole=2
- net.inet.tcp.blackhole=2
- net.inet.udp.blackhole=1
- net.inet.tcp.drop_synfin=1
- net.inet.tcp.path_mtu_discovery=0
- root@helio : ~
- [0] #
- root@helio : ~
- [0] # cat /boot/loader.conf
- kern.geom.label.disk_ident.enable="0"
- kern.geom.label.gptid.enable="0"
- vfs.zfs.min_auto_ashift=12
- zfs_load="YES"
- vfs.zfs.arc_max="10737418240"
- autoboot_delay="1"
- #
- hw.igb.num_queues=4
- hw.igb.rxd="2048"
- hw.igb.txd="2048"
- pf_load="YES"
- #cc_htcp_load="YES"
- root@helio : ~
- [0] #
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
