| version 1.68.2.1, 2013/07/08 07:40:07 |
version 1.69, 2012/03/22 07:58:18 |
|
|
| .\" |
.\" |
| .\" @(#)sysctl.3 8.4 (Berkeley) 5/9/95 |
.\" @(#)sysctl.3 8.4 (Berkeley) 5/9/95 |
| .\" |
.\" |
| .Dd June 22, 2012 |
.Dd September 24, 2011 |
| .Dt SYSCTL 7 |
.Dt SYSCTL 7 |
| .Os |
.Os |
| .Sh NAME |
.Sh NAME |
| Line 1212 The currently defined protocols and name |
|
| Line 1212 The currently defined protocols and name |
|
| .It ip hostzerobroadcast integer yes |
.It ip hostzerobroadcast integer yes |
| .It ip lowportmin integer yes |
.It ip lowportmin integer yes |
| .It ip lowportmax integer yes |
.It ip lowportmax integer yes |
| .It ip6 maxdynroutes integer yes |
|
| .It ip6 maxifprefixes integer yes |
|
| .It ip6 maxifdefrouters integer yes |
|
| .It ip maxflows integer yes |
.It ip maxflows integer yes |
| .It ip maxfragpackets integer yes |
.It ip maxfragpackets integer yes |
| .It ip6 neighborgcthresh integer yes |
|
| .It ip mtudisc integer yes |
.It ip mtudisc integer yes |
| .It ip mtudisctimeout integer yes |
.It ip mtudisctimeout integer yes |
| .It ip random_id integer yes |
.It ip random_id integer yes |
| Line 1691 The lowest port number to use for TCP an |
|
| Line 1687 The lowest port number to use for TCP an |
|
| This cannot be set to less than 0 or greater than 1024, and must |
This cannot be set to less than 0 or greater than 1024, and must |
| be smaller than |
be smaller than |
| .Li ip6.lowportmax . |
.Li ip6.lowportmax . |
| .It Li ip6.maxdynroutes |
|
| Maximum number of routes created by redirect. |
|
| Set it to negative to disable. |
|
| The default value is 4096. |
|
| .It Li ip6.maxifprefixes |
|
| Maximum number of prefixes created by route advertisements per interface. |
|
| Set it to negative to disable. |
|
| The default value is 16. |
|
| .It Li ip6.maxifdefrouters 16 |
|
| Maximum number of default routers created by route advertisements per interface. |
|
| Set it to negative to disable. |
|
| The default value is 16. |
|
| .It Li ip6.maxflows |
.It Li ip6.maxflows |
| IPv6 Fast Forwarding is enabled by default. |
IPv6 Fast Forwarding is enabled by default. |
| If set to 0, IPv6 Fast Forwarding is disabled. |
If set to 0, IPv6 Fast Forwarding is disabled. |
| Line 1719 The maximum number of fragments the node |
|
| Line 1703 The maximum number of fragments the node |
|
| 0 means that the node will not accept any fragments. |
0 means that the node will not accept any fragments. |
| \-1 means that the node will accept as many fragments as it receives. |
\-1 means that the node will accept as many fragments as it receives. |
| The flag is provided basically for avoiding possible DoS attacks. |
The flag is provided basically for avoiding possible DoS attacks. |
| .It Li ip6.neighborgcthresh |
|
| Maximum number of entries in neighbor cache. |
|
| Set to negative to disable. |
|
| The default value is 2048. |
|
| .It Li ip6.redirect |
.It Li ip6.redirect |
| If set to 1, ICMPv6 redirects may be sent by the node. |
If set to 1, ICMPv6 redirects may be sent by the node. |
| This option is ignored unless the node is routing IP packets, |
This option is ignored unless the node is routing IP packets, |
| Line 2361 Specifies the default global policy for |
|
| Line 2341 Specifies the default global policy for |
|
| explicit enable/disable flag. |
explicit enable/disable flag. |
| .Pp |
.Pp |
| When non-zero, all programs will get PaX ASLR, except those exempted with |
When non-zero, all programs will get PaX ASLR, except those exempted with |
| .Xr paxctl 8 . |
.Xr paxctl 8 . |
| Otherwise, all programs will not get PaX ASLR, except those specifically |
Otherwise, all programs will not get PaX ASLR, except those specifically |
| marked as such with |
marked as such with |
| .Xr paxctl 8 . |
.Xr paxctl 8 . |
| Line 2384 explicit enable/disable flag. |
|
| Line 2364 explicit enable/disable flag. |
|
| .Pp |
.Pp |
| When non-zero, all programs will get the PaX MPROTECT restrictions, |
When non-zero, all programs will get the PaX MPROTECT restrictions, |
| except those exempted with |
except those exempted with |
| .Xr paxctl 8 . |
.Xr paxctl 8 . |
| Otherwise, all programs will not get the PaX MPROTECT restrictions, |
Otherwise, all programs will not get the PaX MPROTECT restrictions, |
| except those specifically marked as such with |
except those specifically marked as such with |
| .Xr paxctl 8 . |
.Xr paxctl 8 . |
| Line 2409 explicit enable/disable flag. |
|
| Line 2389 explicit enable/disable flag. |
|
| .Pp |
.Pp |
| When non-zero, all programs will get the PaX Segvguard, |
When non-zero, all programs will get the PaX Segvguard, |
| except those exempted with |
except those exempted with |
| .Xr paxctl 8 . |
.Xr paxctl 8 . |
| Otherwise, no program will get the PaX Segvguard restrictions, |
Otherwise, no program will get the PaX Segvguard restrictions, |
| except those specifically marked as such with |
except those specifically marked as such with |
| .Xr paxctl 8 . |
.Xr paxctl 8 . |
![[BACK]](/icons/back.gif){kind=icon}
Return to sysctl.7 CVS log ![[TXT]](/icons/text.gif){kind=icon}
![[DIR]](/icons/dir.gif){kind=icon}
Up to [cvs.NetBSD.org] / src / share / man / man7