-
Notifications
You must be signed in to change notification settings - Fork 2
/
SMP-HARDENEDBSD
192 lines (165 loc) · 5.87 KB
/
SMP-HARDENEDBSD
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
include HARDENEDBSD
options KDB
nooptions KDB_TRACE
options DDB # Support DDB.
nooptions GDB # Support remote GDB.
nooptions DEADLKRES
nooptions WITNESS
nooptions WITNESS_SKIPSPIN
nooptions MALLOC_DEBUG_MAXZONES
nomakeoptions DEBUG
#makeoptions DEBUG=-g # Build kernel with gdb(1) debug symbols
ident SMP
nooptions FLOWTABLE
# IPSEC filtering interface
device enc
options GEOM_MIRROR
options GEOM_UZIP
options GEOM_LABEL
nooption GEOM_MBR
options GEOM_PART_MBR
options GEOM_PART_BSD
options GEOM_ELI
options GEOM_BDE
# Wireless
device wlan
device wlan_wep
device wlan_ccmp
device wlan_tkip
device wlan_xauth
device wlan_acl
device wlan_amrr
device iwi # Intel PRO/Wireless 2200BG/2225BG/2915ABG IEEE 802.11 driver
device ipw # Intel PRO/Wireless 2100 IEEE 802.11 driver
device ipwfw # Firmware for Intel PRO/Wireless 2100 IEEE 802.11 driver
device wpi # Intel 3945ABG Wireless LAN IEEE 802.11 driver
device wpifw # Firmware for Intel 3945ABG Wireless LAN IEEE 802.11 driver
device iwn # Intel Wireless WiFi Link 4965AGN IEEE 802.11n driver
device iwnfw # Firmware for Intel Wireless WiFi Link 4965AGN IEEE 802.11n driver
device alc # Atheros IEEE 802.11 wireless network driver
device ath # Atheros IEEE 802.11 wireless network driver
device ath_hal
options AH_SUPPORT_AR5416
device ath_rate_sample
device uath # Atheros USB IEEE 802.11a/b/g wireless network device
device an # Aironet 4500/4800 802.11 wireless NICs.
device ral # Ralink Technology RT2500 wireless NICs.
device ralfw # Firmware for Ralink Technology RT2500 wireless NICs.
device ural # Ralink Technology RT2500USB IEEE 802.11 driver
device urtw # Realtek RTL8187B/L USB IEEE 802.11b/g wireless network device
device wi # WaveLAN/Intersil/Symbol 802.11 wireless NICs.
device rum # Ralink Technology USB IEEE 802.11a/b/g wireless network device
device mwl # Marvell 88W8363 IEEE 802.11n wireless network driver
device mwlfw # Firmware for Marvell 88W8363 IEEE 802.11n wireless network driver
device zyd # ZyDAS ZD1211/ZD1211B USB IEEE 802.11b/g wireless network device
device malo # Marvell Libertas IEEE 802.11b/g wireless network driver
device upgt # Conexant/Intersil PrismGT SoftMAC USB IEEE 802.11b/g wireless
device bwi # Broadcom BCM43xx IEEE 802.11b/g wireless network driver
# Only for 8.1+
device siba_bwn # Broadcom BCM43xx IEEE 802.11b/g wireless network driver
device bwn # Broadcom BCM43xx IEEE 802.11b/g wireless network driver
device run # Ralink RT2700U/RT2800U/RT3000U USB 802.11agn
options IPFIREWALL_DEFAULT_TO_ACCEPT
options IPFIREWALL_VERBOSE
options IPFIREWALL_VERBOSE_LIMIT
device bpf
device carp
device pf
device pflog
device pfsync
device vlan
device gre
options IPSTEALTH
options INCLUDE_CONFIG_FILE
options NETGRAPH #netgraph(4) system
options NETGRAPH_VLAN
options NETGRAPH_L2TP
options NETGRAPH_ASYNC
options NETGRAPH_BPF
options NETGRAPH_BRIDGE
options NETGRAPH_CISCO
options NETGRAPH_ECHO
options NETGRAPH_ETHER
options NETGRAPH_FRAME_RELAY
options NETGRAPH_HOLE
options NETGRAPH_IFACE
options NETGRAPH_EIFACE
options NETGRAPH_KSOCKET
options NETGRAPH_LMI
options NETGRAPH_MPPC_ENCRYPTION
options NETGRAPH_ONE2MANY
options NETGRAPH_PPP
options NETGRAPH_PPPOE
options NETGRAPH_PPTPGRE
options NETGRAPH_RFC1490
options NETGRAPH_SOCKET
options NETGRAPH_TEE
options NETGRAPH_TTY
options NETGRAPH_UI
options NETGRAPH_VJC
options NETGRAPH_TCPMSS
options NETGRAPH_PIPE
options NETGRAPH_CAR
options NETGRAPH_DEFLATE
options NETGRAPH_PRED1
# 3G devices
device ubsa
device ufoma
#device umsm
device ucom
device uplcom
device ubsa
device umct
device uvisor
device uark
device uftdi
device uvscom
device umodem
device ufoma
device u3g
device ucom
options IPSEC
options IPSEC_NAT_T
options TCP_SIGNATURE #include support for RFC 2385
options ALTQ
options ALTQ_CBQ
options ALTQ_RED
options ALTQ_RIO
options ALTQ_HFSC
options ALTQ_PRIQ
# Bridging
device if_bridge
# Squid related settings
options MSGMNB=8192 # max # of bytes in a queue
options MSGMNI=40 # number of message queue identifiers
options MSGSEG=512 # number of message segments per queue
options MSGSSZ=32 # size of a message segment
options MSGTQL=2048 # max messages in system
device tap
device hme
device speaker
options DEVICE_POLLING
device lagg
options MROUTING
# Additional cards
device bktr # bktr -- Brooktree Bt848/849/878/879 and Pinnacle PCTV video capture
device ale # ale -- Atheros AR8121/AR8113/AR8114 Gigabit/Fast Ethernet driver
device safe # safe -- SafeNet crypto accelerator
device et # et(4) for AGERE ET1310 fastE and gigE
device ed # NE[12]000, SMC Ultra, 3c503, DS8390 cards
device mxge # mxge - Myricom Myri10GE 10 Gigabit Ethernet adapter driver
device cxgb # cxgb -- Chelsio T3 10 Gigabit Ethernet adapter driver
device cxgbe # cxgbe -- Chelsio T4 and T5 based 40Gb, 10Gb, and 1Gb Ethernet adapter driver
device igb # igb -- Intel(R) PRO/1000 PCI Express Gigabit Ethernet adapter driver
device ae # ae -- Attansic/Atheros L2 FastEthernet controller driver
device cas # Sun Cassini/Cassini+ and National Semiconductor DP83065 Saturn
device crypto # core crypto support
device cryptodev # /dev/crypto for access to h/w
device hifn # Hifn 7951, 7781, etc.
device ubsec # Broadcom 5501, 5601, 58xx
device udav # Davicom DM9601 USB Ethernet driver
options IPSEC_NAT_T
device padlock
options PPS_SYNC
options TCP_SIGNATURE
options PAX_SEGVGUARD