Changeset View
Changeset View
Standalone View
Standalone View
usr.sbin/rpc.tlsservd/rpc.tlsservd.8
Show All 20 Lines | |||||
.\" HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT | .\" HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT | ||||
.\" LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY | .\" LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY | ||||
.\" OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF | .\" OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF | ||||
.\" SUCH DAMAGE. | .\" SUCH DAMAGE. | ||||
.\" | .\" | ||||
.\" $FreeBSD$ | .\" $FreeBSD$ | ||||
.\" | .\" | ||||
.\" Modified from gssd.8 for rpc.tlsservd.8 by Rick Macklem. | .\" Modified from gssd.8 for rpc.tlsservd.8 by Rick Macklem. | ||||
.Dd September 23, 2022 | .Dd November 10, 2022 | ||||
.Dt RPC.TLSSERVD 8 | .Dt RPC.TLSSERVD 8 | ||||
.Os | .Os | ||||
.Sh NAME | .Sh NAME | ||||
.Nm rpc.tlsservd | .Nm rpc.tlsservd | ||||
.Nd "Sun RPC over TLS Server Daemon" | .Nd "Sun RPC over TLS Server Daemon" | ||||
.Sh SYNOPSIS | .Sh SYNOPSIS | ||||
.Nm | .Nm | ||||
.Op Fl 2 | .Op Fl 2 | ||||
.Op Fl C Ar available_ciphers | .Op Fl C Ar available_ciphers | ||||
.Op Fl D Ar certdir | .Op Fl D Ar certdir | ||||
.Op Fl d | .Op Fl d | ||||
.Op Fl h | .Op Fl h | ||||
.Op Fl l Ar CAfile | .Op Fl l Ar CAfile | ||||
.Op Fl m | .Op Fl m | ||||
.Op Fl N Ar num_servers | |||||
.Op Fl n Ar domain | .Op Fl n Ar domain | ||||
.Op Fl p Ar CApath | .Op Fl p Ar CApath | ||||
.Op Fl r Ar CRLfile | .Op Fl r Ar CRLfile | ||||
.Op Fl u | .Op Fl u | ||||
.Op Fl v | .Op Fl v | ||||
.Op Fl W | .Op Fl W | ||||
.Op Fl w | .Op Fl w | ||||
.Sh DESCRIPTION | .Sh DESCRIPTION | ||||
▲ Show 20 Lines • Show All 180 Lines • ▼ Show 20 Lines | |||||
option | option | ||||
.Fl tlscert | .Fl tlscert | ||||
or | or | ||||
.Fl tlscertuser | .Fl tlscertuser | ||||
may be used to require a client to provide a certificate | may be used to require a client to provide a certificate | ||||
that verifies. | that verifies. | ||||
See | See | ||||
.Xr exports 5 . | .Xr exports 5 . | ||||
.It Fl N Ar num_servers , Fl Fl numdaemons= Ns Ar num_servers | |||||
For a server with a large number of NFS-over-TLS client mounts, | |||||
this daemon might get overloaded after a reboot, when many | |||||
clients attempt to do a TLS handshake at the same time. | |||||
This option may be used to specify that | |||||
.Dq num_servers | |||||
daemons are to be run instead of a single daemon. | |||||
When this is done, the TLS handshakes are spread across the | |||||
.Dq num_servers | |||||
daemons in a round robin fashion to spread out the load. | |||||
karels: Nit: the comma after "fashion" is not needed. Can be fixed before pushing. | |||||
.It Fl n Ar domain , Fl Fl domain= Ns Ar domain | .It Fl n Ar domain , Fl Fl domain= Ns Ar domain | ||||
This option specifies what the | This option specifies what the | ||||
.Dq domain | .Dq domain | ||||
is for use with the | is for use with the | ||||
.Fl u | .Fl u | ||||
option, overriding the domain taken from the | option, overriding the domain taken from the | ||||
.Xr gethostname 2 | .Xr gethostname 2 | ||||
of the server this daemon is running on. | of the server this daemon is running on. | ||||
▲ Show 20 Lines • Show All 131 Lines • Show Last 20 Lines |
Nit: the comma after "fashion" is not needed. Can be fixed before pushing.