If you specify 'ipv4' the static IPv4 Address: "--ipv4-addr IPv4 Address" will be bound to Interface: "--interface DEVICE". The NST system will also be configured for static IPv4 Address usage and managed by the "NetworkManager" service. Unless the option "--no-ipv6" is specified, IPv6 Addressing be will enabled and auto-assigned.

If you specify 'dhcp' the specified Network Interface: "--interface DEVICE" will use DHCP for deriving its IPv4 Address using the "dhclient" utility and controlled by the "NetworkManager" service. Unless the option "--no-ipv6" is specified, IPv6 Addressing will be enabled and auto-assigned.

If you specify 'secondary' the static IPv4 Address: "--ipv4-addr IPv4 Address" will be added (bound) or deleted (unbound) from Interface: "--interface DEVICE". This mode allows one to bind multiple IPv4 Addresses to a Network Interface. It also requires that a Network Interface device be specified with option: "--interface DEVICE" and the option "--secondary TEXT" for adding or removing the secondary address.

If you specify 'ipv6' the static IPv6 Address: "-a6 | --ipv6-addr IPv6 Address" will be added (bound) or deleted (unbound) from Interface: "--interface DEVICE" with global scope. This mode allows one to bind multiple IPv6 Addresses to a Network Interface. It also requires that a Network Interface device be specified with option: "--interface DEVICE" and the option "--ipv4-op TEXT" for adding or removing the IPv6 Address.

If you specify 'ssl' the static IPv4 Address bound on Interface: "--interface DEVICE" will be used in the Apache SSL configuration file: "/etc/nst/httpd/conf.d/ssl.conf" for HTTPS access and for the generation of a new SSL certificate and key file.

If you specify 'stealth' then one can configure a Network Interface device in the "UP" state with a non-binding IPv4 and IPv6 Address. This configuration can be advantageous when one wants to capturing packets in a covert or stealth manner. At system boot time this stealth network configuration will be in effect. A Network Interface put in 'stealth' mode will be 'unmanaged' by the "NetworkManager" service. The Network Interface device will be added to the "/etc/NetworkManager/conf.d/99-unmanaged-devices.conf" file as a permanent 'unmanaged' device configuration to survive a system reboot.

If you specify 'rmint' then all associated configuration entries and files for Network Interface: "--interface DEVICE" will be removed. The network interface will be put in the 'disconnected' state by "NetworkManager". You can reinitialize the 'Loopback (lo)' Network Interface with this mode. IPv6 Addressing will also be removed and disabled. A Network Interface device can be removed from the 'unmanaged' device file: "/etc/NetworkManager/conf.d/99-unmanaged-devices.conf" using this mode. The device will also be added to a 'No Auto Default' file: "/etc/NetworkManager/conf.d/98-no-auto-default.conf" so "NetworkManager" will not create a default wired connection on startup.

If you specify 'init' then the "NetworkManager" and the "ModemManager" will be restarted. All Network Interface devices with be put in a disconnected state with IPv6 Addressing removed and disabled. The 'LoopBack (lo)' Network Interface will be reinitialize with this mode. The 'hosts' entry in the Name Service Switch configuration file: "/etc/nsswitch.conf" will include at least the 'dns' query source parameter. All physical Network Interface devices will be added to a 'No Auto Default' file: "/etc/NetworkManager/conf.d/98-no-auto-default.conf" so "NetworkManager" will not create a default wired connection on startup.

If you specify 'show' then all connection information and configuration files will be displayed along with the status of network services. Use the "--connection-name TEXT" option for displaying information for that connection only otherwise all connections will be shown.

If you specify 'rename' then an individual Network Interface device can be Renamed thus providing a predictable Network Interface name that is stable and available after each successive system reboot.

If you specify 'nmrestart' then the Network Manager Service will be restarted. Be careful of doing this action on a remote connection. The connection may be Dropped.

If you specify 'modcon' then you can modify a Network Manager Connection Profile ("--connection-name TEXT") setting. Use the "--modcon TEXT" option to specifiy the setting that will be modified. Depending on the setting modification type, a restart of the Network Manager Service "--mode nmrestart" may be required.

If you specify 'testudev' then the associated udev network rules files for the selected Network Interface: "--interface DEVICE" will be verified and displayed using the udevadm utility.

If you specify 'promiscon' with a specific Network Interface: "--interface DEVICE" then the 'Promiscuous' state will be set 'On' for this device. If you specify 'promiscon' without a Network Interface specified then all Network Interface devices configured to set their 'Promiscuous' state with mode: "--mode promisccfg" will be set 'On'. One can use the systemd service: "promisc.service" for setting the Promiscuous state 'On' for one or more Network Interface devices at system boot.

If you specify 'promiscoff' with a specific Network Interface: "--interface DEVICE" then the 'Promiscuous' state will be set 'Off' for this device. If you specify 'promiscoff' without a Network Interface specified then all Network Interface devices configured to set their 'Promiscuous' state with mode: "--mode promisccfg" will be set 'Off'.

If you specify 'promisccfg' then a Network Interface device can be configured for controlling its 'Promiscuous' state with modes: "--mode promiscon" or "--mode promiscoff". This mode requires that a Network Interface device be specified with option: "--interface DEVICE" and the option "--promisc TEXT" for adding or removing the device.

If you specify 'bonding' then multiple Network Interface members: "--bonding-slave-ints DEVICELIST" can be aggregated into a single logical "Bonded" Interface: "--interface DEVICE" using the Linux Bonding driver.

If you specify 'rmbonding' then all associated configuration entries and files for Bonding Master Interface: "--interface DEVICE" and all configured Bonding Slave NIC adapter members will be removed. If this is the last Bonding Interface device, then the Linux Bonding driver module will also be unloaded.

This option specifies an operational nstnetcfg mode. Currently the following modes: 'ipv4', 'dhcp', 'secondary', 'ipv6', 'ssl', 'stealth', 'rmint', 'init', 'show', 'rename', 'nmrestart', 'modcon', 'testudev', 'promiscon', 'promiscoff', 'promisccfg', 'bonding' and 'rmbonding' are supported. The description for each supported mode is described above.

When used with mode: 'ipv4', this option will bind the static IPv4 Address: "--ipv4-addr IPv4ADDR/PREFIX" to this specific Network Interface device. When used with mode: 'ssl', this option allows one to specify a specific Network Interface device for obtaining the IPv4 Address. If not specified, the IPv4 Address for the default Network Interface will be used. Setting up an IPv4 secondary IPv4 Address can also use this mode. When used with modes: "--mode bonding" or "--mode rmbonding" this option will specify the name of the Bonding device. It is best practice to use bonding Network Interface names like: "bond0" and "bond1". Example 1: "--interface p4p1". Example 2: "--interface eno1:0". Example 3: "--interface bond0".

This option allows one to specify the static IPv4 Address to be bound to Network Interface device: "--interface DEVICE" when using modes: "--mode ipv4" and "--mode secondary". Add the 'Network Routing Prefix' to the IPv4 Address to form this option in CIDR (Classless Inter-Domain Routing) notation. Example: "--ipv4-addr-prefix 172.32.44.6/24".

This option allows one to specify the static IPv6 Address to be bound to Network Interface device: "--interface DEVICE" when using mode: "--mode ipv6". Add the 'Network Routing Prefix' to the IPv6 Address to form this option in CIDR (Classless Inter-Domain Routing) notation. Example: "--ipv6-addr-prefix 2001:dbc7::/32".

This option allows one to specify an IPv4 Address for the Gateway (i.e., Default Route) when setting up a static IPv4 Address on this NST system using mode: "--mode ipv4". In network computing the Gateway is the packet forwarding rule (route) that is used when no other route can be determeined for a given IPv4 Destination Address. Example: "--gateway 172.32.44.1".

This option allows one to override the MAC Address (Hardware Address) for a given Network Interface device: "--interface DEVICE" Route) when setting up a static IPv4 Address on this NST system using mode: "--mode ipv4". If this option is not specified, then the current associated MAC Address for the selected Network Interface device will be used. Specify the MAC Address using this format: "xx:xx:xx:xx:xx:xx". Example: "--mac-addr 40:85:A9:45:7E:37".

This option allows one to specify a "Host Name" that will be associated with the static IPv4 Address when using mode: "--mode ipv4". It will be used to populate both the Hosts file: "/etc/hosts" and the Host Name file: "/etc/hostname". Use the special host name: "DNS" for automatic lookup (i.e. FQDN - A Fully Qualified Domain Name lookup) of both the "Host Name" as well as the "Domain Name". The "--domain-name" option does not need to be specified if the special case "--host-name DNS" option is used. If this parameter is used with mode: "--mode dhcp", then the "--host-name HOSTNAME" value will be used to send the "host-name" option to the DHCP server which specifies the name of the NST client system. Example: "--host-name striker".

This option allows one to specify a "Domain Name" that will be associated with the static IPv4 Address and Host Name when using mode: "--mode ipv4". It will be used to populate both the Hosts file: "/etc/hosts" and the Resolver configuration file: "/etc/resolv.conf". The "--host-name TEXT" option must be used with this option. The "--domain-name" option does not need to be specified if the special case "--host-name DNS" option is used. Example: "--domain-name balloon.org".

This option allows one to specify one or more "Domain Name Servers" to be populated in the Resolver configuration file: "/etc/resolv.conf" when using mode: "--mode ipv4". Use an IPv4 Address to specify each "Domain Name Servers". Separate each IPv4 Address with a comma (,). The "--domain-name TEXT" option must be used with this option. Example: "--name-servers 172.32.44.10,172.32.44.11".

If this option is used then the nstnetcfg script will only add an updated entry to the Hosts file: "/etc/hosts". Neither the Host Name file: "/etc/hostname" nor the Resolver configuration file: "/etc/resolv.conf" will be altered. This option is typically used for multi-homed (i.e., A system with two or more active Network Interfaces.) network configurations.

If this option is used then IPv6 Addressing will be disabled for the selected interface. This option is typically used with modes: "--mode ipv4" and "--mode dhcp". The following will be done when disabling IPv6 Addressing: 1) If the Network Interface has an existing IPv6 Address it will be disabled and removed using the sysctl command. 2) An entry to permanently disable IPv6 Addressing for the Network Interface will be made in file: "/etc/sysctl.conf".

Use this option with mode "--mode secondary" to add (bind) or remove (unbind) an IPv4 secondary Address to Network Interface device: "--interface DEVICE". Specify "add" (default) to bind the IPv4 secondary Address or "remove" to unbind the address.

Use this option with mode "--mode ipv6" to add (bind) or remove (unbind) an IPv6 Address to Network Interface device: "--interface DEVICE". Specify "add" (default) to bind the IPv6 Address or "remove" to unbind the address.

This option may be used in conjunction with mode "--mode ssl" to set the Apache "VirtualHost" directive in the SSL configuration file: "/etc/nst/httpd/conf.d/ssl.conf" for the NST WUI. The syntax for using this option is: "IPAddr:Port IPAddr:Port ...". The IPv4 Address of the NST system may be used. The "Port" value is ususally set to match the Apache SSL listening directive: "Listen" for standard HTTPS access (i.e., 9943). Separate two or more "IPAddr:Port" combination values with a space. Use double quotes when specifying this option. If this value is not specified, then the default value: "*:9943" will be used. Example: '--virtual-host "172.32.44.6:9943"'.

This option may be used in conjunction with mode "--mode ssl" to set the Apache "ServerName" directive in the SSL configuration file: "/etc/nst/httpd/conf.d/ssl.conf". The syntax for using this option is: "IPAddr:Port or Fully-Qualified-Domain-Name:Port". The "Port" value is ususally set to match the Apache SSL listening directive: "Listen" for standard HTTPS access (i.e., 9943 for the NST WUI). The IPv4 Address or Host Name of the NST system should be used. If this value is not specified, then the default IPv4 Address of the NST system will be used. Example 1: "--server-name 172.32.44.6:9943". Example 2: "--server-name nst.securenet.compxyz.com:9943"

This option must be used with mode: 'rename'to configure the udev network rules file: "/etc/udev/rules.d/79-my-net-name-slot.rules" for renaming the specified Network Interface device: "--interface DEVICE" to the Network Interface name: "--rename DEVICE". The MAC Address (Hardware Address) will be used to identify the Network Interface device: "--interface DEVICE". One can override the native MAC Address using the "--mac-addr MACADDR" option. Typically, one needs to 'Reboot' the system for this device name change to take effect. The "NetworkManager" or the "network" configuration file for this Network Interface will also be renamed. Note: The device name can only consist of alphanumeric or underscore characters with the first character alphabetical only. Example: "--rename fw0"

This option may be used in conjunction with mode "--mode show" to display Network Manager connection information for this "Connection ID (Name)" only. Enclose a connection name option value in outer double quotes with single quotes around the name if it contains a space (e.g. --connection-name "'Wired connection 1'").

This option must be used with mode: '--mode modcon' to modify a connection setting. Example 1: --connection-name "'Wired connection 1'" --modcon "ipv4.route-metric 99". This sets the IPv4 route metric to "99" for Network Manager connection name: "Wired connection 1". Example 2: --connection-name lan0 --modcon "connection.id 'net0 lan0'". Enclose a connection setting option value in outer double quotes with single quotes around the modification if it contains a space. This example changes the connection ID (name) from "lan0" to "net0 lan0".

Use this option with mode "--mode promisccfg" to add or remove the specified Network Interface device: "--interface DEVICE" to configuration file: "/etc/nst/promisc.conf" for controlling the device's Promiscuous state with modes: "--mode promiscon" or "--mode promiscoff". Specify "add" (default) to add the device or "remove" to delete it from this file.

Specify a list of Network Interface Slave Bonding devices that will be used as member NIC adapters when configuring a Bonding Interface: "--mode bonding". Separate each specified Network Interface with a comma (,). Example: "--bonding-slave-ints p2p1,p2p2"

Use this parameter to specify one or more options to the Linux Bonding driver module. Enclose this parameter within single (') or double quotes (") and separate each option with a space delimiter. By default, the bonding policy: "Round-Robin (mode=balance-rr)" and the MII link monitoring frequency in milliseconds: 'miimon=100' will be used. See the document: "/usr/share/doc/kernel-doc-[Kernel Version]/Documentation/networking/bonding.txt" for detailed option information. Example: "--bonding-opts 'mode=balance-rr,miimon=400,updelay=800'"

When this option is specified, nstnetcfg will display a short one line description of nstnetcfg, followed by a short description of each of the supported command line options. After displaying this information nstnetcfg will terminate.

This option will attempt to pull up additional nstnetcfg documentation within a text based web browser. You can force which browser we use setting the environment variable TEXTBROWSER, otherwise, we will search for some common ones.

When you set this option to true, nstnetcfg will produce additional output. This is typically used for diagnostic purposes to help track down when things go wrong.

If this option is specified, the version number of the script is displayed.

Configuration file for setting the system host name.

Static table lookup file for host names.

List of Network Interface adapters configured by nstnetcfg - mode: "promisccfg" for Promiscuous mode control.

Domain name resolver configuration file.

Custom udev network rules policy file.

Default udev network rules policy file.

Global network configuration file.

Global sysctl configuration file.

Directory containing the settings for all Network Connections.

File containing devices that NetworkManager will not create a default wired connection for.

File containing devices that NetworkManager will ignore (unmanaged).

A Systemd service unit configuration: "promisc.service" - Used to control the Promiscuous mode of one or more Network Interface adapters defined in file: "/etc/nst/promisc.conf" during system boot. Internally uses nstnetcfg - mode: "promiscon".

This controls what text based browser is used to display help information about the script. If not set, we will search your system for available text-based browsers (Ex: elinks, lynx ...).