DareNET IRCd Configuration/1.5

This is a reference guide for ircd-darenet 1.4.1+'s configuration file.

The configuration format consists of various blocks, each containing name-value pairs, tags and/or string data. It is designed to be easily readable by both human and ircd.

A block consists of a block name, an opening '{' brace, statements, a closing '}' brace, and a ';' semicolon. A statement consists of a name possibly followed by an '=' equals sign and a value, ending with a semicolon. All strings are surrounded by '"' double quotes.

All elements of the configuration are separated by whitespace, and can be packed on one line, or broken up over several lines. Whitespace is defined as space, tab or carriage return/linefeed. Three form of comments are allowed:

* C style single/multi-line

* C++ style single-line

Times / durations are written as:

* A number in seconds (e.g., 60)

* An arithmetic expression (e.g., 1*60+20)

 

 

* Decade, year, month, week, day, hour, minute, second

 

 

 

Sizes and times may be specified as singular or plural.

{| class="simpletable"

<html><pre><strong>general</strong> {

     numeric = <span class="integer"> 999</span>;

{| class="simpletable"

<html><pre><strong>admin</strong> {

{| class="simpletable"

<html><pre><strong>class</strong> {

     <span class="comment">/* usermode: an optional list of user modes that should be set

<strong>class</strong> {

<strong>class</strong> {

<strong>class</strong> {

== Client Block ==

{| class="simpletable"

<html><pre><strong>client</strong> {

     * if you are using the ip mask to match against.

The server uses a default deny policy for incoming connections; at least one Client block must be supplied if you wish to use your server.

The <code>host</code> and <code>ip</code> tokens specify which connections the block matches. The server always performs DNS and ident lookups for connections. If DNS cannot find a hostname, the IP is used instead. If ident cannot get a valid response, "unknown" is used during this state. The client's resolved hostname, IP address, ident reply, and username (from the USER line) are used according to the results of the matches described below.

Note: There is a special case for UNIX domain sockets and localhost connections. In these cases, the <code><ip mask></code> field is compared with the name of the server (thus not with any IP number representation). The name of the server is the one returned in the numeric 002 reply.

For example: <code>002 Your host is 2.darenet.org[jolan.ppro]. running version ...</code>

In the above example, "jolan.ppro" is the name used for matching; therefore, UNIX domain sockets and connections to localhost would match a block containing: <code>host = "*@jolan.ppro";</code>

The <code>host</code> token attempts to match first against the resolved hostname if available, then against the IP address. To include the connection's ident response in the match, use a mask in the form "ident@host". If a client matches this token, it appears on IRC using its resolved name.

The <code>ip</code> token attempts to match against the IP address only. An ident may be specified to match against, as well.

 

If the matching mask used ident ("ident@host" instead of "host"), and no ident response was received from the client, it appears on IRC with its username prefixed with '~'. If the matching mask used only the "host" form, the client's username is not prefixed. If a valid ident response was received, it is always used (without prefixed), regardless of the mask form.

 

Only one of the <code>host</code> and <code>ip</code> tokens is needed; if both are used, host is matched first. For typical configurations, using only the <code>host</code> token with a "*@host" or "ident@host" mask is recommended.

{| class="simpletable"

|<code>T:hostmask|classnumber:path</code>

<html><pre><strong>motd</strong> {

More then one 'host' entry may be present in an Motd block.

== Connect Block ==

{| class="wikitable" width="40%" style="font-size: 97%; text-align: left;"

| Requirement:

| OPTIONAL

| Old conf format equivalents:

| C:line, H:line, L:line

Connect {} blocks define what servers the server may connect to, and which servers are allowed to connect.

IRC servers connect to other servers forming a network with a star or tree topology. Loops are not allowed. In this network, two servers can be distinguished: "hub" and "leaf". Leaf servers connect to hubs; hubs connect to each other. Of course, many servers can't be directly classified in either of these categories. Both a fixed and a rule-based decision making system for server links exists to aide ircd in deciding what links to allow, what to let humans do themselves and what links to (forcefully) disallow.

<pre>Connect

  name = "servername";

  host = "hostnameORip";

  port = portno;

  class = "classname";

};</pre>

The "port" field defines the default port the server tries to connect to if an operator uses /CONNECT without specifying a port. This is also the port used when the server attempts to auto-connect to the remote server. You may tell ircd-darenet to not automatically connect to a server by adding <code>"autoconnect = no;"</code>; the default is to auto connect.

The maxhops field causes an SQUIT if a hub tries to introduce servers farther away than that; the element 'leaf;' is an alias for a maxhops of 0. The hub field limits the names of servers that may be introduced by a hub; the element 'hub;' is an alias for <code>hub = "*";</code>.

Example block:

<c>Connect

  name = "servername.hub.darenet.org";

  host = "1.2.3.4";

  port = 7325;

  class = "Server";

};</c>

== CRULE Block ==

{| class="wikitable" width="40%" style="font-size: 97%; text-align: left;"

| Requirement:

| OPTIONAL

| Old conf format equivalents:

| D:line, d:line

For an advanced, real-time rule-based routing decision making system, you can use the crule {} blocks. For more information, see doc/readme.crules. If more than one server mask is present in a single rule, the rule applies to all servers.

Using <code>all = yes;</code> makes the rule always apply; otherwise, it only applies to auto connects.

<pre>CRULE

  server = "servermask";

  rule = "connectrule";

};</pre>

Example blocks:

  server = "*.us.darenet.org";

  rule = "connected(*.us.darenet.org)";

Recommended for all leafs:

{| class="wikitable" width="40%" style="font-size: 97%; text-align: left;"

| Requirement:

| SUGGESTED

| Old conf format equivalents:

| P:line

As more users use the server, you will notice delays when trying to connect to the primary listening port. It is possible, via Port {} blocks, to specify additional ports for the ircd to listen for connections on. De facto ports are: 6667 - standard; 6660-6669, 7000 - additional client ports; 6697 & 9999 = SSL. DareNET uses 7325 for server listener ports.

These are just hints, they are in no way official IANA or IETF policies. IANA says we should use port 194, but that requires us to run as root, so we don't do that.

<pre>Port

  mask = "ipmask";

  // Use this to control the interface you bind to.

  // Setting to yes makes this server only.

  server = yes;

  // Setting to yes makes the port "hidden" from stats.

  // Setting to yes makes the port accept SSL connections from clients.

  // during a timed /restart or /die.

};</pre>

The mask setting allows you to specify a range of IP addresses that you will allow connections from. This should only contain IP addresses and '*' if used. This field only uses IP addresses. This does not use DNS in any way, so you can't use it to allow *.jp or *.uk, and so on. Attemptinh to specify anything other than numbers, dots and starts [0-9.*] will result in the port allowing connections from anyone.

The <virtual host> setting allows multiple homed hosts to specify which interface to use on a port by port basis. If an interface is not specified, the default interface will be used. The interface MUST be the complete IP address for a real hardware interface on the machine running ircd. If you want to use virtual hosting YOU MUST USE THIS; otherwise, it WILL bind to all interfaces -- not what most people seem to expect.

Example blocks:

<c>Port