config.xml

The configuration file, in XML format.

cert.pem, key.pem

The device’s RSA public and private key. These form the basis for the device ID. The key must be kept private.

https-cert.pem, https-key.pem

The certificate and key for HTTPS GUI connections. These may be replaced with a custom certificate for HTTPS as desired.

index-*.db

A directory holding the database with metadata and hashes of the files currently on disk and available from peers.

csrftokens.txt

A list of recently issued CSRF tokens (for protection against browser cross site request forgery).

version

The config version. Increments whenever a change is made that requires migration from previous formats.

ignoredDevice

Contains the ID of the device that should be ignored. Connection attempts from this device are logged to the console but never displayed in the web GUI.

ignoredFolder

Contains the ID of the folder that should be ignored. This folder will always be skipped when advertised from a remote device, i.e. this will be logged, but there will be no dialog about it in the web GUI.

id

The folder ID, must be unique. (mandatory)

label

The label of a folder is a human readable and descriptive local name. May be different on each device, empty, and/or identical to other folder labels. (optional)

path

The path to the directory where the folder is stored on this device; not sent to other devices. (mandatory)

type

Controls how the folder is handled by Syncthing. Possible values are:

rescanIntervalS

The rescan interval, in seconds. Can be set to zero to disable when external plugins are used to trigger rescans.

fsWatcherEnabled

If enabled this detects changes to files in the folder and scans them.

fsWatcherDelayS

The duration during which changes detected are accumulated, before a scan is scheduled (only takes effect if fsWatcherEnabled is true).

ignorePerms

True if the folder should ignore permissions.

autoNormalize

Automatically correct UTF-8 normalization errors found in file names.

device

These must have the id attribute and can have an introducedBy attribute, identifying the device that introduced us to share this folder with the given device. If the original introducer unshares this folder with this device, our device will follow and unshare the folder (subject to skipIntroductionRemovals being false on the introducer device). All mentioned devices are those that will be sharing the folder in question. Each mentioned device must have a separate device element later in the file. It is customary that the local device ID is included in all folders. Syncthing will currently add this automatically if it is not present in the configuration file.

minDiskFree

The minimum required free space that should be available on the disk this folder resides. The folder will be stopped when the value drops below the threshold. Accepted units are %, kB, MB, GB and TB. Set to zero to disable.

versioning

Specifies a versioning configuration.

copiers, pullers, hashers

The number of copier, puller and hasher routines to use, or zero for the system determined optimum. These are low level performance options for advanced users only; do not change unless requested to or you’ve actually read and understood the code yourself. :)

order

The order in which needed files should be pulled from the cluster. The possibles values are:

Note that the scanned files are sent in batches and the sorting is applied only to the already discovered files. This means the sync might start with a 1 GB file even if there is 1 KB file available on the source device until the 1 KB becomes known to the pulling device.

ignoreDelete

When set to true, this device will pretend not to see instructions to delete files from other devices.

scanProgressIntervalS

The interval with which scan progress information is sent to the GUI. Zero means the default value (two seconds).

pullerPauseS

Tweak for rate limiting the puller when it retries pulling files. Don’t change these unless you know what you’re doing.

maxConflicts

The maximum number of conflict copies to keep around for any given file. The default, -1, means an unlimited number. Setting this to zero disables conflict copies altogether.

disableSparseFiles

By default, blocks containing all zeroes are not written, causing files to be sparse on filesystems that support the concept. When set to true, sparse files will not be created.

disableTempIndexes

By default, devices exchange information about blocks available in transfers that are still in progress. When set to true, such information is not exchanged for this folder.

paused

True if this folder is (temporarily) suspended.

weakHashThresholdPct

Use weak hash if more than the given percentage of the file has changed. Set to -1 to always use weak hash. Default value is 25.

markerName

Name of a directory or file in the folder root to be used as marker-faq. Default is “.stfolder”.

fsync

Deprecated since version v0.14.37.

Transfer updated (from other devices) files to permanent storage before committing the changes to the internal database.

pullerSleepS

Deprecated since version v0.14.41.

Tweak for rate limiting the puller. Don’t change these unless you know what you’re doing.

id

The device ID. This must be written in canonical form, that is without any spaces or dashes. (mandatory)

name

A friendly name for the device. (optional)

compression

Whether to use protocol compression when sending messages to this device. The possible values are:

introducer

Set to true if this device should be trusted as an introducer, i.e. we should copy their list of devices per folder when connecting.

skipIntroductionRemovals

Set to true if you wish to follow only introductions and not de-introductions. For example, if this is set, we would not remove a device that we were introduced to even if the original introducer is no longer listing the remote device as known.

introducedBy

Defines which device has introduced us to this device. Used only for following de-introductions.

certName

The device certificate common name, if it is not the default “syncthing”.

address

Contains an address or host name to use when attempting to connect to this device. Entries other than dynamic must be prefixed with tcp:// (dual-stack), tcp4:// (IPv4 only) or tcp6:// (IPv6 only). Note that IP addresses need not use tcp4/tcp6; these are optional. Accepted formats are:

You can set multiple addresses and combine it with the dynamic keyword for example:

<device id="...">


    <address>tcp://192.0.2.1:22001</address>


    <address>tcp://192.0.1.254:22000</address>


    <address>dynamic</address>
</device>

paused

True if synchronization with this devices is (temporarily) suspended.

allowedNetwork

If given, this restricts connections to this device to only this network (see allowed-networks).

enabled

If not true, the GUI and API will not be started.

tls

If set to true, TLS (HTTPS) will be enforced. Non-HTTPS requests will be redirected to HTTPS. When this is set to false, TLS connections are still possible but it is not mandatory.

debugging

This enables profiling and additional debugging endpoints in the rest-api.

address

Set the listen address. One address element must be present. Allowed address formats are:

user

Set to require authentication.

password

Contains the bcrypt hash of the real password.

apikey

If set, this is the API key that enables usage of the REST interface.

insecureAdminAccess

If true, this allows access to the web GUI from outside (i.e. not localhost) without authorization. A warning will displayed about this setting on startup.

theme

The name of the theme to use.

listenAddress

The listen address for incoming sync connections. See Listen Addresses for allowed syntax.

globalAnnounceServer

A URI to a global announce (discovery) server, or the word default to include the default servers. Any number of globalAnnounceServer elements may be present. The syntax for non-default entries is that of a HTTP or HTTPS URL. A number of options may be added as query options to the URL: insecure to prevent certificate validation (required for HTTP URLs) and id=<device ID> to perform certificate pinning. The device ID to use is printed by the discovery server on startup.

globalAnnounceEnabled

Whether to announce this device to the global announce (discovery) server, and also use it to look up other devices.

localAnnounceEnabled

Whether to send announcements to the local LAN, also use such announcements to find other devices.

localAnnouncePort

The port on which to listen and send IPv4 broadcast announcements to.

localAnnounceMCAddr

The group address and port to join and send IPv6 multicast announcements on.

maxSendKbps

Outgoing data rate limit, in kibibytes per second.

maxRecvKbps

Incoming data rate limits, in kibibytes per second.

reconnectionIntervalS

The number of seconds to wait between each attempt to connect to currently unconnected devices.

relaysEnabled

When true, relays will be connected to and potentially used for device to device connections.

relayReconnectIntervalM

Sets the interval, in minutes, between relay reconnect attempts.

startBrowser

Whether to attempt to start a browser to show the GUI when Syncthing starts.

natEnabled

Whether to attempt to perform a UPnP and NAT-PMP port mapping for incoming sync connections.

natLeaseMinutes

Request a lease for this many minutes; zero to request a permanent lease.

natRenewalMinutes

Attempt to renew the lease after this many minutes.

natTimeoutSeconds

When scanning for UPnP devices, wait this long for responses.

urAccepted

Whether the user has accepted to submit anonymous usage data. The default, 0, mean the user has not made a choice, and Syncthing will ask at some point in the future. -1 means no, a number above zero means that that version of usage reporting has been accepted.

urSeen

The highest usage reporting version that has already been shown in the web GUI.

urUniqueID

The unique ID sent together with the usage report. Generated when usage reporting is enabled.

urURL

The URL to post usage report data to, when enabled.

urPostInsecurely

When true, the UR URL can be http instead of https, or have a self-signed certificate. The default is false.

urInitialDelayS

The time to wait from startup to the first usage report being sent. Allows the system to stabilize before reporting statistics.

restartOnWakeup

Whether to perform a restart of Syncthing when it is detected that we are waking from sleep mode (i.e. a folded up laptop).

autoUpgradeIntervalH

Check for a newer version after this many hours. Set to zero to disable automatic upgrades.

upgradeToPreReleases

If true, automatic upgrades include release candidates (see release-channels).

keepTemporariesH

Keep temporary failed transfers for this many hours. While the temporaries are kept, the data they contain need not be transferred again.

cacheIgnoredFiles

Whether to cache the results of ignore pattern evaluation. Performance at the price of memory. Defaults to false as the cost for evaluating ignores is usually not significant.

progressUpdateIntervalS

How often in seconds the progress of ongoing downloads is made available to the GUI.

limitBandwidthInLan

Whether to apply bandwidth limits to devices in the same broadcast domain as the local device.

minHomeDiskFree

The minimum required free space that should be available on the partition holding the configuration and index. Accepted units are %, kB, MB, GB and TB.

releasesURL

The URL from which release information is loaded, for automatic upgrades.

alwaysLocalNet

Network that should be considered as local given in CIDR notation.

overwriteRemoteDeviceNamesOnConnect

If set, device names will always be overwritten with the name given by remote on each connection. By default, the name that the remote device announces will only be adopted when a name has not already been set.

tempIndexMinBlocks

When exchanging index information for incomplete transfers, only take into account files that have at least this many blocks.

unackedNotificationID

ID of a notification to be displayed in the web GUI. Will be removed once the user acknowledged it (e.g. an transition notice on an upgrade).

trafficClass

Specify a type of service (TOS)/traffic class of outgoing packets.

weakHashSelectionMethod

Specify whether weak hashing is used, possible options are WeakHashAlways, WeakHashNever and WeakHashAuto. Deciding automatically means running benchmarks at startup to decide whether the performance impact is acceptable (this is the default).

stunServer

Server to be used for STUN, given as ip:port. The keyword default gets expanded to stun.callwithus.com:3478, stun.counterpath.com:3478, stun.counterpath.net:3478, stun.ekiga.net:3478, stun.ideasip.com:3478, stun.internetcalls.com:3478, stun.schlund.de:3478, stun.sipgate.net:10000, stun.sipgate.net:3478, stun.voip.aebc.com:3478, stun.voiparound.com:3478, stun.voipbuster.com:3478, stun.voipstunt.com:3478, stun.voxgratia.org:3478 and stun.xten.com:3478 (this is the default).

stunKeepaliveSeconds

Interval in seconds between contacting a STUN server to maintain NAT mapping. Default is 24 and you can set it to 0 to disable contacting STUN servers.

kcpNoDelay, kcpUpdateIntervalMs, kcpFastResend, kcpCongestionControl, kcpSendWindowSize, kcpReceiveWindowSize

Various KCP tweaking parameters.

defaultFolderPath

The UI will propose to create new folders at this path. This can be disabled by setting this to an empty string.

setLowPriority

Syncthing will attempt to lower its process priority at startup. Specifically: on Linux, set itself to a separate process group, set the niceness level of that process group to nine and the I/O priority to best effort level five; on other Unixes, set the process niceness level to nine; on Windows, set the process priority class to below normal. To disable this behavior, for example to control process priority yourself as part of launching Syncthing, set this option to false.