47 lines
1.3 KiB
Plaintext
47 lines
1.3 KiB
Plaintext
|
# /etc/sysctl.conf - Configuration file for setting system variables
|
||
|
# See sysctl.conf (5) for information.
|
||
|
|
||
|
# you can have the CD-ROM close when you use it, and open
|
||
|
# when you are done.
|
||
|
#dev.cdrom.autoeject = 1
|
||
|
#dev.cdrom.autoclose = 1
|
||
|
|
||
|
# protection from the SYN flood attack
|
||
|
net.ipv4.tcp_syncookies = 1
|
||
|
|
||
|
# see the evil packets in your log files
|
||
|
net.ipv4.conf.all.log_martians = 1
|
||
|
|
||
|
# if not functioning as a router, there is no need to accept redirects or source routes
|
||
|
net.ipv4.conf.all.accept_redirects = 0
|
||
|
net.ipv4.conf.all.accept_source_route = 0
|
||
|
net.ipv6.conf.all.accept_redirects = 0
|
||
|
net.ipv6.conf.all.accept_source_route = 0
|
||
|
|
||
|
# Disable packet forwarding
|
||
|
net.ipv4.ip_forward = 0
|
||
|
net.ipv6.conf.all.forwarding = 0
|
||
|
|
||
|
# Enable IPv6 Privacy Extensions
|
||
|
net.ipv6.conf.default.use_tempaddr = 2
|
||
|
net.ipv6.conf.all.use_tempaddr = 2
|
||
|
|
||
|
# sets the port range used for outgoing connections
|
||
|
net.ipv4.ip_local_port_range = 32768 61000
|
||
|
|
||
|
# Swapping too much or not enough? Disks spinning up when you'd
|
||
|
# rather they didn't? Tweak these.
|
||
|
#vm.vfs_cache_pressure = 100
|
||
|
#vm.laptop_mode = 0
|
||
|
#vm.swappiness = 60
|
||
|
|
||
|
#kernel.printk_ratelimit_burst = 10
|
||
|
#kernel.printk_ratelimit = 5
|
||
|
#kernel.panic_on_oops = 0
|
||
|
|
||
|
# Reboot 600 seconds after a panic
|
||
|
#kernel.panic = 600
|
||
|
|
||
|
# Disable SysRq key (note: console security issues)
|
||
|
kernel.sysrq = 0
|