| 1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162 |
- # Reboot 1 second after kernel panic, oops or BUG (usually in batman-adv.ko)
- kernel.panic = 1
- kernel.panic_on_oops = 1
- # throw kernel panic on softlockup
- kernel.softlockup_panic=1
- ## Networking
- # See https://www.kernel.org/doc/Documentation/networking/ip-sysctl.txt
- # Don't pass bridged traffic to iptables/arptables
- net.bridge.bridge-nf-call-arptables = 0
- net.bridge.bridge-nf-call-iptables = 0
- net.bridge.bridge-nf-call-ip6tables = 0
- ## IPv4 tuning
- # Reset all configuration parameters to RFC1812
- net.ipv4.ip_forward = 1
- # Disable routing to eth0
- net.ipv4.conf.eth0.forwarding = 0
- # Accept ICMP redirect messages; default = 0
- net.ipv4.conf.default.accept_redirects = 1
- net.ipv4.conf.all.accept_redirects = 1
- # Use larger ARP cache
- net.ipv4.neigh.default.gc_thresh1 = 2048
- net.ipv4.neigh.default.gc_thresh2 = 4096
- net.ipv4.neigh.default.gc_thresh3 = 8192
- # Maximum number of routes allowed in the kernel
- net.ipv4.route.max_size = 8388608
- ## IPv6 tuning
- # Configure router behaviour
- net.ipv6.conf.all.forwarding = 1
- # Disable routing to eth0
- net.ipv6.conf.eth0.forwarding = 0
- net.ipv6.conf.eth0.accept_ra = 0
- # Accept Redirects; default = 0
- net.ipv6.conf.default.accept_redirects = 1
- net.ipv6.conf.all.accept_redirects = 1
- # Accept Duplicate Address Detection; default = 1
- net.ipv6.conf.default.accept_dad = 0
- net.ipv6.conf.all.accept_dad = 0
- # Use larger neighbor table
- net.ipv6.neigh.default.gc_thresh1 = 2048
- net.ipv6.neigh.default.gc_thresh2 = 4096
- net.ipv6.neigh.default.gc_thresh3 = 8192
- # Maximum number of routes allowed in the kernel
- net.ipv6.route.max_size = 8388608
|
