/[baselayout]/trunk/etc.Linux/sysctl.conf
Gentoo

Contents of /trunk/etc.Linux/sysctl.conf

Parent Directory Parent Directory | Revision Log Revision Log


Revision 2705 - (show annotations) (download)
Tue May 15 14:43:44 2007 UTC (7 years, 6 months ago) by uberlord
File MIME type: text/plain
File size: 1458 byte(s)
Don't enable syn cookies by default as support for them isn't enabled in the default kernel.
1 # /etc/sysctl.conf
2 #
3 # For more information on how this file works, please see
4 # the manpages sysctl(8) and sysctl.conf(5).
5 #
6 # In order for this file to work properly, you must first
7 # enable 'Sysctl support' in the kernel.
8 #
9 # Look in /proc/sys/ for all the things you can setup.
10 #
11
12 # Disables packet forwarding
13 net.ipv4.ip_forward = 0
14 # Disables IP dynaddr
15 #net.ipv4.ip_dynaddr = 0
16 # Disable ECN
17 #net.ipv4.tcp_ecn = 0
18 # Enables source route verification
19 net.ipv4.conf.default.rp_filter = 1
20 # Enable reverse path
21 net.ipv4.conf.all.rp_filter = 1
22
23 # Enable SYN cookies (yum!)
24 # http://cr.yp.to/syncookies.html
25 #net.ipv4.tcp_syncookies = 1
26
27 # Disable source route
28 #net.ipv4.conf.all.accept_source_route = 0
29 #net.ipv4.conf.default.accept_source_route = 0
30
31 # Disable redirects
32 #net.ipv4.conf.all.accept_redirects = 0
33 #net.ipv4.conf.default.accept_redirects = 0
34
35 # Disable secure redirects
36 #net.ipv4.conf.all.secure_redirects = 0
37 #net.ipv4.conf.default.secure_redirects = 0
38
39 # Ignore ICMP broadcasts
40 #net.ipv4.icmp_echo_ignore_broadcasts = 1
41
42 # Disables the magic-sysrq key
43 #kernel.sysrq = 0
44 # When the kernel panics, automatically reboot in 3 seconds
45 #kernel.panic = 3
46 # Allow for more PIDs (cool factor!); may break some programs
47 #kernel.pid_max = 999999
48
49 # You should compile nfsd into the kernel or add it
50 # to modules.autoload for this to work properly
51 # TCP Port for lock manager
52 #fs.nfs.nlm_tcpport = 0
53 # UDP Port for lock manager
54 #fs.nfs.nlm_udpport = 0

  ViewVC Help
Powered by ViewVC 1.1.20