Annotation of elwix/config/etc/default/sysctl.conf, revision 1.10
1.1 misho 1: #!/bin/sh
2: #
3: # elwix sysctl.conf
4: #
1.10 ! misho 5: # $Id: sysctl.conf,v 1.9.2.5 2017/06/29 22:17:27 misho Exp $
1.1 misho 6:
1.5 misho 7: sysctl -w kern.coredump=0
1.10 ! misho 8: sysctl -w debug.debugger_on_panic=0
! 9: sysctl -w net.bpf.zerocopy_enable=1
! 10: sysctl -w net.bpf.optimize_writers=1
1.8 misho 11: sysctl -w kern.ipc.somaxconn=1024
12: sysctl -w kern.eventtimer.periodic=1
1.10 ! misho 13: sysctl -w net.route.netisr_maxqlen=2048
! 14: sysctl -w net.inet.ip.redirect=0
1.1 misho 15: sysctl -w net.inet.ip.forwarding=1
1.10 ! misho 16: sysctl -w net.inet.icmp.reply_from_interface=1
! 17: sysctl -w net.inet.tcp.rfc1323=1
1.4 misho 18: sysctl -w net.inet.tcp.ecn.enable=1
1.5 misho 19: sysctl -w net.inet6.ip6.forwarding=1
20: sysctl -w net.inet6.ip6.accept_rtadv=0
21: sysctl -w net.inet6.ip6.no_radr=0
1.2 misho 22: sysctl -w kern.maxfilesperproc=4096
1.10 ! misho 23: #sysctl -w kern.maxfiles=65536
! 24: #sysctl -w kern.ipc.maxsockets=65536
1.4 misho 25: #sysctl -w kern.ipc.maxsockbuf=16777216
26: #sysctl -w kern.ipc.maxpipekva=16777216
1.10 ! misho 27: #sysctl -w net.graph.maxdgram=131072
! 28: #sysctl -w net.graph.recvspace=131072
! 29: # Sendmsg() cat't send messages more than maxdgram length.
! 30: # Default value causes routing software to fail with OSPF if jumbo frames is turned on.
! 31: sysctl -w net.inet.raw.maxdgram=16384
! 32: sysctl -w net.inet.raw.recvspace=16384
! 33: # Current CPU can manage a lot's more of interrupts than default (1000)
! 34: # The 9000 value was found in /usr/src/sys/dev/ixgbe/README
! 35: sysctl -w hw.intr_storm_threshold=9000
! 36:
! 37: sysctl -w kern.random.harvest.mask=351
! 38:
! 39: # Improve a lot's the polling performance
! 40: # Enable idle_poll
! 41: #sysctl -w kern.polling.idle_poll=1
! 42: # The default value of 150 was for FastEthernet:
! 43: #sysctl -w kern.polling.burst_max=20000
! 44: #sysctl -w kern.polling.each_burst=50
! 45: # For a router, don't need to share 50/50 with user process
! 46: #sysctl -w kern.polling.user_frac=30
1.9 misho 47:
48: #sysctl -w hw.ath.bstuck=8
1.1 misho 49: #net.inet.tcp.mssdflt=1452
50: #net.inet.tcp.hostcache.expire=1
1.10 ! misho 51: #dev.ath.0.hal.ar5416_biasadj=1
1.3 misho 52:
1.10 ! misho 53: #Power save: Disable power for device with no driver loaded
! 54: sysctl -w hw.pci.do_power_nodriver=3
! 55:
! 56: # blackhole(8)
! 57: # Disable this feature because prevent traceroute to works correctly
! 58: #sysctl -w net.inet.tcp.blackhole=2
! 59: #sysctl -w net.inet.udp.blackhole=1
! 60: # prevent users from seeing information about processes that
! 61: # are being run under another UID.
! 62: #sysctl -w security.bsd.see_other_uids=0
! 63: #sysctl -w security.bsd.see_other_gids=0
! 64: # Prevent some potential exploit
! 65: #sysctl -w security.bsd.unprivileged_proc_debug=0
! 66:
! 67: # Intel NIC tunning
! 68: #sysctl -w hw.em.rx_process_limit=-1
! 69: #sysctl -w hw.em.txd=2048
! 70: #sysctl -w hw.em.rxd=048
! 71:
! 72: #sysctl -w hw.igb.rx_process_limit=-1
! 73: #sysctl -w hw.igb.txd=2048
! 74: #sysctl -w hw.igb.rxd=048
! 75: #sysctl -w hw.igb.max_interrupt_rate=16000
FreeBSD-CVSweb <freebsd-cvsweb@FreeBSD.org>