Skip to content

Instantly share code, notes, and snippets.

@dayreiner

dayreiner/sysctl.conf

Last active July 14, 2023 06:25
Show Gist options

  • Select an option

    Learn more about clone URLs
  • Save dayreiner/30ab743552a24b40940c to your computer and use it in GitHub Desktop.

Select an option

Learn more about clone URLs
Save dayreiner/30ab743552a24b40940c to your computer and use it in GitHub Desktop.
Download ZIP

Revisions

  1. Jon revised this gist Mar 21, 2016. No changes.
  2. Jon created this gist Mar 21, 2016.
    74 changes: 74 additions & 0 deletions sysctl.conf
    View file
    Original file line number Diff line number Diff line change
    @@ -0,0 +1,74 @@
    # MariaDB Tuning
    vm.swappiness = 1
    fs.file-max = 2097152
    vm.dirty_ratio = 60
    vm.dirty_background_ratio = 2

    # Sets the time before the kernel considers migrating a proccess to another core
    kernel.sched_migration_cost_ns = 5000000

    # Group tasks by TTY
    kernel.sched_autogroup_enabled = 0

    ### GENERAL NETWORK SECURITY OPTIONS ###

    # Number of times SYNACKs for passive TCP connection.
    net.ipv4.tcp_synack_retries = 2

    # Allowed local port range
    net.ipv4.ip_local_port_range = 2000 65535

    # Protect Against TCP Time-Wait
    net.ipv4.tcp_rfc1337 = 1

    # Control Syncookies
    net.ipv4.tcp_syncookies = 1

    # Decrease the time default value for tcp_fin_timeout connection
    net.ipv4.tcp_fin_timeout = 15

    # Decrease the time default value for connections to keep alive
    net.ipv4.tcp_keepalive_time = 300
    net.ipv4.tcp_keepalive_probes = 5
    net.ipv4.tcp_keepalive_intvl = 15

    ### TUNING NETWORK PERFORMANCE ###

    # Default Socket Receive Buffer
    net.core.rmem_default = 31457280

    # Maximum Socket Receive Buffer
    net.core.rmem_max = 12582912

    # Default Socket Send Buffer
    net.core.wmem_default = 31457280

    # Maximum Socket Send Buffer
    net.core.wmem_max = 12582912

    # Increase number of incoming connections
    net.core.somaxconn = 4096

    # Increase number of incoming connections backlog
    net.core.netdev_max_backlog = 65536

    # Increase the maximum amount of option memory buffers
    net.core.optmem_max = 25165824

    # Increase the maximum total buffer-space allocatable
    # This is measured in units of pages (4096 bytes)
    net.ipv4.tcp_mem = 65536 131072 262144
    net.ipv4.udp_mem = 65536 131072 262144

    # Increase the read-buffer space allocatable
    net.ipv4.tcp_rmem = 8192 87380 16777216
    net.ipv4.udp_rmem_min = 16384

    # Increase the write-buffer-space allocatable
    net.ipv4.tcp_wmem = 8192 65536 16777216
    net.ipv4.udp_wmem_min = 16384

    # Increase the tcp-time-wait buckets pool size to prevent simple DOS attacks
    net.ipv4.tcp_max_tw_buckets = 1440000
    net.ipv4.tcp_tw_recycle = 1
    net.ipv4.tcp_tw_reuse = 1