From 0632591996893fe136a1f2fe44d9b9f404f41f3e Mon Sep 17 00:00:00 2001
From: Harald Pfeiffer <harald.pfeiffer@xmart.de>
Date: Thu, 1 Nov 2018 13:30:58 +0100
Subject: Initial commit

---
 localfs/etc/sysctl.d/93-disable-ipv6.conf   |  2 ++
 localfs/etc/sysctl.d/94-bridgenotables.conf |  4 ++++
 localfs/etc/sysctl.d/95-forwarding.conf     |  6 ++++++
 localfs/etc/sysctl.d/96-noredir.conf        |  4 ++++
 localfs/etc/sysctl.d/97-transmission.conf   |  2 ++
 localfs/etc/sysctl.d/99-sysctl.conf         | 10 ++++++++++
 6 files changed, 28 insertions(+)
 create mode 100644 localfs/etc/sysctl.d/93-disable-ipv6.conf
 create mode 100644 localfs/etc/sysctl.d/94-bridgenotables.conf
 create mode 100644 localfs/etc/sysctl.d/95-forwarding.conf
 create mode 100644 localfs/etc/sysctl.d/96-noredir.conf
 create mode 100644 localfs/etc/sysctl.d/97-transmission.conf
 create mode 100644 localfs/etc/sysctl.d/99-sysctl.conf

(limited to 'localfs/etc/sysctl.d')

diff --git a/localfs/etc/sysctl.d/93-disable-ipv6.conf b/localfs/etc/sysctl.d/93-disable-ipv6.conf
new file mode 100644
index 0000000..30b2d9b
--- /dev/null
+++ b/localfs/etc/sysctl.d/93-disable-ipv6.conf
@@ -0,0 +1,2 @@
+net.ipv6.conf.all.disable_ipv6=1
+net.ipv6.conf.default.disable_ipv6=1
diff --git a/localfs/etc/sysctl.d/94-bridgenotables.conf b/localfs/etc/sysctl.d/94-bridgenotables.conf
new file mode 100644
index 0000000..7b81020
--- /dev/null
+++ b/localfs/etc/sysctl.d/94-bridgenotables.conf
@@ -0,0 +1,4 @@
+# Those don't exist anymore
+#net.bridge.bridge-nf-call-ip6tables=0
+#net.bridge.bridge-nf-call-iptables=0
+#net.bridge.bridge-nf-call-arptables=0
diff --git a/localfs/etc/sysctl.d/95-forwarding.conf b/localfs/etc/sysctl.d/95-forwarding.conf
new file mode 100644
index 0000000..d0d7f8d
--- /dev/null
+++ b/localfs/etc/sysctl.d/95-forwarding.conf
@@ -0,0 +1,6 @@
+net.ipv4.conf.all.forwarding=1
+net.ipv6.conf.all.forwarding=1
+net.ipv4.conf.all.mc_forwarding=1
+net.ipv6.conf.all.mc_forwarding=1
+# https://husse.in/uncategorized/setup-a-kvm-vps-host-lvm-on-software-raid1-and-a-virtual-pfsense-router/
+net.ipv4.tcp_ecn=0
diff --git a/localfs/etc/sysctl.d/96-noredir.conf b/localfs/etc/sysctl.d/96-noredir.conf
new file mode 100644
index 0000000..ba999b2
--- /dev/null
+++ b/localfs/etc/sysctl.d/96-noredir.conf
@@ -0,0 +1,4 @@
+net.ipv4.conf.br0.send_redirects=0
+net.ipv4.conf.sosbr0.send_redirects=0
+net.ipv4.conf.clusbr0.send_redirects=0
+net.ipv4.conf.all.send_redirects=0
diff --git a/localfs/etc/sysctl.d/97-transmission.conf b/localfs/etc/sysctl.d/97-transmission.conf
new file mode 100644
index 0000000..7862332
--- /dev/null
+++ b/localfs/etc/sysctl.d/97-transmission.conf
@@ -0,0 +1,2 @@
+net.core.wmem_max = 1048576
+net.core.rmem_max = 4194304
diff --git a/localfs/etc/sysctl.d/99-sysctl.conf b/localfs/etc/sysctl.d/99-sysctl.conf
new file mode 100644
index 0000000..41c0c41
--- /dev/null
+++ b/localfs/etc/sysctl.d/99-sysctl.conf
@@ -0,0 +1,10 @@
+# sysctl settings are defined through files in
+# /usr/lib/sysctl.d/, /run/sysctl.d/, and /etc/sysctl.d/.
+#
+# Vendors settings live in /usr/lib/sysctl.d/.
+# To override a whole file, create a new file with the same in
+# /etc/sysctl.d/ and put new settings there. To override
+# only specific settings, add a file with a lexically later
+# name in /etc/sysctl.d/ and put new settings there.
+#
+# For more information, see sysctl.conf(5) and sysctl.d(5).
-- 
cgit v1.2.3