47 lines
1.4 KiB
Plaintext
47 lines
1.4 KiB
Plaintext
### --- OPTIMIZATION --- ###
|
|
# swap usage (default = 60)
|
|
vm.swappiness = 5
|
|
# (default = 100)
|
|
vm.vfs_cache_pressure = 1000
|
|
|
|
# http://www.linux.org.ru/wiki/en/User:shimon/12309
|
|
# reduce memory size allowed to process (default = 0 )
|
|
vm.overcommit_memory = 2
|
|
# memory allowed to process: total_swap + total_ram * overcommit_ratio / 100 (default = 50 )
|
|
vm.overcommit_ratio = 50
|
|
# disk buffer size (default = 0 )
|
|
vm.dirty_bytes = 1048576
|
|
# disk buffer size (default = 0 )
|
|
vm.dirty_background_bytes = 1048576
|
|
# (default = 40)
|
|
vm.dirty_ratio = 20
|
|
# (default = 10)
|
|
vm.dirty_background_ratio = 5
|
|
|
|
# -- more 12309 tricks --
|
|
# (default = 3000)
|
|
vm.dirty_expire_centisecs = 1000
|
|
# (default = 500)
|
|
vm.dirty_writeback_centisecs = 200
|
|
|
|
### ----- SECURITY ----- ###
|
|
# enable ip forwarding (default = 0)
|
|
net.ipv4.ip_forward = 0
|
|
# enable filtering by source IP address (default = 0)
|
|
net.ipv4.conf.all.rp_filter = 1
|
|
net.ipv4.conf.default.rp_filter = 1
|
|
# accept ICMP-messages for routes (default = 1)
|
|
net.ipv4.conf.default.accept_redirects = 0
|
|
# enable secure redirects (default = 1)
|
|
net.ipv4.conf.all.secure_redirects = 1
|
|
# allow sender to define route (default = 0)
|
|
net.ipv4.conf.default.accept_source_route = 0
|
|
|
|
### ------ OTHER ------- ###
|
|
# reboot on kernel panic, seconds (default = 0)
|
|
kernel.panic = 5
|
|
# several multimedia apps require this option
|
|
kernel.shmmax = 2147483647
|
|
# laptop mode (default = 5)
|
|
vm.laptop_mode=5
|