Created
June 9, 2015 15:04
-
-
Save fntlnz/653a10906d897cfc7541 to your computer and use it in GitHub Desktop.
/etc/sysctl.conf tuning
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Recycle Zombie connections | |
| net.inet.tcp.fast_finwait2_recycle=1 | |
| net.inet.tcp.maxtcptw=200000 | |
| # Increase number of files | |
| kern.maxfiles=65535 | |
| kern.maxfilesperproc=16384 | |
| # Increase page share factor per process | |
| vm.pmap.pv_entry_max=54272521 | |
| vm.pmap.shpgperproc=20000 | |
| # Increase number of connections | |
| vfs.vmiodirenable=1 | |
| kern.ipc.somaxconn=3240000 | |
| net.inet.tcp.rfc1323=1 | |
| net.inet.tcp.delayed_ack=0 | |
| net.inet.tcp.restrict_rst=1 | |
| kern.ipc.maxsockbuf=2097152 | |
| kern.ipc.shmmax=268435456 | |
| # Host cache | |
| net.inet.tcp.hostcache.hashsize=4096 | |
| net.inet.tcp.hostcache.cachelimit=131072 | |
| net.inet.tcp.hostcache.bucketlimit=120 | |
| # Increase number of ports | |
| net.inet.ip.portrange.first=2000 | |
| net.inet.ip.portrange.last=100000 | |
| net.inet.ip.portrange.hifirst=2000 | |
| net.inet.ip.portrange.hilast=100000 | |
| kern.ipc.semvmx=131068 | |
| # Disable Ping-flood attacks | |
| net.inet.tcp.msl=2000 | |
| net.inet.icmp.bmcastecho=1 | |
| net.inet.icmp.icmplim=1 | |
| net.inet.tcp.blackhole=2 | |
| net.inet.udp.blackhole=1 |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment