diff options
Diffstat (limited to 'sysconf/vyatta-sysctl.conf')
| -rw-r--r-- | sysconf/vyatta-sysctl.conf | 10 |
1 files changed, 7 insertions, 3 deletions
diff --git a/sysconf/vyatta-sysctl.conf b/sysconf/vyatta-sysctl.conf index 01ae92f8..e336ddbb 100644 --- a/sysconf/vyatta-sysctl.conf +++ b/sysconf/vyatta-sysctl.conf @@ -54,16 +54,17 @@ net.ipv4.conf.default.rp_filter=0 # Enable tcp syn-cookies by default net.ipv4.tcp_syncookies=1 -# Disable accept_redirects for all -net.ipv4.conf.all.accept_redirects=0 - # Disable accept_redirects by default for any interface net.ipv4.conf.all.accept_redirects=0 net.ipv4.conf.default.accept_redirects=0 +net.ipv6.conf.all.accept_redirects=0 +net.ipv6.conf.default.accept_redirects=0 # Disable accept_source_route by default net.ipv4.conf.all.accept_source_route=0 net.ipv4.conf.default.accept_source_route=0 +net.ipv6.conf.all.accept_source_route=0 +net.ipv6.conf.default.accept_source_route=0 # Enable send_redirects by default net.ipv4.conf.all.send_redirects=1 @@ -74,6 +75,9 @@ net.core.rmem_max=2097152 # Enable packet forwarding for IPv6 net.ipv6.conf.all.forwarding=1 +# Increase route table limit +net.ipv6.route.max_size = 262144 + # Do not forget IPv6 addresses when a link goes down net.ipv6.conf.default.keep_addr_on_down=1 net.ipv6.conf.all.keep_addr_on_down=1 |