summaryrefslogtreecommitdiff
path: root/conf/plugins/kernel-netlink.conf
diff options
context:
space:
mode:
Diffstat (limited to 'conf/plugins/kernel-netlink.conf')
-rw-r--r--conf/plugins/kernel-netlink.conf27
1 files changed, 26 insertions, 1 deletions
diff --git a/conf/plugins/kernel-netlink.conf b/conf/plugins/kernel-netlink.conf
index 3997dc7d9..47f7d58bc 100644
--- a/conf/plugins/kernel-netlink.conf
+++ b/conf/plugins/kernel-netlink.conf
@@ -46,8 +46,33 @@ kernel-netlink {
# Netlink message retransmission timeout, 0 to disable retransmissions.
# timeout = 0
- # Lifetime of XFRM acquire state in kernel.
+ # Lifetime of XFRM acquire state and allocated SPIs in kernel.
# xfrm_acq_expires = 165
+ # XFRM policy hashing threshold configuration for IPv4 and IPv6.
+ spdh_thresh {
+
+ ipv4 {
+
+ # Local subnet XFRM policy hashing threshold for IPv4.
+ # lbits = 32
+
+ # Remote subnet XFRM policy hashing threshold for IPv4.
+ # rbits = 32
+
+ }
+
+ ipv6 {
+
+ # Local subnet XFRM policy hashing threshold for IPv6.
+ # lbits = 128
+
+ # Remote subnet XFRM policy hashing threshold for IPv6.
+ # rbits = 128
+
+ }
+
+ }
+
}
generated by cgit v1.2.3 (git 2.39.1) at 2024-09-20 10:40:37 +0000