diff options
author | Bertrand Jacquin <bertrand@jacquin.bzh> | 2019-09-29 01:29:30 +0100 |
---|---|---|
committer | Bertrand Jacquin <bertrand@jacquin.bzh> | 2019-09-29 01:29:30 +0100 |
commit | 67cd61392ccbc26dcf6df844cba708c5cea83cbc (patch) | |
tree | 65a6840018b594312f8035a5d0c0aa28313cf9b4 | |
parent | factory-default/sys-apps/baselayout: set net.core.bpf_jit_harden=2 (diff) | |
download | portage-67cd61392ccbc26dcf6df844cba708c5cea83cbc.tar.xz |
factory-default/sys-apps/baselayout: set net.ipv4.tcp_rfc1337=1
-rw-r--r-- | factory-default/sys-apps/baselayout/etc/sysctl.conf | 3 |
1 files changed, 3 insertions, 0 deletions
diff --git a/factory-default/sys-apps/baselayout/etc/sysctl.conf b/factory-default/sys-apps/baselayout/etc/sysctl.conf index 98cd5d81..d25331cb 100644 --- a/factory-default/sys-apps/baselayout/etc/sysctl.conf +++ b/factory-default/sys-apps/baselayout/etc/sysctl.conf @@ -182,6 +182,9 @@ net.ipv6.ip_nonlocal_bind = 1 # How often TCP sends out keepalive messages net.ipv4.tcp_keepalive_time = 60 +# Enable TIME-WAIT assassination +net.ipv4.tcp_rfc1337 = 1 + # Restrict use of the IPv6 socket to IPv6 communication net.ipv6.bindv6only = 1 |