2348794ef0
Enable fib_multipath_use_neigh for v4 https://www.kernel.org/doc/Documentation/networking/ip-sysctl.txt Why I did: This is helpful if the neighbor are not directly connected then Kernel forward to unreachable neighbor option. With this option forwarding using neighbor state to be valid.
41 lines
1.4 KiB
Plaintext
41 lines
1.4 KiB
Plaintext
# All the sysctl for ipv4/ipv6 network.
|
|
# Same will be used in host or docker namespace
|
|
# It should be provided as key=value format for parsing
|
|
net.ipv6.conf.all.disable_ipv6=0
|
|
net.ipv4.conf.default.forwarding=1
|
|
net.ipv4.conf.all.forwarding=1
|
|
net.ipv4.conf.eth0.forwarding=0
|
|
net.ipv4.conf.default.arp_accept=0
|
|
net.ipv4.conf.default.arp_announce=0
|
|
net.ipv4.conf.default.arp_filter=0
|
|
net.ipv4.conf.default.arp_notify=0
|
|
net.ipv4.conf.default.arp_ignore=0
|
|
net.ipv4.conf.all.arp_accept=0
|
|
net.ipv4.conf.all.arp_announce=1
|
|
net.ipv4.conf.all.arp_filter=0
|
|
net.ipv4.conf.all.arp_notify=1
|
|
net.ipv4.conf.all.arp_ignore=2
|
|
net.ipv4.neigh.default.base_reachable_time_ms=1800000
|
|
net.ipv6.neigh.default.base_reachable_time_ms=1800000
|
|
net.ipv4.neigh.default.gc_thresh1=1024
|
|
net.ipv6.neigh.default.gc_thresh1=1024
|
|
net.ipv4.neigh.default.gc_thresh2=2048
|
|
net.ipv6.neigh.default.gc_thresh2=2048
|
|
net.ipv4.neigh.default.gc_thresh3=4096
|
|
net.ipv6.neigh.default.gc_thresh3=4096
|
|
net.ipv6.conf.default.forwarding=1
|
|
net.ipv6.conf.all.forwarding=1
|
|
net.ipv6.conf.eth0.forwarding=0
|
|
net.ipv6.conf.default.accept_dad=0
|
|
net.ipv6.conf.all.accept_dad=0
|
|
net.ipv6.conf.eth0.accept_dad=0
|
|
net.ipv6.conf.default.keep_addr_on_down=1
|
|
net.ipv6.conf.all.keep_addr_on_down=1
|
|
net.ipv6.conf.eth0.keep_addr_on_down=1
|
|
net.ipv4.tcp_l3mdev_accept=1
|
|
net.ipv4.udp_l3mdev_accept=1
|
|
net.core.rmem_max=3145728
|
|
net.core.wmem_max=3145728
|
|
net.core.somaxconn=512
|
|
net.ipv4.fib_multipath_use_neigh=1
|