Rozdíly

Zde můžete vidět rozdíly mezi vybranou verzí a aktuální verzí dané stránky.

--- howto:network:conntrack [2016/12/13 13:46] – gandalf
+++ howto:network:conntrack [2022/05/05 12:45] (aktuální) – gandalf
@@ Řádek 136: / Řádek 136: @@
 </code>
+===== Optimalizace =====
+Optimalizace pro 10G karty
+<code>
+# 10GB/54MB (56623104)
+net.core.rmem_max = 56623104
+net.core.wmem_max = 56623104
+net.core.rmem_default = 56623104
+net.core.wmem_default = 56623104
+net.core.optmem_max = 40960
+net.ipv4.tcp_rmem = 4096 87380 56623104
+net.ipv4.tcp_wmem = 4096 65536 56623104
+</code>
+Optimalizace poctu sousedu a ARP cache
+<code>
+#   For IPv4
+net.ipv4.neigh.default.gc_thresh1=8192
+net.ipv4.neigh.default.gc_thresh2=12228
+net.ipv4.neigh.default.gc_thresh3=24456
+# For IPv6
+net.ipv6.neigh.default.gc_thresh1=8192
+net.ipv6.neigh.default.gc_thresh2=12228
+net.ipv6.neigh.default.gc_thresh3=24456
+</code>
+Optimalizace souvisejici s firewallem
+<code>
+#number of incoming connections
+net.core.somaxconn = 2048
+#Maximum number of remembered connection requests
+net.ipv4.tcp_max_syn_backlog = 30000
+# Increase the tcp-time-wait buckets pool size to prevent simple DoS attacks
+net.ipv4.tcp_max_tw_buckets = 2000000
+# Decrease TIME_WAIT seconds
+net.ipv4.tcp_fin_timeout = 10
+</code>
+--- zdroje
+  * [[https://access.redhat.com/solutions/30453#Valid]]