Git-Mirrors/graphene-os-server-infrastructure
1
0
Fork 0
mirror of https://github.com/GrapheneOS/infrastructure.git synced 2025-11-19 22:42:24 -05:00
Code Issues Projects Releases Packages Wiki Activity

reduce conntrack TCP established timeout to 1 hour

Browse source 
We have nothing depending on having even anywhere close to 1 hour of
idle time so we could reduce this significantly more.
This commit is contained in:
Daniel Micay 2025-08-31 12:48:30 -04:00
parent e5ae9ca13b
commit 28106192b1
1 changed files with 1 additions and 1 deletions
Download patch file Download diff file Expand all files Collapse all files

2
etc/sysctl.d/60-local.conf
View file

@ -40,7 +40,7 @@ net.ipv4.tcp_orphan_retries = 6
net.mptcp.enabled = 0 net.mptcp.enabled = 0
net.netfilter.nf_conntrack_tcp_loose = 0 net.netfilter.nf_conntrack_tcp_loose = 0
net.netfilter.nf_conntrack_tcp_timeout_established = 14400 net.netfilter.nf_conntrack_tcp_timeout_established = 1800
net.netfilter.nf_conntrack_tcp_timeout_time_wait = 60 net.netfilter.nf_conntrack_tcp_timeout_time_wait = 60
net.netfilter.nf_conntrack_udp_timeout = 15 net.netfilter.nf_conntrack_udp_timeout = 15
net.netfilter.nf_conntrack_expect_max = 1 net.netfilter.nf_conntrack_expect_max = 1