-
-
Save anthonyclarka2/43c1e6a51a9fa89be85a47b1f736fd59 to your computer and use it in GitHub Desktop.
A decent base to start tuning off of for centos 7 apache and mariadb systems
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Other links: | |
| # https://christophermonzon.wordpress.com/2016/10/04/centos-7-network-performance/ | |
| # https://lwn.net/Articles/616241/ | |
| # https://wiki.mikejung.biz/Sysctl_tweaks | |
| # https://access.redhat.com/solutions/190643 | |
| # http://fasterdata.es.net/network-tuning/udp-tuning/ | |
| # MariaDB Tuning | |
| vm.swappiness = 1 | |
| fs.file-max = 2097152 | |
| vm.dirty_ratio = 60 | |
| vm.dirty_background_ratio = 2 | |
| # Sets the time before the kernel considers migrating a proccess to another core | |
| kernel.sched_migration_cost_ns = 5000000 | |
| # Group tasks by TTY | |
| kernel.sched_autogroup_enabled = 0 | |
| ### GENERAL NETWORK SECURITY OPTIONS ### | |
| # Number of times SYNACKs for passive TCP connection. | |
| net.ipv4.tcp_synack_retries = 2 | |
| # Allowed local port range | |
| net.ipv4.ip_local_port_range = 2000 65535 | |
| # Protect Against TCP Time-Wait | |
| net.ipv4.tcp_rfc1337 = 1 | |
| # Control Syncookies | |
| net.ipv4.tcp_syncookies = 1 | |
| # Decrease the time default value for tcp_fin_timeout connection | |
| net.ipv4.tcp_fin_timeout = 15 | |
| # Decrease the time default value for connections to keep alive | |
| net.ipv4.tcp_keepalive_time = 300 | |
| net.ipv4.tcp_keepalive_probes = 5 | |
| net.ipv4.tcp_keepalive_intvl = 15 | |
| ### TUNING NETWORK PERFORMANCE ### | |
| # Default Socket Receive Buffer | |
| net.core.rmem_default = 31457280 | |
| # Maximum Socket Receive Buffer | |
| net.core.rmem_max = 12582912 | |
| # Default Socket Send Buffer | |
| net.core.wmem_default = 31457280 | |
| # Maximum Socket Send Buffer | |
| net.core.wmem_max = 12582912 | |
| # Increase number of incoming connections | |
| net.core.somaxconn = 4096 | |
| # Increase number of incoming connections backlog | |
| net.core.netdev_max_backlog = 65536 | |
| # Increase the maximum amount of option memory buffers | |
| net.core.optmem_max = 25165824 | |
| # Increase the maximum total buffer-space allocatable | |
| # This is measured in units of pages (4096 bytes) | |
| net.ipv4.tcp_mem = 65536 131072 262144 | |
| net.ipv4.udp_mem = 65536 131072 262144 | |
| # Increase the read-buffer space allocatable | |
| net.ipv4.tcp_rmem = 8192 87380 16777216 | |
| net.ipv4.udp_rmem_min = 16384 | |
| # Increase the write-buffer-space allocatable | |
| net.ipv4.tcp_wmem = 8192 65536 16777216 | |
| net.ipv4.udp_wmem_min = 16384 | |
| # Increase the tcp-time-wait buckets pool size to prevent simple DOS attacks | |
| net.ipv4.tcp_max_tw_buckets = 1440000 | |
| net.ipv4.tcp_tw_recycle = 1 | |
| net.ipv4.tcp_tw_reuse = 1 |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment