core/conf/sysctl updated

1 files changed, 16 insertions, 0 deletions

diff --git a/core/conf/sysctl.conf b/core/conf/sysctl.conf
index 2a8723b..7b14b46 100644
--- a/core/conf/sysctl.conf
+++ b/core/conf/sysctl.conf
@@ -2,8 +2,20 @@
 # /etc/sysctl.conf: configuration for system variables, see sysctl.conf(5)
 #
 
+#KERN_EMERG     "0"     Emergency messages, system is about to crash or is unstable     pr_emerg
+#KERN_ALERT     "1"     Something bad happened and action must be taken immediately     pr_alert
+#KERN_CRIT      "2"     A critical condition occurred like a serious hardware/software failure  pr_crit
+#KERN_ERR       "3"     An error condition, often used by drivers to indicate difficulties with the hardware    pr_err
+#KERN_WARNING   "4"     A warning, meaning nothing serious by itself but might indicate problems        pr_warning
+#KERN_NOTICE    "5"     Nothing serious, but notably nevertheless. Often used to report security events.        pr_notice
+#KERN_INFO      "6"     Informational message e.g. startup information at driver initialization         pr_info
+#KERN_DEBUG     "7"     Debug messages
+# current | default | minimum | boot-time-default
 kernel.printk = 7 1 1 4
 
+# set to 0 when profiling with apparmor
+kernel.printk_ratelimit=0
+
 kernel.randomize_va_space = 2
 
 # Shared Memory
@@ -37,6 +49,10 @@ net.core.bpf_jit_enable = 0
 # harden all code
 net.core.bpf_jit_harden = 2
 
+# disable tunnels by default user space create
+# them as needed
+net.core.fb_tunnels_only_for_init_net = 1
+
 # Increase Linux auto tuning TCP buffer limits
 # min, default, and max number of bytes to use
 # set max to at least 4MB, or higher if you use very high BDP paths