Optimizing Kernel Parameters IPv4

|













Optimizing Kernel Parameters IPv4 to support iptables and turn on protection from synflood traffic.
To doing this just do simple step:
1. Go to Terminal
2. #gedit /etc/sysctl.conf
3. Modify /etc/sysctl.conf to optimizing kernel parameters IPv4 :

# Kernel sysctl configuration file for Red Hat Linux
#
# For binary values, 0 is disabled, 1 is enabled. See sysctl(8) and
# sysctl.conf(5) for more details.

# Controls IP packet forwarding
net.ipv4.ip_forward = 1

# Controls source route verification
net.ipv4.conf.default.rp_filter = 1

# Do not accept source routing
net.ipv4.conf.default.accept_source_route = 0

# Controls the System Request debugging functionality of the kernel
kernel.sysrq = 0

# Controls whether core dumps will append the PID to the core filename.
# Useful for debugging multi-threaded applications.
kernel.core_uses_pid = 1

# Enable logging of packets with malformed IP addresses
net/ipv4/conf/all/log_martians = 1

# Disable redirects
net/ipv4/conf/all/send_redirects = 0

# Disable acceptance of ICMP redirects
net/ipv4/conf/all/accept_redirects = 0

# Turn on protection from Denial of Service (DOS) attacks
net/ipv4/tcp_syncookies = 1

# Disable responding to ping broadcasts
net/ipv4/icmp_echo_ignore_broadcasts = 1

4. Save this configuration to the current file
5. Restart network service, #service network restart
6. Finish ^_^

reference:
echo.or.id, jasakom, eccouncil.org

Notes:
-There are more configuration of Kernel Parameter option for IPv4 at, /proc/sys/net/ipv4/, You can also optimizing at that path ^_^
e.g : #echo "1" > /proc/sys/net/ipv4/ip_forward

7 comments:

♥ria♥ said...

bingung ^_^
tp smart ya postingannya bermanfaat

Indahnya Berbagi said...

thanks for sharing

how much you know said...

hallo2 mampir ni

how much you know said...

makasih yaa hadiah ultahnya udah sampee..itu daku kirim es jeruk pake tiki. moga2 cepet sampe hahah

Lembaga Pelatihan said...

High level...!! Peace... Ive follow your blog.

rachel said...

mau kasih tanggapan tapi gak ngerti,. hehe,. mampir aj shob,. thanks

Anonymous said...

gak ngerti apa maksudnya.
tp good posting..

n jangan lupa mampir ke tempatku,, ada yang baru tuh

Post a Comment

leave comment here, thanks for visiting
[Friends Link] [Facebook] [Twitter]