Differences
This shows you the differences between two versions of the page.
| Both sides previous revision Previous revision | Next revisionBoth sides next revision | ||
| docs:guide-user:firewall:firewall_components [2019/07/14 16:19] – Link changed from external to internal (internal ones are automatically adjusted when pages are moved, external ones are not) tmomas | docs:guide-user:firewall:firewall_components [2020/07/15 17:42] – [Kernel Tuning via sysctl] updated vgaetera | ||
|---|---|---|---|
| Line 62: | Line 62: | ||
| ===== Kernel Tuning via sysctl ===== | ===== Kernel Tuning via sysctl ===== | ||
| - | ''/ | + | ''/ |
| - | loads ''/ | + | This is a shell script that loads ''/ |
| - | set/tune kernel parameters to provide OpenWrt features. | + | These set/tune kernel parameters to provide OpenWrt features. |
| - | [[http:// | + | See [[man>sysctl.conf]]. |
| - | All are parameters documented under the '' | + | All are parameters documented under the '' |
| - | of kernel source tree so the specifics will not be repeated here. See | + | See '' |
| - | '' | + | |
| - | :!: Since the OpenWrt feature set is fairly static, the kernel parameters almost | + | :!: Since the OpenWrt feature set is fairly static, the kernel parameters almost certainly do not need to tuned beyond the defaults provided in the build. |
| - | certainly do not need to tuned beyond the defaults provided in the build. | + | |
| - | :!: Notice that netfilter bridging support in the kernel is disabled! | + | :!: Notice that netfilter bridging support in the kernel is disabled! |
| - | '' | + | See '' |
| - | <file> | + | <code> |
| bridge-nf-call-iptables - BOOLEAN | bridge-nf-call-iptables - BOOLEAN | ||
| 1 : pass bridged IPv4 traffic to iptables' | 1 : pass bridged IPv4 traffic to iptables' | ||
| 0 : disable this. | 0 : disable this. | ||
| Default: 1 | Default: 1 | ||
| - | </file> | + | </code> |
| - | + | ||
| - | FIXME : the **sysctl** directives in ''/ | + | |
| - | those in the ''/ | + | |
| - | entirely redundant. | + | |