summaryrefslogtreecommitdiffstats
path: root/sysctl.d
diff options
context:
space:
mode:
authorLennart Poettering <lennart@poettering.net>2014-08-15 12:07:33 +0200
committerLennart Poettering <lennart@poettering.net>2014-08-15 12:07:33 +0200
commit1836bf9e1d70240c8079e4db4312309f4f1f91fd (patch)
tree3658aadc2903590699c2f552039d3aa3af5f7cf1 /sysctl.d
parentcgroup: downgrade log messages about non-existant cgroup attributes to LOG_DEBUG (diff)
downloadsystemd-1836bf9e1d70240c8079e4db4312309f4f1f91fd.tar.xz
systemd-1836bf9e1d70240c8079e4db4312309f4f1f91fd.zip
sysctl: always write net.ipv4.conf.all.xyz= in addition to net.ipv4.conf.default.xyz=
Otherwise we have a boot-time race, where interfaces that popped up after the sysctl service would get the settings applied, but all others wouldn't.
Diffstat (limited to 'sysctl.d')
-rw-r--r--sysctl.d/50-default.conf3
1 files changed, 3 insertions, 0 deletions
diff --git a/sysctl.d/50-default.conf b/sysctl.d/50-default.conf
index 1ee3698ca6..8fc9ab77a9 100644
--- a/sysctl.d/50-default.conf
+++ b/sysctl.d/50-default.conf
@@ -15,12 +15,15 @@ kernel.core_uses_pid = 1
# Source route verification
net.ipv4.conf.default.rp_filter = 1
+net.ipv4.conf.all.rp_filter = 1
# Do not accept source routing
net.ipv4.conf.default.accept_source_route = 0
+net.ipv4.conf.all.accept_source_route = 0
# Promote secondary addresses when the primary address is removed
net.ipv4.conf.default.promote_secondaries = 1
+net.ipv4.conf.all.promote_secondaries = 1
# Enable hard and soft link protection
fs.protected_hardlinks = 1