System parameters:
[Root@hk tmp]# Uname-m
x86_64
[Root@hk tmp]# Cat/etc/redhat-release
CentOS Release 6.6 (Final)
Tuning Parameters:
[Root@hk/]# tail-20/etc/sysctl.conf
Net.ipv4.tcp_fin_timeout = 2
Net.ipv4.tcp_tw_reuse = 1
Net.ipv4.tcp_tw_recycle = 1
Net.ipv4.tcp_syncookies = 1
Net.ipv4.tcp_keepalive_time =600
Net.ipv4.ip_local_port_range = 4000 65000
Net.ipv4.tcp_max_syn_backlog = 16384
Net.ipv4.tcp_max_tw_buckets = 36000
Net.ipv4.route.gc_timeout = 100
Net.ipv4.tcp_syn_retries = 1
Net.ipv4.tcp_synack_retries = 1
Net.core.somaxconn = 16384
Net.core.netdev_max_backlog = 16384
Net.ipv4.tcp_max_orphans = 16384
Net.ipv4.ip_conntrack_max = 25000000
Net.ipv4.netfilter.ip_conntrack_max = 25000000
net.ipv4.netfilter.ip_conntrack_tcp_timeout_established = 180
net.ipv4.netfilter.ip_conntrack_tcp_timeout_time_wait = 120
Net.ipv4.netfilter.ip_conntrack_tcp_timeout_close_wait = 60
net.ipv4.netfilter.ip_conntrack_tcp_timeout_fin_wait = 120
[Root@hk/]# Sysctl-p
Net.ipv4.ip_forward = 0
Net.ipv4.tcp_syncookies = 1
Error:permission denied on key ' Net.bridge.bridge-nf-call-ip6tables '
Error:permission denied on key ' Net.bridge.bridge-nf-call-iptables '
Error:permission denied on key ' Net.bridge.bridge-nf-call-arptables '
Error:permission denied on key ' Net.ipv4.tcp_fin_timeout '
Error:permission denied on key ' Net.ipv4.tcp_tw_reuse '
Error:permission denied on key ' net.ipv4.tcp_tw_recycle '
Net.ipv4.tcp_syncookies = 1
Error:permission denied on key ' Net.ipv4.tcp_keepalive_time '
Error:permission denied on key ' Net.ipv4.ip_local_port_range '
Error:permission denied on key ' Net.ipv4.tcp_max_syn_backlog '
Error:permission denied on key ' Net.ipv4.tcp_max_tw_buckets '
Error:permission denied on key ' Net.ipv4.route.gc_timeout '
Error:permission denied on key ' net.ipv4.tcp_syn_retries '
Error:permission denied on key ' net.ipv4.tcp_synack_retries '
Net.core.somaxconn = 16384
Error:permission denied on key ' Net.core.netdev_max_backlog '
Error:permission denied on key ' Net.ipv4.tcp_max_orphans '
Error: "Net.ipv4.ip_conntrack_max" is an unknown key
Error: "Net.ipv4.netfilter.ip_conntrack_max" is an unknown key
Error: "Net.ipv4.netfilter.ip_conntrack_tcp_timeout_established" is an unknown key
Error: "Net.ipv4.netfilter.ip_conntrack_tcp_timeout_time_wait" is an unknown key
Error: "Net.ipv4.netfilter.ip_conntrack_tcp_timeout_close_wait" is an unknown key
Error: "Net.ipv4.netfilter.ip_conntrack_tcp_timeout_fin_wait" is an unknown key
Solution: I just like it, it's obviously not right!!!
[Root@hk/]# Tail-2/etc/rc.local
Modprobe Nf_conntrack
Modprobe Bridge
[Root@hk/]# mv/sbin/modprobe/tmp/
[Root@hk/]# mv/sbin/sysctl/tmp/
[Root@hk/]# ln-s/bin/true/sbin/modprobe
[Root@hk/]# ln-s/bin/true/sbin/sysctl