9be0327a49
systemd provides two sysctl snippets, 50-coredump.conf and 50-default.conf. These enable: - Loose reverse path filtering - Source route filtering - `fq_codel` as a packet scheduler (this helps to fight bufferbloat) This also configures the kernel to pass coredumps to `systemd-coredump`. These sysctl snippets can be found in `/etc/sysctl.d/50-*.conf`, and overridden via `boot.kernel.sysctl` (which will place the parameters in `/etc/sysctl.d/60-nixos.conf`. Let's start using these, like other distros already do for quite some time, and remove those duplicate `boot.kernel.sysctl` options we previously did set. In the case of rp_filter (which systemd would set to 2 (loose)), make our overrides to "1" more explicit. |
||
|---|---|---|
| .. | ||
| amazon-image.nix | ||
| amazon-init.nix | ||
| amazon-options.nix | ||
| anbox.nix | ||
| azure-agent-entropy.patch | ||
| azure-agent.nix | ||
| azure-bootstrap-blobs.nix | ||
| azure-common.nix | ||
| azure-config-user.nix | ||
| azure-config.nix | ||
| azure-image.nix | ||
| azure-images.nix | ||
| brightbox-config.nix | ||
| brightbox-image.nix | ||
| cloudstack-config.nix | ||
| container-config.nix | ||
| containers.nix | ||
| docker-containers.nix | ||
| docker-image.nix | ||
| docker-preloader.nix | ||
| docker.nix | ||
| ec2-amis.nix | ||
| ec2-data.nix | ||
| ec2-metadata-fetcher.nix | ||
| ecs-agent.nix | ||
| gce-images.nix | ||
| google-compute-config.nix | ||
| google-compute-image.nix | ||
| grow-partition.nix | ||
| hyperv-guest.nix | ||
| kvmgt.nix | ||
| libvirtd.nix | ||
| lxc-container.nix | ||
| lxc.nix | ||
| lxcfs.nix | ||
| lxd.nix | ||
| openstack-config.nix | ||
| openvswitch.nix | ||
| parallels-guest.nix | ||
| qemu-guest-agent.nix | ||
| qemu-vm.nix | ||
| rkt.nix | ||
| virtualbox-guest.nix | ||
| virtualbox-host.nix | ||
| virtualbox-image.nix | ||
| vmware-guest.nix | ||
| xe-guest-utilities.nix | ||
| xen-dom0.nix | ||
| xen-domU.nix | ||