/etc/sysctl.d/*.conf files not loading on boot

G

green_lemon

New Member
Apr 24, 2020
3
0
1
32
Hi all.

After spending some time researching conntrack settings, I have decided to put a .conf file in /etc/sysctl.d/ to load some tuning settings on boot.

Unfortunately it seems that my settings are not being loaded. Is this to be expected?

I have the following in /etc/sysctl.d/tune.conf

net.netfilter.nf_conntrack_tcp_timeout_fin_wait = 5

After a reboot, I try sysctl -a | grep net.netfilter.nf_conntrack_tcp_timeout_fin_wait and see that my setting is not set. It is 120 when I expected it to be 5.

net.netfilter.nf_conntrack_tcp_timeout_fin_wait = 120

Is this expected behaviour? To follow on from this, I notice that there is a file named /etc/sysctl.d/pve.conf with the following contents:

net.bridge.bridge-nf-call-ip6tables = 0
net.bridge.bridge-nf-call-iptables = 0
net.bridge.bridge-nf-call-arptables = 0
net.bridge.bridge-nf-filter-vlan-tagged = 0
fs.aio-max-nr = 1048576

It looks as though some of these settings are not being set. Is this intentional?

sysctl -a | grep 'net.bridge'
net.bridge.bridge-nf-call-arptables = 0
net.bridge.bridge-nf-call-ip6tables = 1
net.bridge.bridge-nf-call-iptables = 1


Thanks!
 
Hi,

can't verify this here.
What pveversion do you use?

Code: 
pveversion -v
 
Code: 
proxmox-ve: 6.1-2 (running kernel: 5.3.18-3-pve)
pve-manager: 6.1-8 (running version: 6.1-8/806edfe1)
pve-kernel-helper: 6.1-7
pve-kernel-5.3: 6.1-6
pve-kernel-5.0: 6.0-11
pve-kernel-5.3.18-3-pve: 5.3.18-3
pve-kernel-5.0.21-5-pve: 5.0.21-10
pve-kernel-5.0.15-1-pve: 5.0.15-1
ceph-fuse: 12.2.11+dfsg1-2.1+b1
corosync: 3.0.3-pve1
criu: 3.11-3
glusterfs-client: 5.5-3
ifupdown: 0.8.35+pve1
ksm-control-daemon: 1.3-1
libjs-extjs: 6.0.1-10
libknet1: 1.15-pve1
libpve-access-control: 6.0-6
libpve-apiclient-perl: 3.0-3
libpve-common-perl: 6.0-17
libpve-guest-common-perl: 3.0-5
libpve-http-server-perl: 3.0-5
libpve-storage-perl: 6.1-5
libqb0: 1.0.5-1
libspice-server1: 0.14.2-4~pve6+1
lvm2: 2.03.02-pve4
lxc-pve: 3.2.1-1
lxcfs: 4.0.1-pve1
novnc-pve: 1.1.0-1
proxmox-mini-journalreader: 1.1-1
proxmox-widget-toolkit: 2.1-3
pve-cluster: 6.1-4
pve-container: 3.0-23
pve-docs: 6.1-6
pve-edk2-firmware: 2.20200229-1
pve-firewall: 4.0-10
pve-firmware: 3.0-6
pve-ha-manager: 3.0-9
pve-i18n: 2.0-4
pve-qemu-kvm: 4.1.1-4
pve-xtermjs: 4.3.0-1
qemu-server: 6.1-7
smartmontools: 7.1-pve2
spiceterm: 3.1-1
vncterm: 1.6-1
zfsutils-linux: 0.8.3-pve1
 
You must log in or register to reply here.
Top Bottom