base-files: update sysctl.conf for modern kernels

SVN-Revision: 26204

diff --git a/package/base-files/Makefile b/package/base-files/Makefile
index 60f9f83b5c18625d2f62098a67a3172953cb7059..5f8a3eaab4272fa7bcefabd233c33431d4d21a37 100644 (file)
--- a/package/base-files/Makefile
+++ b/package/base-files/Makefile
@@ -1,5 +1,5 @@
 #
-# Copyright (C) 2007-2010 OpenWrt.org
+# Copyright (C) 2007-2011 OpenWrt.org
 # Copyright (C) 2010 Vertical Communications
 #
 # This is free software, licensed under the GNU General Public License v2.
@@ -10,7 +10,7 @@ include $(TOPDIR)/rules.mk
 include $(INCLUDE_DIR)/kernel.mk
 
 PKG_NAME:=base-files
-PKG_RELEASE:=66
+PKG_RELEASE:=67
 
 PKG_FILE_DEPENDS:=$(PLATFORM_DIR)/ $(GENERIC_PLATFORM_DIR)/base-files/
 PKG_BUILD_DEPENDS:=opkg/host

diff --git a/package/base-files/files/etc/sysctl.conf b/package/base-files/files/etc/sysctl.conf
index 6da43d0917c0246bb57d2885d13340adc825ff09..40ce77dff3a3b6b01beb0b828126253bbb52cf20 100644 (file)
--- a/package/base-files/files/etc/sysctl.conf
+++ b/package/base-files/files/etc/sysctl.conf
@@ -10,7 +10,7 @@ net.ipv4.tcp_keepalive_time=120
 net.ipv4.tcp_syncookies=1
 net.ipv4.tcp_timestamps=0
 net.core.netdev_max_backlog=30
-net.netfilter.nf_conntrack_checksum=0
+
 net.ipv4.netfilter.ip_conntrack_checksum=0
 net.ipv4.netfilter.ip_conntrack_max=16384
 net.ipv4.netfilter.ip_conntrack_tcp_timeout_established=3600
@@ -18,6 +18,12 @@ net.ipv4.netfilter.ip_conntrack_udp_timeout=60
 net.ipv4.netfilter.ip_conntrack_udp_timeout_stream=180
 net.ipv6.conf.all.forwarding=1
 
+net.netfilter.nf_conntrack_checksum=0
+net.netfilter.nf_conntrack_max=16384
+net.netfilter.nf_conntrack_tcp_timeout_established=3600
+net.netfilter.nf_conntrack_udp_timeout=60
+net.netfilter.nf_conntrack_udp_timeout_stream=180
+
 # disable bridge firewalling by default
 net.bridge.bridge-nf-call-arptables=0
 net.bridge.bridge-nf-call-ip6tables=0