centos内核基本调优

一.内核(/etc/sysctl.conf)

1.加大端口号范围

net.ipv4.ip_local_port_range = 10240 65000

2.tcp/ip重用及超时限制

net.ipv4.tcp_syncookies = 1

net.ipv4.tcp_tw_reuse = 1

net.ipv4.tcp_tw_recycle = 1

net.ipv4.tcp_fin_timeout = 30

net.ipv4.tcp_timestamps = 1

3.队列允许连接数

net.ipv4.tcp_max_syn_backlog = 20480

4.使其生效

sysctl -p

如果出现

error: "net.bridge.bridge-nf-call-ip6tables" is an unknown key

error: "net.bridge.bridge-nf-call-iptables" is an unknown key

error: "net.bridge.bridge-nf-call-arptables" is an unknown key

解决方法如下：

modprobe bridge

lsmod|grep bridge

二.文件数限制修改(系统默认为1024)

1.查看系统打开文件数限制

#ulimit -a

2.修改打开文件数限制

#vi /etc/security/limits.conf

* soft nofile 65535

* hard nofile 65535

三.硬盘调优

1.查看分区类型

#df -Th

2.优化ext3分区类型,关闭atime写入

a,vi /etc/fstab

LABEL=/ / ext3 defaults 1 1

LABEL=/data /data ext3 defaults 1 2

LABEL=/boot /boot ext3 defaults 1 2

tmpfs /dev/shm tmpfs defaults 0 0

devpts /dev/pts devpts gid=5,mode=620 0 0

sysfs /sys sysfs defaults 0 0

proc /proc proc defaults 0 0

LABEL=SWAP-sda3 swap swap defaults 0 0

b.将defaults修改为defaults,noatime

c,重新挂载或重启

重新挂载

mount -o remount /data