# Max File Handlers
fs.file-max = 8192
# Disable CTR+ALT+DEL Restart Keys
kernel.ctrl-alt-del = 1
# Enable TCP SYN cookie protection
net.ipv4.tcp_syncookies = 1
# Disable ICMP Redirect Acceptance
net.ipv4.conf.all.accept_redirects = 0
# Enable bad error message protection
net.ipv4.icmp_ignore_bogus_error_responses = 1
# Decrease time between keepalives
net.ipv4.tcp_keepalive_time = 1200
# Turn off timestamps
net.ipv4.tcp_timestamps = 0
# Ignore icmp broadcast request
net.ipv4.icmp_echo_ignore_broadcasts = 1
# Decrease the time default value for tcp_fin_timeout connection
net.ipv4.tcp_fin_timeout = 25
# Turn off the tcp_window_scaling
net.ipv4.tcp_window_scaling = 0
# Turn off the tcp_sack
net.ipv4.tcp_sack = 0
# Allow more SYN backlog
net.ipv4.tcp_max_syn_backlog = 1048
# Lower retry rates
net.ipv4.tcp_synack_retries = 2
net.ipv4.tcp_syn_retries = 3