From 6b6da0fb56ab9dfedd4a1b5db8f77cb1fc53fcb0 Mon Sep 17 00:00:00 2001
From: Petri Hienonen <petri.hienonen@gmail.com>
Date: Fri, 19 Dec 2025 14:18:12 +0200
Subject: Update sysctl

---
 roles/shared.nix | 11 ++++++++---
 1 file changed, 8 insertions(+), 3 deletions(-)

(limited to 'roles/shared.nix')

diff --git a/roles/shared.nix b/roles/shared.nix
index 62bd787..c6c0810 100644
--- a/roles/shared.nix
+++ b/roles/shared.nix
@@ -88,25 +88,30 @@
     ];
     kernel.sysctl = {
       "kernel.sysrq" = 1;
+      "net.core.default_qdisc" = "fq";
       "net.core.netdev_max_backlog" = 25000;
       "net.core.rmem_default" = 67108864; # allow network stack 64MB
       "net.core.rmem_max" = 67108864; # allow network stack 64MB
       "net.core.wmem_default" = 67108864;
       "net.core.wmem_max" = 67108864;
-      "net.core.default_qdisc" = "fq";
 
       "net.ipv4.tcp_congestion_control" = "bbr";
       "net.ipv4.tcp_ecn" = 1;
       "net.ipv4.tcp_fastopen" = 3;
       "net.ipv4.tcp_fin_timeout" = 10;
       "net.ipv4.tcp_low_latency" = 1;
-      "net.ipv4.tcp_mtu_probing" = 2; # recommended for hosts with jumbo frames enabled
+      "net.ipv4.tcp_min_rtt_wlen" = 60;
+      "net.ipv4.tcp_mtu_probing" = 2;
       "net.ipv4.tcp_no_metrics_save" = 1;
-      "net.ipv4.tcp_rmem" = "4096 87380 33554432"; # increase Linux autotuning TCP buffer limit to 32MB
+      "net.ipv4.tcp_rmem" = "4096 87380 33554432"; # 32MB
       "net.ipv4.tcp_slow_start_after_idle" = 0;
       "net.ipv4.tcp_syncookies" = 1;
       "net.ipv4.tcp_timestamps" = 1;
+      "net.ipv4.tcp_window_scaling" = 1;
       "net.ipv4.tcp_wmem" = "4096 65536 33554432";
+      "net.ipv4.udp_early_demux" = 1;
+      "net.ipv4.udp_rmem_min" = 16384;
+
       "net.ipv6.conf.default.accept_ra" = 2;
       "net.ipv6.conf.default.router_solicitations" = 3;
       "net.ipv6.conf.default.router_solicitation_interval" = 1;
-- 
cgit v1.2.3-70-g09d2