Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Which is the effective ephemeral port range in Linux 2.6 for this set up?
Operating Systems Linux Red Hat Which is the effective ephemeral port range in Linux 2.6 for this set up? Post 302935883 by fpmurphy on Thursday 19th of February 2015 10:12:13 PM
Old 02-19-2015
Quote:
Originally Posted by steephen
sysctl -A | grep net.ipv4.ip_local_port_range

will give effective port range at any moment.
Simpler to just use
Code:
cat /proc/sys/net/ipv4/ip_local_port_range

Quote:
After reboot if we execute sysctl -p /etc/sysctl.conf system update kernel parameter net.ipv4.ip_local_port_range from /etc/sysctrl.conf file
Unless you have modified the contents of /etc/sysctl.conf, this command should be unnecessary as the reboot causes /etc/sysctl.conf to be read. Also the default file is /etc/sysctl.conf, so sufficient to use
Code:
sysctl -p

 

10 More Discussions You Might Find Interesting

1. Solaris

how to set the variales for serial port

Hi, I am working with Solaris 9 Sun Blade-100.I am doing some changes for serial port and by mistaken I changed the serial port /dev/term/a variables. So I need to make the changes fro /dev/term/a same as /dev/term/b. So please tell me how can I do that ?? (1 Reply)
Discussion started by: smartgupta
1 Replies

2. AIX

TCP/UDP port range for default AIX NFS?

May I know what is the TCP/UCP port range for any default AIX NFS? Based on rpcinfo -p, I got the following output: program vers proto port service 100000 4 udp 111 portmapper 100000 3 udp 111 portmapper 100000 2 udp 111 portmapper 100000 4 ... (4 Replies)
Discussion started by: famasutika
4 Replies

3. Shell Programming and Scripting

use variable to set the range of a for loop

Hi; For sure there's an easy answer to this one that I am not finding.. I first set a variable, say b1a:] max=5 then I want to use max to set the range for a for loop like so (it should run for i in 1:5) b1a:] for i in {1..$max}; do echo $i; done {1..5} I would like the output... (2 Replies)
Discussion started by: jbr950
2 Replies

4. AIX

Allow port range using IPsec?

Hi Guys, Please could you tell me if it is possible to have a single rule/filter to allow a certain port range instead of a separate rule for each port? I'm sure it must be possible but I am unable to find the syntax. Thanks Chris (4 Replies)
Discussion started by: chrisstevens
4 Replies

5. Shell Programming and Scripting

How to set end limit while copying files of a range??

I have files being generated in format A20140326.00........ to A20140326.24............. I need to copy these hourly basis from one location to another. Eg. If i copy from 14 to 19 the hour, I use wildcard as A201403226.1*. Requirement is : I need to copy from 06 hour and wil run the script... (1 Reply)
Discussion started by: Saidul
1 Replies

6. UNIX for Dummies Questions & Answers

iptables to block port 25 only to a certain range

I want to limit all *outbound* traffic on eth0 (or all *.*) on port 25 to a specific (allowed) range... I.E. 192.168.1.5 (local ip) tries to connect to 1.2.3.4:25 (outside real world ip) It can proceed because 1.2.3.0/24 is the allowed range Now, 192.168.1.5 (local ip) tries to connect to... (1 Reply)
Discussion started by: holyearth
1 Replies

7. Shell Programming and Scripting

Help with sum range of data set together

Input File: 2000 3 1998 2 1997 2 1994 1 1991 1 1989 1 1987 2 1986 2 1985 1 1984 1 . . 10 277256 9 278274 8 282507 7 284837 6 287066 5 292967 (4 Replies)
Discussion started by: perl_beginner
4 Replies

8. AIX

Forcing named 9 to use a fixed ephemeral port range

I'll start with I'm not an AIX expert, I inherited a lot of AIX servers to maintain. My problem is on AIX 7.1 TL4 SP4 environments. I'm running named as a DNS forwarder only to internal DNS servers. These AIX servers have a customized UDP ephemeral port range to avoid conflicting with the... (0 Replies)
Discussion started by: seanc
0 Replies

9. UNIX for Beginners Questions & Answers

Bash script, find the next closed (not in use) port from some port range.

hi, i would like to create a bash script that check which port in my Linux server are closed (not in use) from a specific range, port range (3000-3010). the print output need to be only 1 port, and it will be nice if the output will be saved as a variable or in same file. my code is: ... (2 Replies)
Discussion started by: yossi
2 Replies

10. UNIX for Beginners Questions & Answers

Cannot subset ranges from another range set

Ca21chr2_C_albicans_SC5314 2159343 2228327 Ca21chr2_C_albicans_SC5314 636587 638608 Ca21chr2_C_albicans_SC5314 5286 50509 Ca21chr2_C_albicans_SC5314 634021 636276 Ca21chr2_C_albicans_SC5314 1886545 1900975 Ca21chr2_C_albicans_SC5314 610758 613544... (9 Replies)
Discussion started by: cryptodice
9 Replies

LEARN ABOUT XFREE86

sysctl.d

SYSCTL.D(5)							     sysctl.d							       SYSCTL.D(5)

NAME

       sysctl.d - Configure kernel parameters at boot

SYNOPSIS

       /etc/sysctl.d/*.conf

       /run/sysctl.d/*.conf

       /usr/lib/sysctl.d/*.conf

DESCRIPTION

       At boot, systemd-sysctl.service(8) reads configuration files from the above directories to configure sysctl(8) kernel parameters.

CONFIGURATION FORMAT

       The configuration files contain a list of variable assignments, separated by newlines. Empty lines and lines whose first non-whitespace
       character is "#" or ";" are ignored.

       Note that either "/" or "."  may be used as separators within sysctl variable names. If the first separator is a slash, remaining slashes
       and dots are left intact. If the first separator is a dot, dots and slashes are interchanged.  "kernel.domainname=foo" and
       "kernel/domainname=foo" are equivalent and will cause "foo" to be written to /proc/sys/kernel/domainname. Either
       "net.ipv4.conf.enp3s0/200.forwarding" or "net/ipv4/conf/enp3s0.200/forwarding" may be used to refer to
       /proc/sys/net/ipv4/conf/enp3s0.200/forwarding.

       The settings configured with sysctl.d files will be applied early on boot. The network interface-specific options will also be applied
       individually for each network interface as it shows up in the system. (More specifically, net.ipv4.conf.*, net.ipv6.conf.*,
       net.ipv4.neigh.*  and net.ipv6.neigh.*).

       Many sysctl parameters only become available when certain kernel modules are loaded. Modules are usually loaded on demand, e.g. when
       certain hardware is plugged in or network brought up. This means that systemd-sysctl.service(8) which runs during early boot will not
       configure such parameters if they become available after it has run. To set such parameters, it is recommended to add an udev(7) rule to
       set those parameters when they become available. Alternatively, a slightly simpler and less efficient option is to add the module to
       modules-load.d(5), causing it to be loaded statically before sysctl settings are applied (see example below).

CONFIGURATION DIRECTORIES AND PRECEDENCE

       Configuration files are read from directories in /etc/, /run/, and /lib/, in order of precedence. Each configuration file in these
       configuration directories shall be named in the style of filename.conf. Files in /etc/ override files with the same name in /run/ and
       /lib/. Files in /run/ override files with the same name in /lib/.

       Packages should install their configuration files in /lib/. Files in /etc/ are reserved for the local administrator, who may use this logic
       to override the configuration files installed by vendor packages. All configuration files are sorted by their filename in lexicographic
       order, regardless of which of the directories they reside in. If multiple files specify the same option, the entry in the file with the
       lexicographically latest name will take precedence. It is recommended to prefix all filenames with a two-digit number and a dash, to
       simplify the ordering of the files.

       If the administrator wants to disable a configuration file supplied by the vendor, the recommended way is to place a symlink to /dev/null
       in the configuration directory in /etc/, with the same filename as the vendor configuration file. If the vendor configuration file is
       included in the initrd image, the image has to be regenerated.

EXAMPLES

       Example 1. Set kernel YP domain name

       /etc/sysctl.d/domain-name.conf:

	   kernel.domainname=example.com

       Example 2. Apply settings available only when a certain module is loaded (method one)

       /etc/udev/rules.d/99-bridge.rules:

	   ACTION=="add", SUBSYSTEM=="module", KERNEL=="br_netfilter", 
		 RUN+="/lib/systemd/systemd-sysctl --prefix=/net/bridge"

       /etc/sysctl.d/bridge.conf:

	   net.bridge.bridge-nf-call-ip6tables = 0
	   net.bridge.bridge-nf-call-iptables = 0
	   net.bridge.bridge-nf-call-arptables = 0

       This method applies settings when the module is loaded. Please note that, unless the br_netfilter module is loaded, bridged packets will
       not be filtered by Netfilter (starting with kernel 3.18), so simply not loading the module is sufficient to avoid filtering.

       Example 3. Apply settings available only when a certain module is loaded (method two)

       /etc/modules-load.d/bridge.conf:

	   br_netfilter

       /etc/sysctl.d/bridge.conf:

	   net.bridge.bridge-nf-call-ip6tables = 0
	   net.bridge.bridge-nf-call-iptables = 0
	   net.bridge.bridge-nf-call-arptables = 0

       This method forces the module to be always loaded. Please note that, unless the br_netfilter module is loaded, bridged packets will not be
       filtered with Netfilter (starting with kernel 3.18), so simply not loading the module is sufficient to avoid filtering.

SEE ALSO

       systemd(1), systemd-sysctl.service(8), systemd-delta(1), sysctl(8), sysctl.conf(5), modprobe(8)

systemd 237															       SYSCTL.D(5)
All times are GMT -4. The time now is 01:45 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy