From: Hristo Venev <hristo@venev.name>
Date: Tue, 5 Dec 2017 14:30:43 +0000 (+0200)
Subject: Do not set `net.ipv4.conf.default.*`
X-Git-Tag: v236~59^2~2
X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=9fefb9e3cdebcefa681672423d23ccc72ae6c165;p=thirdparty%2Fsystemd.git

Do not set `net.ipv4.conf.default.*`

It is redundant because in these cases the values in
`net.ipv4.conf.all.*` take precedence. Also, setting the `default` does
nothing for devices that already exist.
---

diff --git a/sysctl.d/50-default.conf b/sysctl.d/50-default.conf
index aff99300d94..e263cf06284 100644
--- a/sysctl.d/50-default.conf
+++ b/sysctl.d/50-default.conf
@@ -22,15 +22,12 @@ kernel.sysrq = 16
 kernel.core_uses_pid = 1
 
 # Source route verification
-net.ipv4.conf.default.rp_filter = 1
 net.ipv4.conf.all.rp_filter = 1
 
 # Do not accept source routing
-net.ipv4.conf.default.accept_source_route = 0
 net.ipv4.conf.all.accept_source_route = 0
 
 # Promote secondary addresses when the primary address is removed
-net.ipv4.conf.default.promote_secondaries = 1
 net.ipv4.conf.all.promote_secondaries = 1
 
 # Fair Queue CoDel packet scheduler to fight bufferbloat