chromatic/openvpn-install
1
0
Fork 0
mirror of https://github.com/hwdsl2/openvpn-install.git synced 2026-01-11 19:06:18 +00:00
Code Issues Packages Projects Releases Wiki Activity

Improve sysctl settings

Browse Source
This commit is contained in:
hwdsl2
2022-10-31 01:30:18 -05:00
parent 6c1d25897f
commit 6bdb4cc635
1 changed files with 14 additions and 13 deletions
Download Patch File Download Diff File Expand all files Collapse all files

27
openvpn-install.sh
View File

@@ -48,32 +48,33 @@ find_public_ip() {
} }
update_sysctl() { update_sysctl() {
mkdir -p /etc/sysctl.d
conf_fwd="/etc/sysctl.d/99-openvpn-forward.conf"
conf_opt="/etc/sysctl.d/99-openvpn-optimize.conf"
# Enable net.ipv4.ip_forward for the system # Enable net.ipv4.ip_forward for the system
echo 'net.ipv4.ip_forward=1' > /etc/sysctl.d/99-openvpn-forward.conf echo 'net.ipv4.ip_forward=1' > "$conf_fwd"
if [[ -n "$ip6" ]]; then if [[ -n "$ip6" ]]; then
# Enable net.ipv6.conf.all.forwarding for the system # Enable net.ipv6.conf.all.forwarding for the system
echo "net.ipv6.conf.all.forwarding=1" >> /etc/sysctl.d/99-openvpn-forward.conf echo "net.ipv6.conf.all.forwarding=1" >> "$conf_fwd"
fi fi
# Optimize sysctl settings such as TCP buffer sizes # Optimize sysctl settings such as TCP buffer sizes
cat > /etc/sysctl.d/99-openvpn-optimize.conf <<'EOF' base_url="https://github.com/hwdsl2/vpn-extras/releases/download/v1.0.0"
kernel.msgmnb = 65536 conf_url="$base_url/sysctl-ovpn-$os"
kernel.msgmax = 65536 [ "$auto" != 0 ] && conf_url="${conf_url}-auto"
net.core.wmem_max = 16777216 wget -t 3 -T 30 -q -O "$conf_opt" "$conf_url" 2>/dev/null \
net.core.rmem_max = 16777216 || curl -m 30 -fsL "$conf_url" -o "$conf_opt" 2>/dev/null \
net.ipv4.tcp_rmem = 4096 87380 16777216 || { /bin/rm -f "$conf_opt"; touch "$conf_opt"; }
net.ipv4.tcp_wmem = 4096 87380 16777216
EOF
# Enable TCP BBR congestion control if kernel version >= 4.20 # Enable TCP BBR congestion control if kernel version >= 4.20
if modprobe -q tcp_bbr \ if modprobe -q tcp_bbr \
&& printf '%s\n%s' "4.20" "$(uname -r)" | sort -C -V; then && printf '%s\n%s' "4.20" "$(uname -r)" | sort -C -V; then
cat >> /etc/sysctl.d/99-openvpn-optimize.conf <<'EOF' cat >> "$conf_opt" <<'EOF'
net.core.default_qdisc = fq net.core.default_qdisc = fq
net.ipv4.tcp_congestion_control = bbr net.ipv4.tcp_congestion_control = bbr
EOF EOF
fi fi
# Apply sysctl settings # Apply sysctl settings
sysctl -e -q -p /etc/sysctl.d/99-openvpn-forward.conf sysctl -e -q -p "$conf_fwd"
sysctl -e -q -p /etc/sysctl.d/99-openvpn-optimize.conf sysctl -e -q -p "$conf_opt"
} }
new_client() { new_client() {