|
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
|
网络设置:setup设置网络vi /etc/sysconfig/netwrok-scripts/ifcfg-eth0删除HWADDR和UUID行dns:/etc/resolv.conflinux版本,内核查看cat /etc/redhat-releaseuname -runame -mSELINUX[root@lufengcentos ~]# sed -i 's/SELINUX=enforcing/SELINUX=disabled/' /etc/selinux/config[root@lufengcentos ~]# setenforce 0[root@lufengcentos ~]# getenforce开机自启动[root@lufengcentos ~]# for oldboy in `chkconfig --list|grep 3:on|awk '{print $1}'`;do chkconfig --level 3 $oldboy off;done [root@lufengcentos ~]# for oldboy in crond network rsyslog sshd sysstat ;do chkconfig --level 3 $oldboy on;done[root@lufengcentos ~]# chkconfig --list|grep 3:on 防火墙[root@lufengcentos ~]# /etc/init.d/iptables stopiptables: Setting chains to policy ACCEPT: filter [ OK ]iptables: Flushing firewall rules: [ OK ]iptables: Unloading modules: [ OK ]中文字符[root@lufengcentos ~]# cat /etc/sysconfig/i18nLANG="en_US.UTF-8"SYSFONT="latarcyrheb-sun16"[root@lufengcentos ~]# cp /etc/sysconfig/i18n /etc/sysconfig/i18n.ori [root@lufengcentos ~]# echo ' LANG="zh_CN.UTF-8"' >/etc/sysconfig/i18n[root@lufengcentos ~]# source /etc/sysconfig/i18n[root@lufengcentos ~]# echo $LANG时间同步[root@lufengcentos ~]# echo '#time sync by lufeng @2017-3-14' >>/var/spool/cron/root[root@lufengcentos ~]# echo '*/5 * * * * /usr/sbin/ntpdate time.nist.gov' >/dev/null2>&1 >>/var/spool/cron/root[root@lufengcentos ~]# crontab -l#time sync by lufeng @2017-3-14*/5 * * * * /usr/sbin/ntpdate time.nist.gov文件描述符设置[root@lufengcentos ~]# ulimit -n1024[root@lufengcentos ~]# vim /etc/security/limits.conf* - nofile 65535内核优化[root@lufengcentos ~]# vi /etc/sysctl.confnet.ipv4.tcp_syn_retries = 1net.ipv4.tcp_synack_retries = 1net.ipv4.tcp_keepalive_time = 600net.ipv4.tcp_keepalive_probes = 3net.ipv4.tcp_keepalive_intvl =15net.ipv4.tcp_retries2 = 5net.ipv4.tcp_fin_timeout = 2net.ipv4.tcp_max_tw_buckets = 36000net.ipv4.tcp_tw_recycle = 1net.ipv4.tcp_tw_reuse = 1net.ipv4.tcp_max_orphans = 32768net.ipv4.tcp_syncookies = 1net.ipv4.tcp_max_syn_backlog = 16384net.ipv4.tcp_wmem = 8192 131072 16777216net.ipv4.tcp_rmem = 32768 131072 16777216net.ipv4.tcp_mem = 786432 1048576 1572864net.ipv4.ip_local_port_range = 1024 65000net.ipv4.ip_conntrack_max = 65536net.ipv4.netfilter.ip_conntrack_max=65536net.ipv4.netfilter.ip_conntrack_tcp_timeout_established=180net.core.somaxconn = 16384net.core.netdev_max_backlog = 16384[root@lufengcentos ~]# sysctl -p |
本文出自 “大梦初醒” 博客,请务必保留此出处http://bestlufeng.blog.51cto.com/11790256/1906914