1 files changed, 235 insertions, 54 deletions
diff --git a/Documentation/networking/ip-sysctl.txt b/Documentation/networking/ip-sysctl.txt
index 17a6e46fbd43..d84932650fd3 100644
--- a/Documentation/networking/ip-sysctl.txt
+++ b/Documentation/networking/ip-sysctl.txt
@@ -81,23 +81,23 @@ inet_peer_minttl - INTEGER
        Minimum time-to-live of entries.  Should be enough to cover fragment
        time-to-live on the reassembling side.  This minimum time-to-live  is
        guaranteed if the pool size is less than inet_peer_threshold.
-        Measured in jiffies(1).
+        Measured in seconds.
 inet_peer_maxttl - INTEGER
        Maximum time-to-live of entries.  Unused entries will expire after
        this period of time if there is no memory pressure on the pool (i.e.
        when the number of entries in the pool is very small).
-        Measured in jiffies(1).
+        Measured in seconds.
 inet_peer_gc_mintime - INTEGER
        Minimum interval between garbage collection passes.  This interval is
        in effect under high memory pressure on the pool.
-        Measured in jiffies(1).
+        Measured in seconds.
 inet_peer_gc_maxtime - INTEGER
        Minimum interval between garbage collection passes.  This interval is
        in effect under low (or absent) memory pressure on the pool.
-        Measured in jiffies(1).
+        Measured in seconds.
 TCP variables: 
@@ -148,9 +148,9 @@ tcp_available_congestion_control - STRING
        but not loaded.
 tcp_base_mss - INTEGER
-        The initial value of search_low to be used by Packetization Layer
+        The initial value of search_low to be used by the packetization layer
-        Path MTU Discovery (MTU probing).  If MTU probing is enabled,
+        Path MTU discovery (MTU probing).  If MTU probing is enabled,
-        this is the inital MSS used by the connection.
+        this is the initial MSS used by the connection.
 tcp_congestion_control - STRING
        Set the congestion control algorithm to be used for new
@@ -185,10 +185,9 @@ tcp_frto - INTEGER
        timeouts.  It is particularly beneficial in wireless environments
        where packet loss is typically due to random radio interference
        rather than intermediate router congestion.  F-RTO is sender-side
-        only modification.  Therefore it does not require any support from
+        only modification. Therefore it does not require any support from
-        the peer, but in a typical case, however, where wireless link is
+        the peer.
-        the local access link and most of the data flows downlink, the
-        faraway servers should have F-RTO enabled to take advantage of it.
        If set to 1, basic version is enabled.  2 enables SACK enhanced
        F-RTO if flow uses SACK.  The basic version can be used also when
        SACK is in use though scenario(s) with it exists where F-RTO
@@ -276,7 +275,7 @@ tcp_mem - vector of 3 INTEGERs: min, pressure, max
        memory.
 tcp_moderate_rcvbuf - BOOLEAN
-        If set, TCP performs receive buffer autotuning, attempting to
+        If set, TCP performs receive buffer auto-tuning, attempting to
        automatically size the buffer (no greater than tcp_rmem[2]) to
        match the size required by the path for full throughput.  Enabled by
        default.
@@ -336,7 +335,7 @@ tcp_rmem - vector of 3 INTEGERs: min, default, max
        pressure.
        Default: 8K
-        default: default size of receive buffer used by TCP sockets.
+        default: initial size of receive buffer used by TCP sockets.
        This value overrides net.core.rmem_default used by other protocols.
        Default: 87380 bytes. This value results in window of 65535 with
        default setting of tcp_adv_win_scale and tcp_app_win:0 and a bit
@@ -344,8 +343,10 @@ tcp_rmem - vector of 3 INTEGERs: min, default, max
        max: maximal size of receive buffer allowed for automatically
        selected receiver buffers for TCP socket. This value does not override
-        net.core.rmem_max, "static" selection via SO_RCVBUF does not use this.
+        net.core.rmem_max.  Calling setsockopt() with SO_RCVBUF disables
-        Default: 87380*2 bytes.
+        automatic tuning of that socket's receive buffer size, in which
+        case this value is ignored.
+        Default: between 87380B and 4MB, depending on RAM size.
 tcp_sack - BOOLEAN
        Enable select acknowledgments (SACKS).
@@ -358,7 +359,7 @@ tcp_slow_start_after_idle - BOOLEAN
        Default: 1
 tcp_stdurg - BOOLEAN
-        Use the Host requirements interpretation of the TCP urg pointer field.
+        Use the Host requirements interpretation of the TCP urgent pointer field.
        Most hosts use the older BSD interpretation, so if you turn this on
        Linux might not communicate correctly with them.
        Default: FALSE
@@ -371,12 +372,12 @@ tcp_synack_retries - INTEGER
 tcp_syncookies - BOOLEAN
        Only valid when the kernel was compiled with CONFIG_SYNCOOKIES
        Send out syncookies when the syn backlog queue of a socket
-        overflows. This is to prevent against the common 'syn flood attack'
+        overflows. This is to prevent against the common 'SYN flood attack'
        Default: FALSE
        Note, that syncookies is fallback facility.
        It MUST NOT be used to help highly loaded servers to stand
-        against legal connection rate. If you see synflood warnings
+        against legal connection rate. If you see SYN flood warnings
        in your logs, but investigation shows that they occur
        because of overload with legal connections, you should tune
        another parameters until this warning disappear.
@@ -386,7 +387,7 @@ tcp_syncookies - BOOLEAN
        to use TCP extensions, can result in serious degradation
        of some services (f.e. SMTP relaying), visible not by you,
        but your clients and relays, contacting you. While you see
-        synflood warnings in logs not being really flooded, your server
+        SYN flood warnings in logs not being really flooded, your server
        is seriously misconfigured.
 tcp_syn_retries - INTEGER
@@ -419,19 +420,21 @@ tcp_window_scaling - BOOLEAN
        Enable window scaling as defined in RFC1323.
 tcp_wmem - vector of 3 INTEGERs: min, default, max
-        min: Amount of memory reserved for send buffers for TCP socket.
+        min: Amount of memory reserved for send buffers for TCP sockets.
        Each TCP socket has rights to use it due to fact of its birth.
        Default: 4K
-        default: Amount of memory allowed for send buffers for TCP socket
+        default: initial size of send buffer used by TCP sockets.  This
-        by default. This value overrides net.core.wmem_default used
+        value overrides net.core.wmem_default used by other protocols.
-        by other protocols, it is usually lower than net.core.wmem_default.
+        It is usually lower than net.core.wmem_default.
        Default: 16K
-        max: Maximal amount of memory allowed for automatically selected
+        max: Maximal amount of memory allowed for automatically tuned
-        send buffers for TCP socket. This value does not override
+        send buffers for TCP sockets. This value does not override
-        net.core.wmem_max, "static" selection via SO_SNDBUF does not use this.
+        net.core.wmem_max.  Calling setsockopt() with SO_SNDBUF disables
-        Default: 128K
+        automatic tuning of that socket's send buffer size, in which case
+        this value is ignored.
+        Default: between 64K and 4MB, depending on RAM size.
 tcp_workaround_signed_windows - BOOLEAN
        If set, assume no receipt of a window scaling option means the
@@ -548,8 +551,9 @@ icmp_echo_ignore_broadcasts - BOOLEAN
 icmp_ratelimit - INTEGER
        Limit the maximal rates for sending ICMP packets whose type matches
        icmp_ratemask (see below) to specific targets.
-        0 to disable any limiting, otherwise the maximal rate in jiffies(1)
+        0 to disable any limiting,
-        Default: 100
+        otherwise the minimal space between responses in milliseconds.
+        Default: 1000
 icmp_ratemask - INTEGER
        Mask made of ICMP types for which rates are being limited.
@@ -794,10 +798,6 @@ tag - INTEGER
        Allows you to write a number, which can be used as required.
        Default value is 0.
-(1) Jiffie: internal timeunit for the kernel. On the i386 1/100s, on the
-Alpha 1/1024s. See the HZ define in /usr/include/asm/param.h for the exact
-value on your system. 
 Alexey Kuznetsov.
 kuznet@ms2.inr.ac.ru
@@ -1024,11 +1024,23 @@ max_addresses - INTEGER
        autoconfigured addresses.
        Default: 16
+disable_ipv6 - BOOLEAN
+        Disable IPv6 operation.
+        Default: FALSE (enable IPv6 operation)
+accept_dad - INTEGER
+        Whether to accept DAD (Duplicate Address Detection).
+        0: Disable DAD
+        1: Enable DAD (default)
+        2: Enable DAD, and disable IPv6 operation if MAC-based duplicate
+           link-local address has been found.
 icmp/*:
 ratelimit - INTEGER
        Limit the maximal rates for sending ICMPv6 packets.
-        0 to disable any limiting, otherwise the maximal rate in jiffies(1)
+        0 to disable any limiting,
-        Default: 100
+        otherwise the minimal space between responses in milliseconds.
+        Default: 1000
 IPv6 Update by:
@@ -1064,24 +1076,193 @@ bridge-nf-filter-pppoe-tagged - BOOLEAN
        Default: 1
-UNDOCUMENTED:
+proc/sys/net/sctp/* Variables:
+addip_enable - BOOLEAN
+        Enable or disable extension of  Dynamic Address Reconfiguration
+        (ADD-IP) functionality specified in RFC5061.  This extension provides
+        the ability to dynamically add and remove new addresses for the SCTP
+        associations.
+        1: Enable extension.
+        0: Disable extension.
+        Default: 0
+addip_noauth_enable - BOOLEAN
+        Dynamic Address Reconfiguration (ADD-IP) requires the use of
+        authentication to protect the operations of adding or removing new
+        addresses.  This requirement is mandated so that unauthorized hosts
+        would not be able to hijack associations.  However, older
+        implementations may not have implemented this requirement while
+        allowing the ADD-IP extension.  For reasons of interoperability,
+        we provide this variable to control the enforcement of the
+        authentication requirement.
+        1: Allow ADD-IP extension to be used without authentication.  This
+           should only be set in a closed environment for interoperability
+           with older implementations.
+        0: Enforce the authentication requirement
+        Default: 0
+auth_enable - BOOLEAN
+        Enable or disable Authenticated Chunks extension.  This extension
+        provides the ability to send and receive authenticated chunks and is
+        required for secure operation of Dynamic Address Reconfiguration
+        (ADD-IP) extension.
+        1: Enable this extension.
+        0: Disable this extension.
+        Default: 0
+prsctp_enable - BOOLEAN
+        Enable or disable the Partial Reliability extension (RFC3758) which
+        is used to notify peers that a given DATA should no longer be expected.
+        1: Enable extension
+        0: Disable
+        Default: 1
+max_burst - INTEGER
+        The limit of the number of new packets that can be initially sent.  It
+        controls how bursty the generated traffic can be.
+        Default: 4
+association_max_retrans - INTEGER
+        Set the maximum number for retransmissions that an association can
+        attempt deciding that the remote end is unreachable.  If this value
+        is exceeded, the association is terminated.
+        Default: 10
+max_init_retransmits - INTEGER
+        The maximum number of retransmissions of INIT and COOKIE-ECHO chunks
+        that an association will attempt before declaring the destination
+        unreachable and terminating.
+        Default: 8
+path_max_retrans - INTEGER
+        The maximum number of retransmissions that will be attempted on a given
+        path.  Once this threshold is exceeded, the path is considered
+        unreachable, and new traffic will use a different path when the
+        association is multihomed.
+        Default: 5
-dev_weight FIXME
+rto_initial - INTEGER
-discovery_slots FIXME
+        The initial round trip timeout value in milliseconds that will be used
-discovery_timeout FIXME
+        in calculating round trip times.  This is the initial time interval
-fast_poll_increase FIXME
+        for retransmissions.
-ip6_queue_maxlen FIXME
-lap_keepalive_time FIXME
+        Default: 3000
-lo_cong FIXME
-max_baud_rate FIXME
+rto_max - INTEGER
-max_dgram_qlen FIXME
+        The maximum value (in milliseconds) of the round trip timeout.  This
-max_noreply_time FIXME
+        is the largest time interval that can elapse between retransmissions.
-max_tx_data_size FIXME
-max_tx_window FIXME
+        Default: 60000
-min_tx_turn_time FIXME
-mod_cong FIXME
+rto_min - INTEGER
-no_cong FIXME
+        The minimum value (in milliseconds) of the round trip timeout.  This
-no_cong_thresh FIXME
+        is the smallest time interval the can elapse between retransmissions.
-slot_timeout FIXME
-warn_noreply_time FIXME
+        Default: 1000
+hb_interval - INTEGER
+        The interval (in milliseconds) between HEARTBEAT chunks.  These chunks
+        are sent at the specified interval on idle paths to probe the state of
+        a given path between 2 associations.
+        Default: 30000
+sack_timeout - INTEGER
+        The amount of time (in milliseconds) that the implementation will wait
+        to send a SACK.
+        Default: 200
+valid_cookie_life - INTEGER
+        The default lifetime of the SCTP cookie (in milliseconds).  The cookie
+        is used during association establishment.
+        Default: 60000
+cookie_preserve_enable - BOOLEAN
+        Enable or disable the ability to extend the lifetime of the SCTP cookie
+        that is used during the establishment phase of SCTP association
+        1: Enable cookie lifetime extension.
+        0: Disable
+        Default: 1
+rcvbuf_policy - INTEGER
+        Determines if the receive buffer is attributed to the socket or to
+        association.   SCTP supports the capability to create multiple
+        associations on a single socket.  When using this capability, it is
+        possible that a single stalled association that's buffering a lot
+        of data may block other associations from delivering their data by
+        consuming all of the receive buffer space.  To work around this,
+        the rcvbuf_policy could be set to attribute the receiver buffer space
+        to each association instead of the socket.  This prevents the described
+        blocking.
+        1: rcvbuf space is per association
+        0: recbuf space is per socket
+        Default: 0
+sndbuf_policy - INTEGER
+        Similar to rcvbuf_policy above, this applies to send buffer space.
+        1: Send buffer is tracked per association
+        0: Send buffer is tracked per socket.
+        Default: 0
+sctp_mem - vector of 3 INTEGERs: min, pressure, max
+        Number of pages allowed for queueing by all SCTP sockets.
+        min: Below this number of pages SCTP is not bothered about its
+        memory appetite. When amount of memory allocated by SCTP exceeds
+        this number, SCTP starts to moderate memory usage.
+        pressure: This value was introduced to follow format of tcp_mem.
+        max: Number of pages allowed for queueing by all SCTP sockets.
+        Default is calculated at boot time from amount of available memory.
+sctp_rmem - vector of 3 INTEGERs: min, default, max
+        See tcp_rmem for a description.
+sctp_wmem  - vector of 3 INTEGERs: min, default, max
+        See tcp_wmem for a description.
+UNDOCUMENTED:
+/proc/sys/net/core/*
+        dev_weight FIXME
+/proc/sys/net/unix/*
+        max_dgram_qlen FIXME
+/proc/sys/net/irda/*
+        fast_poll_increase FIXME
+        warn_noreply_time FIXME
+        discovery_slots FIXME
+        slot_timeout FIXME
+        max_baud_rate FIXME
+        discovery_timeout FIXME
+        lap_keepalive_time FIXME
+        max_noreply_time FIXME
+        max_tx_data_size FIXME
+        max_tx_window FIXME
+        min_tx_turn_time FIXME

diff --git a/Documentation/networking/ip-sysctl.txt b/Documentation/networking/ip-sysctl.txt index 17a6e46fbd43..d84932650fd3 100644 --- a/Documentation/networking/ip-sysctl.txt +++ b/Documentation/networking/ip-sysctl.txt
@@ -81,23 +81,23 @@ inet_peer_minttl - INTEGER
81	Minimum time-to-live of entries. Should be enough to cover fragment	81	Minimum time-to-live of entries. Should be enough to cover fragment
82	time-to-live on the reassembling side. This minimum time-to-live is	82	time-to-live on the reassembling side. This minimum time-to-live is
83	guaranteed if the pool size is less than inet_peer_threshold.	83	guaranteed if the pool size is less than inet_peer_threshold.
84	Measured in jiffies(1).	84	Measured in seconds.
85		85
86	inet_peer_maxttl - INTEGER	86	inet_peer_maxttl - INTEGER
87	Maximum time-to-live of entries. Unused entries will expire after	87	Maximum time-to-live of entries. Unused entries will expire after
88	this period of time if there is no memory pressure on the pool (i.e.	88	this period of time if there is no memory pressure on the pool (i.e.
89	when the number of entries in the pool is very small).	89	when the number of entries in the pool is very small).
90	Measured in jiffies(1).	90	Measured in seconds.
91		91
92	inet_peer_gc_mintime - INTEGER	92	inet_peer_gc_mintime - INTEGER
93	Minimum interval between garbage collection passes. This interval is	93	Minimum interval between garbage collection passes. This interval is
94	in effect under high memory pressure on the pool.	94	in effect under high memory pressure on the pool.
95	Measured in jiffies(1).	95	Measured in seconds.
96		96
97	inet_peer_gc_maxtime - INTEGER	97	inet_peer_gc_maxtime - INTEGER
98	Minimum interval between garbage collection passes. This interval is	98	Minimum interval between garbage collection passes. This interval is
99	in effect under low (or absent) memory pressure on the pool.	99	in effect under low (or absent) memory pressure on the pool.
100	Measured in jiffies(1).	100	Measured in seconds.
101		101
102	TCP variables:	102	TCP variables:
103		103
@@ -148,9 +148,9 @@ tcp_available_congestion_control - STRING
148	but not loaded.	148	but not loaded.
149		149
150	tcp_base_mss - INTEGER	150	tcp_base_mss - INTEGER
151	The initial value of search_low to be used by Packetization Layer	151	The initial value of search_low to be used by the packetization layer
152	Path MTU Discovery (MTU probing). If MTU probing is enabled,	152	Path MTU discovery (MTU probing). If MTU probing is enabled,
153	this is the inital MSS used by the connection.	153	this is the initial MSS used by the connection.
154		154
155	tcp_congestion_control - STRING	155	tcp_congestion_control - STRING
156	Set the congestion control algorithm to be used for new	156	Set the congestion control algorithm to be used for new
@@ -185,10 +185,9 @@ tcp_frto - INTEGER
185	timeouts. It is particularly beneficial in wireless environments	185	timeouts. It is particularly beneficial in wireless environments
186	where packet loss is typically due to random radio interference	186	where packet loss is typically due to random radio interference
187	rather than intermediate router congestion. F-RTO is sender-side	187	rather than intermediate router congestion. F-RTO is sender-side
188	only modification. Therefore it does not require any support from	188	only modification. Therefore it does not require any support from
189	the peer, but in a typical case, however, where wireless link is	189	the peer.
190	the local access link and most of the data flows downlink, the	190
191	faraway servers should have F-RTO enabled to take advantage of it.
192	If set to 1, basic version is enabled. 2 enables SACK enhanced	191	If set to 1, basic version is enabled. 2 enables SACK enhanced
193	F-RTO if flow uses SACK. The basic version can be used also when	192	F-RTO if flow uses SACK. The basic version can be used also when
194	SACK is in use though scenario(s) with it exists where F-RTO	193	SACK is in use though scenario(s) with it exists where F-RTO
@@ -276,7 +275,7 @@ tcp_mem - vector of 3 INTEGERs: min, pressure, max
276	memory.	275	memory.
277		276
278	tcp_moderate_rcvbuf - BOOLEAN	277	tcp_moderate_rcvbuf - BOOLEAN
279	If set, TCP performs receive buffer autotuning, attempting to	278	If set, TCP performs receive buffer auto-tuning, attempting to
280	automatically size the buffer (no greater than tcp_rmem[2]) to	279	automatically size the buffer (no greater than tcp_rmem[2]) to
281	match the size required by the path for full throughput. Enabled by	280	match the size required by the path for full throughput. Enabled by
282	default.	281	default.
@@ -336,7 +335,7 @@ tcp_rmem - vector of 3 INTEGERs: min, default, max
336	pressure.	335	pressure.
337	Default: 8K	336	Default: 8K
338		337
339	default: default size of receive buffer used by TCP sockets.	338	default: initial size of receive buffer used by TCP sockets.
340	This value overrides net.core.rmem_default used by other protocols.	339	This value overrides net.core.rmem_default used by other protocols.
341	Default: 87380 bytes. This value results in window of 65535 with	340	Default: 87380 bytes. This value results in window of 65535 with
342	default setting of tcp_adv_win_scale and tcp_app_win:0 and a bit	341	default setting of tcp_adv_win_scale and tcp_app_win:0 and a bit
@@ -344,8 +343,10 @@ tcp_rmem - vector of 3 INTEGERs: min, default, max
344		343
345	max: maximal size of receive buffer allowed for automatically	344	max: maximal size of receive buffer allowed for automatically
346	selected receiver buffers for TCP socket. This value does not override	345	selected receiver buffers for TCP socket. This value does not override
347	net.core.rmem_max, "static" selection via SO_RCVBUF does not use this.	346	net.core.rmem_max. Calling setsockopt() with SO_RCVBUF disables
348	Default: 87380*2 bytes.	347	automatic tuning of that socket's receive buffer size, in which
		348	case this value is ignored.
		349	Default: between 87380B and 4MB, depending on RAM size.
349		350
350	tcp_sack - BOOLEAN	351	tcp_sack - BOOLEAN
351	Enable select acknowledgments (SACKS).	352	Enable select acknowledgments (SACKS).
@@ -358,7 +359,7 @@ tcp_slow_start_after_idle - BOOLEAN
358	Default: 1	359	Default: 1
359		360
360	tcp_stdurg - BOOLEAN	361	tcp_stdurg - BOOLEAN
361	Use the Host requirements interpretation of the TCP urg pointer field.	362	Use the Host requirements interpretation of the TCP urgent pointer field.
362	Most hosts use the older BSD interpretation, so if you turn this on	363	Most hosts use the older BSD interpretation, so if you turn this on
363	Linux might not communicate correctly with them.	364	Linux might not communicate correctly with them.
364	Default: FALSE	365	Default: FALSE
@@ -371,12 +372,12 @@ tcp_synack_retries - INTEGER
371	tcp_syncookies - BOOLEAN	372	tcp_syncookies - BOOLEAN
372	Only valid when the kernel was compiled with CONFIG_SYNCOOKIES	373	Only valid when the kernel was compiled with CONFIG_SYNCOOKIES
373	Send out syncookies when the syn backlog queue of a socket	374	Send out syncookies when the syn backlog queue of a socket
374	overflows. This is to prevent against the common 'syn flood attack'	375	overflows. This is to prevent against the common 'SYN flood attack'
375	Default: FALSE	376	Default: FALSE
376		377
377	Note, that syncookies is fallback facility.	378	Note, that syncookies is fallback facility.
378	It MUST NOT be used to help highly loaded servers to stand	379	It MUST NOT be used to help highly loaded servers to stand
379	against legal connection rate. If you see synflood warnings	380	against legal connection rate. If you see SYN flood warnings
380	in your logs, but investigation shows that they occur	381	in your logs, but investigation shows that they occur
381	because of overload with legal connections, you should tune	382	because of overload with legal connections, you should tune
382	another parameters until this warning disappear.	383	another parameters until this warning disappear.
@@ -386,7 +387,7 @@ tcp_syncookies - BOOLEAN
386	to use TCP extensions, can result in serious degradation	387	to use TCP extensions, can result in serious degradation
387	of some services (f.e. SMTP relaying), visible not by you,	388	of some services (f.e. SMTP relaying), visible not by you,
388	but your clients and relays, contacting you. While you see	389	but your clients and relays, contacting you. While you see
389	synflood warnings in logs not being really flooded, your server	390	SYN flood warnings in logs not being really flooded, your server
390	is seriously misconfigured.	391	is seriously misconfigured.
391		392
392	tcp_syn_retries - INTEGER	393	tcp_syn_retries - INTEGER
@@ -419,19 +420,21 @@ tcp_window_scaling - BOOLEAN
419	Enable window scaling as defined in RFC1323.	420	Enable window scaling as defined in RFC1323.
420		421
421	tcp_wmem - vector of 3 INTEGERs: min, default, max	422	tcp_wmem - vector of 3 INTEGERs: min, default, max
422	min: Amount of memory reserved for send buffers for TCP socket.	423	min: Amount of memory reserved for send buffers for TCP sockets.
423	Each TCP socket has rights to use it due to fact of its birth.	424	Each TCP socket has rights to use it due to fact of its birth.
424	Default: 4K	425	Default: 4K
425		426
426	default: Amount of memory allowed for send buffers for TCP socket	427	default: initial size of send buffer used by TCP sockets. This
427	by default. This value overrides net.core.wmem_default used	428	value overrides net.core.wmem_default used by other protocols.
428	by other protocols, it is usually lower than net.core.wmem_default.	429	It is usually lower than net.core.wmem_default.
429	Default: 16K	430	Default: 16K
430		431
431	max: Maximal amount of memory allowed for automatically selected	432	max: Maximal amount of memory allowed for automatically tuned
432	send buffers for TCP socket. This value does not override	433	send buffers for TCP sockets. This value does not override
433	net.core.wmem_max, "static" selection via SO_SNDBUF does not use this.	434	net.core.wmem_max. Calling setsockopt() with SO_SNDBUF disables
434	Default: 128K	435	automatic tuning of that socket's send buffer size, in which case
		436	this value is ignored.
		437	Default: between 64K and 4MB, depending on RAM size.
435		438
436	tcp_workaround_signed_windows - BOOLEAN	439	tcp_workaround_signed_windows - BOOLEAN
437	If set, assume no receipt of a window scaling option means the	440	If set, assume no receipt of a window scaling option means the
@@ -548,8 +551,9 @@ icmp_echo_ignore_broadcasts - BOOLEAN
548	icmp_ratelimit - INTEGER	551	icmp_ratelimit - INTEGER
549	Limit the maximal rates for sending ICMP packets whose type matches	552	Limit the maximal rates for sending ICMP packets whose type matches
550	icmp_ratemask (see below) to specific targets.	553	icmp_ratemask (see below) to specific targets.
551	0 to disable any limiting, otherwise the maximal rate in jiffies(1)	554	0 to disable any limiting,
552	Default: 100	555	otherwise the minimal space between responses in milliseconds.
		556	Default: 1000
553		557
554	icmp_ratemask - INTEGER	558	icmp_ratemask - INTEGER
555	Mask made of ICMP types for which rates are being limited.	559	Mask made of ICMP types for which rates are being limited.
@@ -794,10 +798,6 @@ tag - INTEGER
794	Allows you to write a number, which can be used as required.	798	Allows you to write a number, which can be used as required.
795	Default value is 0.	799	Default value is 0.
796		800
797	(1) Jiffie: internal timeunit for the kernel. On the i386 1/100s, on the
798	Alpha 1/1024s. See the HZ define in /usr/include/asm/param.h for the exact
799	value on your system.
800
801	Alexey Kuznetsov.	801	Alexey Kuznetsov.
802	kuznet@ms2.inr.ac.ru	802	kuznet@ms2.inr.ac.ru
803		803
@@ -1024,11 +1024,23 @@ max_addresses - INTEGER
1024	autoconfigured addresses.	1024	autoconfigured addresses.
1025	Default: 16	1025	Default: 16
1026		1026
		1027	disable_ipv6 - BOOLEAN
		1028	Disable IPv6 operation.
		1029	Default: FALSE (enable IPv6 operation)
		1030
		1031	accept_dad - INTEGER
		1032	Whether to accept DAD (Duplicate Address Detection).
		1033	0: Disable DAD
		1034	1: Enable DAD (default)
		1035	2: Enable DAD, and disable IPv6 operation if MAC-based duplicate
		1036	link-local address has been found.
		1037
1027	icmp/*:	1038	icmp/*:
1028	ratelimit - INTEGER	1039	ratelimit - INTEGER
1029	Limit the maximal rates for sending ICMPv6 packets.	1040	Limit the maximal rates for sending ICMPv6 packets.
1030	0 to disable any limiting, otherwise the maximal rate in jiffies(1)	1041	0 to disable any limiting,
1031	Default: 100	1042	otherwise the minimal space between responses in milliseconds.
		1043	Default: 1000
1032		1044
1033		1045
1034	IPv6 Update by:	1046	IPv6 Update by:
@@ -1064,24 +1076,193 @@ bridge-nf-filter-pppoe-tagged - BOOLEAN
1064	Default: 1	1076	Default: 1
1065		1077
1066		1078
1067	UNDOCUMENTED:	1079	proc/sys/net/sctp/* Variables:
		1080
		1081	addip_enable - BOOLEAN
		1082	Enable or disable extension of Dynamic Address Reconfiguration
		1083	(ADD-IP) functionality specified in RFC5061. This extension provides
		1084	the ability to dynamically add and remove new addresses for the SCTP
		1085	associations.
		1086
		1087	1: Enable extension.
		1088
		1089	0: Disable extension.
		1090
		1091	Default: 0
		1092
		1093	addip_noauth_enable - BOOLEAN
		1094	Dynamic Address Reconfiguration (ADD-IP) requires the use of
		1095	authentication to protect the operations of adding or removing new
		1096	addresses. This requirement is mandated so that unauthorized hosts
		1097	would not be able to hijack associations. However, older
		1098	implementations may not have implemented this requirement while
		1099	allowing the ADD-IP extension. For reasons of interoperability,
		1100	we provide this variable to control the enforcement of the
		1101	authentication requirement.
		1102
		1103	1: Allow ADD-IP extension to be used without authentication. This
		1104	should only be set in a closed environment for interoperability
		1105	with older implementations.
		1106
		1107	0: Enforce the authentication requirement
		1108
		1109	Default: 0
		1110
		1111	auth_enable - BOOLEAN
		1112	Enable or disable Authenticated Chunks extension. This extension
		1113	provides the ability to send and receive authenticated chunks and is
		1114	required for secure operation of Dynamic Address Reconfiguration
		1115	(ADD-IP) extension.
		1116
		1117	1: Enable this extension.
		1118	0: Disable this extension.
		1119
		1120	Default: 0
		1121
		1122	prsctp_enable - BOOLEAN
		1123	Enable or disable the Partial Reliability extension (RFC3758) which
		1124	is used to notify peers that a given DATA should no longer be expected.
		1125
		1126	1: Enable extension
		1127	0: Disable
		1128
		1129	Default: 1
		1130
		1131	max_burst - INTEGER
		1132	The limit of the number of new packets that can be initially sent. It
		1133	controls how bursty the generated traffic can be.
		1134
		1135	Default: 4
		1136
		1137	association_max_retrans - INTEGER
		1138	Set the maximum number for retransmissions that an association can
		1139	attempt deciding that the remote end is unreachable. If this value
		1140	is exceeded, the association is terminated.
		1141
		1142	Default: 10
		1143
		1144	max_init_retransmits - INTEGER
		1145	The maximum number of retransmissions of INIT and COOKIE-ECHO chunks
		1146	that an association will attempt before declaring the destination
		1147	unreachable and terminating.
		1148
		1149	Default: 8
		1150
		1151	path_max_retrans - INTEGER
		1152	The maximum number of retransmissions that will be attempted on a given
		1153	path. Once this threshold is exceeded, the path is considered
		1154	unreachable, and new traffic will use a different path when the
		1155	association is multihomed.
		1156
		1157	Default: 5
1068		1158
1069	dev_weight FIXME	1159	rto_initial - INTEGER
1070	discovery_slots FIXME	1160	The initial round trip timeout value in milliseconds that will be used
1071	discovery_timeout FIXME	1161	in calculating round trip times. This is the initial time interval
1072	fast_poll_increase FIXME	1162	for retransmissions.
1073	ip6_queue_maxlen FIXME	1163
1074	lap_keepalive_time FIXME	1164	Default: 3000
1075	lo_cong FIXME	1165
1076	max_baud_rate FIXME	1166	rto_max - INTEGER
1077	max_dgram_qlen FIXME	1167	The maximum value (in milliseconds) of the round trip timeout. This
1078	max_noreply_time FIXME	1168	is the largest time interval that can elapse between retransmissions.
1079	max_tx_data_size FIXME	1169
1080	max_tx_window FIXME	1170	Default: 60000
1081	min_tx_turn_time FIXME	1171
1082	mod_cong FIXME	1172	rto_min - INTEGER
1083	no_cong FIXME	1173	The minimum value (in milliseconds) of the round trip timeout. This
1084	no_cong_thresh FIXME	1174	is the smallest time interval the can elapse between retransmissions.
1085	slot_timeout FIXME	1175
1086	warn_noreply_time FIXME	1176	Default: 1000
		1177
		1178	hb_interval - INTEGER
		1179	The interval (in milliseconds) between HEARTBEAT chunks. These chunks
		1180	are sent at the specified interval on idle paths to probe the state of
		1181	a given path between 2 associations.
		1182
		1183	Default: 30000
		1184
		1185	sack_timeout - INTEGER
		1186	The amount of time (in milliseconds) that the implementation will wait
		1187	to send a SACK.
		1188
		1189	Default: 200
		1190
		1191	valid_cookie_life - INTEGER
		1192	The default lifetime of the SCTP cookie (in milliseconds). The cookie
		1193	is used during association establishment.
		1194
		1195	Default: 60000
		1196
		1197	cookie_preserve_enable - BOOLEAN
		1198	Enable or disable the ability to extend the lifetime of the SCTP cookie
		1199	that is used during the establishment phase of SCTP association
		1200
		1201	1: Enable cookie lifetime extension.
		1202	0: Disable
		1203
		1204	Default: 1
		1205
		1206	rcvbuf_policy - INTEGER
		1207	Determines if the receive buffer is attributed to the socket or to
		1208	association. SCTP supports the capability to create multiple
		1209	associations on a single socket. When using this capability, it is
		1210	possible that a single stalled association that's buffering a lot
		1211	of data may block other associations from delivering their data by
		1212	consuming all of the receive buffer space. To work around this,
		1213	the rcvbuf_policy could be set to attribute the receiver buffer space
		1214	to each association instead of the socket. This prevents the described
		1215	blocking.
		1216
		1217	1: rcvbuf space is per association
		1218	0: recbuf space is per socket
		1219
		1220	Default: 0
		1221
		1222	sndbuf_policy - INTEGER
		1223	Similar to rcvbuf_policy above, this applies to send buffer space.
		1224
		1225	1: Send buffer is tracked per association
		1226	0: Send buffer is tracked per socket.
		1227
		1228	Default: 0
		1229
		1230	sctp_mem - vector of 3 INTEGERs: min, pressure, max
		1231	Number of pages allowed for queueing by all SCTP sockets.
		1232
		1233	min: Below this number of pages SCTP is not bothered about its
		1234	memory appetite. When amount of memory allocated by SCTP exceeds
		1235	this number, SCTP starts to moderate memory usage.
		1236
		1237	pressure: This value was introduced to follow format of tcp_mem.
		1238
		1239	max: Number of pages allowed for queueing by all SCTP sockets.
		1240
		1241	Default is calculated at boot time from amount of available memory.
		1242
		1243	sctp_rmem - vector of 3 INTEGERs: min, default, max
		1244	See tcp_rmem for a description.
		1245
		1246	sctp_wmem - vector of 3 INTEGERs: min, default, max
		1247	See tcp_wmem for a description.
		1248
		1249	UNDOCUMENTED:
1087		1250
		1251	/proc/sys/net/core/*
		1252	dev_weight FIXME
		1253
		1254	/proc/sys/net/unix/*
		1255	max_dgram_qlen FIXME
		1256
		1257	/proc/sys/net/irda/*
		1258	fast_poll_increase FIXME
		1259	warn_noreply_time FIXME
		1260	discovery_slots FIXME
		1261	slot_timeout FIXME
		1262	max_baud_rate FIXME
		1263	discovery_timeout FIXME
		1264	lap_keepalive_time FIXME
		1265	max_noreply_time FIXME
		1266	max_tx_data_size FIXME
		1267	max_tx_window FIXME
		1268	min_tx_turn_time FIXME