sysctl not sticking after reboot

security linux ubuntu sysctl

If your system is using systemd's systemd-sysctl.service and not sysctl for the setting at boot time then things are a little different than sysctl.

systemd-sysctl sorts all of the configuration file names, ignoring the directory name, and then loads them in that order irrespective of the directory they were in. This means that if you put your setting in /etc/sysctl.d/10-mysysctl.conf and there is another file called /usr/lib/sysctl.d/50-default.conf setting the same variable, that will override your setting.

To ensure your setting isn't overridden you should put it in a config file with a name like /etc/sysctl.d/zzz-mysysctl.conf.

Note: This behaviour was tested on Ubuntu 20.04.1 and openSUSE Leap 15.2


Create a file /etc/sysctl.d/local.conf containing the values you want.

fs.suid_dumpable=0
net.ipv4.conf.all.log_martians=1 
net.ipv4.conf.all.rp_filter=1     
net.ipv4.conf.default.log_martians=1

Reboot.

The scripts load any *.conf files from several directories, in file name collation order. See the sysctl --system option in the man page for the search paths.

In particular, check that any values are not already defined in /etc/sysctl.conf. Consider moving values you want to keep from it to sysctl.d, then removing that file.

Related

GRE tunneling using Open vSwitch
Restricting AWS resources to same AZ connections
Is it feasible for a mobile app like a peer to peer torrent app to discover peers via Internet, not just direct Wifi? [closed]
Domain registrar said I need to provide at least two of DNS servers [closed]
How do I specify disk size for new machine instance for Azure?
Can Linux kernel support RSTP (802.1w)?
How to control AWS EC2 live from a web app [closed]
What is the weapon masterwork progression?
How do I log into another Battle.net account in Diablo 3?
How to add friends from pc to ps4?
Are there any special interactions between specific heroes in All Heroes mode of Retribution?
How do you pronounce "Lakitu"?