Linux CentOS 6.9系統優化腳本
阿新 • • 發佈:2018-01-15
互聯網 時間 lan optimize /etc/ cal track 文件 rip 系統版本
CentOS release 6.9 (Final)
2.6.32-696.el6.x86_64 x86_64
CentOS release 6.9 (Final)
2.6.32-696.el6.x86_64 x86_64
[root@yuguotianqing scripts]# cat optimize.sh #!/bin/bash #autbor yuguotianqing QQ 157245227 export PATH=/usr/local/sbin:/usr/local/bin:/sbin:/bin:/usr/sbin:/usr/bin:/root/bin mkdir -p /server/scripts #SElinux off 關閉SElinux sed -i ‘s#SELINUX=enforcing#SELINUX=disabled#g‘ /etc/selinux/config &&grep "SELINUX=disabled" /etc/selinux/config &&setenforce 0 #iptables off 關閉防火墻 /etc/init.d/iptables stop /etc/init.d/iptables stop chkconfig iptables off #Startup service optimization 關閉自開機啟動項 chkconfig --list|grep 3:on |egrep -v "crond|sshd|network|rsyslog|sysstat"|awk ‘{print "chkconfig",$1,"off"}‘|bash &&chkconfig --list |grep 3:on #Add Chinese characters 設置中文字符集 cp /etc/sysconfig/i18n /etc/sysconfig/i18n.ori &&echo ‘LANG="zh_CN.UTF-8"‘ >/etc/sysconfig/i18n &&source /etc/sysconfig/i18n &&echo $LANG #System time synchronization 互聯網和系統時間同步 echo ‘#tmime sync by wen at 2017-12-28‘ >>/var/spool/cron/root &&echo ‘*/5 * * * * /usr/sbin/ntpdate time.nist.gov >/dev/null 2>&1‘ >>/var/spool/cron/root &&crontab -l #Enlarge the text descriptor 加大文件描述符 echo ‘* - nofile 65535‘>>/etc/security/limits.conf &&tail -1 /etc/security/limits.conf #make kernel 內核優化 cat >>/etc/sysctl.conf<<EOF net.ipv4.tcp_fin_timeout = 2 net.ipv4.tcp_syncookies = 1 net.ipv4.tcp_tw_reuse = 1 net.ipv4.tcp_tw_recycle = 1 net.ipv4.tcp_keepalive_time = 600 net.ipv4.ip_local_port_range = 4000 65000 net.ipv4.tcp_max_syn_backlog = 16384 net.ipv4.tcp_max_tw_buckets = 36000 net.ipv4.route.gc_timeout = 100 net.ipv4.tcp_syn_retries = 1 net.ipv4.tcp_synack_retries = 1 net.core.somaxconn = 16384 net.core.netdev_max_backlog = 16384 net.ipv4.tcp_max_orphans = 16384 net.ipv4.ip_conntrack_max = 25000000 net.nf_conntrack_max = 25000000 net.netfilter.nf_conntrack_max = 25000000 net.netfilter.nf_conntrack_tcp_timeout_established = 180 net.netfilter.nf_conntrack_tcp_timeout_time_wait = 120 net.netfilter.nf_conntrack_tcp_timeout_close_wait = 60 net.netfilter.nf_conntrack_tcp_timeout_fin_wait = 120 EOF #yum 安裝常用服務軟件 yum install lrzsz nmap tree dos2unix nfs-utils rpcbind telnet -y &&rpm -aq lrzsz nmap tree dos2unix nc nfs-utils rpcbind telnet``
Linux CentOS 6.9系統優化腳本