remove important ports from ephemeral range #293
Conversation
| <% if p('router.set_kernel_parameters') %> | ||
| # Ephemeral port range | ||
| echo "<%= p("router.ip_local_port_range") %>" > /proc/sys/net/ipv4/ip_local_port_range | ||
|
|
||
| # Reserved Ports, not ephemeral | ||
| echo <%= ports.join(",") %> > /proc/sys/net/ipv4/ip_local_reserved_ports |
There was a problem hiding this comment.
Is this really how that works? All the things i'm reading make it seem like a two integer range, not a comma-separated value.
There was a problem hiding this comment.
ip_local_reserved_ports - list of comma separated ranges
Specify the ports which are reserved for known third-party
applications. These ports will not be used by automatic port
assignments (e.g. when calling connect() or bind() with port
number 0). Explicit port allocation behavior is unchanged.
The format used for both input and output is a comma separated
list of ranges (e.g. "1,2-4,10-10" for ports 1, 2, 3, 4 and
10). Writing to the file will clear all previously reserved
ports and update the current list with the one given in the
input.
There was a problem hiding this comment.
oh i see - different proc setting than the range. 👍 neat!
Signed-off-by: Amelia Downs <adowns@vmware.com>
Signed-off-by: Josh Russett <jrussett@vmware.com> Signed-off-by: Amelia Downs <adowns@vmware.com>
jrussett
force-pushed
the
ip-local-reserved-ports
branch
from
9a89e0d
to
97aa79d
Compare
Fixes #206 and cloudfoundry/loggregator-agent-release#134