| Sysctl | Description |
net.local.stream.sendspace |
EMPTY |
net.local.stream.recvspace |
EMPTY |
net.local.stream.pcblist |
List of active local stream sockets |
net.local.dgram.maxdgram |
EMPTY |
net.local.dgram.recvspace |
EMPTY |
net.local.dgram.pcblist |
List of active local datagram sockets |
net.local.inflight |
EMPTY |
net.inet.ip.portrange.lowfirst |
EMPTY |
net.inet.ip.portrange.lowlast |
EMPTY |
net.inet.ip.portrange.first |
EMPTY |
net.inet.ip.portrange.last |
EMPTY |
net.inet.ip.portrange.hifirst |
EMPTY |
net.inet.ip.portrange.hilast |
EMPTY |
net.inet.ip.forwarding |
Enable IP forwarding between interfaces |
net.inet.ip.redirect |
Enable sending IP redirects |
net.inet.ip.ttl |
Maximum TTL on IP packets |
net.inet.ip.rtexpire |
Default expiration time on dynamically learned routes |
net.inet.ip.rtminexpire |
Minimum time to attempt to hold onto dynamically learned routes |
net.inet.ip.rtmaxcache |
Upper limit on dynamically learned routes |
net.inet.ip.sourceroute |
Enable forwarding source routed IP packets |
net.inet.ip.intr_queue_maxlen |
Maximum size of the IP input queue |
net.inet.ip.intr_queue_drops |
Number of packets dropped from the IP input queue |
net.inet.ip.stats |
IP statistics (struct ipstat, netinet/ip_var.h) |
net.inet.ip.accept_sourceroute |
Enable accepting source routed IP packets |
net.inet.ip.fastforwarding |
Enable flow-based IP forwarding |
net.inet.ip.keepfaith |
Enable packet capture for FAITH IPv4->IPv6 translater daemon |
net.inet.ip.subnets_are_local |
EMPTY |
net.inet.ip.maxfragpackets |
Maximum number of IPv4 fragment reassembly queue entries |
net.inet.ip.maxfragsperpacket |
Maximum number of IPv4 fragments allowed per packet |
net.inet.ip.sendsourcequench |
Enable the transmission of source quench packets |
net.inet.ip.check_interface |
Verify packet arrives on correct interface |
net.inet.icmp.maskrepl |
EMPTY |
net.inet.icmp.stats |
EMPTY |
net.inet.icmp.icmplim |
EMPTY |
net.inet.icmp.drop_redirect |
EMPTY |
net.inet.icmp.log_redirect |
EMPTY |
net.inet.icmp.icmplim_output |
EMPTY |
net.inet.icmp.bmcastecho |
EMPTY |
net.inet.igmp.stats |
EMPTY |
net.inet.tcp.rfc1323 |
Enable rfc1323 (high performance TCP) extensions |
net.inet.tcp.rfc1644 |
Enable rfc1644 (TTCP) extensions |
net.inet.tcp.mssdflt |
Default TCP Maximum Segment Size |
net.inet.tcp.stats |
TCP statistics (struct tcpstat, netinet/tcp_var.h) |
net.inet.tcp.keepidle |
EMPTY |
net.inet.tcp.keepintvl |
EMPTY |
net.inet.tcp.sendspace |
Maximum outgoing TCP datagram size |
net.inet.tcp.recvspace |
Maximum incoming TCP datagram size |
net.inet.tcp.keepinit |
EMPTY |
net.inet.tcp.pcblist |
List of active TCP connections |
net.inet.tcp.delacktime |
Time before a delayed ACK is sent |
net.inet.tcp.log_in_vain |
Log all incoming TCP connections |
net.inet.tcp.blackhole |
Do not send RST when dropping refused connections |
net.inet.tcp.delayed_ack |
Delay ACK to try and piggyback it onto a data packet |
net.inet.tcp.path_mtu_discovery |
Enable Path MTU Discovery |
net.inet.tcp.slowstart_flightsize |
Slow start flight size |
net.inet.tcp.local_slowstart_flightsize |
Slow start flight size for local networks |
net.inet.tcp.newreno |
Enable NewReno Algorithms |
net.inet.tcp.tcbhashsize |
Size of TCP control-block hashtable |
net.inet.tcp.do_tcpdrain |
Enable tcp_drain routine for extra help when low on mbufs |
net.inet.tcp.pcbcount |
Number of active PCBs |
net.inet.tcp.icmp_may_rst |
Certain ICMP unreachable messages may abort connections in SYN_SENT |
net.inet.tcp.isn_reseed_interval |
Seconds between reseeding of ISN secret |
net.inet.tcp.inflight_enable |
Enable automatic TCP inflight data limiting |
net.inet.tcp.inflight_debug |
Debug TCP inflight calculations |
net.inet.tcp.inflight_min |
Lower-bound for TCP inflight window |
net.inet.tcp.inflight_max |
Upper-bound for TCP inflight window |
net.inet.tcp.inflight_stab |
Slop in maximal packets / 10 (20 = 2 packets) |
net.inet.tcp.getcred |
Get the ucred of a TCP connection |
net.inet.tcp.syncookies |
Use TCP SYN cookies if the syncache overflows |
net.inet.tcp.syncache.bucketlimit |
Per-bucket hash limit for syncache |
net.inet.tcp.syncache.cachelimit |
Overall entry limit for syncache |
net.inet.tcp.syncache.count |
Current number of entries in syncache |
net.inet.tcp.syncache.hashsize |
Size of TCP syncache hashtable |
net.inet.tcp.syncache.rexmtlimit |
Limit on SYN/ACK retransmissions |
net.inet.tcp.msl |
Maximum segment lifetime |
net.inet.tcp.rexmit_min |
Minimum Retransmission Timeout |
net.inet.tcp.rexmit_slop |
Retransmission Timer Slop |
net.inet.tcp.always_keepalive |
Assume SO_KEEPALIVE on all TCP connections |
net.inet.udp.checksum |
EMPTY |
net.inet.udp.stats |
UDP statistics (struct udpstat, netinet/udp_var.h) |
net.inet.udp.maxdgram |
Maximum outgoing UDP datagram size |
net.inet.udp.recvspace |
Maximum incoming UDP datagram size |
net.inet.udp.pcblist |
List of active UDP sockets |
net.inet.udp.log_in_vain |
Log all incoming UDP packets |
net.inet.udp.blackhole |
Do not send port unreachables for refused connects |
net.inet.udp.getcred |
Get the ucred of a UDP connection |
net.inet.accf.unloadable |
Allow unload of accept filters (not recommended) |
net.inet.raw.maxdgram |
Maximum outgoing raw IP datagram size |
net.inet.raw.recvspace |
Maximum incoming raw IP datagram size |
net.inet.raw.pcblist |
List of active raw IP sockets |
net.routetable |
EMPTY |
net.link.generic.system.ifcount |
Number of configured interfaces |
net.link.generic.ifdata |
Interface table |
net.link.ether.inet.prune_intvl |
EMPTY |
net.link.ether.inet.max_age |
EMPTY |
net.link.ether.inet.host_down_time |
EMPTY |
net.link.ether.inet.maxtries |
EMPTY |
net.link.ether.inet.useloopback |
EMPTY |
net.link.ether.inet.proxyall |
EMPTY |
net.link.ether.inet.log_arp_wrong_iface |
log arp packets arriving on the wrong interface |
net.link.ether.inet.log_arp_movements |
log arp replies from MACs different than the one in the cache |
net.link.ether.ipfw |
Pass ether pkts through firewall |
Produced by Hiten Pandya.