centos7最小安装初始脚本

时间：2017-03-28 11:18:11 阅读：217 评论：0 收藏：0 [点我收藏+]

标签：timeout port blog python start keep repo sysctl rtc

 1 #!/bin/bash
 2 #zhangsen
 3 #lovexlzs@qq.com
 4 
 5 if [[ "$(whoami)" != "root" ]]; then
 6   
 7     echo "please run this script as root ." >&2
 8     exit 1
 9 fi
10   
11 echo -e "\033[31m 这个是centos7系统初始化脚本，请慎重运行！Please continue to enter or ctrl+C to cancel \033[0m"
12 sleep 5
13 
14 #configure yum source
15 yum_config(){
16     yum install wget epel-release -y
17     cd /etc/yum.repos.d/ && mkdir bak && mv -f *.repo bak/
18     wget -O /etc/yum.repos.d/CentOS-Base.repo http://mirrors.aliyun.com/repo/Centos-7.repo
19     wget -O /etc/yum.repos.d/CentOS-Base.repo http://mirrors.aliyun.com/repo/Centos-7.repo
20     yum clean all && yum makecache
21     yum -y install iotop iftop net-tools lrzsz gcc gcc-c++ make cmake libxml2-devel openssl-devel curl curl-devel unzip sudo ntp libaio-devel wget vim ncurses-devel autoconf automake zlib-devel  python-devel bash-completion
22 }
23 #firewalld
24 iptables_config(){
25     systemctl stop firewalld.service
26     systemctl disable firewalld.service
27     yum install iptables-services -y
28     systemctl enable iptables
29     systemctl start iptables
30     iptables -F
31     service iptables save
32 }
33 #system config
34 system_config(){
35     sed -i "s/SELINUX=enforcing/SELINUX=disabled/g" /etc/selinux/config
36     timedatectl set-local-rtc 1 && timedatectl set-timezone Asia/Shanghai
37     yum -y install chrony && systemctl start chronyd.service && systemctl enable chronyd.service 
38 }
39 ulimit_config(){
40     echo "ulimit -SHn 102400" >> /etc/rc.local
41     cat >> /etc/security/limits.conf << EOF
42     *           soft   nofile       102400
43     *           hard   nofile       102400
44     *           soft   nproc        102400
45     *           hard   nproc        102400
46 EOF
47 }
48 
49 #set sysctl
50 sysctl_config(){
51     cp /etc/sysctl.conf /etc/sysctl.conf.bak
52     cat > /etc/sysctl.conf << EOF
53     net.ipv4.ip_forward = 0
54     net.ipv4.conf.default.rp_filter = 1
55     net.ipv4.conf.default.accept_source_route = 0
56     kernel.sysrq = 0
57     kernel.core_uses_pid = 1
58     net.ipv4.tcp_syncookies = 1
59     kernel.msgmnb = 65536
60     kernel.msgmax = 65536
61     kernel.shmmax = 68719476736
62     kernel.shmall = 4294967296
63     net.ipv4.tcp_max_tw_buckets = 6000
64     net.ipv4.tcp_sack = 1
65     net.ipv4.tcp_window_scaling = 1
66     net.ipv4.tcp_rmem = 4096 87380 4194304
67     net.ipv4.tcp_wmem = 4096 16384 4194304
68     net.core.wmem_default = 8388608
69     net.core.rmem_default = 8388608
70     net.core.rmem_max = 16777216
71     net.core.wmem_max = 16777216
72     net.core.netdev_max_backlog = 262144
73     net.core.somaxconn = 262144
74     net.ipv4.tcp_max_orphans = 3276800
75     net.ipv4.tcp_max_syn_backlog = 262144
76     net.ipv4.tcp_timestamps = 0
77     net.ipv4.tcp_synack_retries = 1
78     net.ipv4.tcp_syn_retries = 1
79     net.ipv4.tcp_tw_recycle = 1
80     net.ipv4.tcp_tw_reuse = 1
81     net.ipv4.tcp_mem = 94500000 915000000 927000000
82     net.ipv4.tcp_fin_timeout = 1
83     net.ipv4.tcp_keepalive_time = 30
84     net.ipv4.ip_local_port_range = 1024 65000
85 EOF
86     /sbin/sysctl -p
87     echo "sysctl set OK!!"
88 }
89 
90 main(){
91     yum_config
92     iptables_config
93     system_config
94     ulimit_config
95     sysctl_config
96 }
97 main

centos7最小安装初始脚本

标签：timeout port blog python start keep repo sysctl rtc

原文地址：http://www.cnblogs.com/37yan/p/6632012.html

踩

(0)

评论一句话评论（0）

分享档案

更多>

2021年07月29日 (22)
2021年07月28日 (40)
2021年07月27日 (32)
2021年07月26日 (79)
2021年07月23日 (29)
2021年07月22日 (30)
2021年07月21日 (42)
2021年07月20日 (16)
2021年07月19日 (90)
2021年07月16日 (35)

周排行