From 980689992a92e3f93e7d22b63916c7b0bc71c8e9 Mon Sep 17 00:00:00 2001
From: Bob Mottram <bob@freedombone.net>
Date: Fri, 22 Sep 2017 17:00:40 +0100
Subject: [PATCH] Turn off tcp timestamps

---
 src/freedombone-utils-firewall | 9 +++++++++
 1 file changed, 9 insertions(+)

diff --git a/src/freedombone-utils-firewall b/src/freedombone-utils-firewall
index 7f9ec36f7..6f788bb12 100755
--- a/src/freedombone-utils-firewall
+++ b/src/freedombone-utils-firewall
@@ -290,11 +290,20 @@ function configure_internet_protocol {
         sed -i "s|#net.ipv4.conf.default.accept_redirects.*|net.ipv4.conf.default.accept_redirects = 0|g" /etc/sysctl.conf
         sed -i "s|net.ipv4.conf.default.accept_redirects.*|net.ipv4.conf.default.accept_redirects = 0|g" /etc/sysctl.conf
     fi
+
+    # Randomize kernel
     if ! grep -q "kernel.randomize_va_space" /etc/sysctl.conf; then
         echo "kernel.randomize_va_space=2" >> /etc/sysctl.conf
     else
         sed -i 's|kernel.randomize_va_space.*|kernel.randomize_va_space=2|g' /etc/sysctl.conf
     fi
+
+    # Turn off the tcp_timestamps
+    if ! grep -q "net.ipv4.tcp_timestamps" /etc/sysctl.conf; then
+        echo "net.ipv4.tcp_timestamps=0" >> /etc/sysctl.conf
+    else
+        sed -i 's|net.ipv4.tcp_timestamps.*|net.ipv4.tcp_timestamps=0|g' /etc/sysctl.conf
+    fi
     mark_completed $FUNCNAME
 }
 
-- 
GitLab