Why? I must be overlooking something. [EMAIL PROTECTED] root2]# vi /etc/sysctl.conf (to mess up the file) [EMAIL PROTECTED] root2]# /var/cfengine/bin/cfagent --no-splay --inform -A - q cfengine:xxxx: Saving edit changes to file /etc/motd cfengine:xxxx: Saving edit changes to file /etc/sysctl.conf
but if I define it manually, it works [EMAIL PROTECTED] root2]# vi /etc/sysctl.conf (to mess up the file) [EMAIL PROTECTED] root2]# /var/cfengine/bin/cfagent --no-splay --inform -A -q - Drunsysctl cfengine:xxxx: Saving edit changes to file /etc/motd cfengine:xxxx: Saving edit changes to file /etc/sysctl.conf cfengine:xxxx: Executing script /sbin/sysctl - p...(timeout=120,uid=0,gid=0) cfengine:xxxx:bin/sysctl -p: net.ipv4.ip_forward = 0 cfengine:xxxx:bin/sysctl -p: net.ipv4.tcp_keepalive_time = 1200 cfengine:xxxx:bin/sysctl -p: net.ipv4.tcp_fin_timeout = 15 cfengine:xxxx:bin/sysctl -p: net.ipv4.tcp_keepalive_intvl = 20 cfengine:xxxx:bin/sysctl -p: net.ipv4.tcp_keepalive_probes = 5 cfengine:xxxx:bin/sysctl -p: net.ipv4.tcp_sack = 1 cfengine:xxxx:bin/sysctl -p: net.ipv4.tcp_dsack = 0 cfengine:xxxx:bin/sysctl -p: net.ipv4.tcp_timestamps = 0 cfengine:xxxx:bin/sysctl -p: net.ipv4.conf.default.rp_filter = 1 cfengine:xxxx:bin/sysctl -p: kernel.sysrq = 0 cfengine:xxxx:bin/sysctl -p: kernel.core_uses_pid = 1 cfengine:xxxx: Finished script /sbin/sysctl -p [EMAIL PROTECTED] root2]# [EMAIL PROTECTED] root2]# cfagent -V GNU cfengine 2.1.11 Free Software Foundation 1994- Donated by Mark Burgess, Faculty of Engineering, Oslo University College, 0254 Oslo, Norway This program is covered by the GNU Public License and may be copied free of charge. No warranty is implied. script: shellcommands: runsysctl:: "/sbin/sysctl -p" timeout=120 inform=true owner=0 group=0 background=false useshell=true umask=0022 server:: { /etc/sysctl.conf AutoCreate BeginGroupIfNoLineMatching "^net.ipv4.ip_forward = 0" DeleteLinesMatching "^net.ipv4.ip_forward.*$" InsertLine "net.ipv4.ip_forward = 0" EndGroup BeginGroupIfNoLineMatching "^net.ipv4.tcp_keepalive_time = 1200" DeleteLinesMatching "^net.ipv4.tcp_keepalive_time.*" InsertLine "net.ipv4.tcp_keepalive_time = 1200" EndGroup BeginGroupIfNoLineMatching "^net.ipv4.tcp_fin_timeout = 15" DeleteLinesMatching "^net.ipv4.tcp_fin_timeout.*" InsertLine "net.ipv4.tcp_fin_timeout = 15" EndGroup BeginGroupIfNoLineMatching "^net.ipv4.tcp_keepalive_intvl = 20" DeleteLinesMatching "^net.ipv4.tcp_keepalive_intv.*" InsertLine "net.ipv4.tcp_keepalive_intvl = 20" EndGroup BeginGroupIfNoLineMatching "^net.ipv4.tcp_keepalive_probes = 5" DeleteLinesMatching "^net.ipv4.tcp_keepalive_probes.*" InsertLine "net.ipv4.tcp_keepalive_probes = 5" EndGroup BeginGroupIfNoLineMatching "^net.ipv4.tcp_sack = 1" DeleteLinesMatching "^net.ipv4.tcp_sack.*" InsertLine "net.ipv4.tcp_sack = 1" EndGroup BeginGroupIfNoLineMatching "^net.ipv4.tcp_dsack = 0" DeleteLinesMatching "^net.ipv4.tcp_dsack.*" InsertLine "net.ipv4.tcp_dsack = 0" EndGroup BeginGroupIfNoLineMatching "^net.ipv4.tcp_timestamps = 0" DeleteLinesMatching "^net.ipv4.tcp_timestamps.*" InsertLine "net.ipv4.tcp_timestamps = 0" EndGroup DefineClasses "runsysctl" } -- Alex Ivanisevic, 2e systems Tel: +49 (0)6107 989 414 Fax: +49 (0)6107 989 494 Handy: +49 (0)174 310 9333 _______________________________________________ Help-cfengine mailing list Help-cfengine@gnu.org http://lists.gnu.org/mailman/listinfo/help-cfengine