search

BLOG08a: Linux GRUB Parameters

hashtag
BLOG18: Linux GRUB Parameters (Initialization), Runtime Behavior (sysctl Tunables), Dynamic Modules (modprobe)

hashtag
What are the differences between GRUB kernel boot parameters, sysctl parameters, and modprobe kernel modules?

This document explains the differences between three types of kernel configuration:

  • Kernel boot parameters in GRUB (cmdline parameters)

  • sysctl parameters

  • modprobe kernel modules

The following sections provide a clear explanation of the differences between all three.

hashtag
1. Kernel Parameters in GRUB (Boot-time Kernel Arguments)

These are kernel command-line parameters passed at boot via GRUB.

They modify how the kernel initializes itself before modules load and before sysctl is applied.

hashtag
Examples:

cgroup_enable=memory
systemd.unified_cgroup_hierarchy=1
iptables=legacy
swapaccount=1
ipv6.disable=1

hashtag
Where they live?

/etc/default/grub

hashtag
When applied?

  • At boot time

  • Before the kernel starts

  • Changes require reboot

hashtag
Purpose:

  • Enable/disable kernel subsystems

  • Change cgroup modes

  • Disable swap, IPv6

  • Configure low-level memory handling

  • Control security features (AppArmor/SELinux startup mode)

These settings cannot be changed at runtime.

hashtag
2. sysctl Parameters (Runtime Kernel Tunables)

These modify kernel behavior while the system is running.

hashtag
Location:

/proc/sys/* /etc/sysctl.conf /etc/sysctl.d/*

hashtag
When applied?

  • At runtime (immediate effect)

  • Can be persistent with sysctl.d

  • Does not require reboot (unless certain networking options)

hashtag
Purpose:

Adjust runtime networking, memory limits, routing, etc.

Examples:

hashtag
3. modprobe (Kernel Modules)

Loads or unloads kernel modules (.ko files) — similar to drivers.

hashtag
Examples:

hashtag
Purpose:

  • Add features to the kernel dynamically

  • Allow Kubernetes networking or storage drivers

  • Implement packet filtering modules

hashtag
When applied?

  • At runtime

  • No reboot required

  • Must persist using /etc/modules-load.d/*.conf

hashtag
How All Three Interact

hashtag
GRUB Parameters

  • Affect kernel core behavior

  • Set things that cannot be changed later

  • Example: cgroup v1 vs v2 mode

hashtag
modprobe Kernel Modules

  • Add extra "plugin" features

  • Loadable anytime after boot

hashtag
sysctl Runtime Parameters

  • Configure behavior of already-loaded kernel components

  • Change limits instantly

hashtag
Example to Understand the Difference

The following example uses cgroup memory accounting (important for Kubernetes):

hashtag
1. GRUB parameter (boot-time)

  • Enables memory cgroups/full accounting

  • Must be set before boot

  • Required by kubelet or containerd runtime features

  • Cannot be changed with sysctl

hashtag
2. modprobe (module load)

  • Loads the module to inspect packets on Linux bridges

hashtag
3. sysctl parameter (runtime behavior)

  • Enables routing (only works if networking modules exist)

hashtag
Simple Analogy

Category
Analogy

GRUB kernel arguments

BIOS settings — set before the system starts

modprobe modules

Plugging in new hardware/driver while PC is running

sysctl

Changing Windows registry/network tuning at runtime

hashtag
Kubernetes Example

To run Kubernetes properly, you may need all three:

Layer
Example
Why

GRUB

cgroup_enable=memory, swapaccount=1

Allow kubelet/containerd to manage memory

modprobe

br_netfilter, overlay

Allow bridge filtering + overlay fs

sysctl

net.ipv4.ip_forward=1, bridge-nf-call-iptables=1

Enable pod networking

hashtag
Summary Table

Feature
GRUB Kernel Args
modprobe
sysctl

When applied

At boot

Runtime

Runtime

Requires reboot

Yes

No

No

Controls

Kernel core behavior

Kernel modules (drivers)

Kernel behavior tuning

Examples

cgroup_enable, swapaccount

overlay, br_netfilter

ip_forward, swappiness

Who needs it?

kubelet runtime, memory cgroups

CNI, container runtime

kube-proxy, routing

Can change dynamically?

No

Yes

Yes

The following sections provide a complete, practical, production-grade list of commands to show:

  • Loaded kernel modules

  • Available (but NOT loaded) modules

  • All GRUB kernel parameters

  • All sysctl tunables (current + default + available)

Everything works on Ubuntu, Debian, RHEL/CentOS, Rocky, Amazon Linux, etc.

hashtag
1. List All LOADED Kernel Modules

These are modules currently active in the running kernel:

hashtag
Command

hashtag
Better readable output:

hashtag
Check if a specific module is loaded:

Example:

hashtag
2. List All AVAILABLE Kernel Modules (Installed but NOT loaded)

These are modules present under /lib/modules/$kernel/ but not loaded.

hashtag
Command

hashtag
To see only module names (clean list):

hashtag
To compare:

Loaded vs Not loaded

hashtag
3. List All GRUB Kernel Parameters

These are parameters passed to the kernel at boot.

hashtag
See parameters used by the currently running kernel

hashtag
See configured GRUB file (what will apply after reboot)

hashtag
See all menu entries (grub.cfg)

hashtag
To get ONLY kernel parameters from grub.cfg

hashtag
4. List ALL sysctl tunables

hashtag
A. Show all CURRENT sysctl kernel settings

hashtag
B. Show only network sysctl values

hashtag
C. Show only modified (active) sysctl values

Or:

hashtag
D. Show sysctl configurations applied from files

(Defaults + overrides)

hashtag
1. Global config:

hashtag
2. Drop-in configs:

Example:

hashtag
5. List All sysctl Parameters Available in the Kernel

These are every kernel parameter that exists under /proc/sys/.

hashtag
Directory listing:

hashtag
Clean list:

hashtag
SUMMARY (For Quick Use)

Category
Command

Loaded modules

lsmod

Available modules

find /lib/modules/$(uname -r)/kernel -name "*.ko*"

GRUB parameters (running)

cat /proc/cmdline

GRUB parameters (configured)

cat /etc/default/grub

All sysctl tunables (active)

sysctl -a

Sysctl configs

/etc/sysctl.conf, /etc/sysctl.d/*.conf

All sysctl available

find /proc/sys

PreviousBLOG08: What is the Linux ModuleNextMATH: Cryptography

Last updated