diff --git a/systemvm/patches/debian/config/etc/sysctl.conf b/systemvm/patches/debian/config/etc/sysctl.conf
index c8f4bfb0833..f5b10864176 100644
--- a/systemvm/patches/debian/config/etc/sysctl.conf
+++ b/systemvm/patches/debian/config/etc/sysctl.conf
@@ -27,6 +27,9 @@ net.ipv4.conf.default.send_redirects = 0
 net.ipv4.conf.all.secure_redirects = 0
 net.ipv4.conf.default.secure_redirects = 0
 
+# For smooth transition of the vip address in case of a keepalived failover
+net.ipv4.ip_nonlocal_bind = 1
+
 # Controls the System Request debugging functionality of the kernel
 kernel.sysrq = 0
 
@@ -34,13 +37,20 @@ kernel.sysrq = 0
 # Useful for debugging multi-threaded applications.
 kernel.core_uses_pid = 1
 
+# A better way for the instance to die
+kernel.panic = 10
+kernel.panic_on_oops = 1
+vm.panic_on_oom = 1
+
 # Controls the use of TCP syncookies
 net.ipv4.tcp_syncookies = 1
 
-net.ipv4.netfilter.ip_conntrack_max=1000000
-net.ipv4.tcp_tw_reuse=1
-net.ipv4.tcp_max_tw_buckets=1000000
-net.core.somaxconn=1000000
+net.ipv4.netfilter.ip_conntrack_max = 1000000
+net.ipv4.tcp_tw_reuse = 1
+net.ipv4.tcp_max_tw_buckets = 1000000
+net.core.somaxconn = 1000000
+net.nf_conntrack_max = 1000000
+net.netfilter.nf_conntrack_max = 1000000
 
 # Disable IPv6
 net.ipv6.conf.all.disable_ipv6 = 1