diff --git a/internal/app/machined/pkg/controllers/runtime/kernel_param_defaults.go b/internal/app/machined/pkg/controllers/runtime/kernel_param_defaults.go
index 8e72e3e3c4..b3bc912682 100644
--- a/internal/app/machined/pkg/controllers/runtime/kernel_param_defaults.go
+++ b/internal/app/machined/pkg/controllers/runtime/kernel_param_defaults.go
@@ -104,11 +104,29 @@ func (ctrl *KernelParamDefaultsController) getKernelParams() []*kernel.Param {
 			Key:   "net.ipv6.conf.default.accept_ra",
 			Value: "2",
 		},
+		// ipvs/conntrack tcp keepalive refresh.
+		{
+			Key:   "net.ipv4.tcp_keepalive_time",
+			Value: "600",
+		},
+		{
+			Key:   "net.ipv4.tcp_keepalive_intvl",
+			Value: "60",
+		},
 		{
 			Key:   "kernel.pid_max",
 			Value: "262144",
 		},
 	}...)
 
+	// kernel optimization for kubernetes workloads.
+	res = append(res, []*kernel.Param{
+		// configs inotify.
+		{
+			Key:   "fs.inotify.max_user_instances",
+			Value: "512",
+		},
+	}...)
+
 	return res
 }