diff --git a/initscripts-config/files/sysctl.conf b/initscripts-config/files/sysctl.conf
index 08485cc..54feda4 100644
--- a/initscripts-config/files/sysctl.conf
+++ b/initscripts-config/files/sysctl.conf
@@ -86,3 +86,14 @@ net.ipv4.tcp_keepalive_time = 5
 # Reduce this delay to 8 shortens this to ~100 seconds.
 net.ipv4.tcp_retries2 = 8
 
+# Reserve ports in the ephemeral port range:
+#
+# Incorporate the reserved keystone port (35357) from
+# /usr/lib/sysctl.d/openstack-keystone.conf
+#
+# Helm v2.13.1 hardcodes the following Tiller ports when installed in the
+# k8s cluster: 44134 (server), 44135 (probe), 44136 (trace). Reserve them
+# from the ephemeral port range. This will avoid potential port conflicts
+# that will cause the tiller pod to crash when the port is assigned to
+# another client/server
+net.ipv4.ip_local_reserved_ports=35357,44134-44136