summaryrefslogtreecommitdiff
path: root/data/templates/ssh
diff options
context:
space:
mode:
authorChristian Poessinger <christian@poessinger.com>2022-10-10 20:03:00 +0200
committerGitHub <noreply@github.com>2022-10-10 20:03:00 +0200
commit9769f25fdf3bde3775ed5a0108543dc6e89745cf (patch)
treea1e3d3df5aeff9483cae11449ac324ba914b8714 /data/templates/ssh
parentadc9af1983657589b95f8e42f83a8d02cc731402 (diff)
parentb9de775a5b4f017f9d164a127d93f55ce9053756 (diff)
downloadvyos-1x-9769f25fdf3bde3775ed5a0108543dc6e89745cf.tar.gz
vyos-1x-9769f25fdf3bde3775ed5a0108543dc6e89745cf.zip
Merge pull request #1563 from sever-sever/T4716
ssh: T4716: Ability to configure RekeyLimit data and time
Diffstat (limited to 'data/templates/ssh')
-rw-r--r--data/templates/ssh/sshd_config.j24
1 files changed, 4 insertions, 0 deletions
diff --git a/data/templates/ssh/sshd_config.j2 b/data/templates/ssh/sshd_config.j2
index e7dbca581..79b07478b 100644
--- a/data/templates/ssh/sshd_config.j2
+++ b/data/templates/ssh/sshd_config.j2
@@ -96,3 +96,7 @@ DenyGroups {{ access_control.deny.group | join(' ') }}
# sshd(8) will send a message through the encrypted channel to request a response from the client
ClientAliveInterval {{ client_keepalive_interval }}
{% endif %}
+
+{% if rekey.data is vyos_defined %}
+RekeyLimit {{ rekey.data }}M {{ rekey.time + 'M' if rekey.time is vyos_defined }}
+{% endif %}