summaryrefslogtreecommitdiff
path: root/interface-definitions/include/ipsec/replay-window.xml.i
diff options
context:
space:
mode:
authorChristian Breunig <christian@breunig.cc>2024-02-03 22:07:12 +0100
committerGitHub <noreply@github.com>2024-02-03 22:07:12 +0100
commit22a15d828e1d0052d6690860367ba294d2481a04 (patch)
tree9716120b7d0424fb4bcd8fc6acc66418fe6df767 /interface-definitions/include/ipsec/replay-window.xml.i
parent088dcfd35af200294dcb186cf5529226bfbb46b7 (diff)
parent4edc0611ec0ab39147c136d769a9e8a0f50847e6 (diff)
downloadvyos-1x-22a15d828e1d0052d6690860367ba294d2481a04.tar.gz
vyos-1x-22a15d828e1d0052d6690860367ba294d2481a04.zip
Merge pull request #2934 from vyos/mergify/bp/sagitta/pr-2932
ipsec: T5998: add replay-windows setting (backport #2932)
Diffstat (limited to 'interface-definitions/include/ipsec/replay-window.xml.i')
-rw-r--r--interface-definitions/include/ipsec/replay-window.xml.i19
1 files changed, 19 insertions, 0 deletions
diff --git a/interface-definitions/include/ipsec/replay-window.xml.i b/interface-definitions/include/ipsec/replay-window.xml.i
new file mode 100644
index 000000000..f35ed550a
--- /dev/null
+++ b/interface-definitions/include/ipsec/replay-window.xml.i
@@ -0,0 +1,19 @@
+<!-- include start from ipsec/replay-window.xml.i -->
+<leafNode name="replay-window">
+ <properties>
+ <help>IPsec replay window to configure for this CHILD_SA</help>
+ <valueHelp>
+ <format>u32:0</format>
+ <description>Disable IPsec replay protection</description>
+ </valueHelp>
+ <valueHelp>
+ <format>u32:1-2040</format>
+ <description>Replay window size in packets</description>
+ </valueHelp>
+ <constraint>
+ <validator name="numeric" argument="--range 0-2040"/>
+ </constraint>
+ </properties>
+ <defaultValue>32</defaultValue>
+ </leafNode>
+ <!-- include end -->