fastnetmon: T4553: Allow to configure ban_time instead of 1900s default value

author: Adrian Almenar <adrian@tecnocratica.net> 2022-07-21 17:18:30 +0200
committer: Christian Poessinger <christian@poessinger.com> 2022-07-21 19:05:48 +0200
commit: f40fe618f2a3efb7ea4dba35614f40db87903501 (patch)
tree: f359f5c8096fd4fb1d1261295839b3bd73a78b6e /data/templates/ids
parent: f424d84f41791949a2ada417ecdd45a3b842799a (diff)
download: vyos-1x-f40fe618f2a3efb7ea4dba35614f40db87903501.tar.gz
vyos-1x-f40fe618f2a3efb7ea4dba35614f40db87903501.zip
1 files changed, 3 insertions, 1 deletions
diff --git a/data/templates/ids/fastnetmon.j2 b/data/templates/ids/fastnetmon.j2
index c482002fa..e095b0786 100644
--- a/data/templates/ids/fastnetmon.j2
+++ b/data/templates/ids/fastnetmon.j2
@@ -15,7 +15,9 @@ ban_details_records_count = 500
 
 ## How long (in seconds) we should keep an IP in blocked state
 ## If you set 0 here it completely disables unban capability
-ban_time = 1900
+{% if ban_time is vyos_defined %}
+ban_time = {{ ban_time }}
+{% endif %}
 
 # Check if the attack is still active, before triggering an unban callback with this option
 # If the attack is still active, check each run of the unban watchdog
author	Adrian Almenar <adrian@tecnocratica.net>	2022-07-21 17:18:30 +0200
committer	Christian Poessinger <christian@poessinger.com>	2022-07-21 19:05:48 +0200
commit	f40fe618f2a3efb7ea4dba35614f40db87903501 (patch)
tree	f359f5c8096fd4fb1d1261295839b3bd73a78b6e /data/templates/ids
parent	f424d84f41791949a2ada417ecdd45a3b842799a (diff)
download	vyos-1x-f40fe618f2a3efb7ea4dba35614f40db87903501.tar.gz vyos-1x-f40fe618f2a3efb7ea4dba35614f40db87903501.zip