diff options
| author | Christian Breunig <christian@breunig.cc> | 2024-02-03 17:21:57 +0100 |
|---|---|---|
| committer | GitHub <noreply@github.com> | 2024-02-03 17:21:57 +0100 |
| commit | 630a242cecaefb576513ecdc4e944bfc63515982 (patch) | |
| tree | 85fd5f4d862d247969b02043a7e0891e81364cf5 /data/templates/ipsec/swanctl/remote_access.j2 | |
| parent | 1d23d921deb07d4937bfd36f5c030008ee807cf4 (diff) | |
| parent | 4d943d8fbf1253154897179b0e3ea2d93b898197 (diff) | |
| download | vyos-1x-630a242cecaefb576513ecdc4e944bfc63515982.tar.gz vyos-1x-630a242cecaefb576513ecdc4e944bfc63515982.zip | |
Merge pull request #2932 from c-po/ipsec-T5998
ipsec: T5998: add replay-windows setting
Diffstat (limited to 'data/templates/ipsec/swanctl/remote_access.j2')
| -rw-r--r-- | data/templates/ipsec/swanctl/remote_access.j2 | 3 |
1 files changed, 3 insertions, 0 deletions
diff --git a/data/templates/ipsec/swanctl/remote_access.j2 b/data/templates/ipsec/swanctl/remote_access.j2 index 01dc8a4a7..bce8684fe 100644 --- a/data/templates/ipsec/swanctl/remote_access.j2 +++ b/data/templates/ipsec/swanctl/remote_access.j2 @@ -43,6 +43,9 @@ rand_time = 540s dpd_action = clear inactivity = {{ rw_conf.timeout }} +{% if rw_conf.replay_window is vyos_defined %} + replay_window = {{ rw_conf.replay_window }} +{% endif %} {% set local_prefix = rw_conf.local.prefix if rw_conf.local.prefix is vyos_defined else ['0.0.0.0/0', '::/0'] %} {% set local_port = rw_conf.local.port if rw_conf.local.port is vyos_defined else '' %} {% set local_suffix = '[%any/{1}]'.format(local_port) if local_port else '' %} |