summaryrefslogtreecommitdiff
path: root/data
diff options
context:
space:
mode:
authorViacheslav Hletenko <v.gletenko@vyos.io>2022-09-27 16:06:52 +0000
committerViacheslav Hletenko <v.gletenko@vyos.io>2022-10-10 12:52:54 +0000
commitb9de775a5b4f017f9d164a127d93f55ce9053756 (patch)
tree115f41fe28929be7c3a6a06c3bb9a0608e65ee8a /data
parent53bd9fe11e449c66656fef9cb72084d5d0800a75 (diff)
downloadvyos-1x-b9de775a5b4f017f9d164a127d93f55ce9053756.tar.gz
vyos-1x-b9de775a5b4f017f9d164a127d93f55ce9053756.zip
ssh: T4716: Ablity to configure RekeyLimit data and time
Ability to configure SSH RekeyLimit data (in Megabytes) and time (in Minutes) set service ssh rekey data 1024 set service ssh rekey time 60
Diffstat (limited to 'data')
-rw-r--r--data/templates/ssh/sshd_config.j24
1 files changed, 4 insertions, 0 deletions
diff --git a/data/templates/ssh/sshd_config.j2 b/data/templates/ssh/sshd_config.j2
index e7dbca581..79b07478b 100644
--- a/data/templates/ssh/sshd_config.j2
+++ b/data/templates/ssh/sshd_config.j2
@@ -96,3 +96,7 @@ DenyGroups {{ access_control.deny.group | join(' ') }}
# sshd(8) will send a message through the encrypted channel to request a response from the client
ClientAliveInterval {{ client_keepalive_interval }}
{% endif %}
+
+{% if rekey.data is vyos_defined %}
+RekeyLimit {{ rekey.data }}M {{ rekey.time + 'M' if rekey.time is vyos_defined }}
+{% endif %}