roles/common: Remove SSH rate limiting from firewalld

Rather than a simple rate limit, I'm now using fail2ban to ban IPs that actually fail to login.
2019-10-26 16:41:42 +02:00 · 2019-10-26 16:41:42 +02:00 · d8d8a01a5f
parent 4710ee6f07
commit d8d8a01a5f
1 changed files with 2 additions and 6 deletions
--- a/roles/common/templates/public.xml.j2
+++ b/roles/common/templates/public.xml.j2
@ -7,18 +7,14 @@
    <rule family="ipv4">
        <source address="0.0.0.0/0"/>
        <port protocol="tcp" port="22"/>
-        <accept>
-            <limit value="12/m"/>
-        </accept>
+        <accept/>
    </rule>

    {# ipv6 ssh rules #}
    <rule family="ipv6">
        <source address="::/0"/>
        <port protocol="tcp" port="22"/>
-        <accept>
-            <limit value="12/m"/>
-        </accept>
+        <accept/>
    </rule>

    {# web rules #}