diff --git a/roles/security/templates/sshd_config.j2 b/roles/security/templates/sshd_config.j2
index 453a561a..c014eb46 100644
--- a/roles/security/templates/sshd_config.j2
+++ b/roles/security/templates/sshd_config.j2
@@ -54,11 +54,3 @@ MACs hmac-sha2-512-etm@openssh.com,hmac-sha2-256-etm@openssh.com,umac-128-etm@op
 # TODO: I haven't seen anyone review these yet
 # PubkeyAcceptedKeyTypes ecdsa-sha2-nistp256-cert-v01@openssh.com,ecdsa-sha2-nistp384-cert-v01@openssh.com,ecdsa-sha2-nistp521-cert-v01@openssh.com,ssh-ed25519-cert-v01@openssh.com,ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521,ssh-ed25519
 
-{% if ssh_tunneling_enabled is defined and ssh_tunneling_enabled == "y" %}
-Match Group algo
-    AllowTcpForwarding remote
-    AllowAgentForwarding no
-    AllowStreamLocalForwarding no
-    PermitTunnel no
-    X11Forwarding no
-{% endif %}