The title for the rule 'sshd-39' is 'Server: Disable TCP forwarding'.
The description is 'If you use TCP forwarding in an uncontrolled manner then you can bypass the firewalls'.
I suggest that the value for AllowTcpForwarding SSH server parameter in this particular rule (with such title and description) should be limited to the following:
'no' as it prevents all TCP forwarding;
'local' as it allows local forwarding only.
This will suite the title and the description more than it is now.
Solution
I suggest removing input for AllowTcpForwarding SSH server parameter:
Description
The title for the rule 'sshd-39' is 'Server: Disable TCP forwarding'. The description is 'If you use TCP forwarding in an uncontrolled manner then you can bypass the firewalls'. I suggest that the value for AllowTcpForwarding SSH server parameter in this particular rule (with such title and description) should be limited to the following:
This will suite the title and the description more than it is now.
Solution
I suggest removing input for AllowTcpForwarding SSH server parameter:
And replace the line:
with: