You are not logged in.

#1 2005-01-26 22:11:30

zmeyski
Member
From: Burgas, Bulgaria
Registered: 2004-09-15
Posts: 9

restricting acces to ftp server

Hello,

i have a small anonymous ftp server (pure-ftpd daemonized). There are some people on my network who are connecting through our proxy server and i want to prevent that. So how do i forbid access from certain IPs?

thank you for your help

Offline

#2 2005-01-26 22:53:40

kth5
Member
Registered: 2004-04-29
Posts: 657
Website

Re: restricting acces to ftp server

i would suggest to use iptables to block tcp to your ftp-server's port from a specific source ip. big_smile


I recognize that while theory and practice are, in theory, the same, they are, in practice, different. -Mark Mitchell

Offline

#3 2005-01-29 10:27:07

Michel
Member
From: Belgium
Registered: 2004-07-31
Posts: 286

Re: restricting acces to ftp server

If proftpd uses tcpwrapper .. you can limit it using that also. This way tou don't have to rely on a firewall for this ... (You can have both.)

Offline

#4 2005-01-29 17:11:40

FUBAR
Member
From: Belgium
Registered: 2004-12-08
Posts: 1,029
Website

Re: restricting acces to ftp server

You can set Pure-FTPd to only listen to it's own IP:

Bind 10.0.0.5 # set 10.0.0.5 to the IP of the FTP-server

This way, if users connect through your proxy (NAT/router?), they'll probably connect to ftp.yourdomain.com and the proxy forwards the request to the server. The server won't allow a connection since it only listens to connections going to 10.0.0.5 (not ftp.yourdomain.com).

You could probably also edit the user database and deny connections from certain IP's in there.

PS: I'm assuming you're confusing proxy with NAT/router.


A bus station is where a bus stops.
A train station is where a train stops.
On my desk I have a workstation.

Offline

Board footer

Powered by FluxBB