You are not logged in.
- Topics: Active | Unanswered
#1 2005-01-26 22:11:30
- zmeyski
- Member
- From: Burgas, Bulgaria
- Registered: 2004-09-15
- Posts: 9
restricting acces to ftp server
Hello,
i have a small anonymous ftp server (pure-ftpd daemonized). There are some people on my network who are connecting through our proxy server and i want to prevent that. So how do i forbid access from certain IPs?
thank you for your help
Offline
#2 2005-01-26 22:53:40
- kth5
- Member
- Registered: 2004-04-29
- Posts: 657
- Website
Re: restricting acces to ftp server
i would suggest to use iptables to block tcp to your ftp-server's port from a specific source ip. 
I recognize that while theory and practice are, in theory, the same, they are, in practice, different. -Mark Mitchell
Offline
#3 2005-01-29 10:27:07
- Michel
- Member
- From: Belgium
- Registered: 2004-07-31
- Posts: 286
Re: restricting acces to ftp server
If proftpd uses tcpwrapper .. you can limit it using that also. This way tou don't have to rely on a firewall for this ... (You can have both.)
Offline
#4 2005-01-29 17:11:40
- FUBAR
- Member
- From: Belgium
- Registered: 2004-12-08
- Posts: 1,029
- Website
Re: restricting acces to ftp server
You can set Pure-FTPd to only listen to it's own IP:
Bind 10.0.0.5 # set 10.0.0.5 to the IP of the FTP-serverThis way, if users connect through your proxy (NAT/router?), they'll probably connect to ftp.yourdomain.com and the proxy forwards the request to the server. The server won't allow a connection since it only listens to connections going to 10.0.0.5 (not ftp.yourdomain.com).
You could probably also edit the user database and deny connections from certain IP's in there.
PS: I'm assuming you're confusing proxy with NAT/router.
A bus station is where a bus stops.
A train station is where a train stops.
On my desk I have a workstation.
Offline