How to restric specific ftp user acces to only one IP address

Discussion in 'Tips/Tricks/Mods' started by Tomislav Aurednik, May 18, 2016.

  1. Tomislav Aurednik

    Tomislav Aurednik Member HowtoForge Supporter

    Isp config 3.0.5, fw: bastille
    How to restric specific ftp user acces to only one IP address.
    I am a newcomer to Linux
     
  2. till

    till Super Moderator Staff Member ISPConfig Developer

    There is no such function available.
     
  3. Tomislav Aurednik

    Tomislav Aurednik Member HowtoForge Supporter

    even using iptables rules?
    Is there any other procedure that may limit such matters? Maybe some link?
     
  4. till

    till Super Moderator Staff Member ISPConfig Developer

    You can not restrict FTP access per username with iptables, that's a different layer, the Linux network stack / iptables does not know which username is used by FTP.
     
    Tomislav Aurednik likes this.
  5. Tomislav Aurednik

    Tomislav Aurednik Member HowtoForge Supporter

    first of all Thank you Till for the quick response.
    What is the recommended procedure to protect the FTP account in case of possible theft of FTP credentials?
    Or should I conf. TLS support for FTP? Maybe what possible links with instructions?
    Thank you
     
  6. till

    till Super Moderator Staff Member ISPConfig Developer

    TLS support is enabled by default on an ISPConfig server, FTP should never be used without TLS. Beside that, the FTP account is protected against brute force attacks with Fail2ban by default. Just follow the perfect server tutorial to install ispconfig.
     
  7. Tomislav Aurednik

    Tomislav Aurednik Member HowtoForge Supporter

    Thank you. I did instal ispconfig and I'm using ftp.
     

Share This Page