Restrict access to proftpd based on IP or reverse lookup value


Enter Your Query:
Use '%' for wildcards and quotes for "exact phrases"


Top Level » Ftp

Restrict access to proftpd based on IP or reverse lookup valueLast Modified: Sep 6, 2012, 3:49 pm
If you'd like to lock down ftp so that only specific IPs, ranges or reverse IP lookup values are allowed to connect you can use the following.

1) To only allow specific IPs to connect, add the following to your <Global> section:

      <Limit LOGIN>
               Order allow,deny
               Allow from 1.2.3.4, 5.6.7.8
               Deny from all
       </Limit>

If you're using 1.3.4rc1 or newer, you can use ranges and wildcard values.


2) Or to only allow IPs who's reverse IP lookups belong to a certain family of IPs (usually a specific ISP), you can use the follwing in your <Global> section

      <Limit LOGIN>
               Order allow,deny
               Allow from .your.isp.com
               Deny from all
       </Limit>

where the reverse IP lookup of all IPs that are to connect, end in .your.isp.com

Replace bold values with your relevant data.

© 2018 JBMC Software, Suite 173  3-11 Bellerose Drive, St Albert, AB  T8N 1P7  Canada.  Mon-Fri 9AM-5PM MST