Hi Friends,
We are using Centos 6, in our system two Ethernet Cards are used one for LAN Access and another one for WAN internet.
We are used for Appache server, for showing demo site to clients.
So I need to give Restrict permission for the following.
1. Restrict FTP access on internet WAN. Only LAN users can use FTP.
2. In internet users (client) can only view Http site. Ftp should restricted on internet.
Please anyone Help me. Its very Urgent.
Urgent Help: Need to Restrict Ftp on WAN Allow only on LAN
Urgent Help: Need to Restrict Ftp on WAN Allow only on LAN
You can use listen_address directive in vsftpd.conf or you could limit source network/range/local interface with iptables.
Re: Urgent Help: Need to Restrict Ftp on WAN Allow only on LAN
Hi,
sorry for late reply, but
something similar I'm using on my server, where I block FTP access from all, except allowed IP's with IPTABLES.
What I do in IPTABLES :
[code]-A RH-Firewall-1-INPUT -s 192.168.0.0/16 -p tcp -m tcp --dport 21 -j ACCEPT
-A RH-Firewall-1-INPUT -s 192.168.0.0/16 -p tcp -m tcp -m state --state RELATED,ESTABLISHED --dport 21 -j ACCEPT[/code]
This is a Local LAN IP address range 192.168.0.0 which is allowed
everything else is Blocked by default because it's not listed as allowed.
sorry for late reply, but
something similar I'm using on my server, where I block FTP access from all, except allowed IP's with IPTABLES.
What I do in IPTABLES :
[code]-A RH-Firewall-1-INPUT -s 192.168.0.0/16 -p tcp -m tcp --dport 21 -j ACCEPT
-A RH-Firewall-1-INPUT -s 192.168.0.0/16 -p tcp -m tcp -m state --state RELATED,ESTABLISHED --dport 21 -j ACCEPT[/code]
This is a Local LAN IP address range 192.168.0.0 which is allowed
everything else is Blocked by default because it's not listed as allowed.