Support Center > Knowledgebase > DirectAdmin > FTP > Restrict access to proftpd based on IP or reverse lookup value
Restrict access to proftpd based on IP or reverse lookup value
If you'd like to lock down ftp so that only specific IPs, ranges or reverse IP lookup values are allowed to connect you can use the following.
1) To only allow specific IPs to connect, add the following to your
Order allow,deny
Allow from 1.2.3.4, 5.6.7.8
Deny from all
If you're using 1.3.4rc1 or newer, you can use ranges and wildcard values.
2) Or to only allow IPs who's reverse IP lookups belong to a certain family of IPs (usually a specific ISP), you can use the follwing in your
Order allow,deny
Allow from .your.isp.com
Deny from all
where the reverse IP lookup of all IPs that are to connect, end in .your.isp.com
Replace bold values with your relevant data.
Also Read