03-27-2022 01:27 PM
As title says, I need to able access FTP only, everything else has to be denied.
I have to use ACL
Could you please help me?
Thank you!
wan
03-27-2022 01:41 PM
03-27-2022 02:04 PM
Hello
Can you elaborate a little on how this server is attached within your network, where is it residing and what device is provding the L3 routing and network security policy and where are you trying to access this server from?
03-27-2022 04:24 PM
First, understand, FTP is two way communication, so you might block all but FTP to the server, or all but FTP from the server, or both.
Second, ACLs are applied at L3 interfaces, i.e. do you need to block all but FTP to to other hosts on the same local network?
Third what side of the FTP communication will start FTP session, i.e. host or server, or both?
Fourth, do we care about FTP active vs. passive mode?
Lastly, is allowing FTP only to be on its "standard" ports or is FTP to be also allowed on non-standard FTP ports too?
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide