Simple Fellow

Asked: 2022-01-18 21:21:12 +0800 CST2022-01-18 21:21:12 +0800 CST 2022-01-18 21:21:12 +0800 CST

Open FTP only on certain IP address

on a remote machine there are two network interfaces.

eth0: 10.10.0.15 (VLAN)
eth1: 33.33.22.22 (Public IP)

I want the VSFTPD to only receive and entertain requests from the public IP and localhost and not from the VLAN or any machines on VLAN. I added the following rules t the UFW:

ufw allow proto tcp from 33.33.22.22 to any port 20:21

this is for passive FTP

ufw allow proto tcp from 33.33.22.22 to any port 40000:40100

however with this setting the FileZilla is stuck

Connecting to 33.33.22.22
Connection established, waiting for welcomemessage...
Initializing TLS
verifying certificate
Logged in
Retrieving directory listing...

and then it is stuck for few seconds and then retries.

with this setting

ufw allow proto tcp from any to any port 40000:40100

it starts working but then connections from other machines on VLAN is also possible. how can I achieve the desired results or that's not possible?

Open FTP only on certain IP address

How to install Google Chrome

Is there a command to list all users? Also to add, delete, modify users, in the terminal?

How to delete a non-empty directory in Terminal?

How to unzip a zip file from the Terminal?

How can I copy the contents of a folder to another folder in a different directory using terminal?

How do I install a .deb file via the command line?

How do I run .sh scripts?

How do I install a .tar.gz (or .tar.bz2) file?

How to list all installed packages

Unable to lock the administration directory (/var/lib/dpkg/) is another process using it?

Open FTP only on certain IP address

0 Answers