On Mon, Dec 22, 2008 at 11:02 PM, Emmanuel Lecharny <elecha...@gmail.com>wrote:
> Suresh Metla wrote: > >> Hi All, >> I am looking for a feature where i can allow only certain IPAddress to >> access FTP Server. Exactly this feature is mentioned on Apache FTP server >> feature pages, unfortunatley I couldn't find any documentation on how to >> allow IPS, documentation only talk about the black list. >> Could you please help if this feature is available on Apache FTPServer? >> If Yes, Please let me know how to use this feature. >> >> > If you can, don't do that on the FtpServer layer. Use a firewall. Way way > way better ... Well, IMO that is an over-generalization. When you're afraid of a DDOS, then using a firewall to only allow a fixed set op IP's is indeed the way to go. But when the set of IP's changes frequently and especially when that set can be changed via your application, then it's often way more convenient to do the filtering in your app itself. Have a look at the BlacklistFilter, it's trivial to convert it to a WhitelistFilter http://mina.apache.org/report/trunk/apidocs/org/apache/mina/filter/firewall/BlacklistFilter.html Maarten > > It's a bit like 'When you only have a hammer, everything looks like a nail' > idea. > > -- > -- > cordialement, regards, > Emmanuel Lécharny > www.iktek.com > directory.apache.org > > >
