FTP Brute-Force Protection
Protection Overview
RdpGuard protects your FTP server from
brute-force attacks. It monitors FTP port and blocks attackers IP addresses when the number of failed login
attempts reaches the set limit. Check out the instructions below to learn how to enable and configure FTP
brute-force protection.
To enable and configure FTP brute-force protection
1. Start RdpGuard Dashboard and click on the link next to FTP
FTP Protection Link in RdpGuard Dashboard
FTP Settings dialog will open:
FTP Detection Engine Settings
Monitoring method for FTP protocol
The following monitoring methods are supported for FTP protocol:
-
Traffic based monitoring
-
Log based monitoring
Traffic based monitoring works with any FTP server, SSL/TLS connections are not supported.
Log based monitoring works with particular FTP server's logs. SSL/TLS connections are supported.
Traffic based monitoring
The following traffic based monitoring methods are supported
-
Raw Sockets - Does not work on Windows Server 2008 or with firewalls.
-
WinPcap
- Works on all Windows Editions, WinPcap must be installed.
FTP port
You may specify multiple comma-separated ports for FTP traffic monitoring.
Log based monitoring
Log based FTP Monitoring
Server type
The following FTP servers are supported for now:
Log files directory
Specify log files directory used by selected FTP server.
|