Forum Discussion

Cirrus

Nov 07, 2016

Locking down the ports of a Wildcard FTPS Server

Hey guys. I recently set up a wildcard FTPS server per the following: https://support.f5.com/kb/en-us/solutions/public/9000/300/sol9347.html1 After some playing with it, I finally got this ...

david_baumgart_
Nov 07, 2016
I actually found/modified an iRule to fit my needs. If anybody in the future comes looking at this for an answer to this, here is my iRule:

when CLIENT_ACCEPTED { if {([TCP::local_port] == 21 ) || ([TCP::local_port] >= XXXXXX ) && ([TCP::local_port] <= YYYYYY) } { pool FTPS_POOL_NAME } else reject}

Chase_Abbott

Employee

Nov 07, 2016

You may be looking for an iRule similar to this?

¬†

https://devcentral.f5.com/s/feed/0D51T00006i7aY1SAI

¬†

I would prefer to place IP/Port rules in a firewall (or AFM if in play here) as it's much more streamlined and easy to troubleshoot but you may not have this option.

¬†

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

Locking down the ports of a Wildcard FTPS Server

Recent Discussions

Background Tasks

APM with EntraID as idP / request signed

Should config via cli rather than gui?

APM Modern Customization - modify Header in user-common.js and form in user-logon.js

Which process is consuming higher CPU

Related Content

irule not redirect with wildcard.

iRule 301 Redirect using Wildcard

BIGIP OAUTH : Transmit "Application id" to backend server after a successful atuthentication

Wildcard Virtual Servers

SSL Heartbleed server side iRule

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS