Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Block IP Subnet from FTP attack

Pix 501 I have a device that I 1 - 1 translate from a private to a public so it can be accessed by techs off site. There is someone with an FTP attack on this public IP. Is there a way to block this Subnet from accessing the device?

2 REPLIES

Re: Block IP Subnet from FTP attack

You bet. Let's assume they are coming from 75.50.95.72 /29 network.

access-list outside_access deny tcp 75.50.95.72 255.255.255.248 any eq ftp

You will need to put this above the permit FTP statement.

New Member

Re: Block IP Subnet from FTP attack

Collin's way can work but what if the attacker changes their address. If possible you should get the IP addresses of the persons that are allowed to connect and change your access list to permit those addresses and block everything else.

230
Views
0
Helpful
2
Replies
CreatePlease login to create content