Hello,
i understand that "Web Access Control - Access Rules" allow us to set access rules for the www proxy server (black/whitelists, ip based rules, etc)
i have also activated the "FTP Proxy Service", but it seems the already mentioned rules don't apply here. so basically everyone can access the ftp proxy service without restrictions. is this correct or am i missing something?
thanks,
br
Robert
filter for "FTP proxy service" ?
Moderator: Qbik Staff
6 posts
• Page 1 of 1
filter for "FTP proxy service" ?
by tecxx » May 25 12 11:18 pm
- tecxx
- Posts: 6
- Joined: May 10 12 1:51 am
Re: filter for "FTP proxy service" ?
by adrien » May 26 12 12:02 am
Hi
web access control rules are for web access only (unless the client is using a web browser for FTP, in which case it still goes through the WWW proxy).
For other protocols, there's the policy system.
Regards
Adrien
web access control rules are for web access only (unless the client is using a web browser for FTP, in which case it still goes through the WWW proxy).
For other protocols, there's the policy system.
Regards
Adrien
- adrien
- Qbik Staff
- Posts: 5448
- Joined: Sep 03 03 2:54 pm
- Location: Auckland
Re: filter for "FTP proxy service" ?
by tecxx » May 29 12 8:44 pm
Whow... that brings everything to a whole new level.
thanks :) editing workflow now....
thanks :) editing workflow now....
- tecxx
- Posts: 6
- Joined: May 10 12 1:51 am
Re: filter for "FTP proxy service" ?
by tecxx » May 29 12 10:00 pm
i need a helpful hand one more time.
as mentioned before, i am trying to put authentication on the FTP proxy service.
i created a test policy for the FTP Proxy Service: ClientConnect event.
i connected it to a user/group check event, and two result objects allow/disconnect based on user group membership.
so far so good - the event seems to get called as i see the hit counter go up.
unfortunately all calls follow the "disconnect" path, in other words, user authentication does not work.
i am using filezilla and tried all available ftp proxy settings: user@host, site, open
any pointers?
EDIT: i think that when the ClientConnect event triggers, the filezilla client did not yet send any authentification information.
so i could authenticate via ip lookup lists at this stage. but if i am trying to authenticate via user/pass then i would need an additional event trigger, that fires once the client has sent authentication information. correct?
as mentioned before, i am trying to put authentication on the FTP proxy service.
i created a test policy for the FTP Proxy Service: ClientConnect event.
i connected it to a user/group check event, and two result objects allow/disconnect based on user group membership.
so far so good - the event seems to get called as i see the hit counter go up.
unfortunately all calls follow the "disconnect" path, in other words, user authentication does not work.
i am using filezilla and tried all available ftp proxy settings: user@host, site, open
any pointers?
EDIT: i think that when the ClientConnect event triggers, the filezilla client did not yet send any authentification information.
so i could authenticate via ip lookup lists at this stage. but if i am trying to authenticate via user/pass then i would need an additional event trigger, that fires once the client has sent authentication information. correct?
- tecxx
- Posts: 6
- Joined: May 10 12 1:51 am
Re: filter for "FTP proxy service" ?
by adrien » May 30 12 11:07 pm
HI
I sent you a link to a new build which contains a few more FTP features, including auth to the proxy, and another event.
Regards
Adrien
I sent you a link to a new build which contains a few more FTP features, including auth to the proxy, and another event.
Regards
Adrien
- adrien
- Qbik Staff
- Posts: 5448
- Joined: Sep 03 03 2:54 pm
- Location: Auckland
Re: filter for "FTP proxy service" ?
by tecxx » May 31 12 4:16 am
the ftp proxy auth is really working great with filezilla.
thanks a lot!
thanks a lot!
- tecxx
- Posts: 6
- Joined: May 10 12 1:51 am
6 posts
• Page 1 of 1
Who is online
Users browsing this forum: No registered users and 1 guest