The DMZ is susceptible to Denial of Service attacks. There is a feature within EFT to help address DOS attacks, yet I believe this exists for those EFT systems that are set up without a DMZ. Our version of the DMZ (v3.3.1 build 2) doesn't have this same feature. I'd like to see it within a future release because we are having a lot of unauthorized attempts. A few weeks past, our company had > 63,000 attempts on our externally facing servers. Our GlobalScape system was hit so many times that the 'Security - Failed Logins' report itself was 373 pages long!
I was getting tired of all the attempts to connect as root, admin, etc from all around the world and eventually figured out that I could ask our security staff to block any IP connections from outside the US and Canada, which fits our user base.
Comments
The DMZ is susceptible to Denial of Service attacks. There is a feature within EFT to help address DOS attacks, yet I believe this exists for those EFT systems that are set up without a DMZ. Our version of the DMZ (v3.3.1 build 2) doesn't have this same feature. I'd like to see it within a future release because we are having a lot of unauthorized attempts. A few weeks past, our company had > 63,000 attempts on our externally facing servers. Our GlobalScape system was hit so many times that the 'Security - Failed Logins' report itself was 373 pages long!
I was getting tired of all the attempts to connect as root, admin, etc from all around the world and eventually figured out that I could ask our security staff to block any IP connections from outside the US and Canada, which fits our user base.
Thank you, kkoponen. I'm going to make the same request.