Security... and not feeling so.
In logs on mFTP domain facing Gateway there are many brute force attempts to Connect and to Login
I've set the limit to catch & block forever many attempts in short period of time vs a user who attempts a few times in a longer period of time, they too can be blocked forever
Server (desktop) Firewall is OFF to accept any IP on this domain to partners who work remote without static IP
Questions in no particular order
Firewall (desktop) configuration, is Off correct? If not correct is there any guidance/best practice on FW configuration?
Blocked IP by |Limits & Settings, |Connection Settings, |Block Settings...
a) when IP are added by these Settings, 1) they're not noted as such, 2) how to know how an IP was added to the Domain Deny List?
b) how to un-block an IP ?
Serv-U appears to be our only security and eventually the current version will be deemed Not Secure, so before then how do we close the gap?