FEATURE REQUEST: Progressive IP blocking duration

Tell us your most wanted features from QNAP products.
Post Reply
newtom80
First post
Posts: 1
Joined: Thu Apr 22, 2021 4:11 am

FEATURE REQUEST: Progressive IP blocking duration

Post by newtom80 » Thu Apr 22, 2021 4:34 am

Hello,

I am a happy user of a TS-351. I am running an FTP server on my NAS, which is recurringly attacked by hackers, as the log states. Although under Control Panel -> System -> Security -> IP Access Protection there is a possibility to block IP addresses from where failed login attempts happened, I am pretty much bothered by overflowing log messages generated by the same attacker every 5 minutes. At the same time, I do not want to blocking time much higher, since I do not want to be blocked for too long in the case that I mistype the password while trying to connect to my home FTP server from somewhere else.

I would favor a solution, where (apart from the current 5, 10, 20, 30, 100 minutes choices) I'd have an option to set up a progressive IP blocking duration. Meaning:

- on the 1st failed attempt the IP gets blocked for 1 minute,
- on the 2nd -> 10 minutes,
- on the 3rd -> 60 minutes,
- on the 4th -> 24 hours,
- on the 5th -> move to blacklist.

I believe this would reduce the amount of log entries and increase security of the system.

Thanks,
Tamas

elvisimprsntr
Easy as a breeze
Posts: 293
Joined: Thu Apr 06, 2017 6:07 am

FEATURE REQUEST: Progressive IP blocking duration

Post by elvisimprsntr » Thu Apr 22, 2021 4:45 am

QNAP support doesn’t read this forum.

How about disconnecting the NAS from your WAN? Problem solved.

FTP is insecure. Use a VPN
[Hourly] TS-453A-16G, R5x4x2TB Seagate ST2000VN00?, Crucial CT2KIT102464BF160B
[Daily] TS-253A-16G, R1x2x4TB Seagate ST4000VN008, Crucial CT2KIT102464BF160B
[Weekly] USB3, 1x4TB Seagate STDR4000901, 45 min fire rated safe
[WAN1] ATT Fiber
[WAN2] SpeedTalk SIM in Netgear LTE Modem
[Firewall] pfSense on Protectli
[WLAN] OpenWRT on Linksys WRT3200ACM
[UPS] APC Back-UPS BX1500G

elvisimprsntr
Easy as a breeze
Posts: 293
Joined: Thu Apr 06, 2017 6:07 am

FEATURE REQUEST: Progressive IP blocking duration

Post by elvisimprsntr » Thu Apr 22, 2021 4:32 pm

Step up to enterprise class firewall software https://pfsense.org running on an appliance from https://protectli.com

Then configure one of the VPN options built in to pfsense. IPSec is one of the options.
[Hourly] TS-453A-16G, R5x4x2TB Seagate ST2000VN00?, Crucial CT2KIT102464BF160B
[Daily] TS-253A-16G, R1x2x4TB Seagate ST4000VN008, Crucial CT2KIT102464BF160B
[Weekly] USB3, 1x4TB Seagate STDR4000901, 45 min fire rated safe
[WAN1] ATT Fiber
[WAN2] SpeedTalk SIM in Netgear LTE Modem
[Firewall] pfSense on Protectli
[WLAN] OpenWRT on Linksys WRT3200ACM
[UPS] APC Back-UPS BX1500G

Post Reply

Return to “Features Wanted”