Auto-blocking SFTP/FTPS

The built-in defender allows MFT to configure an auto-blocking policy for SFTP/FTPS inbound traffic, which helps to prevent Denial of Service (DoS) and brute force password guessing.

As this service is enabled, it protects MFT’s SFTP and FTPS services, and automatically blocks hosts (IP addresses) that continually fail to log in or attempt to connect.

Our security setting has a 30-minute observation time for accumulating banning points.

caution

Only failed login attempts accumulate points. Successful logins no longer accumulate points.

Each failed attempt is 1 point.

The ban threshold is 30 points.

Therefore, after 30 connections, the IP results in a ban.

If you are blocklisted, contact MFT’s help center.