VSFTPD limit the number of simultaneous vsftpd connections for a single IP address

Q. How do I force VSFTPD ftp server to limit the number of simultaneous vsftpd connections from the same IP address under Debian Linux?

A. By default VSFTPD allows unlimited connection from the same client IP address. You can easily force vsftpd ftp server to use limited number of connection. There is a special directive called max_per_ip.

Step # 1: Open vsftpd.conf file

Use text editor such as vi to edit /etc/vsftpd.conf or /etc/vsftpd/vsftpd.conf file:
# vi vsftpd.conf

Step # 2: Setup limitation

Set up the max_per_ip=3 (this will limit simultaneous connection to 3 number only)
max_per_ip=3

You are restricting end user to a specific host to 3 concurrent connections.

Step # 3: Restart vsftpd

# /etc/init.d/vsftpd restart

Now vsftpd should limit the number of simultaneous vsftpd connections for a single IP address. If end user try to cross this limit she will see following error message:

421 There are too many connections from IP address.

Posted by: Vivek Gite

The author is the creator of nixCraft and a seasoned sysadmin, DevOps engineer, and a trainer for the Linux operating system/Unix shell scripting. Get the latest tutorials on SysAdmin, Linux/Unix and open source topics via RSS/XML feed or weekly email newsletter.

2 comment

none says:
October 17, 2013 at 10:19 am
what about a max on connections per user account?
Jimmy says:
October 13, 2015 at 3:49 am
https://wiki.archlinux.org/index.php/Very_Secure_FTP_Daemon#Limiting_connections
local_max_rate=1000000 # Maximum data transfer rate in bytes per second
max_clients=50 # Maximum number of clients that may be connected
max_per_ip=2 # Maximum connections per IP

Have a question? Post it on our forum!