IP Whitelisting
You can restrict access for Web, WebDAV and SFTP using IP whitelisting. The whitelist is also proxy aware and will parse X-Forwarded-For
and X-Real-IP
header for trusted proxies.
You can define whitelists in CIDR notation for IPv4 and IPv6 using the flags -ipw --ip-whitelist
and -tpw --trusted-proxy-whitelist
.
goshs -ipw 127.0.0.1,192.168.0.1/24,217.147.137.129 -tpw 192.168.0.1/24,217.147.137.1
This will accept connections from 127.0.0.1, 192.168.0.1/24, 217.147.137.129 and trust proxies in from 192.168.0.1/24, 217.147.137.1.