BlockList, SafeList, AllowList

Syncplify Server! includes 3 different “lists” that have 3 very distinct purposes. It’s very important that an administrator is familiar with these 3 lists, what they represent, how they work, and how to effectively use them. Here’s a brief yet precise explanation.

First of all, it’s important to understand that all three lists accept:

single IP addresses 192.168.172.23
network CIDRs 192.168.172.0/24

But they serve very different purposes:

BlockList

The BlockList (formerly known as BlackList) is the core of Syncplify’s Protector™ subsystem.

Any connection attempt from a client whose IP address is included in the BlockList, or that is part of a network CIDR included in the BlockList, will be rejected.

Syncplify Protector™ automatically (and extremely effectively) identifies all sorts of attacks and hacking attempts, and automatically adds the attackers’ IP addresses to the BlockList.

You can, if you so wish, manually add IP addresses and/or networks to your BlockList, but this is typically not needed, because Protector™ is extremely effective at its job.

SafeList

The SafeList can be thought of as a list of exceptions to the BlockList. Basically, any IP or network present in the SafeList will never be added to the BlockList by Protector™.

If there are IP addresses or networks that you want to trust, and you are confident that no attacks can ever come from such sources, you can add them to the SafeList. Protector™ will still check and prevent attacks from those sources and will reject offending connections, but it will not add the client IP address to the BlockList.

AllowList

WARNING

This is, typically, the most misunderstood of the three lists, so please read carefully.

If the AllowList is left empty, clients (like FileZilla, WinSCP, etc.) can connect to your server from anywhere. An empty AllowList is equivalent to disabling the AllowList. Most administrators run their Syncplify Server! with an empty AllowList.

If you add even a single IP address or network to the AllowList, it becomes active and restrictive. This means that your Syncplify Server! will only accept incoming connections from IP addresses and networks included in the AllowList. Any attempt to connect from sources not in the AllowList will be rejected.

Please, use the AllowList very carefully.

General concepts

Installation and Setup

Administration (Web UI)

SuperAdmin UI

Managing virtual sites

Global Configuration

Admin UI

Security

Protocols

Scripting/event-handling

Other settings

Certificates & Keys

Miscellaneous concepts

Administration (REST API)

Scripting/Event-Handling

Server!-specific SyncJS

Helper functions

The "Session" object

The "User" object

The "VFS" object

The SyncJS language

SyncJS types

Local file-system functions

Web (HTTP/HTTPS) functions

SQL database functions

AMQP message queue protocol

Cloud and integration functions

Messaging functions

Process management

Image processing

Security/encryption functions

Miscellaneous functions

More (cool) stuff

WebClient! UI

BlockList, SafeList, AllowList

BlockList

SafeList

AllowList

SuperAdmin UI

Managing virtual sites

Global Configuration

Admin UI

Security

Protocols

Scripting/event-handling

Other settings

Certificates & Keys

Miscellaneous concepts

Server!-specific SyncJS

Helper functions

The "Session" object

The "User" object

The "VFS" object

The SyncJS language

SyncJS types

Local file-system functions

Web (HTTP/HTTPS) functions

SQL database functions

AMQP message queue protocol

Cloud and integration functions

Messaging functions

Process management

Image processing

Security/encryption functions

Miscellaneous functions

More (cool) stuff

BlockList, SafeList, AllowList ​

BlockList ​

SafeList ​

AllowList ​

BlockList, SafeList, AllowList

BlockList

SafeList

AllowList