Overview
Both the EPP server and FTP server enforce IP-based access control. Only connections from IP addresses (or networks) registered on your IP Access List will be accepted.
What Is IP-Restricted
- EPP server (epp.registry.co, port 700) — restricted to whitelisted IPs.
- FTP server (ftp-registrar.registry.co, port 21) — restricted to whitelisted IPs.
- Registrar Console web interface — NOT IP-restricted.
- OT&E EPP server (epp.ote.registry.co, port 700) — NOT IP-restricted.
Managing Your IP Access List
- Log in to the Registrar Console at https://registrar-console.registry.co/.
- Navigate to the IP Access List section (within account/settings).
- Add individual IP addresses (IPv4 or IPv6) or CIDR network ranges.
- Save your changes. New IPs take effect immediately.
Best Practices
- Only whitelist IPs that genuinely need EPP or FTP access.
- Use static IP addresses for your EPP client servers to avoid access interruptions.
- If using cloud infrastructure, add the specific Elastic/static IPs assigned to your EPP servers.
- Review your IP list periodically and remove stale entries.
Common Issues
Connection refused on EPP: Check that your server's IP is on the whitelist. Dynamic IPs can cause intermittent failures.
FTP login fails after re-enabling: Confirm FTP access is enabled on your account (may need to contact support), and that your IP is whitelisted.
Related Articles
- How to Configure EPP Access for the .CO Registry
- How to Set Up and Use the FTP Server