The best bet would be to edit your /etc/host.allow and /etc/hosts.deny files to control access. A prerequisite is to make sure tcp wrappers in enabled in your /etc/vsftpd.conf file :
Code:
# TCP Wrappers
tcp_wrappers=YES
Deny all incoming connections by default in /etc/hosts.deny by adding:
Specify the allowed connection in /etc/hosts.allow by adding:
Code:
vsftpd: 192.168.0.,209.223.0.124
The above example only allows ftp access from the local network ( 192.168.0.* ) and the IP 209.223.0.124
If there are no /etc/hosts.allow|deny files then you can just create them but make sure that they are rw only by root.