• If you are still using CentOS 7.9, it's time to convert to Alma 8 with the free centos2alma tool by Plesk or Plesk Migrator. Please let us know your experiences or concerns in this thread:
    CentOS2Alma discussion

Question connect from Filezilla with FTP over TLS

J

jogisarge

New Pleskian
Server operating system version
Ubuntu 22.04.3 LTS
Plesk version and microupdate number
Obsidian 18.0.55
Hi,
i cant connect to my Plesk-Server (Obsidian 18.0.55 - Ubuntu 22.04.3 LTS) from Filezilla with the option "wenn verfügbar, explizites FTP über TLS verwenden" is activated.
If i change to "nur unverschlüsseltes FTP verwenden" the connection works.
How can ich change my server settings to make this run with "FTP over TLS".

I also tried to use SFTP and read many articles - all descripe the Checkbox in the FTP-Account should be activated but i have no checkbox in my accounts.

1697104406680.png

thanks jogi
 
the log from Filezilla shows online a timeout

Status: Auflösen der IP-Adresse für ids-cloud.eu
Status: Verbinde mit 1.1.1.1:21...
Status: Verbindung hergestellt, warte auf Willkommensnachricht...
Antwort: 220 ProFTPD Server (ProFTPD) [1.1.1.1]
Befehl: AUTH TLS
Antwort: 234 AUTH TLS successful
Status: Initialisiere TLS...
Status: TLS-Verbindung hergestellt.
Befehl: USER user
Antwort: 331 Password required for user
Befehl: PASS ***********
Antwort: 230 User user logged in
Befehl: CLNT FileZilla
Antwort: 200 OK
Befehl: OPTS UTF8 ON
Antwort: 200 UTF8 set to on
Befehl: PBSZ 0
Antwort: 200 PBSZ 0 successful
Befehl: PROT P
Antwort: 200 Protection set to Private
Status: Angemeldet
Status: Empfange Verzeichnisinhalt...
Befehl: PWD
Antwort: 257 "/" is the current directory
Befehl: TYPE I
Antwort: 200 Type set to I
Befehl: PASV
Antwort: 227 Entering Passive Mode (85,215,100,9,221,99).
Befehl: MLSD
Fehler: Zeitüberschreitung der Verbindung nach 20 Sekunden Inaktivität
Fehler: Verzeichnisinhalt konnte nicht empfangen werden
Status: Verbindung zum Server getrennt
 
thanks, but it did not work.

the file already exists
1697116105071.png

And a firewall rule is also already configured
1697116006785.png
do you have another idea ?
 
I do not mean the firewall on your server, I mean the firewall at your data center that sits in front of your server.
 
the server (Server old) is hosted by ionos and i cant make any changes outside the server.

we have another server (Server new) hosted by ionos that runs Obsidian 18.0.52 Update #3 on Ubuntu 18.04.5 LTS with no problems.
It is in the same data center an on this server are no problems.

Server old
1697182313076.png
then comes the Certificate popup once and then the directory ist listed.

Server new
1697182406583.png
same options
no certificate popup and after MLSD it rans in a timeout and breaks
1697182482290.png
i tried to compare the server settings.
there are several differences in the control panel.
on server old is no option Firewall in settings->security.
1697182635450.png

Another issue is, that i can connect to Server old via SFTP and to Server new not.
 
Did you actually contact Ionos on this or is it an assumption? I am asking, because several users before had the same issue and they were normally solved by opening a port in the Ionos firewall.
 
i talked to the support and ionos told me, that both servers have the same infrastructure and firewall rules.
So it must be an configuration problem or the Ionos-supporter is wrong

is there a logfile on the server where i can check the ftp access ?
 
That particular fault cannot be checked, because it means that a firewall is blocking that port range. As traffic in the port range is blocked, nothing can be logged. If you are sure that this is not caused by a blocked port or port range at your provider, the only option left is that the passive port range is configured incorrectly on the server. I suggest that you open a support ticket so that staff can solve this for you on your server: https://support.plesk.com.

If you have a license from a reseller, please consider the 30 days free trial of a support subscription: https://support.plesk.com/hc/en-us/articles/12388090147095-How-to-get-support-directly-from-Plesk-
 
ok, thank you so far - Just one last question.
I will contact the ionos-support again and then probably the Plesk-Support.

I described my problem, that it depends on the settings in my filezilla.

works
1697525059702.png

works not
1697525033123.png
For me it looks like a encryption problem, but my knowledge is very weak :)
So you give me the tipps with passive FTP ...

Now i checked the conections from an other server via FTP in several languages.

From PHP

Both work - active and passive conect to the server.

1697525207837.png

1697525407580.png
Could it be an other issue - not the FTP-Ports ?

thanks so far
 

Attachments

  • 1697525052474.png
    1697525052474.png
    9.3 KB · Views: 0
  • 1697525227919.png
    1697525227919.png
    10.4 KB · Views: 0
jogisarge said:
ok, thank you so far - Just one last question.
I will contact the ionos-support again and then probably the Plesk-Support.

I described my problem, that it depends on the settings in my filezilla.
~~~~
Click to expand...
Sorry, can't read German etc but can't see that you have mentioned what 'type' of servers you are using with IONOS? That might make a config difference.

FWIW / If it helps:
We uses IONOS Cloud Servers / we're on the same Ubuntu OS release(s) as you and have successfully used Filezilla to access them all for a long time now.
We use: Key Only (Not Password) access through SFTP (SSH) between Filezilla (local) and our IONOS Cloud Servers.
For added security, you can choose via which port (IF you don't like SSH on port 22) and which local IP addresses do have SSH access, very easily within the IONOS Cloud Server Panels. Those server config settings are a security layer above the additional security protocols that you can apply within Plesk.
 
Hello,
you are right and Peter also - on the Ionos-Control-Panel are Firewall rules. I changed the rule for the new Server to the rule from the old server- and now it works.

At least there is now the issue, with SFTP.
Is SFTP only allowed for the system user ?
For normal users i cant activate sh

it looks like this
1697536796994.png
 

Attachments

  • 1697536555061.png
    1697536555061.png
    27 KB · Views: 2
Yes, SFTP is only for the system user and only if that user as SSH access. SFTP is SSH and an FTP connection on top. FTPS is FTP with SSL/TLS. As there can only be one user with SSH access per subscription, SFTP can only be used by the system user. SFTP can also only be used if you have the extension for it or a bundle like "Backup to Cloud Pro" where this SFTP extension is included.
 
ok, so this is a plesk thing ?
We have also a couple of managed servers hosted by ionos and i can connect with every ftp-user via FTP and SFTP.
 
You must log in or register to reply here.

Similar threads

F
Issue Can't connect via FTPS
Replies
8
Views
1K
filavision
F
M
Resolved Additional FTP account shutting right down after opening (via FTP client)
2
Replies
21
Views
3K
trialotto
T
D
Resolved Impossible to make a FTP connection
Replies
9
Views
3K
scsa20
scsa20
Novadiei
Issue FTP drops connection while processing files
Replies
3
Views
2K
Novadiei
Novadiei
J
Issue Additional FTP accounts fatal error over SFTP: Received unexpected end-of-file from SFTP server
Replies
10
Views
5K
learning_curve
learning_curve
Back
Top