• If you are still using CentOS 7.9, it's time to convert to Alma 8 with the free centos2alma tool by Plesk or Plesk Migrator. Please let us know your experiences or concerns in this thread:
    CentOS2Alma discussion
  • Inviting everyone to the UX test of a new security feature in the WP Toolkit
    For WordPress site owners, threats posed by hackers are ever-present. Because of this, we are developing a new security feature for the WP Toolkit. If the topic of WordPress website security is relevant to you, we would be grateful if you could share your experience and help us test the usability of this feature. We invite you to join us for a 1-hour online session via Google Meet. Select a convenient meeting time with our friendly UX staff here.

Plesk 12.5 FTP so Slow, SFTP is OK

M

m0rpheu5

Regular Pleskian
Hello guys,

i´m having problems with this new server, i´m running Plesk 12.5 on on a CentOS 7.2, everything is running nice, but the ProFTPD is very, very slow connection, on my Filezilla, i only get error if i use the default timeout on 20, i needed to set the timeout on 200 to get connection, i already opened the PassivePorts 60000-65534/tcp on my firewall, on my proftpd.conf i put the "IdentLookups off" inside the <Global>, i also set the PassivePorts, restart the xinetd, but the slow connection continues, if i try use the SFTP i get a fast connection, the problem is only on FTP. Fail2Ban and ModSecurity is not installed.

What could be? i´m needing resolve this to start use this server.

Thanks
 
Before somebody ask, this is my proftpd.conf

Code: 
#
# To have more informations about Proftpd configuration
# look at : http://www.proftpd.org/
#

# This is a basic ProFTPD configuration file (rename it to
# 'proftpd.conf' for actual use.  It establishes a single server
# and a single anonymous login.  It assumes that you have a user/group
# "nobody" and "ftp" for normal operation and anon.

ServerName                      "ProFTPD"
#ServerType                     standalone
ServerType                      inetd
DefaultServer                   on

<Global>
IdentLookups off
DefaultRoot     ~               psacln
AllowOverwrite          on
<IfModule mod_tls.c>
        # common settings for all virtual hosts
        TLSEngine on
        TLSRequired off

        TLSLog /var/log/plesk/ftp_tls.log

        TLSRSACertificateFile /usr/local/psa/admin/conf/httpsd.pem
        TLSRSACertificateKeyFile /usr/local/psa/admin/conf/httpsd.pem

        # Authenticate clients that want to use FTP over TLS?
        TLSVerifyClient off

        # Allow SSL/TLS renegotiations when the client requests them, but
        # do not force the renegotations.  Some clients do not support
        # SSL/TLS renegotiations; when mod_tls forces a renegotiation, these
        # clients will close the data connection, or there will be a timeout
        # on an idle data connection.
        TLSRenegotiate none

        # As of ProFTPD 1.3.3rc1, mod_tls only accepts SSL/TLS data connections
        # that reuse the SSL session of the control connection, as a security measure.
        # Unfortunately, there are some clients (e.g. curl) which do not reuse SSL sessions.
        TLSOptions NoSessionReuseRequired
</IfModule>
</Global>
UseReverseDNS off

DefaultTransferMode     binary
UseFtpUsers                     on

TimesGMT                        off
SetEnv TZ :/etc/localtime
# Port 21 is the standard FTP port.
Port                            21
# Umask 022 is a good standard umask to prevent new dirs and files
# from being group and world writable.
Umask                           022

# To prevent DoS attacks, set the maximum number of child processes
# to 30.  If you need to allow more than 30 concurrent connections
# at once, simply increase this value.  Note that this ONLY works
# in standalone mode, in inetd mode you should use an inetd server
# that allows you to limit maximum number of processes per service
# (such as xinetd)
MaxInstances                    30

#Following part of this config file were generate by PSA automatically
#Any changes in this part will be overwritten by next manipulation
#with Anonymous FTP feature in PSA control panel.

#Include directive should point to place where FTP Virtual Hosts configurations
#preserved

ScoreboardFile /var/run/proftpd.scoreboard

# Primary log file mest be outside of system logrotate province

TransferLog /var/log/plesk/xferlog

#Change default group for new files and directories in vhosts dir to psacln

<Directory /var/www/vhosts>
        GroupOwner      psacln
</Directory>

# Enable PAM authentication
AuthPAM on
AuthPAMConfig proftpd

# adding passive ports and public IP address
PassivePorts 60000 65534

AuthGroupFile   /etc/group

Include /etc/proftpd.d/*.conf
 
I´m seeing that the problem is not on Firewall, because i disable it and the slow connection continues the same.

Anybody could help me?
 
So i got a big problem, i can´t open ticket with Parallels because i get the license with my DataCenter, my DataCenter don´t give me a good support on Plesk and said to me ask for my sysadmin, this is why most of my server i migrate to cPanel, where i have a decent support, and i never get a post in the forum not replied for anybody
 
I really understand your issue with the Parallels/Plesk support. I have the same issue that I cannot get direct support from them because I got a Plesk license over a reseller (datacenter) who does not like to give me any support for it.

First of all you should try out if this issue occurs only on IPv4 / IPv6.

Did you also try out both configurations?:
IdentLookups off
UseReverseDNS off

Please write both to the end of the file. If it does not work try out to add both inner <global>. But I think it must be set to the end of the file.
 
Tommy10 said:
I really understand your issue with the Parallels/Plesk support. I have the same issue that I cannot get direct support from them because I got a Plesk license over a reseller (datacenter) who does not like to give me any support for it.

First of all you should try out if this issue occurs only on IPv4 / IPv6.

Did you also try out both configurations?:
IdentLookups off
UseReverseDNS off

Please write both to the end of the file. If it does not work try out to add both inner <global>. But I think it must be set to the end of the file.
Click to expand...

Hello Tommy10, yes i tried to set this option on the end of the file, without any result, then i tried to put both on <GLOBAL> then i start getting error, because the option UseReverseDNS off can´t be inside the <global>, nothing changes, but i found the solution for it, the problems was on IPv6 connection, i need to use the option UseIPv6 Off, then everything works really fine.

Thanks
 
I have the same issue: While IPv6 is activated and I use a IPv6 connection it is really slow. I don't know why but it really works to disable IPv6 support. But now my server does not support IPv6-only networks and this is really bad because I know a lot of customers who only have a native IPv6 connection and IPv4 is only available through a (slow) tunnel.

I am not sure if this is an issue with the software itself or the IPv6 infrastructure of some ISPs.
 
You must log in or register to reply here.

Similar threads

S
Issue FTP broken?
Replies
10
Views
364
kevinjansen
K
M
Resolved Additional FTP account shutting right down after opening (via FTP client)
2
Replies
21
Views
3K
trialotto
T
H
Issue Backup failing to connect to remote FTP server
Replies
5
Views
2K
Peter Debik
P
P
Issue FTP connection time out
Replies
1
Views
1K
Peter Debik
P
C
Issue FTP(S) Backups slow as molasses
Replies
7
Views
2K
trialotto
T
Back
Top