Plesk 12.x / Linux :: FTP Very Slow (with Firewall / Mod Security Enabled)
Jun 26, 2014
After upgrading to Plesk 12 the FTP connection has become very slow. Mode Security, Fail2Ban and Plesk Firewall have been enabled, the security is set to force sFTP and maximum security and in /etc/proftpd.d/ a conf file has been added to set the passive ports that have been opened in the Plesk Firewall (60000 to 62000)
Turning off the Mod Security does not solve the slow connection.
What can we do to detect the cause of the problem?
View 3 Replies
ADVERTISEMENT
Apr 10, 2014
I enabled plesk firewall to my ip now I cant seem retrieve directory listing. I've done the same with ssh that works fine.
Response:230 User logged in
Command:OPTS UTF8 ON
Response:200 UTF8 set to on
Status:Connected
Status:Retrieving directory listing...
Command:PWD
Response:257 "/" is the current directory
Command:TYPE I
Response:200 Type set to I
Command:PASV
Response:227 Entering Passive Mode
Command:MLSD
Error:Connection timed out
Error:Failed to retrieve directory listing
View 3 Replies
View Related
Aug 19, 2014
I am running Plesk 12 . Centos 6.5
I have Plesk Firewall Installed.
After the Plesk Firewall was enabled the FTP Stopped working in passive Mode.
I searched the net and found the following :
Code:
/etc/sysconfig/iptables-config and change the line with IPTABLES_MODULES to: IPTABLES_MODULES="ip_conntrack_ftp"
It started working.
I changed the default FTP port from proftpd.conf
Code:
port 2392
and /etc/services
Code:
ftp 2392/tcp
ftp 2392/udp fsp fspd
I allowed the new port in Plesk Firewall in Incoming connection and disabled port 21
Now I am not able to connect to the ftp, I get the following error. Have I missed anything ?
Code:
Response:257 "/" is the current directory
Command:TYPE I
Response:200 Type set to I
Command:PASV
Response:227 Entering Passive Mode (85,25,51,34,216,46).
Command:MLSD
Error:Connection timed out
Error:Failed to retrieve directory listing
View 4 Replies
View Related
Dec 29, 2014
when trying to add several useraccounts to our mail domain using the cli, we have a problem enabling the antivirus. We add user with the following CLI command, the antivirus flag is set. /usr/local/psa/bin/mail --create mail@mail.box -mailbox true -antivirus inout -passwd yourpassword -cp-access true
But when we got to the web interface and select the newly created user, the antivirus is still disabled for him and has to be enabled manually. Is this a known problem? Or is there any other way to automatically enable antivirus than using the "-antivirus" flag? Because we 're talking about more than 100 users it would take a lot of time enabling the AV manually for each of them.We 're running 12.0.18 Update Nr. 29
View 1 Replies
View Related
Sep 20, 2014
I enabled rkhunter in Plesk 12 to check the system weekly. I get a warning now, which I never got in older versions of Plesk:
The current hash function (/usr/bin/sha1sum) or package manager (DPKG) is incompatible with the hash function (Unset) or package manager (Unset) used to store the values. Debian 7.6 x64
View 6 Replies
View Related
Oct 22, 2014
When I turn on nginx for the server I am able to browse non SSL protected sites correctly. I receive a 502 Bad Gateway error on any sites that have an SSL certificate. Is there a fix for this? I have been unable to find one.
I am running Plesk 12 on an Ubuntu server.
View 6 Replies
View Related
Aug 15, 2014
Today when I visited my plesk-stat folder, I saw that it is publicly available. Everyone can see the stats.
https://example.com/plesk-stat/
Is not this folder supposed to be protected by password as default?
View 3 Replies
View Related
Jul 14, 2014
I know the command in ssh
/usr/local/psa/bin/domain -u domain.com -status enabled
/usr/local/psa/bin/domain -u domain.com -status disabled
but i want to know how can i do to obtain a complete list with all domains on servers wich indicate me which domains are disabled or not ?
View 4 Replies
View Related
Nov 18, 2014
For some time now the Autoinstaller fails and the Plesk control panel becomes inoperable until I run the stop and then start command for the plesk control panel. Looking at the error log: autoinstaller3.log I see the following output:
WARNING: Third-party Yum repository 'atomic' is enabled, installation may fail.
Since you use one or more 3rd-party repos (say, atomic), be careful when installing different package versions from different repos as this may lead to installation failures. For example, you may encounter a problem if you first install PHP from a 3rd-party repo and then upgrade it using the Parallels repo. To avoid such situations, install and upgdare packages from the same repo.
Traceback (most recent call last):
File "/usr/local/psa/bin/yum_install", line 194, in <module>
main()
File "/usr/local/psa/bin/yum_install", line 189, in main
[code]....
The Yum utility failed to install the required packages.Attention! Your software might be inoperable.contact product technical support.Click to expand...
View 2 Replies
View Related
May 27, 2013
It is possible to have anti-virus and anti-spam enabled by default when we go to "CREATE E-MAIL ADRESS" -> "SPAM FILTER" / "ANTI-VIRUS" is always disabled.
View 13 Replies
View Related
Jul 17, 2014
We have a problem with a Plesk backup. We have about 300 domains, the scheduled task starts 23.30 and takes about 16 hours and thats not normal. Before it took about 9-10 hours for 'All configuration and content' and that was too long, so we set up for 'All configuration and content except mail'. It worked for a few days and then it started to take 14 - 16 hours for a server backup. We use Plesk 11.5 on CentOS 6 64bit.
View 4 Replies
View Related
Jul 1, 2014
OS CentOS 6.5 (Final)
Plesk version 12.0.18 Update #6, last updated at July 2, 2014 11:13 AM
The system is up-to-date; last checked at June 27, 2014 04:43 AM
All current websites on the server seem to work fine any new subscriptions we cannot get working at all.
We can connect via FTP to new sites SOMETIMES - just cant get directory listing. When we can connect and get into a directory it slows down.
In Active mode:
Command:MLSD
Response:425 Unable to build data connection: Connection refused
Error:Failed to retrieve directory listing
Install Wordpress via the Parallels panel it loads and says it is all there, just can't log or display any pages. The default Parallels page is displayed.
Upload a html page via the File Manager in Parallels and it displays the default Parallels page.
Unpack the Wordpress tar file via File Manager and it displays the default Parallels page.
The Wordpress feature in Parallels says it is working fine, can't display any page, can't log in as it returns a 404 page or the default Parallels page.
Create a site in Presence builder and Parallels says there is a site. The default Parallels page is displayed when opening the site.
Go to DOMAINS and there is 0mb in space used and there are files listed in the File Manager - none of which can be displayed.
View 3 Replies
View Related
Apr 7, 2015
How to activate/enable the firewall by cli, does this is possible?
Firewall module is installed.
Option in plesk GUI working well.
Does this is possible ? If yes how ?
View 2 Replies
View Related
Oct 8, 2014
I have Parallels Plesk 12.0.18 with CentOS 6.5 (Final)
WAF is On, with Atomic Basic ModSecurity rule set.
I was wondering if my sites were protected and I went to the Atomic wiki.
When I run a test from a non-whitelisted system following these instructions (STEP 10) [URL].... I always receive 404 error with all of my sites.
I also tested with:
[URL]...
Results: The sites load normally. (the call not even appears in the logs)
I've unistalled and reinstalled mod_security several times with the same results.
Is there any "official" way to check if WAF is protecting Plesk 12?
I asked same question in Atomic forum and they said:
you'd need to ask parallels about this, we made the ruleset available to them, but they implemented it using their own design. They might not be using 403 error codes like we do.
View 13 Replies
View Related
Apr 17, 2015
I've been having a few issues with the control panel navigation is running slow even though I have heaps of resources available and free. The server is located locally and have no problems surfing websites attached to the same server.
When I login as admin, it can take 25 seconds to load into the first screen.
CPU GenuineIntel, Intel(R) Xeon(R)CPU E5649 @ 2.53GHz
Version Parallels Plesk v12.0.18_build1200140606.15 os_CentOS 6
OS CentOS 6.6 (Final)
Memory Available 6GB used 2.5-3GB
HDD: 300GB/ approx 130GB Free
I have tried issuing a /etc/init.d/psa restart command and has made no difference.
View 1 Replies
View Related
Jun 16, 2015
We are seeing intermittent slow responses from SMTP on a RHEL6 server running Qmail on Plesk 11.5. The response is being measured from a remote Zabbix server.
The response time seems to be slow (>10s) for a period of 2-3 minutes and then returns to normal (<1s). All other services continue to be ok during the period of slowness.
The server_args line in /etc/xinetd.d/smtp_psa already contains "-Rt0" and all the DNS servers in /etc/resolv.conf are resolving properly.
From looking at the maillog file the server was receiving about 35 SMTP connections a minute at the time of the slowdown. We have the server configured to use 2 x RBL's.
I wonder if we are hitting a limit on the maximum amount of SMTP connections. The file /var/qmail/control/concurrencyincoming does not exist so, according to the Qmail manual, there shouldn't be a limit on the number of incoming SMTP connections.
View 9 Replies
View Related
May 4, 2015
In the last few days the responses from Plesk's XML API have been extremely slow. It's now taking an average of 45 seconds to handle an XML API request where it used to be more around 5 seconds. What would cause that? What service handles these requests on the server so I can try rebooting it?
View 2 Replies
View Related
Mar 26, 2015
My Plesk installation and websites are slow
OVH VPS
8G ram
100 G Harddisk
View 6 Replies
View Related
Nov 23, 2014
where to search. It appear thaht my free memory decrease each minute after reboot.When i restart it's ok but i see minute after minute the free memory is decreasing...
The command top don't show special process which explain my problem. I don't understand how a process can kill my memory but not immediatly but from reboot to after 4 or 5 hours uptime.
View 2 Replies
View Related
Aug 24, 2014
I have an old laptop with the following specification: Memory: 485 MiB, Processor: Genuine intel CPU T2300 @ 1.66 GHz ×2, OS Type: 32 bit, Disk: 78.1 GB,
I installed on it Ubuntu 12.04 LTS and I noticed that the overall system is very slow in responding. I tried to search about that in the internet and I found some articles talking about how to make Ubuntu 12.04 LTS run fast I applied all what they said including download LXDE desktop environment and then nothing different in the system response time.
Then I need to develop some android applications so, I download Android Studio (Beta) 0.8.6. The problem became worse than before whenever I tried to open the Android Studio the screen is frozen for some minutes then it took time to download the projects and initialize the work space also, when I tried to move the cursor he is move very slowly. When I tried to run my first application on the AVD it took three hours and still not run yet.
I delete the Android Studio and install it again several times, I was trying to solve the problem but still nothing change.
View 1 Replies
View Related
Nov 5, 2009
When we use the ConfigServer Security&Firewall have you noticed the packet loss because of of the firewall?
Check check your IP or website you will the loss of packets
[url]
Is there an solutions for these problems?
Disbale the firewall and check you will not get any loss of packets
View 4 Replies
View Related
Feb 15, 2009
How I can enable the following options on my VPS:
LF_HTACCESS
PT_SKIP_HTTP
PT_ALL_USERS
View 3 Replies
View Related
Jan 15, 2015
Is that possible to block baidu without specifying whole list of IDs it's using ?
View 1 Replies
View Related
Dec 17, 2014
I have these problems since version 11.5. Now I have installed version 12 on centos . FTP works fine and is super fast and speedy until i enable PLEK FIREWALL, I also tried to add passive port range 60000-65534 to Plesk Firewall rules.
But nothing works.
It takes like 10 times longer to Login + List Files + Make changes using FTP. We applying changes via FTp and its very slow. We can use plesk file manager but its very inconvenient way for quick file uploads and changes.
View 1 Replies
View Related
Nov 26, 2013
I already posted this as a bug report and now wanted to inform other users.
Starting with Plesk 11.5, the file "/opt/psa/var/modules/firewall/firewall-emergency.sh" contains the following line:
Code:
rm -f /opt/psa/var/modules/firewall/active.flag
That line stems from updating
Code:
Preparing to replace psa-firewall 11.0.9-debian6.0.build110120608.16 (using .../psa-firewall_11.5.30-debian6.0.build115130819.13_amd64.deb) ...
Unpacking replacement psa-firewall ...
Now, when you stop the firewall, you cannot start it again, cause deleting the active.flag disables the firewall:
Code:
# ll /opt/psa/var/modules/firewall/active.flag
-rw-r--r-- 1 root root 0 2013-11-26 09:22 /opt/psa/var/modules/firewall/active.flag
# /etc/init.d/psa-firewall stop
psa-firewall: firewall successfully disabled
# ll /opt/psa/var/modules/firewall/active.flag
ls: cannot access /opt/psa/var/modules/firewall/active.flag: No such file or directory
# /etc/init.d/psa-firewall start
psa-firewall: service is disabled
You then have to manually "touch" the active.flag to be able to start the firewall again. A workaround is to remove the line:
Code:
sed -i 's:rm -f /opt/psa/var/modules/firewall/active.flag::' /opt/psa/var/modules/firewall/firewall-emergency.sh'
I really hope that Parallels fixes this asap, as normally you won't notice that the firewall is not active when every works fine (nothing is blocked) and Plesk still shows all the rules.
View 14 Replies
View Related
May 26, 2015
I currently have the Web Application Firewall (ModSecurity) installed but would like a visual interface to block IP's, subnets etc.. Can I install the Plesk firewall as well without any conflict with the Web Application Firewall?
View 3 Replies
View Related
Sep 14, 2014
I have a brand new and fresh installed server with:
Parallels Plesk v12.0.18
openSUSE 13.1
My Problem is, every day i have to click on activate in the settings of the firewall. Otherwise i have no Mail. The rest (Hosting, etc.) works fine.
No changes in the firewall settings where made, just a migration from my old server.
View 6 Replies
View Related
May 15, 2014
Plesk Firewall has no effect on IPv6?
I am writing today regarding the Plesk Firewall. It seemed to be pretty handy for quickly blocking troublesome users from *replace-with-whatever-IP-block-is-giving-you-trouble*. Yet I am unable to block IPv6 addresses, and the fire wall seems to let some blocked IPv4s right in. I did not see any distinction as to v4 or v6 in the Firewall dialog for adding custom rules, so...
The question is...
(1) Is the Plesk Firewall *supposed* to apply rules to IPv6 by default?
If yes...
(2) Is there a setting or a switch that has to be configured for this to work?
If yes...
(3) Where are said configuration options located?
Okay, when I run /sbin/ip6tables -L (CentOS) I get output that resembles the iptables (no 6) output, only... what, converted to IP6? Not sure. Example output:
DROP tcp ::ffff:31.0.0.0/104 ::/0 tcp dpts:1:10000
In that particular instance I added a drop for the 31.0.0.0/8 block (using the Plesk Firewall interface), in order to create the script that's loaded into iptables (and ip6tables as well, apparently) when one elects to "Apply Configuration". It worked great, executed perfectly, and the iptables output list output looked to be (and remember, I have grossly insufficient background knowledge in this area) accurate.
Yet at the time of this writing I can see via live traffic monitor that an address in the 31.0.0.0/8 block (IPv4) is pounding away at a website. This is curious, as the live traffic monitor indicates an IPv4 address. So... can an IPv4 address be detected and recorded from a host that is only able to connect via IPv6? While an interesting question, I was more concerned with just blocking the IPv6 address and get more academic with it later.
But this raises another question; why would Plesk populate ip6tables and not provide an interface to actually submit IPv6 addresses.
View 1 Replies
View Related
Aug 23, 2014
When I modify rules using the firewall panel it is not generating rules correctly when selecting allow from selected sources deny from others.
View 2 Replies
View Related
Oct 25, 2014
Running plesk 12.018 on OpenSUSE 13.1
What causes the firewall to change / reset itself periodically? I enabled the plesk firewall, but some time later it is reset itself and switched to the opensuse firewall (completely different rule set, which blocks most of the ports).
I then disabled the plesk firewall and loaded my own iptables rule set via iptables-restore command. However a few hours later, it also gets reset to the opensuse firewall. The std. opensuse firewall closes most of the ports, so then our email is blocked.
I would like to permanently switch off any plesk handling of the firewall and manage the iptables myself. How to do this?
I also have fail2ban running and defined my own jail.local files.
View 3 Replies
View Related
Jul 6, 2014
Plesk 12 on Centos 6.5
I added the following to my /etc/logrotate.conf
/var/log/modsec_audit.log {
missingok
daily
rotate 4
compress
}
I'm not exactly sure if the above is the correct syntax, but the result was that two days later my current modsec_audit.log was Gzipped and a new modsec_audit.log was created.
The problem is that nothing was logged to this new file.
From the Plesk 12 control panel I turned off mod security and then turned it back on again and hey presto, the new logfile started to log events.
This leaves the problem of why nothing was recorded when the file was created.
View 2 Replies
View Related