Plesk 12.x / Linux :: System Policy For Incoming Traffic - Firewall Not Working Correctly

Jun 25, 2015

When I deny all other traffic for the "System policy for incoming traffic" to secure the server by only allowing the explicit ports I've requested to open, my server stops operating correctly.

It appears when I set the "System policy for incoming traffic" to deny, it appears to be disrupting various functions such as web traffic over ports 80/443, FTP, SSH, they either work extremely slow or don't work at all.

I brought this up with my Plesk license provider and they stated that the Plesk firewall doesn't add any tracking for ephemeral ports, therefore if you set the policy to drop for incoming/outgoing, it's not going to allow proper TCP communication since the return socket can't be opened. Also that the firewall is an explicit deny system rather than explicit allow based system.

Am I doing something wrong? All I want to do is to block all ports other than the ones I've set to allow. Is this how it is supposed to work?

View 1 Replies


Plesk 12.x / Linux :: PSA-Firewall Not Working Correctly?

Aug 23, 2014

When I modify rules using the firewall panel it is not generating rules correctly when selecting allow from selected sources deny from others.

View 2 Replies View Related

Plesk 12.x / Linux :: No FTP Directory Listing After Block (Allow Other Incoming Traffic)

Dec 25, 2014

Today I try to fit all FW rules to my need. After i blocked the traffic "allow other incoming traffic" in the Plesk FW i dont get folders listed via FTP. The FTP client connect to my server, but listing content times out. After allow other traffic the content get listed. The rule "Allow FTP connections" ist in all enabled all the time.

View 3 Replies View Related

Plesk 12.x / Linux :: Firewall Not Generating Rules Correctly

Aug 17, 2014

I am using the plesk firewall and trying to set up SSH rule which only allows from my IP but deny from everywhere else. In previous versions this worked fine by adding an ip selecting Allow from selected sources, deny from others and the icon in the rules would be orange with the lines

allow incoming from
Deny incoming from all others

However this no longer works as the deny from all others is not appearing and is not being generated in the iptables by plesk.

View 1 Replies View Related

Plesk 12.x / Linux :: Server Firewall / FTP - Allow All Incoming Connections

Jun 18, 2014

Since the update I have a problem with my Firewall. I need to set "Allow all incoming connections" under "Server => Firewall" in order to connect over FTP with TLS (explicit). This was working before the update without allowing all incoming connections. How to fix this in the Plesk panel?

View 2 Replies View Related

Plesk 12.x / Linux :: Website Not Working Correctly - URL Rewrite

Sep 2, 2014

Latest Plex installed on a fresh machine. Have tried both Ubuntu 12.04 and 14.04 and cannot seem to have my website work correctly regarding URL rewrites. Its enabled in apache...

View 1 Replies View Related

Plesk 12.x / Linux :: Firewall Allow Specific Source Deny Others Not Working?

Mar 28, 2015

In plesk I have set the ssh rule to allow from source, deny others and added my IP. However, if I connect my PC to my work VPN, I can still login via ssh, even when I am on a different IP as the allowed IP

View 18 Replies View Related

Plesk 12.x / Linux :: Firewall Module Modified Iptables - FTP Not Working Now

Feb 13, 2015

I temporarily enabled and activated Plesk firewall module (which I wish I didn't the first time) and for some reason it seems to have overwritten the default iptables configuration that was set, leaving my ftp unable to be logged into. I tried to disable the firewall module and reboot the server. It didn't work.

I also noticed that it somehow seem to have changed my hostname to my previous server hostname as well

Is there any way to completely revert back to original iptables settings before enabling the Firewall module?

View 4 Replies View Related

Plesk 12.x / Linux :: Firewall Enabled - FTP Stopped Working In Passive Mode

Aug 19, 2014

I am running Plesk 12 . Centos 6.5

I have Plesk Firewall Installed.

After the Plesk Firewall was enabled the FTP Stopped working in passive Mode.

I searched the net and found the following :


/etc/sysconfig/iptables-config and change the line with IPTABLES_MODULES to: IPTABLES_MODULES="ip_conntrack_ftp"

It started working.

I changed the default FTP port from proftpd.conf

port 2392
and /etc/services

ftp 2392/tcp
ftp 2392/udp fsp fspd

I allowed the new port in Plesk Firewall in Incoming connection and disabled port 21

Now I am not able to connect to the ftp, I get the following error. Have I missed anything ?


Response:257 "/" is the current directory
Command:TYPE I
Response:200 Type set to I
Response:227 Entering Passive Mode (85,25,51,34,216,46).
Error:Connection timed out
Error:Failed to retrieve directory listing

View 4 Replies View Related

Extremely High Incoming Traffic

Dec 2, 2007

We've found out a abnormal usage of one of our servers, our RTG graphs shows:

Last 24h
IfInOctets: 30.5GB
MAX: 6.9MBits/s
AVG: 3.4Mbits/s
Cur: 4.7Mbits/s

And a strage traffic:
IfOutOctets: 42.5GB
MAX: 76.6MBits/s
AVG: 4.7Mbits/s
Cur: 600Kbits/s

We are running two websites on this server, and we looked at raw log apache, we've compilers disabled, we block most of outgoing / incoming packets on firewall, we ran chkrootkit, rkhunter and nothing was found. We checked for cronjobs, suspect files, netstat, but we can't see anything strange. We use the latest server software (apache 2.2.x), PHP 5.2.x, MySQL 4.1.x, we have most of the server optimized.

We are running iptraf now, and it seems normal:
Да Incoming rates: 85.8 kbytes/sec
Да Outgoing rates: 636.4 kbytes/sec
Anyone have an idea? And some way to properly monitor incoming traffic? I'm looking to find how/where is the source of this traffic.

View 5 Replies View Related

Plesk 11.x / Linux :: How To Partition SSD To HDD Correctly

Dec 6, 2014

I am running a CentOS 6.6 (Final) with Plesk 12.0.18 Update #27 on my dedicated server. I was advised to upgrade my server to one that has a SSD due to better performance. What they failed to tell me was that I would need to perform additional configurations so that Plesk stores the subscription files in the /HDD-var/ directory and NOT the /SDD-var/ directory. Current server

Here are my questions:

1. How difficult would it be (I am a quick learner and can follow exact steps or directions very well) to make Plesk store the files on the HDD rather than the SDD?
2. Is this something I should undertake or is this very difficult to do?
3. If I perform these changes, will they revert to the old way if I perform Plesk updates? Or will the changes I make become permanent?

SSH: df -h

Filesystem Size Used Avail Use% Mounted on
/dev/md1 4.0G 916M 3.1G 23% /
/dev/mapper/ssd-usr 3.9G 1.9G 1.8G 51% /usr
/dev/mapper/ssd-var 3.9G 3.7G 2.7M 100% /var (Plesk is storing data here)
/dev/mapper/ssd-home 3.9G 792M 2.9G 22% /home (Would also like this data to be on the HDD)

[Code] ....

View 3 Replies View Related

Plesk 11.x / Linux :: Permission Correctly In Vhost?

Nov 25, 2014

I have domainA and domainB. domainA hosting files, for security ALL browser access should denied.. EXCEPT domainB make in php call with readfile() to a file on domainA. This should allowed.

domainB => readfile(http://domainA/myfile) => allowed ... all other access should denied.

So I set in vhost of domainA this:

<DirectoryMatch "^/var/www/vhosts/domainA/httpdocs/folder/">
Order deny,allow
Deny from all
Allow from 127
Allow from server-ipv4
Allow from server-ipv6/128
Allow from ::1/128
</DirectoryMatch>Click to expand...

View 3 Replies View Related

Plesk 11.x / Linux :: Yum Update Throw Warning For Selinux-policy-targeted

Nov 18, 2014

Specs: centOS 6.6 (Final) with Plesk 11.5.30 #48

In the last updates I get this warning:

Updating: selinux-policy-targeted-3.7.19-260.el6.noarch 128/373
libsemanage.semanage_direct_commit: WARNING: genhomedircon is disabled.
See /etc/selinux/semanage.conf if you need to enable it.
/etc/selinux/targeted/contexts/files/file_contexts: Invalid argument
libsemanage.semanage_install_active: setfiles returned error code 1.
semodule: Failed!Click to expand...

View 3 Replies View Related

Plesk 11.x / Linux :: MySQL Crashing / Not Loading Correctly

May 14, 2014

I have a Centos 6 server with Heart Internet, who yesterday had an issue with the issue and once back online have been struggling til now getting the mysql service working correctly again and have now refused to provide any further support and redirected me here.

I was following this article here: [URL] ....

I've gotten to point 4. "~# mysqldump -uadmin -p`cat /etc/psa/.psa.shadow` -A | sed '1iSET FOREIGN_KEY_CHECKS = 0;' > /root/dumpall.sql" however it's saying "got error: 145: table './avenue141_dabs/av_options' is marked as crashed and should be repaired when using LOCK TABLES and any attempts made to get into the DB to repair is giving me "error: 1045: Access denied for user 'root'@'localhost' (using password: NO)

This issue is urgent as we have a few websites on this server which use mysql databases for their website.

View 9 Replies View Related

Plesk 12.x / Linux :: Request For Instruction On Correctly Installing APC

Oct 6, 2014

I would like to install APCu (Alternative PHP Cache) & ZendOptimizer on plesk v12, I just wanted to know if there is any instructions for installing it correctly in a manner that will not cause issues with plesk updates.

View 5 Replies View Related

Plesk 12.x / Linux :: Install Wordpress As Application Fails If Very Strong Password Policy

Nov 15, 2014

If a Plesk admin wants to install Wordpress, the installation always fails.

1. Select Server Management -> Tools & Settings -> Security -> Security Policy
2. Select (*) Very strong
3. Confirm with OK
4. Select Hosting Services -> Domains
2. Select Domain
3. Select Button Install Apps
4. Select Wordpress in All Available Applications
5. Select Install
6. Error message is shown!
Error: Installation of WordPress at failed. Your password is not complex enough. According to the server policy, the minimal password strength is Very strong. To improve the password strength, use numbers, upper and lower-case characters, and special characters like !,@,#,$,%,^,&,*,?,_,~

But the password was complex enough. with 20 numbers+charcters+special chars!

I i lower Plesks Security Policy to (*) Strong, the Wordpress installation works. But lowering Security with password length 8 is not desireable.

Plesk 12.0.18 Update #24
Linux Debian 7.7

I think this is a bug in Plesk.

View 3 Replies View Related

Plesk 12.x / Linux :: Loose Mailbox Size Policy Doesn't Work After Upgrading?

Jul 24, 2014

Today I upgraded to Plesk 12 and during the day I got several customers that had problems with their mailbox size. According to Plesk they were exceeding the size, but they've been doing that for years. The setting that these limits don't have any real meaning is ignored after the upgrade...

View 1 Replies View Related

Plesk 12.x / Linux :: Allow Incoming Emails Only From One IP Address?

Apr 21, 2015

On my plesk server, i have several emails account. These email addresses should receive only emails send by a specific server. But for now, they can receive any email, including spam.

So, i would like to block all emails that are not coming from the allowed server.

How can i do this in plesk ? As i am not a very good server admin, can you tell me exactly what i need to do in plesk?

View 3 Replies View Related

ODBC Connection Not Working Correctly

May 28, 2009

I had a small question about ODBC. I created a new connection to a MySQL database with the 'ODBC Data Source Administrator' on my Win 2008 / IIS 7 webserver.

In this administration panel the ODBC data source works just fine. When I fill in the required values I receive the list of available databases and pressing the "test" button results in a successful connection.

But when I want to use this connection in other software, a C++ application and a PHP application, they supply me with errors "Couldn't connect to database", etc.

So the ODBC connection is correct (so are the credentials in the software 100% sure of that), but software can't use the connection. Because the software worked perfectly on an older server I think I'm missing out on some sort of setting which enables applications to use the connection (or something like that).

View 0 Replies View Related

PHP4 & PHP5 Not Working Correctly

Jun 7, 2008

I have suPHP installed in FastCGI mode. PHP5 is my default installation but I have it setup so that PHP4 can also run. At least that is my intention.

I have PHP5 working without a problem.

PHP4 is loading if I add the directinf x-httpd-php4 .php into my .htaccess file.

HOWEVER: PHP (via phpinfo) is trying to load the config file from /usr/local/etc/php5/cgi/php.ini when it should be from ....php4/cgi/php.ini

Where do I go to fix this? Or is there a second directive that I need to load in the .htaccess file?

Also... In either php5 or php4, if I put a php.ini file into a directory, it is suppose to load that one. However, it is not doing this either.

View 9 Replies View Related

Plesk 11.x / Linux :: IMAP Incoming Email - Connection Error

Oct 15, 2014

I have a client with a dedicated server running. Spec below.

The problem I am having is with incoming email. When I set up a new email account it can take about 10 attempts to log on to the incoming mail server. Once it has connected it will be ok for a short while then I will get a connection error and no emails will come through.

This is happening across all platforms, PC / MAC / iPhone and iPad.

I am a web designer with limited knowledge of the setting up of the server and was looking to set up email server within plesk.

CPUGenuineIntel, Intel(R)Core(TM) i5-2400 CPU @ 3.10GHz
VersionParallels Plesk Panel v11.0.9_build110120608.16 os_Ubuntu 12.04
OSUbuntu 12.04.4 LTS
Key numberPLSK.02873817.0002
System Uptime: 60 day(s) 10:03

IP address
OSUbuntu 12.04.4 LTS
Panel version11.0.9 Update #62

View 1 Replies View Related

Plesk 12.x / Linux :: Incoming Settings Failed For Outlook / Thunderbird

Mar 3, 2015

When I am trying to configure my e-mail in outlook 2010 / Thunderbird, the incoming Server don't respond (IMAP/POP3) but for the outgoing, it works perfectly. Webmail is full functional.

I have this on Outlook : [URL] ....

View 4 Replies View Related

Plesk 12.x / Linux :: Change Domain Name For Incoming / Outgoing Mail Server

Mar 11, 2015

I wonder if there is any chance to change the domain that is being shown as the incoming/outgoing mail server to users of the Plesk Panel, when clicking on the "Info"-Icon near an e-mail-account in the mail list (see screenshot).

We only have a SSL certificate for one domain and want our customers to use this domain in their mail client settings, so that the client trusts the domain.

View 1 Replies View Related

High Traffic Firewall??

Feb 22, 2008

What are your recommendations for a high quality, high traffic firewall. Something for a colo center for a webserver, that is not too expensive.

View 8 Replies View Related

Apf Firewall Blocking Traffic

Jul 20, 2007

as per apf firewall issue
Jul 17 02:03:02 duck kernel: Firewall: *TCP_IN Blocked* IN=eth0 OUT= MAC=00:01:02:c9:94:20:00:90:69:8a:f3:f0:08:00 SRC= DST= LEN=60 TOS=0x00 PREC=0x00 TTL=53 ID=40428 DF PROTO=TCP SPT=37079 DPT=3306 WINDOW=5840 RES=0x00 SYN URGP=0

i already added ip in allow list.

tcp:in : d=3306 : s=
d=3306 : s =
tcp: out : d=3306 : s =

# added on 07/19/07 01:15:21

But ip is still blocking traffic while monitor mysql....

View 3 Replies View Related

Plesk 12.x / Linux :: What Domain Is Getting All The Traffic

Jan 15, 2015

Is there a way to see what domain is getting hit when I have a huge traffic spike? Not the daily report, but in real time? Like when it is happening?

View 1 Replies View Related

Billing System For Traffic Control Server

Apr 22, 2009

billing system to control the traffic between router and servers. I thing I need a billing system installed on server with webgui like those used by ISPs but I need it working with paypal and other payment gateways.

The other solution is to use radius server but I will need it working with payment gateways. Can you recommend me a good radiuns server with many options?

View 0 Replies View Related

Copyrights 2005-15, All rights reserved