slow ass hell, proftpd, commands only!

Discussion in 'Server Operation' started by TheRudy, Jun 19, 2006.

  1. TheRudy

    TheRudy Member

    Hey

    I have similar problem to his: http://howtoforge.com/forums/showthread.php?t=1886

    For me, its the outside that is slow, locally not tested yet cause i'm not anywhere near server right now :)

    Not the transfering of files but commands, for example:
    Code:
    Status:	Connected with studio54.si. Waiting for welcome message...
    waiting about 9 seconds..

    then it goes all well and fast untill
    Code:
    Response:	220 FTP Server ready.
    ...
    Status:	Connected
    Status:	Retrieving directory listing...
    ...
    Command:	LIST <--- WAITING 9 seconds
    and so on... Each time you want to switch to a folder, you have to wait like 9 seconds. Even if you upload a file, it takes 9 seconds to execute that command and then then uploading begins just fine with expected speeds..


    iptables -L
    Code:
    Chain INPUT (policy DROP)
    target     prot opt source               destination
    DROP       tcp  --  anywhere             127.0.0.0/8
    ACCEPT     all  --  anywhere             anywhere            state RELATED,ESTABLISHED
    ACCEPT     all  --  anywhere             anywhere
    DROP       all  --  BASE-ADDRESS.MCAST.NET/4  anywhere
    PUB_IN     all  --  anywhere             anywhere
    PUB_IN     all  --  anywhere             anywhere
    PUB_IN     all  --  anywhere             anywhere
    PUB_IN     all  --  anywhere             anywhere
    DROP       all  --  anywhere             anywhere
    
    Chain FORWARD (policy DROP)
    target     prot opt source               destination
    ACCEPT     all  --  anywhere             anywhere            state RELATED,ESTABLISHED
    DROP       all  --  anywhere             anywhere
    
    Chain OUTPUT (policy ACCEPT)
    target     prot opt source               destination
    PUB_OUT    all  --  anywhere             anywhere
    PUB_OUT    all  --  anywhere             anywhere
    PUB_OUT    all  --  anywhere             anywhere
    PUB_OUT    all  --  anywhere             anywhere
    
    Chain INT_IN (0 references)
    target     prot opt source               destination
    ACCEPT     icmp --  anywhere             anywhere
    DROP       all  --  anywhere             anywhere
    
    Chain INT_OUT (0 references)
    target     prot opt source               destination
    ACCEPT     icmp --  anywhere             anywhere
    ACCEPT     all  --  anywhere             anywhere
    
    Chain PAROLE (8 references)
    target     prot opt source               destination
    ACCEPT     all  --  anywhere             anywhere
    
    Chain PUB_IN (4 references)
    target     prot opt source               destination
    ACCEPT     icmp --  anywhere             anywhere            icmp destination-unreachable
    ACCEPT     icmp --  anywhere             anywhere            icmp echo-reply
    ACCEPT     icmp --  anywhere             anywhere            icmp time-exceeded
    ACCEPT     icmp --  anywhere             anywhere            icmp echo-request
    PAROLE     tcp  --  anywhere             anywhere            tcp dpt:ftp
    PAROLE     tcp  --  anywhere             anywhere            tcp dpt:ssh
    PAROLE     tcp  --  anywhere             anywhere            tcp dpt:smtp
    PAROLE     tcp  --  anywhere             anywhere            tcp dpt:domain
    PAROLE     tcp  --  anywhere             anywhere            tcp dpt:www
    PAROLE     tcp  --  anywhere             anywhere            tcp dpt:81
    PAROLE     tcp  --  anywhere             anywhere            tcp dpt:pop3
    PAROLE     tcp  --  anywhere             anywhere            tcp dpt:https
    ACCEPT     udp  --  anywhere             anywhere            udp dpt:domain
    DROP       icmp --  anywhere             anywhere
    DROP       all  --  anywhere             anywhere
    
    Chain PUB_OUT (4 references)
    target     prot opt source               destination
    ACCEPT     all  --  anywhere             anywhere
    
    netstat -tap
    Code:
    Active Internet connections (servers and established)
    Proto Recv-Q Send-Q Local Address           Foreign Address         State       PID/Program name
    tcp        0      0 localhost.localdo:mysql *:*                     LISTEN     10104/mysqld
    tcp        0      0 *:81                    *:*                     LISTEN     536/ispconfig_httpd
    tcp        0      0 *:ftp                   *:*                     LISTEN     3707/proftpd: (acce
    tcp        0      0 mercury.studio54:domain *:*                     LISTEN     4118/named
    tcp        0      0 localhost.locald:domain *:*                     LISTEN     4118/named
    tcp        0      0 *:munin                 *:*                     LISTEN     16741/munin-node
    tcp        0      0 localhost.localdoma:953 *:*                     LISTEN     4118/named
    tcp        0      0 *:smtp                  *:*                     LISTEN     29006/master
    tcp        0      0 localhost.localdo:34012 localhost.localdo:munin TIME_WAIT  -
    tcp6       0      0 *:imaps                 *:*                     LISTEN     24112/couriertcpd
    tcp6       0      0 *:pop3s                 *:*                     LISTEN     24027/couriertcpd
    tcp6       0      0 *:pop3                  *:*                     LISTEN     27696/couriertcpd
    tcp6       0      0 *:imap2                 *:*                     LISTEN     24064/couriertcpd
    tcp6       0      0 *:www                   *:*                     LISTEN     30328/apache2
    tcp6       0      0 *:ssh                   *:*                     LISTEN     25712/sshd
    tcp6       0      0 ip6-localhost:953       *:*                     LISTEN     4118/named
    tcp6       0      0 *:smtp                  *:*                     LISTEN     29006/master
    tcp6       0      0 *:https                 *:*                     LISTEN     30328/apache2
    
    proftpd.conf
    Code:
    ServerName                      "Debian"
    ServerType                      standalone
    DeferWelcome                    off
    
    MultilineRFC2228                on
    DefaultServer                   on
    ShowSymlinks                    on
    
    TimeoutNoTransfer               600
    TimeoutStalled                  600
    TimeoutIdle                     1200
    
    DisplayLogin                    welcome.msg
    DisplayFirstChdir               .message
    DisplayFirstChdir               .message
    ListOptions                     "-l"
    
    DenyFilter                      \*.*/
    
    Port                            21
    
    MaxInstances                    30
    
    User                            nobody
    Group                           nogroup
    
    Umask                           022  022
    
    AllowOverwrite                  on
    
    DefaultRoot ~
    RootLogin off
    IdentLookups on
    ServerIdent on "FTP Server ready."
    
    Include /etc/proftpd_ispconfig.conf
    
    hosts
    Code:
    127.0.0.1       localhost.localdomain   localhost       mercury
    192.168.168.100   mercury.studio54.si           mercury
    
    # The following lines are desirable for IPv6 capable hosts
    ::1     ip6-localhost ip6-loopback
    fe00::0 ip6-localnet
    ff00::0 ip6-mcastprefix
    ff02::1 ip6-allnodes
    ff02::2 ip6-allrouters
    ff02::3 ip6-allhosts
    
    and the thing that really bothers me is this:
    Code:
    /etc/init.d/proftpd start
    Starting ProFTPD ftp daemon:  - warning: "ProFTPD" address/port (192.168.168.100:21) already in use by "Debian"
    proftpd.
    
    It does work but still, i get this warning..

    Anyone has an idea what's going on? Could this warning be the problem here?

    This command speed issue has been tested with 2 ftp clients from windows, firewall on and off, been tested from ftp GUI client from linux and ftp console from linux.
    Everytime the same.
     
  2. till

    till Super Moderator Staff Member ISPConfig Developer

    Please set this in your proftpd.conf:

    IdentLookups off
    UseReverseDNS off

    and restart proftpd.
     
  3. TheRudy

    TheRudy Member

    Amazing, really, amazing! <-- that means that its working like a naked chick on bike :D

    btw, that warning on proftpd restart is still present! Should i just ignore it?
     
  4. falko

    falko Super Moderator Howtoforge Staff

    What's the output of
    Code:
    netstat -tap
    ? Does FTP work as expected for you?
     
  5. TheRudy

    TheRudy Member

    Oh crap, completly missed this one, sorry for this!

    Yes falko, ftp is working just fine, no problems at all!
    netstat -tap was already posted in first post.

    I didn't bother into looking at it since its working.. btw, i just tested this again and i don't think i can even start/stop/restart proftpd..

    Code:
    mercury:/etc/init.d# proftpd stop
     - warning: "ProFTPD" address/port (192.168.168.100:21) already in use by "Debian"
    
    Yet the FTP server is still running. Am i running two FTP servers somehow?

    fresh netstat -tap
    Code:
    Active Internet connections (servers and established)
    Proto Recv-Q Send-Q Local Address           Foreign Address         State       PID/Program name
    tcp        0      0 localhost.localdo:mysql *:*                     LISTEN     5555/mysqld
    tcp        0      0 *:81                    *:*                     LISTEN     25843/ispconfig_htt
    tcp        0      0 *:ftp                   *:*                     LISTEN     5422/proftpd: (acce
    tcp        0      0 mercury.studio54:domain *:*                     LISTEN     7182/named
    tcp        0      0 localhost.locald:domain *:*                     LISTEN     7182/named
    tcp        0      0 *:munin                 *:*                     LISTEN     5759/munin-node
    tcp        0      0 *:smtp                  *:*                     LISTEN     5567/master
    tcp        0      0 localhost.localdoma:953 *:*                     LISTEN     7182/named
    tcp6       0      0 *:imaps                 *:*                     LISTEN     5472/couriertcpd
    tcp6       0      0 *:pop3s                 *:*                     LISTEN     5493/couriertcpd
    tcp6       0      0 *:pop3                  *:*                     LISTEN     5480/couriertcpd
    tcp6       0      0 *:imap2                 *:*                     LISTEN     5459/couriertcpd
    tcp6       0      0 *:www                   *:*                     LISTEN     31600/apache2
    tcp6       0      0 *:ssh                   *:*                     LISTEN     5723/sshd
    tcp6       0      0 *:smtp                  *:*                     LISTEN     5567/master
    tcp6       0      0 ip6-localhost:953       *:*                     LISTEN     7182/named
    tcp6       0      0 *:https                 *:*                     LISTEN     31600/apache2
    
     
  6. falko

    falko Super Moderator Howtoforge Staff

  7. 3cwired_com

    3cwired_com New Member

    Mine is configured as such, and is very slow as well, I had this working before with the same type of config on a fc4 box, and it worked great and fast, only since I built the CentOs box it still does issue commands fast, or login fast.
     
  8. 3cwired_com

    3cwired_com New Member

Share This Page