I've been fighting with TLS and ProFTP for a while now. It seems to work for a while and then go into a tizzy where it stops allowing people to log in and just times out while attempting to get a directory listing. I'm the only person in the machine so whatever changes causes this to happen aren't done by a person as far as I can tell.
Here's an output of Filezilla attempting to connect:
Status: Connecting to xx.xx.xx.xx:21...
Status: Connection established, waiting for welcome message...
Response: 220 ProFTPD 1.3.0a Server (ProFTPD Default Installation) [xx.xx.xx.xx]
Command: AUTH TLS
Response: 234 AUTH TLS successful
Status: Initializing TLS...
Status: Verifying certificate...
Command: USER xxxx_xxxxxx
Status: TLS/SSL connection established.
Response: 331 Password required for xxxx_xxxxxx.
Command: PASS **********
Response: 230 User xxxx_xxxxxx logged in.
Command: PBSZ 0
Response: 200 PBSZ 0 successful
Command: PROT P
Response: 200 Protection set to Private
Status: Retrieving directory listing...
Response: 257 "/home/www/web20" is current directory.
Command: TYPE I
Response: 200 Type set to I
Response: 227 Entering Passive Mode (xx,xx,xx,xx,218,178).
Error: Connection timed out
Error: Failed to retrieve directory listing
I am using the FTPES (Explicit) setting in Filezilla on port 21 but the FTPS (Implicit) does not work either.
I have tried both active and passive mode with the same results.
I have tried connecting directly to the IP rather than the hostname to eliminate DNS time outs with the same results.
I have tried connecting with the firewall running and with it off. When off, I can usually get a little farther in that I sometimes get a directory listing before it times out, but it still times out.
I have added a range of passive ports to the firewall and it hasn't helped.
I cannot find any useful information in the /var/log/messages file (or any other log file that I know of).
So, I am at a loss on how to figure this out now. Any ideas how to troubleshoot this?