ProFTPd with mod_tls. How does it work?

[elbarto]

Hi guys.

I have ProFTPd installed via Custombuild with mod_tls

# proftpd -l
Compiled-in modules:
  mod_core.c
  mod_xfer.c
  mod_auth_unix.c
  mod_auth_file.c
  mod_auth.c
  mod_ls.c
  mod_log.c
  mod_site.c
  mod_delay.c
  mod_facts.c
  mod_ident.c
  mod_ratio.c
  mod_readme.c
  mod_tls.c
  mod_cap.c

I have the default proftpd.conf configuration. This is the part for TLS:

<IfModule mod_tls.c>
        TLSEngine on
        TLSLog /var/log/proftpd/proftpd.tls.log
        TLSProtocol TLSv1
        TLSVerifyClient off
        TLSRequired off
        
        #Certificates
        TLSRSACertificateFile /etc/exim.cert
        TLSRSACertificateKeyFile /etc/exim.key
        #TLSCACertificateFile /etc/ftpd/root.cert.pem

        TLSCipherSuite HIGH:MEDIUM:+TLSv1:!SSLv2:+SSLv3
</IfModule>

Now... what do I need to do to connect using TLS?

I tried setting up FileZilla to use FTPS but here's what happens:

Status:	Resolving address of myserver.com
Status:	Connecting to 1.2.3.4:21...
Status:	Connection established, initializing TLS...
Error:	Connection timed out
Error:	Could not connect to server

Could you give me a hand? Thanks!

 

[SeLLeRoNe]

well, you have to check proftpd log and .tls.log for check why he disconnect clients...

 

[elbarto]

I found my error. I was using FileZilla to connect using FTPS (which means FTP over implicit TLS/SSL) and had to use FTPES (FTP over explicit TLS/SSL).
Thanks for your help.