Skip to main content

Troubleshooting Outbound SFTP

Outbound SFTP connections may be interrupted by a variety of issues. Some can be remedied by changing configuration settings in your Files.com site. Others must be addressed in the configuration of the remote SFTP system or its firewall.

SFTP Configuration

Verify that you are using the correct SFTP configuration setting to connect to the remote SFTP server. Check that the hostname, authentication information, and port are correct.

Ensure that the outbound server supports SFTP or is a SFTP server. The default SFTP port is 22, but could be a different customized port. If the connection information that was provided to you states that ports 21 or 990 should be used to connect then this indicates that the remote server supports FTP(S) instead of SFTP.

Concurrent Connection Limits

SFTP servers typically support a limited number of simultaneous concurrent connections. Enterprise grade SFTP servers will have a higher number of allowed connections while other SFTP servers may only allow 1 or 2 concurrent connections. Refer to the SFTP server documentation, or contact the operator of the SFTP server, to determine if connection limits exist.

Lower the Maximum connections setting for the remote server to a value that is supported by the remote SFTP server.

Rate Limits

SFTP servers can implement rate limits to limit the number of times that the server can be connected to within a specified duration.

Implementing dedicated IP addresses for your Files.com site can help mitigate rate limit issues.

Timeout Issues

Timeout issues can occur in various ways.

If there are intermittent network issues between Files.com and the remote server then SFTP commands, or their responses, may not occur within the time allowed by the SFTP protocol.

If the remote server is overloaded or runs out of resources, such as its CPU or memory hitting 100%, then SFTP commands will take much longer to execute.

If the remote SFTP server changes something, such as the authentication method or the SFTP port, then SFTP connections from Files.com can timeout due to trying to connect using outdated information.

SFTP commands may fail if they do not execute on, or receive a response from, the remote SFTP server within the allotted time.

Attempt to resolve any network issues and ensure that the remote SFTP server is capable of supporting the connection load being sent to it from Files.com.

Scalability Issues

Files.com is designed for Enterprise scalability. As a cloud-native solution, our platform provides elastic scalability with effectively no limits for file sizes or number of connections.

Remote SFTP servers may not offer the same scalability.

Generally speaking, modern remote Enterprise level SFTP solutions should be able to match our throughput and capacity. However, SFTP connectivity can also be implemented by systems that expect it to be used casually and are not designed to handle large amounts of SFTP usage.

Ensure that combined workloads from all Remote Syncs, Remote Mounts, or Automations to the remote server will be within its operational limits.

Compatibility Issues

The SFTP protocol has been widely adopted since the late 1990s with improvements and updates that are still being applied today.

Backwards compatibility with older versions of SFTP may not always be possible depending on the security issues that are present in old versions of SFTP.

We provide options for you to allow connections to older insecure versions of SFTP.

Some SFTP servers allow customization or are implemented in a non-standard way. Connectivity to these kinds of non-standard SFTP servers may not be successful.

Firewalls

There may be firewalls, or other restrictions, on the remote server that require an IP address to be whitelisted.

Verify that connections from Files.com IP addresses are allowed by the remote SFTP server.

Verify the IP addresses that are being used for connections from your Files.com site. Ensure that these IP addresses are not being blocked by any firewalls.

Ciphers Used For Connection

Connections made to a remote SFTP server will use the algorithm cipher that is agreed upon by both Files.com and the remote system. Files.com will present a list of algorithm ciphers, starting with the strongest and ending with the weakest, to the remote SFTP server but it is the remote server that decides exactly which algorithms are used for Key Exchange, Server Host Key, Encryption, and MAC. Contact the administrator of the remote SFTP server to determine which SSH algorithm ciphers are supported by that system.

Get Instant Access to Files.com

The button below will take you to our Free Trial signup page. Click on the white "Start My Free Trial" button, then fill out the short form on the next page. Your account will be activated instantly. You can dive in and start yourself or let us help. The choice is yours.