Too Many Connections on SSHD (Port 22)

lenbradley

Registered
Nov 19, 2014
1
0
1
cPanel Access Level
Website Owner
I'm sorry if this issue has been addressed, but I couldn't find any solutions via search.

The server we are running (WHM 60.0 on CentOS 6.8) is continuously creating a lot of connections on port 22/SSH and I can't figure out why. Attached is a screenshot showing what exactly I am referring to. Connection will pretty quickly grow to 300+ and not go down, which is causing issues with SFTP connections. The only way I've found to alleviate the issue if to run "killall sshd" and then restart the SSH server.

I'm wondering if anybody has come across this problem and any insight on it? Thanks.
 

Attachments

NOC_Serverpoint

Well-Known Member
Jul 3, 2016
103
7
18
cPanel Access Level
Website Owner

24x7server

Well-Known Member
Apr 17, 2013
1,911
96
78
India
cPanel Access Level
Root Administrator
Twitter
Hi,

It is better if you could restrict the SSHD service to restricted IPs, or you can add the current IP directly via WHM host access feature and add SSH restriction whenever needed.

Also, it is advised to have a wheel user used to login instead of direct root login to the server via SSH.

Use can also use CSF to monitor the IP connections over the SSH to give a better effect.