New shop, unstable, slowly.. high use of CPU mostly from mariadbd

[alcor]

Hello guys, we are kind of new and we've noticed my shop here, alone in a XXL Ionos VPS:

Tamaño: vps xxl

CPU: 12 vCore

RAM: 24 GB

Soporte de datos: 640 GB NVMe SSD

The shop is facing down moments, when the CPU is very high in using... and the processes, the database sometimes using more than 100%...

In the graphs, the moments going down is because we restart the server.

Any idea what's going on? How can we get more info and of course fix that?

Thanks in advance!

 

It's a PLESK Ubuntu 22.04.5 LTS

[ComGrafPL]

Logs on server side shows any issues? If you have any custom modules, cron jobs etc disable it and check.

[alcor]

  On 2/9/2025 at 11:50 AM, ComGrafPL said:

Logs on server side shows any issues? If you have any custom modules, cron jobs etc disable it and check.

Expand  

Exactly first thought I had was the cron jobs... disabled them all... same issues. New or custom modules not really... 

Funny that after a few days struggling and having to restart the server because it was impossible to open the shop, after I opened this post... looks normal or at least acceptable 

 

 

looking the last couple days

 

And now the process is acceptable

 

In terms of the access_log I see just lots of products access, by the crawlers, mostly from facebook.

57.141.5.1 - - [08/Feb/2025:06:45:29 +0100] "GET /path to products HTTP/1.0" 200 156148 "-" "meta-externalagent/1.1 (+https://developers.facebook.com/docs/sharing/webmasters/crawler)"

52.167.144.229 - - [08/Feb/2025:10:05:51 +0100] "GET /path to products HTTP/1.0" 200 12068 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; bingbot/2.0; +http://www.bing.com/bingbot.htm) Chrome/116.0.1938.76 Safari/537.36"

However it would be great to identify the origin...

[jetx]

Disable all your addons that are not core part of PS, one by one. First thing to test whether one of them is the culprit. 

[Nickz]

A few quick questions:

How many visitors do you having in the shop? 
Do you suffer attacks or just usual traffic?
Do you use load balancers or any kind?

[Prestashop Addict]

May be an aggressive crawler or DDOS attack, can do that. Look at your apache log, number of requests per second.

[alcor]

  On 2/10/2025 at 10:21 AM, Prestashop Addict said:

May be an aggressive crawler or DDOS attack, can do that. Look at your apache log, number of requests per second.

Expand  

Checking this possibility...I guess was from Meta.

[alcor]

  On 2/10/2025 at 10:21 AM, Prestashop Addict said:

May be an aggressive crawler or DDOS attack, can do that. Look at your apache log, number of requests per second.

Expand  

I am considering, after a couple days observing, that's something connected to Meta.... in the logs I see lots of this IP and a few variants 57.141.5.X (from 1-40)

57.141.5.1 - - [08/Feb/2025:06:45:29 +0100] "GET /path to products HTTP/1.0" 200 156148 "-" "meta-externalagent/1.1 (+https://developers.facebook.com/docs/sharing/webmasters/crawler)"

I don't know how to check on plesk or ssh the requests per second...Then in the stats I see this:

 

Hits in january - started from 31/01

Hits in Feb

 

What's the best way to stop these IP to access the server? Or to control if possible... limit or something?

Thanks in advance!

 

Edited February 11 by alcor (see edit history)

[alcor]

Update: I've just blocked User-agent: Meta-ExternalAgent in the robots.txt and lets observe the next couple days.

Edited February 11 by alcor (see edit history)

[Nickz]

Geoblocking over htaccess you could do.