#1  
Old 28th February 2006, 06:14
brainz brainz is offline
Senior Member
 
Join Date: Feb 2006
Location: Sydney, Australia
Posts: 165
Thanks: 9
Thanked 3 Times in 1 Post
Default Just a Couple of Questions

Hi all

Im Sorry to butt in like this i have a quick question if i may....

I have setup FC4 server running ISPconfig and i have follow the tuts probably about 4 to 5 times now as i built and rebuilt the server from scratch over and over again many wouldnt i considered a good learning curve and it was fun...

Anyway to my question....

I noticed that all is well on internal side of my network and all works nice...
But when i goto work and try to access the server no go blank page server timed out type messages. Server is behind a NAT(home variety router) do i have to make sure that all these port are forwarded to the server ???

Name Port Type Active
FTP 21 tcp yes
SSH 22 tcp yes
SMTP 25 tcp yes
DNS 53 tcp yes
DNS 53 udp yes
WWW 80 tcp yes
ISPConfig 81 tcp yes
POP3 110 tcp yes
SSL (www)443 tcp yes
Webmin 10000 tcp yes

This is take directly from the iptables firewall settings in ISPconfig admin panel

What i dont understand is this on my home variety router these port are forwarded to the server

Virtual Server FTP 192.168.*.*TCP 21/21 always
Virtual Server SSH 192.168.*.* TCP 22/22 always
Virtual Server HTTP 192.168.*.* TCP 80/80 always
Virtual Server HTTPS 192.168.*.* TCP 443/443 always
Virtual Server DNS 192.168.*.* UDP 53/53 always
Virtual Server SMTP 192.168.*.* TCP 25/25 always
Virtual Server POP3 192.168.*.* TCP 110/110 always
Virtual Server HTTP port 81 192.168.*.* TCP 81/81 always

The 192.168.*.* is primary server ip.

I tried this and it doesnt seem to give me access from outside it doesnt seem to work there is also a virtual server ip do i need to port forward all ports in the list above for the virtual ip ???


I also get a message when i reboot the server about the primary internal ip address not having a virtualhost

something like this

[warn] NameVirtualHost 192.168.*.*:80 does not have a virtualhost

i did read about this and you guys having very good tutorials and stuff to read on this site and it has to do with apache or php filters and this was being addressed in the next version of ISPconfig as i sore in the dev forum.

but i was wondering if this had something to do with not being able to access the server from the outside.

Just a brief on the setup....
server is FC4 and built and configured exactly the way the Falko HOW-TO which is great.
domain name forwarded to server ip and the dns servers are addressing the connection ip.

I also did read that for SSL site you need a ip per site so as admin i created a client then a web for this client and activated the SSL and SSI but from my limited knowledge in order to have multible webs on the 1 ip do i have to deactive SSL and SSI for the clients web ???

Im sorry but this has turned from one question to a few but while i got you i might as well ask....


Just one other question i noticed with ProFtp when i try and access it using smartftp on another computer within the network some files are uploaded and some arnt uploaded and the ones that dont make smartftp hang and i need to restart smartftp and i have tried this with pasv auto and non pasv 10101 and all the combos it still hangs on certain files and not others.

One thing i did notice is on this computer within my network as soon as i turn the firewall off on the computer all the files transfer but there is a lag during each file and i think there is a error message say something like this...

550 file.ext: No such file or directory


Anyway i have said my piece this as much as i could collect in one go....

I would very much apreciate anyones contribution to my questions here
Other then that you know what all the stuff on the site and the forums are A1 or A+ which ever you prefer...

Also i did a httpd and the output is this....

[root@xxx ~]# httpd
[Tue Feb 28 09:03:17 2006] [warn] NameVirtualHost 192.168.*.*:80 has no VirtualHosts
(98)Address already in use: make_sock: could not bind to address [::]:443
no listening sockets available, shutting down
Unable to open logs
[root@xxx ~]#

just wondering what this means ???

Many Thanks
Regards
brainz

Last edited by brainz; 28th February 2006 at 08:05.
Reply With Quote
Sponsored Links
  #2  
Old 28th February 2006, 09:38
till till is offline
Super Moderator
 
Join Date: Apr 2005
Location: Lüneburg, Germany
Posts: 34,555
Thanks: 791
Thanked 4,977 Times in 3,899 Posts
Default

Quote:
Originally Posted by brainz
Hi all

Im Sorry to butt in like this i have a quick question if i may....

I have setup FC4 server running ISPconfig and i have follow the tuts probably about 4 to 5 times now as i built and rebuilt the server from scratch over and over again many wouldnt i considered a good learning curve and it was fun...

Anyway to my question....

I noticed that all is well on internal side of my network and all works nice...
But when i goto work and try to access the server no go blank page server timed out type messages. Server is behind a NAT(home variety router) do i have to make sure that all these port are forwarded to the server ???
No. Only the ports where you want to access the server from the outside. Eg.g if you want to access the webserver, port 80 must be forwarded. For the ISPConfig interface, port 81. If you want to access all services from outside, forward all ports listed below except port 10000.

Quote:
Name Port Type Active
FTP 21 tcp yes
SSH 22 tcp yes
SMTP 25 tcp yes
DNS 53 tcp yes
DNS 53 udp yes
WWW 80 tcp yes
ISPConfig 81 tcp yes
POP3 110 tcp yes
SSL (www)443 tcp yes
Webmin 10000 tcp yes

This is take directly from the iptables firewall settings in ISPconfig admin panel

What i dont understand is this on my home variety router these port are forwarded to the server

Virtual Server FTP 192.168.*.*TCP 21/21 always
Virtual Server SSH 192.168.*.* TCP 22/22 always
Virtual Server HTTP 192.168.*.* TCP 80/80 always
Virtual Server HTTPS 192.168.*.* TCP 443/443 always
Virtual Server DNS 192.168.*.* UDP 53/53 always
Virtual Server SMTP 192.168.*.* TCP 25/25 always
Virtual Server POP3 192.168.*.* TCP 110/110 always
Virtual Server HTTP port 81 192.168.*.* TCP 81/81 always

The 192.168.*.* is primary server ip.

I tried this and it doesnt seem to give me access from outside it doesnt seem to work there is also a virtual server ip do i need to port forward all ports in the list above for the virtual ip ???
No, just use your main server IP.

Quote:
I also get a message when i reboot the server about the primary internal ip address not having a virtualhost

something like this

[warn] NameVirtualHost 192.168.*.*:80 does not have a virtualhost

i did read about this and you guys having very good tutorials and stuff to read on this site and it has to do with apache or php filters and this was being addressed in the next version of ISPconfig as i sore in the dev forum.

but i was wondering if this had something to do with not being able to access the server from the outside.
Have you created the website in ISPConfig on this IP or on the second (virtual) IP?

Quote:
I also did read that for SSL site you need a ip per site so as admin i created a client then a web for this client and activated the SSL and SSI but from my limited knowledge in order to have multible webs on the 1 ip do i have to deactive SSL and SSI for the clients web ???
You can activate SSL only on one website per IP, you will get an error from ISPConfig i you try to activate it on another website.

Quote:
Just one other question i noticed with ProFtp when i try and access it using smartftp on another computer within the network some files are uploaded and some arnt uploaded and the ones that dont make smartftp hang and i need to restart smartftp and i have tried this with pasv auto and non pasv 10101 and all the combos it still hangs on certain files and not others.

One thing i did notice is on this computer within my network as soon as i turn the firewall off on the computer all the files transfer but there is a lag during each file and i think there is a error message say something like this...

550 file.ext: No such file or directory
Did you get any errors in your syslog or xferlog?

Quote:
Anyway i have said my piece this as much as i could collect in one go....

I would very much apreciate anyones contribution to my questions here
Other then that you know what all the stuff on the site and the forums are A1 or A+ which ever you prefer...

Also i did a httpd and the output is this....

[root@xxx ~]# httpd
[Tue Feb 28 09:03:17 2006] [warn] NameVirtualHost 192.168.*.*:80 has no VirtualHosts
(98)Address already in use: make_sock: could not bind to address [::]:443
no listening sockets available, shutting down
Unable to open logs
[root@xxx ~]#

just wondering what this means ???
This means that there is already a webserver running. I guess you want to test your server with:

httpd -t

which tests the server configuration.
__________________
Till Brehm
--
Get ISPConfig support and the ISPConfig 3 manual from ispconfig.org.
Reply With Quote
  #3  
Old 28th February 2006, 11:00
brainz brainz is offline
Senior Member
 
Join Date: Feb 2006
Location: Sydney, Australia
Posts: 165
Thanks: 9
Thanked 3 Times in 1 Post
Default

till

Thankyou for your response at the moment i am at work and do not have access to the server at home. However in answer to a few of your questions.

Quote:
Have you created the website in ISPConfig on this IP or on the second (virtual) IP?
The website created in the admin panel was created on the main ip address for the server and not the virtual ip. As far as i understand the virtual ip is for the secondary dns if needed.

Quote:
Did you get any errors in your syslog or xferlog?
I havent got the answer to this one at the moment but as soon as i get access to the server i will check and post findings.

Quote:
This means that there is already a webserver running. I guess you want to test your server with:

httpd -t
Again once i have access to the server i will post the details of the set.


till i want to thankyou for your response i will comeback with more details once i get home...

regards
brainz
Reply With Quote
  #4  
Old 28th February 2006, 22:27
brainz brainz is offline
Senior Member
 
Join Date: Feb 2006
Location: Sydney, Australia
Posts: 165
Thanks: 9
Thanked 3 Times in 1 Post
Default

Hello till

here are the output below from a httpd -t i did on the server

Quote:
[root@xxx ~]# httpd -t
[Tue Feb 28 22:56:53 2006] [warn] NameVirtualHost 192.168.*.*:80 has no VirtualHosts
Syntax OK
[root@xxx ~]#
Here is the details from the xferlog below but i dont think this looks like a error at all. Offcourse the *.*.*.* is a ip address..

Quote:
Mon Feb 27 22:37:54 2006 1 *.*.*.* 2283320 /var/www/web1/web/DSC01569.JPG b _ i r web1_admin ftp 0 * c
Mon Feb 27 22:38:09 2006 0 *.*.*.* 2283320 /var/www/web1/web/DSC01569.JPG a _ d r web1_admin ftp 0 * c
Mon Feb 27 22:38:44 2006 1 *.*.*.* 2283320 /var/www/web1/web/DSC01569.JPG b _ i r web1_admin ftp 0 * c
Mon Feb 27 22:39:32 2006 0 *.*.*.* 2283320 /var/www/web1/web/DSC01569.JPG a _ d r web1_admin ftp 0 * c
Tue Feb 28 22:54:02 2006 0 *.*.*.* 0 /var/www/web1/web/mainbody.php a _ d r web1_admin ftp 0 * c
Tue Feb 28 22:54:39 2006 0 *.*.*.* 0 /var/www/web1/web/mainbody.php a _ d r web1_admin ftp 0 * c
Tue Feb 28 22:57:21 2006 0 *.*.*.* 0 /var/www/web1/web/mainbody.php a _ d r web1_admin ftp 0 * c

I cant seem to find any syslog that has details of any errors at all... unless you can tell me the location of the syslog offcourse.

I dont really understand why its doing what it does its really weird some files it likes and otheres it doesnt also noticed that sometime it does like uploading a certian file structure either. This sounds to me like a permissions issue but everything is pritty much and its should be according to a howto for FD4

I was just wondering also if i set the eth0 ip address as dynamic would this cause a issue and im not talking when the ip address changes and i cant access the server at all only when the dns has resolved the right ip address for the domain ???

Sooner or later i will be getting a static ip address and i wont have to continuesly goto the dns server and update the ip well maybe one more time for the static ip i get but i was wondering if this could cause any issues with the ISPconfig ???

Im sorry this is a last moment edit of this post i just wanted to add this

Quote:
[root@xxx ~]# httpd -S
[Tue Feb 28 23:31:41 2006] [warn] NameVirtualHost 192.168.*.*:80 has no VirtualHosts
VirtualHost configuration:
192.168.*.*:80 is a NameVirtualHost
default server localhost (/etc/httpd/conf/vhosts/Vhosts_ispconfig.conf:9)
port 80 namevhost localhost (/etc/httpd/conf/vhosts/Vhosts_ispconfig.conf:9)
port 80 namevhost www.mainsite1.com (/etc/httpd/conf/vhosts/Vhosts_ispconfig.conf:21)
port 80 namevhost www.clientsite1.com (/etc/httpd/conf/vhosts/Vhosts_ispconfig.conf:75)
port 80 namevhost localhost (/etc/httpd/conf/vhosts/Vhosts_ispconfig.conf:9)
port 80 namevhost www.mainsite1.com (/etc/httpd/conf/vhosts/Vhosts_ispconfig.conf:21)
port 80 namevhost www.clientsite1.com (/etc/httpd/conf/vhosts/Vhosts_ispconfig.conf:75)
wildcard NameVirtualHosts and _default_ servers:
_default_:443 xxx.servername.com (/etc/httpd/conf.d/ssl.conf:86)
Syntax OK
[root@xxx ~]#
I i was wondering what this meant ???

many fanks...
Regards
brainz

Last edited by brainz; 28th February 2006 at 22:38.
Reply With Quote
  #5  
Old 1st March 2006, 14:23
falko falko is offline
Super Moderator
 
Join Date: Apr 2005
Location: Lüneburg, Germany
Posts: 41,711
Thanks: 1,899
Thanked 2,702 Times in 2,545 Posts
Default

Quote:
Originally Posted by brainz
I cant seem to find any syslog that has details of any errors at all... unless you can tell me the location of the syslog offcourse.
Might be /var/log/syslog or /var/log/messages.

Quote:
Originally Posted by brainz
I dont really understand why its doing what it does its really weird some files it likes and otheres it doesnt also noticed that sometime it does like uploading a certian file structure either. This sounds to me like a permissions issue but everything is pritty much and its should be according to a howto for FD4
Seems to be a problem with the permissions/ownerships of the directories to which you try to upload.

Quote:
Originally Posted by brainz
I was just wondering also if i set the eth0 ip address as dynamic would this cause a issue and im not talking when the ip address changes and i cant access the server at all only when the dns has resolved the right ip address for the domain ???
Use a static IP address!

Quote:
Originally Posted by brainz
I i was wondering what this meant ???
Nothing to worry about, this is ok.
__________________
Falko
--
Download the ISPConfig 3 Manual! | Check out the ISPConfig 3 Billing Module!

FB: http://www.facebook.com/howtoforge

nginx-Webhosting: Timme Hosting | Follow me on:
Reply With Quote
  #6  
Old 2nd March 2006, 01:06
brainz brainz is offline
Senior Member
 
Join Date: Feb 2006
Location: Sydney, Australia
Posts: 165
Thanks: 9
Thanked 3 Times in 1 Post
Default

Hi falko,

Quote:
Might be /var/log/syslog or /var/log/messages.

I just upgraded to the latest version and i have no ftp client access to the web account at all

Here is the output for the messages log

Quote:
Mar 2 01:02:13 xxx proftpd(pam_unix)[5368]: session opened for user web1_admin by (uid=0)
Mar 2 01:02:13 xxx proftpd[5368]: xxx.site.com (127.0.0.1[127.0.0.1]) - PAM(setcred): System error
Mar 2 01:02:13 xxx proftpd[5368]: xxx.site.com (127.0.0.1[127.0.0.1]) - PAM(close_session): System error
Mar 2 01:02:13 xxx proftpd[5368]: xxx.site.com (127.0.0.1[127.0.0.1]) - FTP session closed.
Mar 2 01:25:52 xxx proftpd[5930]: xxx.site.com (127.0.0.1[127.0.0.1]) - FTP session opened.
Mar 2 01:26:28 xxx proftpd[5930]: xxx.site.com (127.0.0.1[127.0.0.1]) - no such user 'proftp'
Mar 2 01:29:41 xxx proftpd[5930]: xxx.site.com (127.0.0.1[127.0.0.1]) - FTP session closed.
Mar 2 01:29:45 xxx proftpd[5993]: xxx.site.com (127.0.0.1[127.0.0.1]) - FTP session opened.
Mar 2 01:30:08 xxx proftpd[6010]: xxx.site.com (127.0.0.1[127.0.0.1]) - FTP session opened.
Mar 2 01:30:08 xxx proftpd[6010]: xxx.site.com (127.0.0.1[127.0.0.1]) - FTP session closed.
Mar 2 01:30:11 xxx proftpd(pam_unix)[5993]: session opened for user web1_admin by (uid=0)
Mar 2 01:31:51 xxx proftpd[5993]: xxx.site.com (127.0.0.1[127.0.0.1]) - PAM(setcred): System error
Mar 2 01:31:51 xxx proftpd[5993]: xxx.site.com (127.0.0.1[127.0.0.1]) - PAM(close_session): System error
Mar 2 01:31:51 xxx proftpd[5993]: xxx.site.com (127.0.0.1[127.0.0.1]) - FTP session closed.
Mar 2 01:32:09 xxx automount[6047]: >> /usr/sbin/showmount: can't get address for .directory
Mar 2 01:32:10 xxx automount[6047]: lookup(program): lookup for .directory failed
Mar 2 01:32:10 xxx automount[6047]: failed to mount /net/.directory
This is the output from the ftp client now

Quote:
[01:22:47] SmartFTP v2.0.995.3
[01:22:47] Resolving host name "www.site.com"
[01:22:47] Connecting to *.*.*.* Port: 21
[01:22:47] Connected to www.site.com.
[01:22:49] Server closed connection
[01:22:49] Cannot login waiting to retry (30s)...
Im sorry but im at a lost at why it wont let me connect to the ftp server now that i have upgraded to the newest version...

Please Help...

PS... I have a static IP now and the dns has propergated it so the domain resolves.

Regards
brainz
Reply With Quote
  #7  
Old 2nd March 2006, 08:09
till till is offline
Super Moderator
 
Join Date: Apr 2005
Location: Lüneburg, Germany
Posts: 34,555
Thanks: 791
Thanked 4,977 Times in 3,899 Posts
Default

The error is related to the PAM authentication:

Quote:
Mar 2 01:31:51 xxx proftpd[5993]: xxx.site.com (127.0.0.1[127.0.0.1]) - PAM(setcred): System error
Mar 2 01:31:51 xxx proftpd[5993]: xxx.site.com (127.0.0.1[127.0.0.1]) - PAM(close_session): System error
But ISPConfig does not configure PAM, soi guess your problem is not directly related to the ISPConfig upgrade.

Please post the line from /etc/passwd for the user web1_admin
__________________
Till Brehm
--
Get ISPConfig support and the ISPConfig 3 manual from ispconfig.org.
Reply With Quote
  #8  
Old 2nd March 2006, 09:04
brainz brainz is offline
Senior Member
 
Join Date: Feb 2006
Location: Sydney, Australia
Posts: 165
Thanks: 9
Thanked 3 Times in 1 Post
Default

Hi till,


Quote:
Please post the line from /etc/passwd for the user web1_admin
Here is what you have requested below...


Quote:
web1_admin:x:10001:10001:admin:/var/www/web1:/bin/bash

regards
brainz
Reply With Quote
  #9  
Old 2nd March 2006, 09:47
falko falko is offline
Super Moderator
 
Join Date: Apr 2005
Location: Lüneburg, Germany
Posts: 41,711
Thanks: 1,899
Thanked 2,702 Times in 2,545 Posts
Default

Have a look at this thread: http://www.howtoforge.com/forums/showthread.php?t=196
__________________
Falko
--
Download the ISPConfig 3 Manual! | Check out the ISPConfig 3 Billing Module!

FB: http://www.facebook.com/howtoforge

nginx-Webhosting: Timme Hosting | Follow me on:
Reply With Quote
  #10  
Old 2nd March 2006, 10:02
brainz brainz is offline
Senior Member
 
Join Date: Feb 2006
Location: Sydney, Australia
Posts: 165
Thanks: 9
Thanked 3 Times in 1 Post
 
Default

Hi falko,

Thankyou i have read that thread and i do have a ftp file with the details in it

Here....

/etc/pam.d/ftp

with this code

Quote:
#%PAM-1.0
auth required pam_unix.so nullok
account required pam_unix.so
session required pam_unix.so
I have tried it and the ftp does give me access now but unfortunatly i still have this problem where i try and upload a particular php files and it freezes and disconnects.

I think as till says there is a problem with PAM authentication and if could work this out it would be excellent. I think i have posted the output from the /etc/passwd for web1_admin.

if i could understand what this means....

Quote:
Mar 2 01:31:51 xxx proftpd[5993]: xxx.site.com (127.0.0.1[127.0.0.1]) - PAM(setcred): System error
Mar 2 01:31:51 xxx proftpd[5993]: xxx.site.com (127.0.0.1[127.0.0.1]) - PAM(close_session): System error
and find a solution for it. This would be greatly aprechiated and i thankyou once again for yours and tills help.

regards
brainz
Reply With Quote
Reply

Bookmarks

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
Hostname & DNS questions... SurfingAlien Installation/Configuration 6 16th October 2007 16:32
Mandriva 2006 Install questions bersi Installation/Configuration 26 1st November 2006 16:52
A Couple of Questions.. nformosa General 4 21st December 2005 10:05
A couple of ispconfig questions jimmy HOWTO-Related Questions 1 20th December 2005 10:47
postfix questions Ovidiu Server Operation 1 23rd October 2005 13:20


All times are GMT +2. The time now is 06:31.


Powered by vBulletin® Version 3.8.7
Copyright ©2000 - 2014, vBulletin Solutions, Inc.