Comments on ISPConfig Perfect Multiserver setup on Ubuntu 20.04 and Debian 10
This tutorial will take you through installing your own ISPConfig 3 multiserver setup with dedicated servers for the panel, web, DNS, mail, and webmail using the new ISPConfig auto-installer. This tutorial is compatible with Debian 10 and Ubuntu 20.04.
26 Comment(s)
Comments
Excelent document ... Thanks ...
Installed with Ubuntu Desktop ~ Desktop & ISP Panel ~ awesome.
If i use the web01 server as panel, do i still need to create a root user per server with granted access to *? Because now my slave servers also have access to all the databases for my websites.
Yes.
Absolute great tutorial. It saved me a lot of time!
I think there is a typo in 8.3. Should be ....we will disable the default.... instead of "enable".
Also the DocumentRoot did not work for me the specified folder ist not available. I set it like this:
DocumentRoot "/var/lib/roundcube"Thanks, resolved the typo.
The DocumentRoot can be different, on newer versions it's /var/lib/roundcube/public_html
My system removes additional settings on /etc/rspamd/local.d/options.inc
I have resolved that now, it now uses a conf-custom file.
para cada host eu vou ter que instalar separadamente em uma instalação debian !ou em uma única instalação eu posso ter todos esses hosts ...
Hey guys! Great Job btw, this guide makes installing ispconfig a breeze. The only problem I have is here, I used --use-nginx, and the guide specifies to change the document root for roundcube in apache settings. I tried changing it manually in /etc/nginx/sites-enabled/100-webmail.whatever.com.vhost without success, here is the error open_basedir restriction in effect. File(/var/lib/roundcube/public_html/index.php) is not within the allowed path(s) with a little more afterwards. So where can I find the permissions/restrictions that ISPConfig applies to clients/websites?Thanks again for everything you guys are doing!
Is this currently working for vps? Thanks in advance !
Yes, this works fine on VPS. Just ensure you use full virtualization like KVM, as some things like Linux filesystem quota which is used on the webserver node, and also things like file system attributes will not fully work in container systems like LXC.
Why has every server his own sql server?It should be better, to use a sql Cluster for the database and get it away from the isp servers
Using a cluster MySQL server is not faster. You forgot the network latency in your calculations. Try it out on real setups and you will see that a local instance that is able to communicate over sockets is faster, plus having local MySQL instances is beneficial for redundancy as well. Using a clustered database makes sense when you have a single application that exceeds the processing or space capacities of the local database, and you can use such setups with ISPConfig as well. But as mentioned earlier, using a local database makes more sense for most setups.
Thanks for the great tutorial. Everything works fine, but when I try to login to roundcube it gives me the error: "Connection to IMAP Server failed" I'd appreciate any ideas how to solve this.
Please post your support questions here in the forum: https://forum.howtoforge.com/forums/installation-configuration.27/
Perfect document. Thank you!!!
On page one we were instructed to: "We are also going to open port 3306, which is used for MySQL, but only from our local network for security reasons. To do so, run the following command from the CLI, after the change from the ISPConfig panel is propagated (when the red dot is gone):
ufw allow from 10.0.64.0/24 to any port 3306 proto tcp"
But on this page we are attempting to use the fqdn of panel.example.com for sql to connect to on port 3306, which wont work, it either needs the local ip address of the server or that server needs its port 3306 open on the public ip, which is indicated is a security risk.
Just wondering what the proper way forward is here? Is there a firewall rule I can enter that will only allow connections to the other members in the pool or do I change the "MySQL master server hostname" to be the local ip of that server?
I had started to use this tutorial to roll out some new servers for my environment. Was in a bit of a crunch to get a webserver up and so did a quick rollout of just the panel server and web01 (for now). I did not have an external IP address configured for the webserver (don't normally assign an external IP to the base machine as IPV4 is costly and wasteful when the IP will never be used) so the install failed on the letsencrypt bits and just failed over to a self-signed certificate.
Is there a way to redo that part of the process after the fact to get the letsencrypt working?
Which other servers in a multiserver config are going to need to have their own external IP's for this? Can those external IP's be IPV6 instead of IPV4?
Brilliant tut for the most part, couldn't have got anywhere without it so thanks for that.
Getting a problem with every command that involves a DNS name (though I have set them up as you laid out) CREATE USER 'root'@'web01.mydomain.world' IDENTIFIED BY 'mypassword';GRANT ALL PRIVILEGES ON * . * TO 'root'@'web01.mydomain.world' IDENTIFIED BY 'mypassword' WITH GRANT OPTION MAX_QUERIES_PER_HOUR 0 MAX_CONNECTIONS_PER_HOUR 0 MAX_UPDATES_PER_HOUR 0 MAX_USER_CONNECTIONS 0 ;
ERROR 1396 (HY000): Operation CREATE USER failed for 'root'@'web01.<myactualdomain.com>'
Will take a look at this later, for now I hope IP's will do - they worked fine.
Thanks for this software, I really appreciate the tie and effort you put into this :D
Dudes, the software you're writing is freekin' revolutionary. There's a project I'm working on right now that this would make a great part of.
Thanks for all your efforts!
I installed according this tutorial one webserver with panel and two mailservers (both webservers are synced with dovecot).
One question to the Rspamd Websurface. Is it normal that the MX2 is displayed in the web interface but only in red (everything with question marks)?
hello, can you tell me on which server database for each websites is stored?
thank you
If you have multiple servers that provide databases, then you can choose on which server the database gets created. There is a select field labeled "Server" when you create a database.
after i created a website and ftp account not work. i use winscp and it said Timeout detected. (data connection)
Could not retrieve directory listing
Error listing directory '/'.
what when wrong? and how to fix it. thank you
Most likely, you closed the passive port range of the FTP server in a firewall on or in front of the server. See also: https://www.faqforge.com/linux/distributions/debian/how-to-set-the-passiveportrange-in-pure-ftpd-on-debian-and-ubuntu-linux/