AusGamers Forums
 ›  Software/Web Development  ›  Website hosting and ISPConfig3
Show: per page
1
RSS
Website hosting and ISPConfig3
jesu
Brisbane, Queensland
672 posts
Hello!
I've got a LAMP setup (Ubuntu 10.04) on a Mammoth VPS. I have also set up ISPConfig3 on this server so I can have people manage domains. I have a pretty basic GoDaddy domain which does my nameservers etc

My problem is; even with running through the setup guides provided with ISPConfig I can't seem to get a domain to resolve to my server.

The domain in question is www.millenniumsigns.com.au and it seems as if I can dig this to get a resolution to my IP address where the server is but it just won't show.

Can anyone shed some light on my issue?
Send Private Message PMWWW WWW
10:29pm 11/10/11 Permalink
adBot
ads
Internet
--
ads keep websites free
10:29pm 11/10/11 Permalink
andrewus
Brisbane, Queensland
2543 posts
Not trying to be an ass - and this is not a solution, just something for you to look into if you haven't already.

I run a CentOS server on Mammoth VPS
Why not look into something simple to use such as WHM http://www.cpanel.net/
This made everything a piece of cake. Hosting happens like this:

Get VPS Server
Install CentOS
Install WHM
Done.
Send Private Message PMWWW WWW
10:33pm 11/10/11 Permalink
TicMan
Melbourne, Victoria
7327 posts
cPanel or ISPConfig3 won't fix this problem. It looks like you haven't allowed TCP/80 (HTTP) through the firewall; 


[root@server ~]# host www.millenniumsigns.com.au 

www.millenniumsigns.com.au has address 110.232.114.118

[root@server ~]# curl -Lk --connect-timeout 10 www.millenniumsigns.com.au 

curl: (7) couldn't connect to host


Check your iptables setup (iptables -L) and see if a line exists to allow connections.
Send Private Message PM
10:37pm 11/10/11 Permalink
andrewus
Brisbane, Queensland
2544 posts
Typo makes for mistakes.
millennium with two n's got me a beauty.
Send Private Message PMWWW WWW
10:42pm 11/10/11 Permalink
jesu
Brisbane, Queensland
673 posts
Not trying to be an ass - and this is not a solution, just something for you to look into if you haven't already.

I run a CentOS server on Mammoth VPS
Why not look into something simple to use such as WHM http://www.cpanel.net/
This made everything a piece of cake. Hosting happens like this:

Get VPS Server
Install CentOS
Install WHM
Done.

I understand your logic and had been down this road once and the requirement from one of my clients is to move away from cpanel as they do not like it and this is why I have gone to ISPConfig this install to try out.
Send Private Message PMWWW WWW
10:43pm 11/10/11 Permalink
jesu
Brisbane, Queensland
674 posts
cPanel or ISPConfig3 won't fix this problem. It looks like you haven't allowed TCP/80 (HTTP) through the firewall; 

[root@server ~]# host www.millenniumsigns.com.au 

www.millenniumsigns.com.au has address 110.232.114.118

[root@server ~]# curl -Lk --connect-timeout 10 www.millenniumsigns.com.au 

curl: (7) couldn't connect to host


Check your iptables setup (iptables -L) and see if a line exists to allow connections.

Oh I hadn't even thought of firewall rules for this server *facepalm*


sudo iptables -L
Chain INPUT (policy ACCEPT)
target prot opt source destination
fail2ban-ssh tcp -- anywhere anywhere multiport dports ssh

Chain FORWARD (policy ACCEPT)
target prot opt source destination

Chain OUTPUT (policy ACCEPT)
target prot opt source destination

Chain fail2ban-ssh (1 references)
target prot opt source destination
RETURN all -- anywhere anywhere
Send Private Message PMWWW WWW
10:44pm 11/10/11 Permalink
jesu
Brisbane, Queensland
675 posts
Typo makes for mistakes.
millennium with two n's got me a beauty.

Yeah I was just about to mention that =]

edit: I really need to learn iptables properly I think
Send Private Message PMWWW WWW
10:45pm 11/10/11 Permalink
TicMan
Melbourne, Victoria
7328 posts
The firewall is only allowing SSH via fail2ban (as per MammothVPS defaults). You can get ISPConfig to take control of iptables or add in the allow rule and save the config, try 


iptables -A INPUT -p tcp -m tcp --dport 80 -j ACCEPT
Send Private Message PM
11:00pm 11/10/11 Permalink
HerbalLizard
Brisbane, Queensland
5158 posts
TicMan wins

I am looking at using knockd for sorting out ssh anyone tried it

last edited by HerbalLizard at 23:22:34 11/Oct/11
Send Private Message PMWWW WWW
11:19pm 11/10/11 Permalink
jesu
Brisbane, Queensland
676 posts
Ticman does win; certainly makes sense to me now I've read up on it.
I restarted my server and it now won't load past apache. Don't know what I've ruined ha
Send Private Message PMWWW WWW
11:43pm 11/10/11 Permalink
andrewus
Brisbane, Queensland
2545 posts
The joys of learning linux haha
Send Private Message PMWWW WWW
12:21am 12/10/11 Permalink
jesu
Brisbane, Queensland
677 posts
Yeah; it's certainly not the first Linux install I've had to do. Just running through my install again now and pureftpd package has size mismatch =[

More to come on whether I can fix this server!
Send Private Message PMWWW WWW
12:43am 12/10/11 Permalink
jesu
Brisbane, Queensland
678 posts

I am looking at using knockd for sorting out ssh anyone tried itlast edited by HerbalLizard at 23:22:34 11/Oct/11

Just had a look at this and it sounds very interesting. Might have to try it out and have a play
Send Private Message PMWWW WWW
12:44am 12/10/11 Permalink
jesu
Brisbane, Queensland
679 posts
So I've just finished re-doing my webserver with ISPConfig3 setup and it all seems to work now.
Essentially the first install was pretty dodgy and was basically an iptables incorrect configuration. I've learnt heaps (as usual with linux re-do's) about the specific things I've done now.

So thanks to those who guided me in the correct direction!
Send Private Message PMWWW WWW
05:25pm 12/10/11 Permalink
HerbalLizard
Brisbane, Queensland
5159 posts
Oh forgot to mention on the subject of iptables basically drop everything unless you have to open for obvious reasons.

Shift ssh from port 22 to something else which will cut down on your logs getting filled with shit and the volume of automated attacks deceases too but its not to say people won't try and brute force attack it so keep fail2ban running

I am going to have a crack at getting knockd up and running properly next week when I have some time... I have a zabbix install going that I need to have locked down first

Send Private Message PMWWW WWW
10:40pm 12/10/11 Permalink
adBot
ads
Internet
--
ads keep websites free
10:40pm 12/10/11 Permalink
AusGamers Forums
 ›  Software/Web Development  ›  Website hosting and ISPConfig3
Show: per page
1
RSS
This thread is archived and cannot be replied to.
 

Advertise with Us | Download Media Kit | Privacy Policy | Contact Us
© Copyright 2001-2012 AusGamers™ Pty Ltd. ACN 093 772 242.
A Mammoth Media web development, hosted by Mammoth VPS.