Messages

721

Information / Re: CentOS Configuration File Locations (CWP)

« on: April 18, 2023, 02:02:09 PM »

CWP mostly lives in /usr/local/cwpsrv
So you would want to look at the /usr/local/cwpsrv/conf and /usr/local/cwpsrv/conf.d directories

722

Information / Re: Cloudflare Tunnel

« on: April 18, 2023, 11:56:19 AM »

I too live in D-S-Hell. Same internet service since 2000 -- living on 18Mbps down, 1Mbps up. Only other viable option would be Starlink, but soon our electric co-operative is going to switch on fiber to the premises! Woo-hoo -- almost 25 years into the 21st century!

723

PHP / Re: I want to go with non Pro version of CWP? and make sure all processes are runnin

« on: April 18, 2023, 09:36:21 AM »

I'm sorry, I can't guide you in that because I don't have direct experience with regressing to the non-Pro, free version of CWP. I just pay the annual $$ fee and am {generally} happy. A stable place until the great 2024 upheaval when CentOS 7 goes EOL!

724

SSL / Re: How to Change SSL Port number in cwp?

« on: April 17, 2023, 06:11:34 PM »

Easiest would be an iptables redirect, so you don't have to re-configure all services/vhosts. And your new port would need to be opened in the CSF firewall (/etc/csf/csf.conf). Start by enabling port forwarding:

Code: [Select]

echo "1" > /proc/sys/net/ipv4/ip_forwardThen you have to add the following rules to your iptables NAT table:

Code: [Select]

iptables -t nat -A PREROUTING -s 127.0.0.1 -p tcp --dport 443 -j REDIRECT --to 8443`
iptables -t nat -A OUTPUT -s 127.0.0.1 -p tcp --dport 443 -j REDIRECT --to 8443`

725

Information / Re: block access to CWP from the Internet

« on: April 15, 2023, 10:49:22 PM »

Your approaches all sound fine if you have a static IP address. I would suggest using the higher level CSF over the lower level iptables, if you go that route. You will need to leave ports 2304 (inbound & outbound) & 2443 (outbound) open in order to ping the CWP Pro server that authorizes your IP with the Pro feature set.

You could also use Cloudflare's Tunnel product.

726

SSL / Re: How to Change SSL Port number in cwp?

« on: April 15, 2023, 02:17:37 AM »

Are you meaning for the CWP admin (2031/2087) or user panel (2083), or just any website running on the standard HTTPS SSL port (443)?

727

E-Mail / Re: Client host rejected: Access denied

« on: April 14, 2023, 11:57:08 AM »

That's a question for the devs. On my end, I don't need them as I took their default postfix settings and put in my "usual" restrictions block from other servers I manage and fused the two together. Once it was tuned for CentOS and CWP specifically (10 mins) it was pretty much just set-it-and-forget-it. Spamassassin and the CSF firewall have been a lot more frequently tuned than Postfix, from my observeration over the past few years.

728

Apache / Re: Apache Compiler

« on: April 13, 2023, 12:17:57 PM »

Okay, great. Glad you got it sorted. My usual troubleshooting method on this forum is to "compare notes" with the person in need -- see how their configuration and use case matches up with mine. We had some overlap, so I mentioned which apache version I had running on my CWP servers, in conjunction with php-fpm (not suPHP and not using the PHP Version Switcher). I have only used the PHP Version Switcher on one server that was 1:1, dedicated to a single client -- so I have used it and do have some experience with it. All my other servers host multiple clients so php-fpm is a better use case, as each client often needs a specific version of PHP for different web apps/content management systems.

729

Apache / Re: Apache Compiler

« on: April 13, 2023, 02:29:25 AM »

Huh? That's quite the perspective...

730

Information / Re: Support feedback needed

« on: April 13, 2023, 02:27:56 AM »

Support tickets are usually promptly acted on if you provide sufficient details, in my experience. But I've only had a few occasions to need support, esp. earlier on in my CWP journey. Mostly self-sufficient these days!

731

Nginx / Re: All my site are now showing 502 Bad Gateway nginx/1.20.2

« on: April 11, 2023, 10:41:44 PM »

Here's an example for moving from php-fpm 7.4 to 8.0:

Code: [Select]

cp /opt/alt/php-fpm74/usr/etc/php-fpm.d/users/user.conf /opt/alt/php-fpm81/usr/etc/php-fpm.d/users/user.confThen edit the file (either manually or with a perl or sed substitution) to update it from 7.4 to 8.0:

Code: [Select]

perl -pi -e 's/php-fpm74/php-fpm80/g' /opt/alt/php-fpm81/usr/etc/php-fpm.d/users/user.confThen restart php 8.0

Code: [Select]

systemctl restart php-fpm80.serviceand confirm it made your .sock file:

Code: [Select]

ls -l /opt/alt/php-fpm80/usr/var/sockets/yellowdeli.sockIf it's present, then restart nginx.

732

Apache / Re: Apache Compiler

« on: April 11, 2023, 10:33:28 PM »

Hmmm. I never applied any "secret sauce" to get to Apache 2.4.56. I run php-fpm and run

Code: [Select]

yum -y update regularly.

733

Apache / Re: Apache Compiler

« on: April 11, 2023, 02:18:34 AM »

Current on CWP is:
Apache version: Apache/2.4.56

734

E-Mail / Re: Client host rejected: Access denied

« on: April 11, 2023, 02:16:10 AM »

The vanilla main.cf file leaves a lot to be desired -- much tweaking should be done to it for optimal delivery and UCE controls. But maybe too much to get into now for you if you just want to solve your more basic problem.

735

Nginx / Re: All my site are now showing 502 Bad Gateway nginx/1.20.2

« on: April 11, 2023, 02:13:37 AM »

When compiling new php-fpm versions, you don't automatically get a user.conf file created (and therefore a user.sock file). You should copy over your existing user.conf from the previous PHP version, change the paths therein appropriately for that PHP version, and restart that version of php-fpm. Also, I see you are using php 8.0. Any specific reason you are not using 8.1 instead? If not, I would recommend compiling 8.1 and using that instead of 8.0.