Show Posts

1171

DNS / Re: Issues with reverse DNS / PTR

« on: April 25, 2023, 12:16:31 AM »

You own & manage your own IP space? Of does your ISP or hosting provider manage the IP space?

1172

CentOS-WebPanel GUI / Re: Login CWP Cloudflare

« on: April 25, 2023, 12:14:57 AM »

I am using CWP and Cloudflare for my DNS infrastructure. Do you have Cloudflare configured as Flexible or Full for SSL? Do you have it set to always redirect plain HTTP connections to HTTPS?

1173

Updates / Re: Yum Manager cant update

« on: April 24, 2023, 10:42:13 PM »

Run

Code: [Select]

sudo yum -y updatein a shell. I'm comfortable enough with that level of updates that I have it run daily via cron, right before I log in every morning. So my systems are kept up to date and I don't see the nag notification about updates. So far I haven't been bitten by it (over several years) and if anything did go wrong, I am ready to tend to things.

1174

Information / Re: CentOS Configuration File Locations (CWP)

« on: April 18, 2023, 02:02:09 PM »

CWP mostly lives in /usr/local/cwpsrv
So you would want to look at the /usr/local/cwpsrv/conf and /usr/local/cwpsrv/conf.d directories

1175

Information / Re: Cloudflare Tunnel

« on: April 18, 2023, 11:56:19 AM »

I too live in D-S-Hell. Same internet service since 2000 -- living on 18Mbps down, 1Mbps up. Only other viable option would be Starlink, but soon our electric co-operative is going to switch on fiber to the premises! Woo-hoo -- almost 25 years into the 21st century!

1176

PHP / Re: I want to go with non Pro version of CWP? and make sure all processes are runnin

« on: April 18, 2023, 09:36:21 AM »

I'm sorry, I can't guide you in that because I don't have direct experience with regressing to the non-Pro, free version of CWP. I just pay the annual $$ fee and am {generally} happy. A stable place until the great 2024 upheaval when CentOS 7 goes EOL!

1177

SSL / Re: How to Change SSL Port number in cwp?

« on: April 17, 2023, 06:11:34 PM »

Easiest would be an iptables redirect, so you don't have to re-configure all services/vhosts. And your new port would need to be opened in the CSF firewall (/etc/csf/csf.conf). Start by enabling port forwarding:

Code: [Select]

echo "1" > /proc/sys/net/ipv4/ip_forwardThen you have to add the following rules to your iptables NAT table:

Code: [Select]

iptables -t nat -A PREROUTING -s 127.0.0.1 -p tcp --dport 443 -j REDIRECT --to 8443`
iptables -t nat -A OUTPUT -s 127.0.0.1 -p tcp --dport 443 -j REDIRECT --to 8443`

1178

Information / Re: block access to CWP from the Internet

« on: April 15, 2023, 10:49:22 PM »

Your approaches all sound fine if you have a static IP address. I would suggest using the higher level CSF over the lower level iptables, if you go that route. You will need to leave ports 2304 (inbound & outbound) & 2443 (outbound) open in order to ping the CWP Pro server that authorizes your IP with the Pro feature set.

You could also use Cloudflare's Tunnel product.

1179

SSL / Re: How to Change SSL Port number in cwp?

« on: April 15, 2023, 02:17:37 AM »

Are you meaning for the CWP admin (2031/2087) or user panel (2083), or just any website running on the standard HTTPS SSL port (443)?

1180

E-Mail / Re: Client host rejected: Access denied

« on: April 14, 2023, 11:57:08 AM »

That's a question for the devs. On my end, I don't need them as I took their default postfix settings and put in my "usual" restrictions block from other servers I manage and fused the two together. Once it was tuned for CentOS and CWP specifically (10 mins) it was pretty much just set-it-and-forget-it. Spamassassin and the CSF firewall have been a lot more frequently tuned than Postfix, from my observeration over the past few years.

1181

Apache / Re: Apache Compiler

« on: April 13, 2023, 12:17:57 PM »

Okay, great. Glad you got it sorted. My usual troubleshooting method on this forum is to "compare notes" with the person in need -- see how their configuration and use case matches up with mine. We had some overlap, so I mentioned which apache version I had running on my CWP servers, in conjunction with php-fpm (not suPHP and not using the PHP Version Switcher). I have only used the PHP Version Switcher on one server that was 1:1, dedicated to a single client -- so I have used it and do have some experience with it. All my other servers host multiple clients so php-fpm is a better use case, as each client often needs a specific version of PHP for different web apps/content management systems.

1182

Apache / Re: Apache Compiler

« on: April 13, 2023, 02:29:25 AM »

Huh? That's quite the perspective...

1183

Information / Re: Support feedback needed

« on: April 13, 2023, 02:27:56 AM »

Support tickets are usually promptly acted on if you provide sufficient details, in my experience. But I've only had a few occasions to need support, esp. earlier on in my CWP journey. Mostly self-sufficient these days!

1184

Nginx / Re: All my site are now showing 502 Bad Gateway nginx/1.20.2

« on: April 11, 2023, 10:41:44 PM »

Here's an example for moving from php-fpm 7.4 to 8.0:

Code: [Select]

cp /opt/alt/php-fpm74/usr/etc/php-fpm.d/users/user.conf /opt/alt/php-fpm81/usr/etc/php-fpm.d/users/user.confThen edit the file (either manually or with a perl or sed substitution) to update it from 7.4 to 8.0:

Code: [Select]

perl -pi -e 's/php-fpm74/php-fpm80/g' /opt/alt/php-fpm81/usr/etc/php-fpm.d/users/user.confThen restart php 8.0

Code: [Select]

systemctl restart php-fpm80.serviceand confirm it made your .sock file:

Code: [Select]

ls -l /opt/alt/php-fpm80/usr/var/sockets/yellowdeli.sockIf it's present, then restart nginx.

1185