Messages

946

Postfix / Re: Outgoing mail stuck in postfix mail queue

« on: July 11, 2023, 12:34:14 AM »

This message has an invalid addressee, so you'll have to just delete it or let it bounce back.
160   Recipient address rejected: User unknown in virtual mailbox table

Do you have proper rDNS (reverse DNS / PTR record) set up with your ISP? It is essential for proper mail delivery. Otherwise, you will need a relayhost that will deliver the mail for you.

947

CSF Firewall / Re: How to Prevent CWP BruteForce?

« on: July 10, 2023, 10:28:17 PM »

It blocks their e-mails; they will get stuck in your mail queues.

948

CSF Firewall / Re: I need Suggestion

« on: July 10, 2023, 10:27:09 PM »

Again, be careful of blanket blocks of CN -- Alibaba / Aliexpress vendors communicate directly from China. And Germany (DE) has a fair number of data centers that are critical infrastructure -- be careful of blocking bigger European countries for that reason (you could even cut yourself off from CWP

949

Postfix / Re: Outgoing mail stuck in postfix mail queue

« on: July 10, 2023, 10:24:42 PM »

You'll have to post some queue example error codes and/or relevant log entries. Hard to diagnose anything with such little information...

950

CSF Firewall / Re: No firewall e-mails anymore

« on: July 10, 2023, 10:23:09 PM »

Blessed silence! I had to work for that, turning it off in the configs. Why care that some Chinese script kiddie made a brute force attempt on your server?

951

CentOS 7 Problems / Re: Firewall problem, need help

« on: July 10, 2023, 10:21:33 PM »

Whitelist your IP address in /etc/csf/csf.allow

952

CSF Firewall / Re: How to Change CWP port

« on: July 07, 2023, 09:13:12 PM »

port change is not recommended as It could break the functionality of the panel.

And this is no longer true, if it ever was. I run CWP in HTTPS only and only on an alternate port:
https://azdigi.com/blog/en/webserver-panel-en/centos-web-panel-en/how-to-change-the-port-on-centos-web-panel-cwp/

953

CSF Firewall / Re: How to Prevent CWP BruteForce?

« on: July 07, 2023, 09:11:02 PM »

Just note that your clients will then be unable to directly communicate with AliBaba/AliExpress vendors. I am now getting bounce messages and stuck messages in my queues after blocking CN.

954

CentOS-WebPanel GUI / Re: CWP Invalid session on login

« on: July 06, 2023, 02:23:32 AM »

Did you look at creating a Cloudflare firewall rule to allow your CWP admin port (2031 or 2087 or whatever)?

955

CentOS 7 Problems / Re: Error 503 Backend fetch failed on all website hosted in our server

« on: July 06, 2023, 02:20:12 AM »

I would take the caching aspect out of the loop, unless you really think you need it. It's usually the last step in deployment before going live. And in all honesty, unless you have a lot of RAM available or fast disks, Varnish introduces a whole level of complexity and tends to be a common break point. I've only ever implemented it on one very high traffic server. But ultimately, I got even better results from using Cloudflare's infrastructure.

The best bang-for-your-buck combo on CWP is with Nginx (least troublesome to configure and manage, far better performance than Apache). Varnish is only if you absolutely need to milk every last bit of performance out of your existing server.

956

CentOS-WebPanel Bugs / Re: webpages is halted by the combination of NGINX and PHP-FRM

« on: July 06, 2023, 02:14:58 AM »

You should look at the last lines of that website's log files:

access log: /usr/local/apache/domlogs/yourdomain.com.log
error log: /usr/local/apache/domlogs/yourdomain.com.error.log

Should give you a pretty good clue as to what's going wrong.

957

CentOS 7 Problems / Re: Error 503 Backend fetch failed on all website hosted in our server

« on: July 03, 2023, 03:07:59 AM »

You'll have to look at the varnish logs. Do you have a WP varnish plugin to expiry the cache?

958

Postfix / How to Whitelist a hostname in CSF

« on: July 03, 2023, 03:04:40 AM »

You may find it necessary to whitelist a hostname as opposed to an IP address in CSF. CSF has a file specifically for allowing hostnames called "csf.dyndns". Fully Qualified Domain Names (FQDN) are checked at a configurable interval of seconds, to poll for a change in the IP address.

To whitelist a hostname:
1) Open/create the file "/etc/csf/csf.dyndns" and add the hostname.
2) Open the file "/etc/csf/csf.conf" and set: DYNDNS = "1800" (which would check for IP updates every 30 minutes).
Note: If you want the activity of the IP also ignored, set DYNDNS_IGNORE = "1"
3) Restart the firewall (csf -r)

The hostnames in csf.dyndns will automatically be allowed and the rules will refresh every 30 minutes.

959

Updates / Re: How to upgrade the OS

« on: July 03, 2023, 02:52:56 AM »

I would just pay the additional $$ -- cost of doing business. Unless they could grant you some kind of special temp license for migration. Maybe they ought to consider a 1-3 mo temp license for this use case -- people migrating from CentOS 7 to AlmaLinux or Rocky.

960

Information / Re: RH plan to kill RHEL clones

« on: July 03, 2023, 02:49:55 AM »

Might be time to get a RH dev account and take them up on the offer for a free license. Then you have access to the source code, and maybe then you accidentally mirror it on your pub FTP server. Accidentally.

Any AlmaLinux devs catching this?