Code: [root@ sites-enabled]# pwd /etc/httpd/conf/sites-enabled [root@ sites-enabled]# ls -l 900-windchimes.nl.vhost lrwxrwxrwx. 1 root root 51 22 jul 14:19 900-windchimes.nl.vhost -> /etc/httpd/conf/sites-available/windchimes.nl.vhost [root@ sites-enabled]# cat /etc/httpd/conf/sites-available/windchimes.nl.vhost <Directory /var/www/windchimes.nl> AllowOverride None Require all denied </Directory> <VirtualHost *:80> DocumentRoot /var/www/windchimes.nl/web ServerName windchimes.nl ServerAlias *.windchimes.nl ServerAdmin [email protected] ErrorLog /var/log/ispconfig/httpd/windchimes.nl/error.log Alias /error/ "/var/www/windchimes.nl/web/error/" ErrorDocument 400 /error/400.html ErrorDocument 401 /error/401.html ErrorDocument 403 /error/403.html ErrorDocument 404 /error/404.html ErrorDocument 405 /error/405.html ErrorDocument 500 /error/500.html ErrorDocument 502 /error/502.html ErrorDocument 503 /error/503.html <Directory /var/www/windchimes.nl/web> # Clear PHP settings of this website <FilesMatch ".+\.ph(p[345]?|t|tml)$"> SetHandler None </FilesMatch> Options +SymlinksIfOwnerMatch AllowOverride All Require all granted # ssi enabled AddType text/html .shtml AddOutputFilter INCLUDES .shtml Options +Includes </Directory> <Directory /var/www/clients/client1/web4/web> # Clear PHP settings of this website <FilesMatch ".+\.ph(p[345]?|t|tml)$"> SetHandler None </FilesMatch> Options +SymlinksIfOwnerMatch AllowOverride All Require all granted # ssi enabled AddType text/html .shtml AddOutputFilter INCLUDES .shtml Options +Includes </Directory> <IfModule mod_ruby.c> <Directory /var/www/windchimes.nl/web> Options +ExecCGI </Directory> RubyRequire apache/ruby-run #RubySafeLevel 0 AddType text/html .rb AddType text/html .rbx <Files *.rb> SetHandler ruby-object RubyHandler Apache::RubyRun.instance </Files> <Files *.rbx> SetHandler ruby-object RubyHandler Apache::RubyRun.instance </Files> </IfModule> <IfModule mod_perl.c> PerlModule ModPerl::Registry PerlModule Apache2::Reload <Directory /var/www/windchimes.nl/web> PerlResponseHandler ModPerl::Registry PerlOptions +ParseHeaders Options +ExecCGI </Directory> <Directory /var/www/clients/client1/web4/web> PerlResponseHandler ModPerl::Registry PerlOptions +ParseHeaders Options +ExecCGI </Directory> <Files *.pl> SetHandler perl-script </Files> </IfModule> <IfModule mod_python.c> <Directory /var/www/windchimes.nl/web> <FilesMatch "\.py$"> SetHandler mod_python </FilesMatch> PythonHandler mod_python.publisher PythonDebug On </Directory> <Directory /var/www/clients/client1/web4/web> <FilesMatch "\.py$"> SetHandler mod_python </FilesMatch> PythonHandler mod_python.publisher PythonDebug On </Directory> </IfModule> # cgi enabled <Directory /var/www/clients/client1/web4/cgi-bin> AllowOverride All Require all granted </Directory> ScriptAlias /cgi-bin/ /var/www/clients/client1/web4/cgi-bin/ <FilesMatch "\.(cgi|pl)$"> SetHandler cgi-script </FilesMatch> # suexec enabled <IfModule mod_suexec.c> SuexecUserGroup web4 client1 </IfModule> # php as fast-cgi enabled # For config options see: http://httpd.apache.org/mod_fcgid/mod/mod_fcgid.html <IfModule mod_fcgid.c> FcgidIdleTimeout 300 FcgidProcessLifeTime 3600 # FcgidMaxProcesses 1000 FcgidMaxRequestsPerProcess 5000 FcgidMinProcessesPerClass 0 FcgidMaxProcessesPerClass 10 FcgidConnectTimeout 3 FcgidIOTimeout 600 FcgidBusyTimeout 3600 FcgidMaxRequestLen 1073741824 </IfModule> <Directory /var/www/windchimes.nl/web> <FilesMatch "\.php[345]?$"> SetHandler fcgid-script </FilesMatch> FCGIWrapper /var/www/php-fcgi-scripts/web4/.php-fcgi-starter .php FCGIWrapper /var/www/php-fcgi-scripts/web4/.php-fcgi-starter .php3 FCGIWrapper /var/www/php-fcgi-scripts/web4/.php-fcgi-starter .php4 FCGIWrapper /var/www/php-fcgi-scripts/web4/.php-fcgi-starter .php5 Options +ExecCGI AllowOverride All Require all granted </Directory> <Directory /var/www/clients/client1/web4/web> <FilesMatch "\.php[345]?$"> SetHandler fcgid-script </FilesMatch> FCGIWrapper /var/www/php-fcgi-scripts/web4/.php-fcgi-starter .php FCGIWrapper /var/www/php-fcgi-scripts/web4/.php-fcgi-starter .php3 FCGIWrapper /var/www/php-fcgi-scripts/web4/.php-fcgi-starter .php4 FCGIWrapper /var/www/php-fcgi-scripts/web4/.php-fcgi-starter .php5 Options +ExecCGI AllowOverride All Require all granted </Directory> # add support for apache mpm_itk <IfModule mpm_itk_module> AssignUserId web4 client1 </IfModule> <IfModule mod_dav_fs.c> # Do not execute PHP files in webdav directory <Directory /var/www/clients/client1/web4/webdav> <ifModule mod_security2.c> SecRuleRemoveById 960015 SecRuleRemoveById 960032 </ifModule> <FilesMatch "\.ph(p3?|tml)$"> SetHandler None </FilesMatch> </Directory> DavLockDB /var/www/clients/client1/web4/tmp/DavLock # DO NOT REMOVE THE COMMENTS! # IF YOU REMOVE THEM, WEBDAV WILL NOT WORK ANYMORE! # WEBDAV BEGIN # WEBDAV END </IfModule> </VirtualHost> <VirtualHost *:443> DocumentRoot /var/www/windchimes.nl/web ServerName windchimes.nl ServerAlias *.windchimes.nl ServerAdmin [email protected] <IfModule mod_http2.c> Protocols h2 http/1.1 </IfModule> <IfModule mod_brotli.c> AddOutputFilterByType BROTLI_COMPRESS text/html text/plain text/xml text/css text/javascript application/x-javascript application/javascript application/xml application/xml+rss application/atom+xml application/json application/x-font-ttf application/vnd.ms-fontobject image/x-icon </IfModule> ErrorLog /var/log/ispconfig/httpd/windchimes.nl/error.log Alias /error/ "/var/www/windchimes.nl/web/error/" ErrorDocument 400 /error/400.html ErrorDocument 401 /error/401.html ErrorDocument 403 /error/403.html ErrorDocument 404 /error/404.html ErrorDocument 405 /error/405.html ErrorDocument 500 /error/500.html ErrorDocument 502 /error/502.html ErrorDocument 503 /error/503.html <IfModule mod_ssl.c> SSLEngine on SSLProtocol All -SSLv2 -SSLv3 -TLSv1 -TLSv1.1 # SSLCipherSuite ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES256-SHA384:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA:ECDHE-RSA-AES256-SHA:DHE-RSA-AES128-SHA256:DHE-RSA-AES128-SHA:DHE-RSA-AES256-SHA256:DHE-RSA-AES256-SHA:ECDHE-ECDSA-DES-CBC3-SHA:ECDHE-RSA-DES-CBC3-SHA:EDH-RSA-DES-CBC3-SHA:AES128-GCM-SHA256:AES256-GCM-SHA384:AES128-SHA256:AES256-SHA256:AES128-SHA:AES256-SHA:DES-CBC3-SHA:!DSS SSLHonorCipherOrder on # <IfModule mod_headers.c> # Header always add Strict-Transport-Security "max-age=15768000" # </IfModule> SSLCertificateFile /var/www/clients/client1/web4/ssl/windchimes.nl-le.crt SSLCertificateKeyFile /var/www/clients/client1/web4/ssl/windchimes.nl-le.key SSLUseStapling on SSLStaplingResponderTimeout 5 SSLStaplingReturnResponderErrors off </IfModule> <Directory /var/www/windchimes.nl/web> # Clear PHP settings of this website <FilesMatch ".+\.ph(p[345]?|t|tml)$"> SetHandler None </FilesMatch> Options +SymlinksIfOwnerMatch AllowOverride All Require all granted # ssi enabled AddType text/html .shtml AddOutputFilter INCLUDES .shtml Options +Includes </Directory> <Directory /var/www/clients/client1/web4/web> # Clear PHP settings of this website <FilesMatch ".+\.ph(p[345]?|t|tml)$"> SetHandler None </FilesMatch> Options +SymlinksIfOwnerMatch AllowOverride All Require all granted # ssi enabled AddType text/html .shtml AddOutputFilter INCLUDES .shtml Options +Includes </Directory> <IfModule mod_ruby.c> <Directory /var/www/windchimes.nl/web> Options +ExecCGI </Directory> RubyRequire apache/ruby-run #RubySafeLevel 0 AddType text/html .rb AddType text/html .rbx <Files *.rb> SetHandler ruby-object RubyHandler Apache::RubyRun.instance </Files> <Files *.rbx> SetHandler ruby-object RubyHandler Apache::RubyRun.instance </Files> </IfModule> <IfModule mod_perl.c> PerlModule ModPerl::Registry PerlModule Apache2::Reload <Directory /var/www/windchimes.nl/web> PerlResponseHandler ModPerl::Registry PerlOptions +ParseHeaders Options +ExecCGI </Directory> <Directory /var/www/clients/client1/web4/web> PerlResponseHandler ModPerl::Registry PerlOptions +ParseHeaders Options +ExecCGI </Directory> <Files *.pl> SetHandler perl-script </Files> </IfModule> <IfModule mod_python.c> <Directory /var/www/windchimes.nl/web> <FilesMatch "\.py$"> SetHandler mod_python </FilesMatch> PythonHandler mod_python.publisher PythonDebug On </Directory> <Directory /var/www/clients/client1/web4/web> <FilesMatch "\.py$"> SetHandler mod_python </FilesMatch> PythonHandler mod_python.publisher PythonDebug On </Directory> </IfModule> # cgi enabled <Directory /var/www/clients/client1/web4/cgi-bin> AllowOverride All Require all granted </Directory> ScriptAlias /cgi-bin/ /var/www/clients/client1/web4/cgi-bin/ <FilesMatch "\.(cgi|pl)$"> SetHandler cgi-script </FilesMatch> # suexec enabled <IfModule mod_suexec.c> SuexecUserGroup web4 client1 </IfModule> # php as fast-cgi enabled # For config options see: http://httpd.apache.org/mod_fcgid/mod/mod_fcgid.html <IfModule mod_fcgid.c> FcgidIdleTimeout 300 FcgidProcessLifeTime 3600 # FcgidMaxProcesses 1000 FcgidMaxRequestsPerProcess 5000 FcgidMinProcessesPerClass 0 FcgidMaxProcessesPerClass 10 FcgidConnectTimeout 3 FcgidIOTimeout 600 FcgidBusyTimeout 3600 FcgidMaxRequestLen 1073741824 </IfModule> <Directory /var/www/windchimes.nl/web> <FilesMatch "\.php[345]?$"> SetHandler fcgid-script </FilesMatch> FCGIWrapper /var/www/php-fcgi-scripts/web4/.php-fcgi-starter .php FCGIWrapper /var/www/php-fcgi-scripts/web4/.php-fcgi-starter .php3 FCGIWrapper /var/www/php-fcgi-scripts/web4/.php-fcgi-starter .php4 FCGIWrapper /var/www/php-fcgi-scripts/web4/.php-fcgi-starter .php5 Options +ExecCGI AllowOverride All Require all granted </Directory> <Directory /var/www/clients/client1/web4/web> <FilesMatch "\.php[345]?$"> SetHandler fcgid-script </FilesMatch> FCGIWrapper /var/www/php-fcgi-scripts/web4/.php-fcgi-starter .php FCGIWrapper /var/www/php-fcgi-scripts/web4/.php-fcgi-starter .php3 FCGIWrapper /var/www/php-fcgi-scripts/web4/.php-fcgi-starter .php4 FCGIWrapper /var/www/php-fcgi-scripts/web4/.php-fcgi-starter .php5 Options +ExecCGI AllowOverride All Require all granted </Directory> # add support for apache mpm_itk <IfModule mpm_itk_module> AssignUserId web4 client1 </IfModule> <IfModule mod_dav_fs.c> # Do not execute PHP files in webdav directory <Directory /var/www/clients/client1/web4/webdav> <ifModule mod_security2.c> SecRuleRemoveById 960015 SecRuleRemoveById 960032 </ifModule> <FilesMatch "\.ph(p3?|tml)$"> SetHandler None </FilesMatch> </Directory> DavLockDB /var/www/clients/client1/web4/tmp/DavLock # DO NOT REMOVE THE COMMENTS! # IF YOU REMOVE THEM, WEBDAV WILL NOT WORK ANYMORE! # WEBDAV BEGIN # WEBDAV END </IfModule> </VirtualHost> <IfModule mod_ssl.c> SSLStaplingCache shmcb:/var/run/ocsp(128000) </IfModule>
Ok, so we have a valid SSL cert and also the vhost file is correct. Please run this command and post the result: apache2ctl -S
Try this command then: httpd -S And you might also try a: service httpd restart and check if SSL works then, maybe the apache web server just did not pick up the config correctly.
Code: /]# httpd -S AH00548: NameVirtualHost has no effect and will be removed in the next release /etc/httpd/conf/httpd.conf:358 VirtualHost configuration: 84.22.101.139:443 spinalonga.org (/etc/httpd/conf/sites-enabled/100-spinalonga.org.vhost:7) *:8081 jessie.tilaa.cloud (/etc/httpd/conf/sites-enabled/000-apps.vhost:9) *:8080 jessie.tilaa.cloud (/etc/httpd/conf/sites-enabled/000-ispconfig.vhost:9) *:80 is a NameVirtualHost default server hapidrum.nl (/etc/httpd/conf/sites-enabled/100-hapidrum.nl.vhost:7) port 80 namevhost hapidrum.nl (/etc/httpd/conf/sites-enabled/100-hapidrum.nl.vhost:7) alias www.hapidrum.nl port 80 namevhost nu-vliegen.nl (/etc/httpd/conf/sites-enabled/100-nu-vliegen.nl.vhost:7) alias www.nu-vliegen.nl port 80 namevhost spinalonga.gr (/etc/httpd/conf/sites-enabled/100-spinalonga.gr.vhost:7) alias www.spinalonga.gr port 80 namevhost zielenklanken.com (/etc/httpd/conf/sites-enabled/100-zielenklanken.com.vhost:7) alias www.zielenklanken.com port 80 namevhost 2dehands-boek.nl (/etc/httpd/conf/sites-enabled/900-2dehands-boek.nl.vhost:7) wild alias *.2dehands-boek.nl port 80 namevhost aapjeblogt.nl (/etc/httpd/conf/sites-enabled/900-aapjeblogt.nl.vhost:7) wild alias *.aapjeblogt.nl port 80 namevhost ditje-en-datje.nl (/etc/httpd/conf/sites-enabled/900-ditje-en-datje.nl.vhost:7) wild alias *.ditje-en-datje.nl port 80 namevhost dullaart-ict.nl (/etc/httpd/conf/sites-enabled/900-dullaart-ict.nl.vhost:7) wild alias *.dullaart-ict.nl port 80 namevhost geoden.nl (/etc/httpd/conf/sites-enabled/900-geoden.nl.vhost:7) wild alias *.geoden.nl port 80 namevhost oceandrums.nl (/etc/httpd/conf/sites-enabled/900-oceandrums.nl.vhost:7) wild alias *.oceandrums.nl port 80 namevhost sattvaklank.com (/etc/httpd/conf/sites-enabled/900-sattvaklank.com.vhost:7) wild alias *.sattvaklank.com port 80 namevhost sjamanendrum.nl (/etc/httpd/conf/sites-enabled/900-sjamanendrum.nl.vhost:7) wild alias *.sjamanendrum.nl port 80 namevhost tjebbedetrommer.nl (/etc/httpd/conf/sites-enabled/900-tjebbedetrommer.nl.vhost:7) wild alias *.tjebbedetrommer.nl port 80 namevhost windchimes.nl (/etc/httpd/conf/sites-enabled/900-windchimes.nl.vhost:7) wild alias *.windchimes.nl port 80 namevhost zenkodrum.nl (/etc/httpd/conf/sites-enabled/900-zenkodrum.nl.vhost:7) wild alias *.zenkodrum.nl port 80 namevhost zielenklanken.nl (/etc/httpd/conf/sites-enabled/900-zielenklanken.nl.vhost:7) wild alias *.zielenklanken.nl *:443 is a NameVirtualHost default server jessie.tilaa.cloud (/etc/httpd/conf.d/ssl.conf:40) port 443 namevhost jessie.tilaa.cloud (/etc/httpd/conf.d/ssl.conf:40) port 443 namevhost hapidrum.nl (/etc/httpd/conf/sites-enabled/100-hapidrum.nl.vhost:195) alias www.hapidrum.nl port 443 namevhost nu-vliegen.nl (/etc/httpd/conf/sites-enabled/100-nu-vliegen.nl.vhost:195) alias www.nu-vliegen.nl port 443 namevhost spinalonga.org (/etc/httpd/conf/sites-enabled/100-spinalonga.org.vhost:20) alias www.spinalonga.org port 443 namevhost 2dehands-boek.nl (/etc/httpd/conf/sites-enabled/900-2dehands-boek.nl.vhost:195) wild alias *.2dehands-boek.nl port 443 namevhost aapjeblogt.nl (/etc/httpd/conf/sites-enabled/900-aapjeblogt.nl.vhost:195) wild alias *.aapjeblogt.nl port 443 namevhost geoden.nl (/etc/httpd/conf/sites-enabled/900-geoden.nl.vhost:163) wild alias *.geoden.nl port 443 namevhost oceandrums.nl (/etc/httpd/conf/sites-enabled/900-oceandrums.nl.vhost:163) wild alias *.oceandrums.nl port 443 namevhost sjamanendrum.nl (/etc/httpd/conf/sites-enabled/900-sjamanendrum.nl.vhost:163) wild alias *.sjamanendrum.nl port 443 namevhost tjebbedetrommer.nl (/etc/httpd/conf/sites-enabled/900-tjebbedetrommer.nl.vhost:195) wild alias *.tjebbedetrommer.nl port 443 namevhost windchimes.nl (/etc/httpd/conf/sites-enabled/900-windchimes.nl.vhost:195) wild alias *.windchimes.nl port 443 namevhost zenkodrum.nl (/etc/httpd/conf/sites-enabled/900-zenkodrum.nl.vhost:163) wild alias *.zenkodrum.nl port 443 namevhost zielenklanken.nl (/etc/httpd/conf/sites-enabled/900-zielenklanken.nl.vhost:195) wild alias *.zielenklanken.nl ServerRoot: "/etc/httpd" Main DocumentRoot: "/var/www/html" Main ErrorLog: "/etc/httpd/logs/error_log" Mutex default: dir="/etc/httpd/run/" mechanism=default Mutex cache-socache: using_defaults Mutex fcgid-pipe: using_defaults Mutex authdigest-opaque: using_defaults Mutex watchdog-callback: using_defaults Mutex proxy-balancer-shm: using_defaults Mutex rewrite-map: using_defaults Mutex ssl-stapling-refresh: using_defaults Mutex authdigest-client: using_defaults Mutex lua-ivm-shm: using_defaults Mutex fcgid-proctbl: using_defaults Mutex ssl-stapling: using_defaults Mutex proxy: using_defaults Mutex authn-socache: using_defaults Mutex ssl-cache: using_defaults PidFile: "/etc/httpd/run/httpd.pid" Define: DUMP_VHOSTS Define: DUMP_RUN_CFG User: name="apache" id=48 Group: name="apache" id=48 restarting httpd didn't made any difference.
This has fixed, however I checked the web GUI of ISP-config. There was an "*" in the config. Don't know what has caused this. Maybe I have been editing the config-file manually I cannot remember. In previous occasions I've been editing the files under /etc/httpd/conf/sites-enabled/ so they would go directly to https also if a visitor choose http. But I cannot remember if I started that on this server already, I think not. But I noticed the file from spinalonga was wrong in more ways. Now I deleted the site entirely and I will add it again. The first sites I checked are now working again. Thanks again for your support.
There is no need to edit vhost files for that, the HTTP to HTTPS redirect function is on the redirect tab of the website in ISPconfig, just enable it there. Besides that, all manual changes in vhost files are not update safe. So if you would want to make a manual change for a function that does not exist in ISPConfig, better use the apache directives field on the options tab instead of editing the vhost file.
Ah that is great, in the past I ruined s vhost file and then I didn't knew howto fix it so I deleted that website and started allover. Thanks again!