Greetings everyone, I have installed ISPConfig 3.2.11p2 on two Ubuntu Linux 22.04.4 servers using the autoinstaller script in a multiserver configuration: Code: wget -O - https://get.ispconfig.org | sh -s -- --debug --channel=stable --lang=de --use-ftp-ports=xxxxx-xxxxx --use-php=5.6,7.0,7.1,7.2,7.3,7.4,8.0,8.1,8.2,8.3 --ssh-port=xxxxx --ssh-permit-root=yes --ssh-harden --interactive --unattended-upgrades=autoclean,reboot I logged in on the master server (ns1.example.com) as admin and set the slave server (ns2.example.com) to be a mirror of the master (ns1.example.com). I set the Loglevel to debug. Then i created a client in the Client menu and logged in as the client and tried to create a dns-zone for my website example.com. If i click on the menu DNS->Zones->Add new DNS Zone with wizzard, i can add a DNS Zone but the Server field gets empty after the changes are saved to disk. It looks like this: If i klick on a DNS Zone->Zone Settings edit the settings and klick on save, i get the following error message: Code: The selected server is not allowed for this account. If i login as Admin go to Clients->Edit Client->select first Client->Limits->DNS Servers i can only select the master as the DNS Server and the Secondary DNS Server. But id like to set the slave ns2.example.com as the Secondary DNS Server... So im trying to figure out what is causing this behaviour... The output of Code: wget -q -O htf-common-issues.php "http://gitplace.net/pixcept/ispconfig-tools/raw/stable/htf-common-issues.php" && php -q htf-common-issues.php is: Code: ##### SERVER ##### IP-address (as per hostname): ***.***.***.*** [WARN] could not determine server's ip address by ifconfig [INFO] OS version is Ubuntu 22.04.4 LTS [INFO] uptime: 15:06:31 up 7:44, 1 user, load average: 0.09, 0.16, 0.14 [INFO] memory: total used free shared buff/cache available Mem: 23Gi 2.6Gi 19Gi 117Mi 1.5Gi 20Gi Swap: 0B 0B 0B [INFO] systemd failed services status: UNIT LOAD ACTIVE SUB DESCRIPTION 0 loaded units listed. [INFO] ISPConfig is installed. ##### ISPCONFIG ##### ISPConfig version is 3.2.11p2 ##### VERSION CHECK ##### [INFO] php (cli) version is 8.1.28 [INFO] php-cgi (used for cgi php in default vhost!) is version 8.1.28 ##### PORT CHECK ##### [WARN] Port 22 (SSH server) seems NOT to be listening ##### MAIL SERVER CHECK ##### ##### RUNNING SERVER PROCESSES ##### [INFO] I found the following web server(s): Apache 2 (PID 118266) [INFO] I found the following mail server(s): Postfix (PID 17106) [INFO] I found the following pop3 server(s): Dovecot (PID 110428) [INFO] I found the following imap server(s): Dovecot (PID 110428) [INFO] I found the following ftp server(s): PureFTP (PID 1093) ##### LISTENING PORTS ##### too many lines for the post... ##### IPTABLES ##### Chain INPUT (policy DROP) target prot opt source destination f2b-postfix-sasl tcp -- [anywhere]/0 [anywhere]/0 multiport dports 25 f2b-sshd tcp -- [anywhere]/0 [anywhere]/0 multiport dports 22 ufw-before-logging-input all -- [anywhere]/0 [anywhere]/0 ufw-before-input all -- [anywhere]/0 [anywhere]/0 ufw-after-input all -- [anywhere]/0 [anywhere]/0 ufw-after-logging-input all -- [anywhere]/0 [anywhere]/0 ufw-reject-input all -- [anywhere]/0 [anywhere]/0 ufw-track-input all -- [anywhere]/0 [anywhere]/0 Chain FORWARD (policy DROP) target prot opt source destination ufw-before-logging-forward all -- [anywhere]/0 [anywhere]/0 ufw-before-forward all -- [anywhere]/0 [anywhere]/0 ufw-after-forward all -- [anywhere]/0 [anywhere]/0 ufw-after-logging-forward all -- [anywhere]/0 [anywhere]/0 ufw-reject-forward all -- [anywhere]/0 [anywhere]/0 ufw-track-forward all -- [anywhere]/0 [anywhere]/0 Chain OUTPUT (policy ACCEPT) target prot opt source destination ufw-before-logging-output all -- [anywhere]/0 [anywhere]/0 ufw-before-output all -- [anywhere]/0 [anywhere]/0 ufw-after-output all -- [anywhere]/0 [anywhere]/0 ufw-after-logging-output all -- [anywhere]/0 [anywhere]/0 ufw-reject-output all -- [anywhere]/0 [anywhere]/0 ufw-track-output all -- [anywhere]/0 [anywhere]/0 Chain f2b-postfix-sasl (1 references) target prot opt source destination RETURN all -- [anywhere]/0 [anywhere]/0 Chain f2b-sshd (1 references) target prot opt source destination REJECT all -- ***.***.***.*** [anywhere]/0 reject-with icmp-port-unreachable RETURN all -- [anywhere]/0 [anywhere]/0 Chain ufw-after-forward (1 references) target prot opt source destination Chain ufw-after-input (1 references) target prot opt source destination ufw-skip-to-policy-input udp -- [anywhere]/0 [anywhere]/0 udp dpt:137 ufw-skip-to-policy-input udp -- [anywhere]/0 [anywhere]/0 udp dpt:138 ufw-skip-to-policy-input tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:139 ufw-skip-to-policy-input tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:445 ufw-skip-to-policy-input udp -- [anywhere]/0 [anywhere]/0 udp dpt:67 ufw-skip-to-policy-input udp -- [anywhere]/0 [anywhere]/0 udp dpt:68 ufw-skip-to-policy-input all -- [anywhere]/0 [anywhere]/0 ADDRTYPE match dst-type BROADCAST Chain ufw-after-logging-forward (1 references) target prot opt source destination LOG all -- [anywhere]/0 [anywhere]/0 limit: avg 3/min burst 10 LOG flags 0 level 4 prefix "[UFW BLOCK] " Chain ufw-after-logging-input (1 references) target prot opt source destination LOG all -- [anywhere]/0 [anywhere]/0 limit: avg 3/min burst 10 LOG flags 0 level 4 prefix "[UFW BLOCK] " Chain ufw-after-logging-output (1 references) target prot opt source destination Chain ufw-after-output (1 references) target prot opt source destination Chain ufw-before-forward (1 references) target prot opt source destination ACCEPT all -- [anywhere]/0 [anywhere]/0 ctstate RELATED,ESTABLISHED ACCEPT icmp -- [anywhere]/0 [anywhere]/0 icmptype 3 ACCEPT icmp -- [anywhere]/0 [anywhere]/0 icmptype 11 ACCEPT icmp -- [anywhere]/0 [anywhere]/0 icmptype 12 ACCEPT icmp -- [anywhere]/0 [anywhere]/0 icmptype 8 ufw-user-forward all -- [anywhere]/0 [anywhere]/0 Chain ufw-before-input (1 references) target prot opt source destination ACCEPT all -- [anywhere]/0 [anywhere]/0 ACCEPT all -- [anywhere]/0 [anywhere]/0 ctstate RELATED,ESTABLISHED ufw-logging-deny all -- [anywhere]/0 [anywhere]/0 ctstate INVALID DROP all -- [anywhere]/0 [anywhere]/0 ctstate INVALID ACCEPT icmp -- [anywhere]/0 [anywhere]/0 icmptype 3 ACCEPT icmp -- [anywhere]/0 [anywhere]/0 icmptype 11 ACCEPT icmp -- [anywhere]/0 [anywhere]/0 icmptype 12 ACCEPT icmp -- [anywhere]/0 [anywhere]/0 icmptype 8 ACCEPT udp -- [anywhere]/0 [anywhere]/0 udp spt:67 dpt:68 ufw-not-local all -- [anywhere]/0 [anywhere]/0 ACCEPT udp -- [anywhere]/0 ***.***.***.*** udp dpt:5353 ACCEPT udp -- [anywhere]/0 ***.***.***.*** udp dpt:1900 ufw-user-input all -- [anywhere]/0 [anywhere]/0 Chain ufw-before-logging-forward (1 references) target prot opt source destination Chain ufw-before-logging-input (1 references) target prot opt source destination Chain ufw-before-logging-output (1 references) target prot opt source destination Chain ufw-before-output (1 references) target prot opt source destination ACCEPT all -- [anywhere]/0 [anywhere]/0 ACCEPT all -- [anywhere]/0 [anywhere]/0 ctstate RELATED,ESTABLISHED ufw-user-output all -- [anywhere]/0 [anywhere]/0 Chain ufw-logging-allow (0 references) target prot opt source destination LOG all -- [anywhere]/0 [anywhere]/0 limit: avg 3/min burst 10 LOG flags 0 level 4 prefix "[UFW ALLOW] " Chain ufw-logging-deny (2 references) target prot opt source destination RETURN all -- [anywhere]/0 [anywhere]/0 ctstate INVALID limit: avg 3/min burst 10 LOG all -- [anywhere]/0 [anywhere]/0 limit: avg 3/min burst 10 LOG flags 0 level 4 prefix "[UFW BLOCK] " Chain ufw-not-local (1 references) target prot opt source destination RETURN all -- [anywhere]/0 [anywhere]/0 ADDRTYPE match dst-type LOCAL RETURN all -- [anywhere]/0 [anywhere]/0 ADDRTYPE match dst-type MULTICAST RETURN all -- [anywhere]/0 [anywhere]/0 ADDRTYPE match dst-type BROADCAST ufw-logging-deny all -- [anywhere]/0 [anywhere]/0 limit: avg 3/min burst 10 DROP all -- [anywhere]/0 [anywhere]/0 Chain ufw-reject-forward (1 references) target prot opt source destination Chain ufw-reject-input (1 references) target prot opt source destination Chain ufw-reject-output (1 references) target prot opt source destination Chain ufw-skip-to-policy-forward (0 references) target prot opt source destination DROP all -- [anywhere]/0 [anywhere]/0 Chain ufw-skip-to-policy-input (7 references) target prot opt source destination DROP all -- [anywhere]/0 [anywhere]/0 Chain ufw-skip-to-policy-output (0 references) target prot opt source destination ACCEPT all -- [anywhere]/0 [anywhere]/0 Chain ufw-track-forward (1 references) target prot opt source destination Chain ufw-track-input (1 references) target prot opt source destination Chain ufw-track-output (1 references) target prot opt source destination ACCEPT tcp -- [anywhere]/0 [anywhere]/0 ctstate NEW ACCEPT udp -- [anywhere]/0 [anywhere]/0 ctstate NEW Chain ufw-user-forward (1 references) target prot opt source destination Chain ufw-user-input (1 references) target prot opt source destination ACCEPT tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:21 ACCEPT tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:22 ACCEPT tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:25 ACCEPT tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:53 ACCEPT tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:80 ACCEPT tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:110 ACCEPT tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:143 ACCEPT tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:443 ACCEPT tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:465 ACCEPT tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:587 ACCEPT tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:873 ACCEPT tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:880 ACCEPT tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:993 ACCEPT tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:995 ACCEPT tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:2812 ACCEPT tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:3306 ACCEPT tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:4949 ACCEPT tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:8069 ACCEPT tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:8080 ACCEPT tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:8081 ACCEPT tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:8443 ACCEPT tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:10000 ACCEPT tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:20000 ACCEPT tcp -- [anywhere]/0 [anywhere]/0 multiport dports 40110:40210 ACCEPT tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:49152 ACCEPT tcp -- [anywhere]/0 [anywhere]/0 tcp dpt:63001 ACCEPT udp -- [anywhere]/0 [anywhere]/0 udp dpt:53 Chain ufw-user-limit (0 references) target prot opt source destination LOG all -- [anywhere]/0 [anywhere]/0 limit: avg 3/min burst 5 LOG flags 0 level 4 prefix "[UFW LIMIT BLOCK] " REJECT all -- [anywhere]/0 [anywhere]/0 reject-with icmp-port-unreachable Chain ufw-user-limit-accept (0 references) target prot opt source destination ACCEPT all -- [anywhere]/0 [anywhere]/0 Chain ufw-user-logging-forward (0 references) target prot opt source destination Chain ufw-user-logging-input (0 references) target prot opt source destination Chain ufw-user-logging-output (0 references) target prot opt source destination Chain ufw-user-output (1 references) target prot opt source destination ##### LET'S ENCRYPT ##### acme.sh is installed in /root/.acme.sh/acme.sh The output of php -v is: Code: PHP 8.1.28 (cli) (built: Apr 22 2024 09:45:11) (NTS) Copyright (c) The PHP Group Zend Engine v4.1.28, Copyright (c) Zend Technologies with Zend OPcache v8.1.28, Copyright (c), by Zend Technologies If i run Code: ispconfig_update.sh --force and reconfigure all services, the script fails to start the apache2 service at the end: Code: Restarting services ... Job for apache2.service failed because the control process exited with error code. See "systemctl status apache2.service" and "journalctl -xeu apache2.service" for details. Update finished. If i remove the Code: Listen 443 in Line 19 in /etc/apache2/ports.conf i can start the apache2 service using Code: systemctl start apache2 . Im really greatefull for any input and suggestions on this matter. EDIT: If i login as Admin and goto Clients->Edit Client->Limits->Klick on Save i get the following error message: Code: The server you are trying to remove from this client is used as a DNS server. Be sure that this server is not used by this client before you remove it.
The second server is an automatic mirror because yous elected it to be a mirror, so you can not select it for any DNS records directly as it always contains the same zones as the master. If you want to add slave zones manually, you must disable server mirroring.
Im OK if the mirror has the same dns-records as the master, but this is not the issue here. The Issue is that i cant edit a zones settings and save the zone if im logged in as the client, even if i dont change anny settings but just klick save i get the error message: Code: The selected server is not allowed for this account. And if im logged in as the admin and go to Clients->Edit Client->select first client->Limits->Save->Error Message: Code: The server you are trying to remove from this client is used as a DNS server. Be sure that this server is not used by this client before you remove it. But i did not try to remove the server from the client in the limits settings...
Are you logged in as client or admin? The server field is there if you are logged in as admin. If you are logged in as client, then the admin must have set a DNS server for the client in his limits. Delete that zone, go to client limits and take care the primary DNS server of your system is set there as permitted server for the client, then add the zone again.
If i remove the Zone i can Edit the Clients Limits again and set the Fields: DNS servers: to ns1.example.com and Default Secondary DNS Server: also to ns1.example.com. Now it looks like this: But then if i save the limits and loginto the Client to Create the DNS-Zone ISPConfig maps all of my IPs to the slave ns2.example.com: So i tried removing the IPs and re-adding them and mapping them to ns1.example.com but when the changes are saved to disk the server-field in the IPs menu changes to nothing and the IPs are mapped to ns2.example.com. Any Idea what could be the cause of this behaviour?
The screenshot shows only the IP suggest function; this is not an IP mapping. Please post a screenshot of the IP mapping you created and what exactly you entered there.
I have first checked the values of the ips in the database and there the server_id changed for the IPs in the IP suggest function as it shows in phpmyadmin in table server_ip: So the server_ip_map seems empty... I didnt know that i was supposed to enter something there...
Maybe you added a server, removed it, and then added ns2, as the ID gets incremented by MySQL, so if you add a system, remove it, add a new one, the new one will have ID 3. Have you checked in the server table that the ID of ns2 is really 3? Which services do these servers run? IP mapping is a function for web servers only, not DNS. It is used to map the IP address between master and mirror in vhost files in case you use IP-based hosting, which is normally not done anymore today as most people will use name-based hosting. Do you run web services and hosting in mirrored mode on these systems as well?
