Can not reach login screen

Discussion in 'Installation/Configuration' started by brianetilley, Dec 27, 2005.

  1. brianetilley

    brianetilley New Member

    I am still having problems reaching the login screen. ISPConfig is up and running. I have two static IP's, eth0 is 68.149.224.197 and eth1 is 68.149.224.198. eth0 is configured for www.hostesp1.com and eth1 is configured for mail.hostesp1.com. I can ping both IP's from the server, but can only reach eth1 from any other machine (occasionlly) - on or off the network. These are the results of trying to connect to the ispconfig login screen;

    https://www.hostesp1.com:81...........Server not found
    http://www.hostesp1.com:81...........Server not found
    https://www.hostesp1.com...........Server not found
    http://www.hostesp1.com...........Server not found
    https://68.149.224.197:81/.........Unable to connect
    http://68.149.224.197:81/.........Unable to connect
    https://68.149.224.197/............Unable to connect
    https://68.149.224.197/............The connection was reset
    https://68.149.224.198:81/........Unable to connect
    http://68.149.224.198:81/..........Unable to connect
    https://68.149.224.198/.............Unable to connect
    http://68.149.224.198/.............The connection was reset

    Intermittently (????) I can reach eth1 68.149.224.198 and sometimes I will get the Apache page, and sometimes I get an Apache error page about using https instead of http.

    This is the output of 'dig any hostesp1.com'

    ; <<>> DiG 9.2.4 <<>> any hostesp1.com
    ;; global options: printcmd
    ;; Got answer:
    ;; ->>HEADER<<- opcode: QUERY, status: SERVFAIL, id: 50934
    ;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0

    ;; QUESTION SECTION:
    ;hostesp1.com. IN ANY

    ;; Query time: 5 msec
    ;; SERVER: 68.149.224.197#53(68.149.224.197)
    ;; WHEN: Tue Dec 27 09:39:05 2005
    ;; MSG SIZE rcvd: 30

    This is the output of 'netstat -tap'

    Active Internet connections (servers and established)
    Proto Recv-Q Send-Q Local Address Foreign Address State
    PID/Program name
    tcp 0 0 *:imaps *.* LISTEN 9
    62/inetd
    tcp 0 0 *:pop3s *.* LISTEN 9
    62/inetd
    tcp 0 0 *:936 *.* LISTEN 1
    178/rpc.ststd
    tcp 0 0 *:mysql *.* LISTEN 1
    018/mysqld
    tcp 0 0 *:pop3 *.* LISTEN 9
    62/inetd
    tcp 0 0 *:imap2 *.* LISTEN 9
    62/inetd
    tcp 0 0 *:sunrpc *.* LISTEN 7
    71/portmap
    tcp 0 0 *:www *.* LISTEN 1
    249/apache2
    tcp 0 0 *:81 *.* LISTEN 1
    216/ispconfig_http
    tcp 0 0 *:auth *.* LISTEN 9
    62/inetd
    tcp 0 0 *:ftp *.* LISTEN 1
    393/proftpd: (acce
    tcp 0 0 mail.hostesp1.co:domain *.* LISTEN 1
    378/named
    tcp 0 0 www.hostesp1.com:domain *.* LISTEN 1
    378/named
    tcp 0 0 localhost.locald:domain *.* LISTEN 1
    378/named
    tcp 0 0 *:ssh *.* LISTEN 1
    173/sshd
    tcp 0 0 *:smtp *.* LISTEN 1
    0199/master
    tcp 0 0 localhost.localdoma:953 *.* LISTEN 1
    378/named
    tcp 0 0 *:https *.* LISTEN 1
    249/apache2


    This is the output of 'iptables -L'

    Chain INPUT (policy ACCEPT)
    target prot opt source destination

    Chain FORWARD (policy ACCEPT)
    target prot opt source destination

    Chain OUTPUT (policy ACCEPT)
    target prot opt source destination

    Any suggestions GREATLY appreciated as I am at a loss...especially why I get different results when I do not change anything???? Thank you very much

    Brian
     
  2. falko

    falko Super Moderator Howtoforge Staff

  3. brianetilley

    brianetilley New Member

    Yes...I edited the files you mentioned. I have no problems with connecting out to other machines, it is just incoming traffic that seems to be blocked.

    Brian
     
  4. brianetilley

    brianetilley New Member

    After rechecking the configuration files I can ping 68.149.224.198 Http://68.149.224.198 which defaults to http://68.149.224.198/apache2-default/

    Also, the output of 'dig any hostesp1.com' is not the same when I run it on my SuSE machine. This is the output from the server;

    ; <<>> DiG 9.2.4 <<>> any hostesp1.com
    ;; global options: printcmd
    ;; Got answer:
    ;; ->>HEADER<<- opcode: QUERY, status: SERVFAIL, id: 50934
    ;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0

    ;; QUESTION SECTION:
    ;hostesp1.com. IN ANY

    ;; Query time: 5 msec
    ;; SERVER: 68.149.224.197#53(68.149.224.197)
    ;; WHEN: Tue Dec 27 09:39:05 2005
    ;; MSG SIZE rcvd: 30

    ----------------------------------------------------------
    Output of 'dig any hostesp1.com' (from SuSe machine)

    ; <<>> DiG 9.3.1 <<>> any hostesp1.com
    ;; global options: printcmd
    ;; Got answer:
    ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 17395
    ;; flags: qr rd ra; QUERY: 1, ANSWER: 3, AUTHORITY: 0, ADDITIONAL: 0

    ;; QUESTION SECTION:
    ;hostesp1.com. IN ANY

    ;; ANSWER SECTION:
    hostesp1.com. 153118 IN NS ns1.hostesp1.com
    hostesp1.com 153118 IN NS ns2.hostesp1.com
    hostesp1.com 153118 IN NS ns3.hostesp1.com

    ;; Query time: 12 msec
    ;; SERVER: 64.59.184.13#53(64.59.184.13)
    ;; WHEN: Tue Dec 27 22:07:27 2005
    ;; MSG SIZE rcvd: 84

    The SuSE version lists the nameservers I set up with GoDaddy, and the 'SERVER' IP is a nameserver used by my ISP. I hope this helps.

    Brian
     
  5. falko

    falko Super Moderator Howtoforge Staff

    This is what I get:

    so the output of your server seems to be wrong. What's in /etc/resolv.conf on the server?
     
  6. brianetilley

    brianetilley New Member

    The output of /etc/resolv.conf

    search ed.shawcable.net
    nameserver 68.59.184.13
    nameserver 68.59.184.15
    nameserver ns1.hostesp1.com
    nameserver ns2.hostesp1.com
    nameserver ns3.hostesp1.com
    nameserver ns4.hostesp1.com
    nameserver ns5.hostesp1.com
    nameserver ns6.hostesp1.com
     
  7. falko

    falko Super Moderator Howtoforge Staff

    68.59.184.13 and 68.59.184.15 don't seem to work as name servers because this is the result I got when I did a dig on google.com:

    It would be good if you changed your /etc/resolv.conf to something like this:

    Code:
    search ed.shawcable.net
    nameserver 145.253.2.75
    nameserver 193.174.32.18
     
  8. brianetilley

    brianetilley New Member

    I made the changes you suggested. Do I not need the ns1 - ns6 nameservers for my own DNS server? Thank you very much for your help...I really appreciate it!

    Brian
     
  9. falko

    falko Super Moderator Howtoforge Staff

    No, you don't need them. You can put in any name server that is known to work. These name servers will then be queried by your system, and they pass on the queries to the authoritative name servers.
    So if your name servers are authoritative for a domain, they will be queried for that domain, even if you have different name servers in /etc/resolv.conf.
     
  10. brianetilley

    brianetilley New Member

    It seems that I am back at square one. I can not reach the ispconfig interface. The only way I can access the server is by using the IP address configured for mail.hostesp1.com. http://68.149.224.198 which takes me to the Apache default page. Any suggestions?

    Brian
     
  11. till

    till Super Moderator Staff Member ISPConfig Developer

    And what did you get if you put this in the browser:

    http://68.149.224.198:81/

    or if you chose ssl encryption:

    https://68.149.224.198:81/

    Please try to use firefox as browser. Firefox has better error messages
    in case the SSL certificates are broken.
     
  12. brianetilley

    brianetilley New Member

    The following results using Firefox.

    http://68.149.224.198:81/

    Bad Request
    Your browser sent a request that this server could not understand.

    Reason: You're speaking plain HTTP to an SSL-enabled server port.
    Instead use the HTTPS scheme to access this URL, please.

    Hint: https://hostesp1.com:81/

    Apache/1.3.33 Server at hostesp1.com Port 81

    --------------------------------------------------------------------

    https://68.149.224.198:81/

    Alert window with the following error message;

    Could not establish an encrypted connection because certificate presented by 68.149.224.198 is invalid or corrupted. Error Code: -8182
     
  13. falko

    falko Super Moderator Howtoforge Staff

  14. brianetilley

    brianetilley New Member

    I recreated the ssl and restarted the ispconfig server. The system says that ISPConfig system is up and running. When I try to log into https://68.149.224.198:81/ I get;

    Unable to connect

    Firefox can't establish a connection to the server at 68.149.224.198:81.

    * The site could be temporarily unavailable or too busy. Try again in a few moments.

    * If you are unable to load any pages, check your computer's network
    connection.

    * If your computer or network is protected by a firewall or proxy, make sure that Firefox is permitted to access the Web.

    When I try https://www.hostesp1.com:81/ I get;

    Server not found
    Firefox can't find the server at www.hostesp1.com.

    * Check the address for typing errors such as
    ww.example.com instead of
    www.example.com

    * If you are unable to load any pages, check your computer's network
    connection.

    * If your computer or network is protected by a firewall or proxy, make sure that Firefox is permitted to access the Web.
     
  15. falko

    falko Super Moderator Howtoforge Staff

    From all the posts you made I get the impression that your server is really messed up. I suggest you try to re-install it and follow the appropriate tutorial on HowtoForge to the letter (except where you have to provide custom information like host name, IP address, etc.).
     
  16. brianetilley

    brianetilley New Member

    I will try the whole process again...thank you very much for you time and effort. I will not give up until it is running correctly.

    Brian
     

Share This Page