Connection on port 8080 times out on Ubuntu 24.04LTS

Discussion in 'Installation/Configuration' started by dfumagalli, Oct 28, 2024.

Tags:
  1. dfumagalli

    dfumagalli Member

    Hello,
    I have installed ISPConfig on a brand new ARM server with Ubuntu 24.04LTS.
    No error, all green checks and...
    ... the admin does not appear. It times out.

    If I put in the PhpMyAdmin or RoundCube URLs, both of them work, but only in legacy http protocol.

    Smelling something is wrong with the certificates, I typed:

    Code:
    ispconfig_update.sh --force
    It goes smoothly until it shows:
    Code:
    Create new ISPConfig SSL certificate (yes,no) [no]: yes
    
    Checking / creating certificate for lx-srv-www-mi1-01.[redacted].com
    Using certificate path /root/.acme.sh/lx-srv-www-mi1-01.[redacted].com
    sh: 1: cannot open /dev/tcp/127.0.0.1/80: No such file
    Using apache for certificate validation
    acme.sh is installed, overriding certificate path to use /root/.acme.sh/lx-srv-www-mi1-01.[redacted].com
    
    I have no idea what's wrong. I checked the hosts file and it's set as in the instructions.

    I made sure to ufw disable and have no other firewall of any kind.

    I also ran a curl 127.0.0.1 and it works. It returns the default Ubuntu Apache page.

    To make this even weirder, I tried to see if the certificates exist:

    Code:
     ls /root/.acme.sh/lx-srv-www-mi1-01.[redacted].com/
    backup/
    ca.cer
    fullchain.cer
    lx-srv-www-mi1-01.[redacted].com.cer
    lx-srv-www-mi1-01.[redacted].com.conf
    lx-srv-www-mi1-01.[redacted].com.csr
    lx-srv-www-mi1-01.[redacted].com.csr.conf
    lx-srv-www-mi1-01.[redacted].com.key
     
    Last edited: Oct 28, 2024
  2. ahrasis

    ahrasis Well-Known Member HowtoForge Supporter

    Maybe nothing is wrong? Unless you aborted the process, try to get into your ISPConfig panel via its domain name or IP.
     
  3. till

    till Super Moderator Staff Member ISPConfig Developer

    It's very unlikely that it's a problem with the certificates, as you would not get a timeout if the certificate is wrong. Even with a wrong certificate, you can log in. All you would get is a warning from your browser if the certificate is wrong, and this warning could be skipped with one click. So, your issue is likely not SSL cert-related. Most likely, you have a firewall or router in front of the server that blocks access to ports 8080 and 443.

    Please try to use correct titles for threads, autoinstall has not failed on your server according to what you reported. I changed the title now to connections on port 8080 times out.
     
    ahrasis likes this.
  4. till

    till Super Moderator Staff Member ISPConfig Developer

    ahrasis likes this.
  5. dfumagalli

    dfumagalli Member

    Thank you. After some lengthy research, I found out that I had an Oracle Cloud ancient firewall running.
    The test script has a limitation: in my case it says:
    Code:
    ##### SERVER #####
    IP-address (as per hostname): ***.***.***.***
    [WARN] could not determine server's ip address by ifconfig
    [INFO] OS version is Ubuntu 24.04.1 LTS
    
    Apparently, Oracle VPSes are behind some DNAT or something, so they only report loopback and a local IP address network card. The utility could fall back to checking /etc/hosts, that indeed has got the correct public IP.

    Also, I am concerned about the following:
    Code:
    [WARN] I found no "smtps" entry in your postfix master.cf
    [INFO] this is not critical, but if you want to offer SSL for smtp (not TLS) con
    nections you have to enable this.
    What am I meant to do to fix this? I had all my neat notes when we had good old manual setup. With this automated approach I feel like that if I touch anything it can break.
     

Share This Page