Default Apache page for non-http ISPConfig sites + wrong domain/cert assocation

Discussion in 'Installation/Configuration' started by HitoDev, Apr 8, 2021.

  1. HitoDev

    HitoDev Member

    Hello

    I am having problems with ISPconfig, LE and targeted websites
    1) http and https show to different websites
    -- Non https e.g. http://website.net : show default Apache page (outside ISPconfig), while it should show the same webiste (ISPconfig website)
    -- https show right websites, https://website.net : OK (ISPconfig website)


    2) Some enabled LE websites causes Domain/LE cert mismatch
    Site 1 : LE disabled
    Site 2 : LE enabled
    Site 3 : LE enbled
    ---------------------------
    All domaines/certs are OK

    Site 1 : LE disabled ---> enabled
    Site 2 : LE enabled
    Site 3 : LE enabled
    ---------------------------
    Domain/certs match issues :
    Site 2 and aliases are now linked to cert of Site 1, then https and aliases on Site 2 are down !

    Setup
    I have followed this Perfect server guide: https://www.howtoforge.com/perfect-server-debian-10-buster-apache-bind-dovecot-ispconfig-3-1/
    Then updated ISPC to ISPConfig 3.2.3

    /etc/apache2/sites-enabled# ls
    Code:
    000-apps.vhost   000-default.conf  000-ispconfig.conf  000-ispconfig.vhost  100-site1.fr.vhost  100-site2.vhost  100-site3.fr.vhost  999-acme.conf
    On another ISCP server (with LE working perfectly) I note there is a difference (no 000-default.conf):
    Code:
    000-apps.vhost
    100-site.fr.vhost
    100-owncloud.site.com.vhost
    100-site.com.vhost
    000-ispconfig.conf
    100-dev.site.com.vhost
    100-site.sub.net.vhost
    900-lsf.site.fr.vhost
    000-ispconfig.vhost
    default-ssl.conf
    Then need I disable 000-default.conf that refers to the default Apache page ?

    Test output
    wget -q -O htf-common-issues.php "http://gitplace.net/pixcept/ispconfig-tools/raw/stable/htf-common-issues.php" && php -q htf-common-issues.php

    Code:
    ##### SERVER #####
    IP-address (as per hostname): ***.***.***.***
    [WARN] could not determine server's ip address by ifconfig
    [INFO] OS version is Debian GNU/Linux 10 (buster)
     
    [INFO] uptime:  12:12:50 up 8 days, 16:20,  2 users,  load average: 1.61, 1.98, 2.08
     
    [INFO] memory:
                  total        used        free      shared  buff/cache   available
    Mem:           62Gi       4.8Gi       6.2Gi       550Mi        51Gi        56Gi
    Swap:         2.0Gi       641Mi       1.4Gi
     
    [INFO] systemd failed services status:
    0 loaded units listed. Pass --all to see loaded but inactive units, too.
    To show all installed unit files use 'systemctl list-unit-files'.
    
    [INFO] ISPConfig is installed.
    
    ##### ISPCONFIG #####
    ISPConfig version is 3.2.3
    
    
    ##### VERSION CHECK #####
    
    [INFO] php (cli) version is 7.3.27-9+0~20210227.82+debian10~1.gbpa4a3d6
    
    ##### PORT CHECK #####
    
    [WARN] Port 22 (SSH server) seems NOT to be listening
    
    ##### MAIL SERVER CHECK #####
    
    
    ##### RUNNING SERVER PROCESSES #####
    
    [INFO] I found the following web server(s):
        Apache 2 (PID 11009)
    [INFO] I found the following mail server(s):
        Postfix (PID 1645)
    [INFO] I found the following pop3 server(s):
        Dovecot (PID 1198)
    [INFO] I found the following imap server(s):
        Dovecot (PID 1198)
    [INFO] I found the following ftp server(s):
        PureFTP (PID 11837)
    
    ##### LISTENING PORTS #####
    (only        ()
    Local        (Address)
    [anywhere]:465        (1645/master)
    ***.***.***.***:53        (32101/named)
    [localhost]:53        (32101/named)
    [anywhere]:21        (11837/pure-ftpd)
    [localhost]:953        (32101/named)
    [anywhere]:1337        (17925/sshd)
    [anywhere]:25        (1645/master)
    [anywhere]:993        (1198/dovecot)
    [anywhere]:995        (1198/dovecot)
    [localhost]:10023        (1495/postgrey)
    [localhost]:10024        (1778/amavisd-new)
    [localhost]:10025        (1645/master)
    [localhost]:10026        (1778/amavisd-new)
    [localhost]:10027        (1645/master)
    [anywhere]:587        (1645/master)
    [localhost]:11211        (1177/memcached)
    [anywhere]:110        (1198/dovecot)
    [anywhere]:143        (1198/dovecot)
    *:*:*:*::*:8080        (11009/apache2)
    *:*:*:*::*:80        (11009/apache2)
    *:*:*:*::*:8081        (11009/apache2)
    *:*:*:*::*:465        (1645/master)
    *:*:*:*::*:53        (32101/named)
    *:*:*:*::*:21        (11837/pure-ftpd)
    *:*:*:*::*:953        (32101/named)
    [localhost]337        (17925/sshd)
    *:*:*:*::*:25        (1645/master)
    *:*:*:*::*:443        (11009/apache2)
    *:*:*:*::*:993        (1198/dovecot)
    *:*:*:*::*:995        (1198/dovecot)
    *:*:*:*::*:10023        (1495/postgrey)
    *:*:*:*::*:10024        (1778/amavisd-new)
    *:*:*:*::*:3306        (1382/mysqld)
    *:*:*:*::*:10026        (1778/amavisd-new)
    *:*:*:*::*:587        (1645/master)
    [localhost]10        (1198/dovecot)
    [localhost]43        (1198/dovecot)
    
    
    
    
    ##### IPTABLES #####
    Chain INPUT (policy ACCEPT)
    target     prot opt source               destination    
    f2b-pure-ftpd  tcp  --  [anywhere]/0            [anywhere]/0            multiport dports 21
    f2b-dovecot  tcp  --  [anywhere]/0            [anywhere]/0            multiport dports 110,995,143,993,587,465,4190
    f2b-postfix-sasl  tcp  --  [anywhere]/0            [anywhere]/0            multiport dports 25
    f2b-sshd   tcp  --  [anywhere]/0            [anywhere]/0            multiport dports 22
    ACCEPT     tcp  --  [anywhere]/0            [anywhere]/0            tcp dpt:21
    ACCEPT     tcp  --  [anywhere]/0            [anywhere]/0            tcp dpt:20
    ACCEPT     all  --  ***.***.***.***          [anywhere]/0      
    
    Chain FORWARD (policy ACCEPT)
    target     prot opt source               destination    
    
    Chain OUTPUT (policy ACCEPT)
    target     prot opt source               destination    
    
    Chain f2b-sshd (1 references)
    target     prot opt source               destination    
    RETURN     all  --  [anywhere]/0            [anywhere]/0      
    
    Chain f2b-postfix-sasl (1 references)
    target     prot opt source               destination    
    REJECT     all  --  ***.***.***.***        [anywhere]/0            reject-with icmp-port-unreachable
    RETURN     all  --  [anywhere]/0            [anywhere]/0      
    
    Chain f2b-dovecot (1 references)
    target     prot opt source               destination    
    REJECT     all  --  ***.***.***.***          [anywhere]/0            reject-with icmp-port-unreachable
    RETURN     all  --  [anywhere]/0            [anywhere]/0      
    
    Chain f2b-pure-ftpd (1 references)
    target     prot opt source               destination    
    RETURN     all  --  [anywhere]/0            [anywhere]/0  
    
    
    
    
    
     
    Last edited: Apr 8, 2021
  2. Th0m

    Th0m ISPConfig Developer Staff Member ISPConfig Developer

  3. HitoDev

    HitoDev Member

  4. Th0m

    Th0m ISPConfig Developer Staff Member ISPConfig Developer

    No, please read it fully. Your problem is covered in the FAQs.
     

Share This Page