New installation on dedicated server

Hello
Sorry but i'm french and my english is'nt very good
I hope you understand my questions !

I have actually a ispconfig 3.2 on my server with debian 9. I have few problems with updates and i want to change my server.

I think take a new dedicated server and want to install on :
- proxmox for create 3 containers
- 1 container for mail server and webmail on debian 11
- 1 container for web server, dns on debian 11
- 1 container for cloud solution

If i have understand, i can install ispconfig on my 2 containers like this tutorial ? https://www.howtoforge.com/tutorial/ispconfig-multiserver-setup-debian-ubuntu/

it's a good idea?
i have my current server who was infected on my websites and my ip was blacklist on spamhaus but like my webmail is on the same ip, i was blocked during 3 days for sent mails... Since i have verified et cleaned my websites. If i have 2 separated servers for web and mail i will continue to send emails without problems?
On my actually server i have only 3 domains on production, i think install new server and migrate manualy data since my current server

 

i've never used proxmox myself, but i know others on here do use it to host ispconfig vps's, so i don't see that being any problem.

if you webserver and mailserver have their own public ip's, one being blacklisted shouldn't affect the other. although if your mailserver's ip is blacklisted, you're going to have problems sending mail no matter what.

 

For my installation what configuration do you recommend?
NVME or HDD ? i want to make a mails server, a web server and a cloud.

Intel Xeon D1520 - 4c/8t - 2,2 GHz/2,6 GHz 32 Go DDR4 ECC
2 x 480 Go SSD SATA Soft RAID / 4 x 2 To HDD SATA Soft RAID

Intel Xeon D1540 - 8c/16t - 2 GHz/2,6 GHz 32 Go DDR4 ECC
2 x 450 Go SSD NVMe Soft RAID / 4 x 2 To HDD SATA Soft RAID

Intel Xeon E3 1245v5 - 4c/8t - 3,5 GHz/3,9 GHz 32 Go DDR4 ECC
2 x 480 Go SSD SATA Soft RAID / 2 x 2 To HDD SATA Soft RAID

Intel Xeon D1540 - 8c/16t - 2 GHz/2,6 GHz 64 Go DDR4 ECC
2 x 450 Go SSD NVMe Soft RAID / 4 x 2 To HDD SATA Soft RAID

Intel Xeon E3-1230v6 - 4c/8t - 3,5 GHz/3,9 GHz 16 Go DDR4 ECC
2 x 450 Go SSD NVMe Soft RAID / 2 x 2 To HDD SATA Soft RAID

 

Up to you, NVME and SSD is for speed. I personally am using SSD and SAS. HDD should be the last choice.

Intel Xeon CPU L5640 6c/12t x2 R710 which only supports DDR3 ECC (max 188gb). Proxmox in 1TB SSD. All vm's and their backups on SAS RAID 900gb x 2.

 

Hello i have configured 2 VM on my new proxmox server

I want to install ispconfig panel, dns server and web server on my first vm.
Install mail server and webmail on my second vm.

before start install can you help me for choices?

Configure the hostname on first VM:

127.0.0.1 localhost.localdomain localhost
# This line should be changed on every node to the correct servername:
127.0.1.1 panel.mydomain.com panel
# These lines are the same on every node:
123.123.123.10 panel.mydomain.com panel
123.123.123.11 mail.mydomain.com mail

and for second VM

127.0.0.1 localhost.localdomain localhost
# This line should be changed on every node to the correct servername:
127.0.1.1 mail.mydomain.com mail
# These lines are the same on every node:
123.123.123.10 panel.mydomain.com panel
123.123.123.11 mail.mydomain.com mail

123.123.123.10 and 123.123.123.11 will be changed by my additionnal IP OVH.
on my ovh administration i will changed ip reverse of my additionnal IP to panel.mydomain.com and mail.mydomain.com

on master ispconfig server:

after verify if hostname is good i will install packages Ispconfig but i'm not sure, so can you help me for choices ?

wget -O - https://get.ispconfig.org | sh -s -- --no-mail --no-dns --use-php=system ? is default for panel host only

Setting up the remote MySQL users for our slave servers

CREATE USER 'root'@'123.123.123.11' IDENTIFIED BY 'myrootpassword';
GRANT ALL PRIVILEGES ON * . * TO 'root'@'123.123.123.11' IDENTIFIED BY 'myrootpassword' WITH GRANT OPTION MAX_QUERIES_PER_HOUR 0 MAX_CONNECTIONS_PER_HOUR 0 MAX_UPDATES_PER_HOUR 0 MAX_USER_CONNECTIONS 0 ;

for firewall who are ports i must open ?
TCP : 20,21,22,53,80,443,8080,8081
UDP : 53

open port for mysql
ufw allow from 123.123.123.11 to any port 3306 proto tcp

on mail server and webmail:

after verify if hostname is good i will install packages Ispconfig but i'm not sure, so can you help me for choices ?
wget -O - https://get.ispconfig.org | sh -s -- --no-dns --no-roundcube --no-mailman --use-php=system --use-unbound --interactive (is default for primary mx server)

for firewall who are ports i must open ?
TCP : 22,25,80,110,143,443,465,587,993,995

open port for mysql
ufw allow from 123.123.123.10 to any port 3306 proto tcp
ufw allow from 123.123.123.10 to any port 12345 proto tcp ? use when i have only one mail server?

 

Have you alredy found this document: https://www.howtoforge.com/tutorial/ispconfig-multiserver-setup-debian-ubuntu/

 

Thanks you, i have check this documentation, but like i explain, i have just 2 VM installed. I want to install on my first VM packages for panel, web, dns and on my second vm, install packages for mail server and webmail.
On documentation it's explain to install with 7 hosts and 2 mail server et 2 dns server. I want make no errors choices for installation.
I'm French and my english is not very good

 

So far that I know we do not have to open any ports if we are using ISPConfig Auto Installer script because that is covered, except for your ftp passive ports.

 

you can install everything on to a single server (albeit, you'd want at least 2 dns servers). or spread any services out over 1 or more servers...

just follow the instructions for an automated multi-server install and change the install script options to include whatever services you want on each server.. eg for those instructions, for the mailserver, follow page 3 combining it with page 7, skip page 4.
for the ispconfig / web / dns server, combine pages 1, 2 and 5. eg where pages 1 and 2 say to use --no-dns and page 5 installs dns, drop the --no-dns option...

 

I have understand that i must install packages for each function on the same VM but i'm not sure for choices.

For Panel : wget -O - https://get.ispconfig.org | sh -s -- --no-mail --no-dns --use-php=system
For Web : wget -O - https://get.ispconfig.org | sh -s -- --no-mail --no-dns --interactive
For DNS: wget -O - https://get.ispconfig.org | sh -s -- --no-web --no-mail --use-php=system --interactive

For install Panel + Web + DNS on the same VM :
wget -O - https://get.ispconfig.org | sh -s -- --no-mail --use-php=system --interactive
or
wget -O - https://get.ispconfig.org | sh -s -- --no-mail


For Mail server : wget -O - https://get.ispconfig.org | sh -s -- --no-dns --no-roundcube --no-mailman --use-php=system --use-unbound --interactive
For Webmail : wget -O - https://get.ispconfig.org | sh -s -- --no-mail --no-dns --roundcube --use-php=system --interactive

For install Mail + Webmail on the same VM :
wget -O - https://get.ispconfig.org | sh -s -- --no-dns --roundcube --use-php=system --use-unbound --interactive
or
wget -O - https://get.ispconfig.org | sh -s -- --no-dns --roundcube

 

I think you should use --interactive only for other than master server with ISPConfig panel (if you do not use that param, ISPConfig AI would automatically setup without any interaction until it is fully completed).

But I would personally prefer to install roundcube with the panel server since it is a web app and your web server is joined there.

 

You think it's better to install Panel, web, DNS and webmail on my first VM and only mail server on my second VM?

 

Yes, that would be my preferred setup as it has some advantages of not installing web server on mail server, opening only port(s) related to mail server, future plan for mirroring only mail server if you have more resources, etc, but that is up to you to decide based on its pros and contras.

 

Ok i understand

if i install my first VM like panel.mydomain.com what is the command line to use ? i want to use rondcube too for webmail
This VM was used for panel, Web server, DNS and webmail
wget -O - https://get.ispconfig.org | sh -s -- --no-mail ?

For my second VM who i name mx1.mydomain.com what is the commande line to install? this VM was used only for mail server
wget -O - https://get.ispconfig.org | sh -s -- --no-dns --no-roundcube --no-mailman --use-php=system --use-unbound --interactive ?

 

hi sorry but can you say me if my choices are good for installation ?

 

For the mail server use default as per the tutorial but for the panel+web+dns+round cube try (untested):

Code:

wget -O - https://get.ispconfig.org | sh -s -- --no-mail --roundcube --use-php=system

 

Help me please
i have installed my ispconfig on 2 VM

It's ok for you?
I have create my webiste and DNS zone



I have change my DNS ZONE on OVH for my domain name but it's down, my DNS server not respond
How see if Bind it's ok ? if i look on status of ispconfig, it's ok

 

When i run command "dig @ip mydomain.com" on my new server -> no error but when i run this on another linux i have status:REFUSED