Reinstall to Quemu KVM:
[ * ] Generating default self-signed SSL certificate…
req: No value provided for Subject Attribute emailAddress, skipped
but when after install I $HESTIA/bin/v-add-letsencrypt-host
panel got LE certificate and work good. May installer have mistake in procedure for get LE when installing
in the process of testing I got another incomprehensible situation:
root@cp1:~# cat /etc/networks
default 0.0.0.0
loopback 127.0.0.0
link-local 169.254.0.0
localnet 192.168.13.0
but in hestia in ip-addresses I see:
192.168.13.99 > 46.55.82.56
46.55.82.56 > 46.55.82.56
192.168.1.13.99
255.255.255.0
ens18
Shared
Nat IP Association 46.55.82.56
46.55.82.56
Netmask empty
Interface empty
Shared
HELLO/SMTP Banner cp1.site.com.ua
and nging reverse proxy is not starting
root@cp1:/var/log/nginx# cat error.log
2021/05/16 18:43:23 [emerg] 528#528: bind() to 46.55.82.56:443 failed (99: Cannot assign requested address)
2021/05/16 18:43:24 [emerg] 528#528: bind() to 46.55.82.56:443 failed (99: Cannot assign requested address)
2021/05/16 18:43:25 [emerg] 528#528: bind() to 46.55.82.56:443 failed (99: Cannot assign requested address)
2021/05/16 18:43:25 [emerg] 528#528: bind() to 46.55.82.56:443 failed (99: Cannot assign requested address)
2021/05/17 01:55:19 [emerg] 8186#8186: bind() to 46.55.82.56:443 failed (99: Cannot assign requested address)
2021/05/17 02:00:56 [emerg] 11124#11124: bind() to 46.55.82.56:443 failed (99: Cannot assign requested address)
root@cp1:/usr/local/hestia/data/ips# cat 192.168.13.99
OWNER='admin'
STATUS='shared'
NAME=''
U_SYS_USERS='admin'
U_WEB_DOMAINS='1'
INTERFACE='ens18'
NETMASK='255.255.255.0'
NAT='46.55.82.56'
HELO=''
TIME='18:38:43'
DATE='2021-05-16'
root@cp1:/usr/local/hestia/data/ips# cat 46.55.82.56
HELO='cp1.site.com.ua'
root@cp1:/etc/network# cat interfaces
source /etc/network/interfaces.d/*
# The loopback network interface
auto lo
iface lo inet loopback
# The primary network interface
allow-hotplug ens18
iface ens18 inet static
address 192.168.13.99/24
gateway 192.168.13.253
# dns-* options are implemented by the resolvconf package, if installed
dns-nameservers 192.168.13.253
dns-search site.com.ua
What I right need to do for starting nginx? I try remove second IP 46.55.82.56 from IP-addresses and ngins starting.
And small error for not found files in hestia install:
2021/05/16 19:24:05 [error] 3050#0: *143 open() "/usr/local/hestia/web/css/themes/custom/dark.css" failed (2: No such file or directory), client: 192.168.1.11,
and
2021/05/16 19:20:27 [error] 3050#0: *107 FastCGI sent in stderr: "PHP message: PHP Warning: Invalid argument supplied for foreach() in /usr/local/hestia/web/templates/pages/edit_server.html on line 336" while reading upstream, client: 192.168.1.11, server: _, request: "GET /edit/server/ HTTP/1.1",
Last error should be no issues
Also the css error should be fine
req: No value provided for Subject Attribute emailAddress, skipped
We generate a self signed ssl certificate as the system doesn’t work without it. As we don’t supply the email anymore as there was an privacy concern with it. How ever it should work fine.
so when installing hestia 1.4 generate a self signed ssl sertificate and after install need
$HESTIA/bin/v-add-letsencrypt-host
for change self signed sertificate to LE sertificate?
Also actual my question for starting nginx
We always generate an ssl certificate incase the LE certificate fails. So that is by design. Nginx have no clue yet. I know the system perfer to stick to the public ip instead of the internal ip. And that may cause the issues.
Nginx starting if I remove public IP address from IP-addresses.
But I don’t know if this is correct, so I’m waiting for your advice.
ok, but why I
$HESTIA/bin/v-add-letsencrypt-host
immediately after restart after install hestia and it works successfully.
Its not problem to run v-add-letsencrypt-host, only the reason for the installation error is not clear
If case of v-add-letsencrypt-host fails we there is backup. Also we want to prevent questions why I can’t login HestiaCP… It takes 5 seconds to do it. I don’t see an issue with it…
We are currently working on a fix to prevent my “public_ip.conf” being created
I try to
nano /etc/sysctl.conf
add line
net.ipv4.ip_nonlocal_bind = 1
end execute:
sysctl -p /etc/sysctl.conf
nginx restart success but all sites have error
ERR_TO_MANY_REDIRECTS
so this solution doesn’t work either
“Introduced the ability to choose which webmail client to use per-domain (Roundcube or Rainloop).”
but I see only roundcube and default. What need for Rainloop?
v-add-sys-rainloop in command line
Did some investigation and found an bug how we handled when the public_ip was different then the local ip due to a nat for example.
This will also make sure public ip won’t be availble when created for web settings
Thank you. What I need to do? I need reinstall vps with hestia (I can do it) or do anything else?
It needs to be done on a special way will post an quick tutorial in a few minutes
On a clean server:
#Make sure that git is installed
apt-get install git
# Clone my private respiratory
git clone https://github.com/jaapmarcus/hestiacp.git
cd hestiacp
git checkout fix/helo-behind-nat
cd src
# Note min 4 gb of memor
./hst_autocompile.sh --all --noinstall --keepbuild '~localsrc'
cd ../install
# Replace Debian with Ubuntu on if it is an Ubuntu server
bash hst-install-debain.sh --with-debs /tmp/hestiacp-src/deb/
Install should be done and system will reboot
Then check “/usr/local/hestia/data/ips” folder should only contain your local ip adress
Then check the contents of that file:
HELO=“hostname.com”
Check also /etc/exim4/mailhelo.conf
It should contain: Public ip:hostname.com
in /usr/local/hestia/data/ips only file 192.168.13.99
cat 192.168.13.99
OWNER='admin'
STATUS='shared'
NAME=''
U_SYS_USERS='admin'
U_WEB_DOMAINS='1'
INTERFACE='ens18'
NETMASK='255.255.255.0'
NAT='46.55.82.56'
HELO='cp1.site.com.ua'
TIME='10:36:57'
DATE='2021-05-19'
nginx restarted, all working, big thank you
In last git two error exists in nginx-error.log
2021/05/19 10:53:40 [error] 3099#0: *59 FastCGI sent in stderr: “PHP message: PHP Warning: Invalid argument supplied for foreach() in /usr/local/hestia/web/templates/pages/edit_server.html on line 340” while reading upstream, client: 192.168.1.11, server: _, request: “POST /edit/server/ HTTP/1.1”, upstream: “fastcgi://unix:/var/run/hestia-php.sock:”, host: “cp1.site.com.ua:8083”, referrer: “https://cp1.site.com.ua:8083/edit/server/”
and
2021/05/19 10:52:38 [error] 3099#0: *59 open() “/usr/local/hestia/web/css/themes/custom/dark.css” failed (2: No such file or directory), client: 192.168.1.11, server: _, request: “GET /css/themes/custom/dark.css?378611908 HTTP/1.1”, host: “cp1.site.com.ua:8083”, referrer: “https://cp1.site.com.ua:8083/edit/server/”