ISPConfig Miscellaneous

Can’t create folder or change permissions as root

Za kreiranje baza iz komandne linije za ispconfig, interesantno: remoting_client/cli

SSL on ISPConfig itself

I would recommend the following procedure: Create a website in ISPConfig that has the hostname that the ISPConfig panel uses and activate LE for this site. Then symlink the cert, bundle and key files to the /usr/local/ispconfig/interface/ssl/ files.

[SOLVED] Create SSL certificate for ISPConfig’s web interface with support for auto renewal | Howtoforge - Linux Howtos and Tutorials

Securing ISPConfig 3 Control Panel (Port 8080) With Let’s Encrypt Free SSL | Page 17 | Howtoforge - Linux Howtos and Tutorials Securing ISPConfig 3.1 With a Free Let’s Encrypt SSL Certificate Hostibox/ISPConfig-Let-s-Encrypt-Securing: Secure ISPConfig and its services with Let’s Encrypt certificate

 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13
14
15
16
17

cd /usr/local/ispconfig/interface/ssl/

# make a backup
# .csr file is certificate request and we don't need it anymore
#
mv ispserver.crt ispserver.crt-$(date +"%y%m%d%H%M%S").bak
mv ispserver.key ispserver.key-$(date +"%y%m%d%H%M%S").bak
mv ispserver.csr ispserver.csr-$(date +"%y%m%d%H%M%S").bak

# symlinks
D=savioko.com
ln -sf /etc/letsencrypt/live/$D/fullchain.pem ispserver.crt
ln -sf /etc/letsencrypt/live/$D/privkey.pem ispserver.key

# must reboot

Greylisting in ISPConfig

For ispconfig 3.1, you just install postgrey before you install ispconfig. If you installed it afterwards, then you have to run an update and choose “reconfigure services = yes” during update.

Renew all Certificates in ISPConfig

Even in ISPConfig, you can easily renew all certificates that need renewal with

sudo certbot renew

Even better - just test if it will work, but do not do anything actually.

sudo certbot renew --dry-run

Speedup FTP by opening ports in firewall

How to set PassivePortRange and PassiveIP in pure-ftpd on Debian and Ubuntu Linux Enable Passive FTP in ISPConfig – ServerOK

echo “40110 40210” > /etc/pure-ftpd/conf/PassivePortRange

U Web UI na ISPconfig dodaj: 40110:40210

https://www.lautenbacher.io/en/lamp-en/plesk-with-firewall-ftp-entering-passive-mode-is-slow-and-takes-a-long-time/

Setup a firewall with ISPConfig – schaal @it UG