Diferència entre revisions de la pàgina «ASIX/M08/UF1/P41/3»

De Lordwektabyte Wiki
Salta a la navegació Salta a la cerca
m (Guillem ha mogut M08/UF1/P41/3 a ASIX/M08/UF1/P41/3 sense deixar una redirecció: Crear subnivell ASIX)
 
(Hi ha 8 revisions intermèdies del mateix usuari que no es mostren)
Línia 1: Línia 1:
https://www.howtoforge.com/tutorial/perfect-server-centos-7-apache-mysql-php-pureftpd-postfix-dovecot-and-ispconfig/2/
+
{{titol|Instal·lació i posada en marxa de ISPConfig}}
==Instal·lació ISPConfig==
+
L'avantatge de ISPConfig és que els paquets instal·lats com a requeriments (e.g. Postfix, Dovecot, etc.) els configura ell mateix; de manera que nosaltres no hem de preocupar-nos-en, en aquest sentit.
 +
 
 +
==Descàrrega==
 +
Baixarem la versió ''stable'' del programari mitjançant <code>wget</code>
 +
<source>
 +
cd /tmp
 +
wget -O ispconfig.tar.gz https://git.ispconfig.org/ispconfig/ispconfig3/repository/archive.tar.gz?ref=stable-3.1
 +
tar xfz ispconfig.tar.gz
 +
</source>
 +
 
 +
==Instal·lació==
 +
Ens desplaçarem al directori <code>install</code> del paquet descarregat i executarem l'''script'' PHP d'instal·lació:
 +
<source>
 +
cd /tmp/ispconfig3*/install/
 +
php -q install.php
 +
</source>
 +
 
 +
Començarà l'execució de l'''script'' i ens demanarà alguns paràmetres bàsics de configuració: nom de host, usuari ''root'' de SQL i la password, dades per a generar certificats SSL, etc. A mida que va avançant, veurem que es van configurant els serveis que hem instal·lat en la secció anterior de Requeriments.
 +
<source>
 +
 
 +
 
 +
--------------------------------------------------------------------------------
 +
_____ ___________  _____              __ _        ____
 +
|_  _/  ___| ___ \ /  __ \            / _(_)      /__  \
 +
  | | \ `--.| |_/ / | /  \/ ___  _ __ | |_ _  __ _    _/ /
 +
  | |  `--. \  __/  | |    / _ \| '_ \|  _| |/ _` |  |_ |
 +
_| |_/\__/ / |    | \__/\ (_) | | | | | | | (_| | ___\ \
 +
\___/\____/\_|      \____/\___/|_| |_|_| |_|\__, | \____/
 +
                                              __/ |
 +
                                            |___/  
 +
--------------------------------------------------------------------------------
 +
 
 +
 
 +
>> Initial configuration 
 +
 
 +
Operating System: CentOS 7.5
 +
 
 +
    Following will be a few questions for primary configuration so be careful.
 +
    Default values are in [brackets] and can be accepted with <ENTER>.
 +
    Tap in "quit" (without the quotes) to stop the installer.
 +
 
 +
 
 +
Select language (en,de) [en]: en
 +
 
 +
Installation mode (standard,expert) [standard]:
 +
 
 +
Full qualified hostname (FQDN) of the server, eg server1.domain.tld  [ispconfig.local]:
 +
 
 +
MySQL server hostname [localhost]:
 +
 
 +
MySQL server port [3306]:
 +
 
 +
MySQL root username [root]:
 +
 
 +
MySQL root password []: toor
 +
 
 +
MySQL database to create [dbispconfig]:
 +
 
 +
MySQL charset [utf8]:
 +
 
 +
Configuring Postgrey
 +
Configuring Postfix
 +
Generating a 4096 bit RSA private key
 +
...++
 +
.................................................................................................................................................................................................++
 +
writing new private key to 'smtpd.key'
 +
-----
 +
You are about to be asked to enter information that will be incorporated
 +
into your certificate request.
 +
What you are about to enter is what is called a Distinguished Name or a DN.
 +
There are quite a few fields but you can leave some blank
 +
For some fields there will be a default value,
 +
If you enter '.', the field will be left blank.
 +
-----
 +
Country Name (2 letter code) [XX]:ES
 +
State or Province Name (full name) []:Barcelona
 +
Locality Name (eg, city) [Default City]:Tona
 +
Organization Name (eg, company) [Default Company Ltd]:GSB
 +
Organizational Unit Name (eg, section) []:
 +
Common Name (eg, your name or your server's hostname) []:ispconfig.local
 +
Email Address []:guillem_solaboeck@iescarlesvallbona.cat
 +
Configuring Mailman
 +
Configuring Dovecot
 +
Configuring Spamassassin
 +
Configuring Amavisd
 +
[INFO] service Getmail not detected
 +
Configuring Jailkit
 +
Configuring Pureftpd
 +
Configuring BIND
 +
Configuring Apache
 +
Configuring vlogger
 +
[INFO] service OpenVZ not detected
 +
Configuring Bastille Firewall
 +
[INFO] service Metronome XMPP Server not detected
 +
Configuring Fail2ban
 +
Configuring Apps vhost
 +
Installing ISPConfig
 +
ISPConfig Port [8080]:
 +
 
 +
Admin password [b45ac812]: ispconfig
 +
 
 +
Re-enter admin password []: ispconfig
 +
 
 +
Do you want a secure (SSL) connection to the ISPConfig web interface (y,n) [y]: y
 +
 
 +
Generating RSA private key, 4096 bit long modulus
 +
.....................................................................................++
 +
..............................................................................++
 +
e is 65537 (0x10001)
 +
You are about to be asked to enter information that will be incorporated
 +
into your certificate request.
 +
What you are about to enter is what is called a Distinguished Name or a DN.
 +
There are quite a few fields but you can leave some blank
 +
For some fields there will be a default value,
 +
If you enter '.', the field will be left blank.
 +
-----
 +
Country Name (2 letter code) [XX]:ES
 +
State or Province Name (full name) []:Barcelona
 +
Locality Name (eg, city) [Default City]:Tona
 +
Organization Name (eg, company) [Default Company Ltd]:
 +
Organizational Unit Name (eg, section) []:GSB
 +
Common Name (eg, your name or your server's hostname) []:ispconfig.local
 +
Email Address []:guillem_solaboeck@iescarlesvallbona.cat
 +
 
 +
Please enter the following 'extra' attributes
 +
to be sent with your certificate request
 +
A challenge password []:
 +
An optional company name []:
 +
writing RSA key
 +
 
 +
 
 +
Configuring DBServer
 +
Installing ISPConfig crontab
 +
Installing ISPConfig crontab
 +
no crontab for root
 +
Detect IP addresses
 +
Restarting services ...
 +
Job for clamd@amavisd.service failed because a timeout was exceeded. See "systemctl status clamd@amavisd.service" and "journalctl -xe" for details.
 +
Job for dovecot.service failed because a timeout was exceeded. See "systemctl status dovecot.service" and "journalctl -xe" for details.
 +
Job for httpd.service failed because a fatal signal was delivered to the control process. See "systemctl status httpd.service" and "journalctl -xe" for details.
 +
Installation completed.
 +
</source>
 +
 
 +
:*'''Problema:''' veiem com les últimes línies han reportat errors al reiniciar els serveis de '''''clamd@amavisd.service''''', '''''dovecot.service''''' i '''''httpd.conf'''''.
 +
 
 +
:*'''Solució:''' curiosament, si reiniciem aquests serveis manualment amb <code>systemctl restart [servei]</code>, es reinicien i no donen cap problema:
 +
<source>
 +
[root@ispconfig ~]# systemctl restart clamd@amavisd.service
 +
[root@ispconfig ~]# systemctl restart dovecot.service
 +
[root@ispconfig ~]# systemctl restart httpd.service
 +
</source>
 +
 
 +
==Primer accés==
 +
Si visitem la pàgina https://192.168.56.100:8080 i saltem l'avís de seguretat degut al certificat autosignat, veurem la pantalla de login a l'entorn de l'ISPConfig:
 +
{{imatge|M08ISPCONFIG12.png}}
 +
-----
 +
 
 +
 
 +
L'accés a la interfície de control s'explica a la següent secció: Prova de funcionament

Revisió de 11:23, 15 abr 2020

L'avantatge de ISPConfig és que els paquets instal·lats com a requeriments (e.g. Postfix, Dovecot, etc.) els configura ell mateix; de manera que nosaltres no hem de preocupar-nos-en, en aquest sentit.

Descàrrega

Baixarem la versió stable del programari mitjançant wget 

cd /tmp 
wget -O ispconfig.tar.gz https://git.ispconfig.org/ispconfig/ispconfig3/repository/archive.tar.gz?ref=stable-3.1
tar xfz ispconfig.tar.gz

Instal·lació

Ens desplaçarem al directori install del paquet descarregat i executarem l'script PHP d'instal·lació: 

cd /tmp/ispconfig3*/install/
php -q install.php

Començarà l'execució de l'script i ens demanarà alguns paràmetres bàsics de configuració: nom de host, usuari root de SQL i la password, dades per a generar certificats SSL, etc. A mida que va avançant, veurem que es van configurant els serveis que hem instal·lat en la secció anterior de Requeriments. 



--------------------------------------------------------------------------------
 _____ ___________   _____              __ _         ____
|_   _/  ___| ___ \ /  __ \            / _(_)       /__  \
  | | \ `--.| |_/ / | /  \/ ___  _ __ | |_ _  __ _    _/ /
  | |  `--. \  __/  | |    / _ \| '_ \|  _| |/ _` |  |_ |
 _| |_/\__/ / |     | \__/\ (_) | | | | | | | (_| | ___\ \
 \___/\____/\_|      \____/\___/|_| |_|_| |_|\__, | \____/
                                              __/ |
                                             |___/ 
--------------------------------------------------------------------------------


>> Initial configuration  

Operating System: CentOS 7.5

    Following will be a few questions for primary configuration so be careful.
    Default values are in [brackets] and can be accepted with <ENTER>.
    Tap in "quit" (without the quotes) to stop the installer.


Select language (en,de) [en]: en

Installation mode (standard,expert) [standard]: 

Full qualified hostname (FQDN) of the server, eg server1.domain.tld  [ispconfig.local]: 

MySQL server hostname [localhost]: 

MySQL server port [3306]: 

MySQL root username [root]: 

MySQL root password []: toor

MySQL database to create [dbispconfig]: 

MySQL charset [utf8]: 

Configuring Postgrey
Configuring Postfix
Generating a 4096 bit RSA private key
...++
.................................................................................................................................................................................................++
writing new private key to 'smtpd.key'
-----
You are about to be asked to enter information that will be incorporated
into your certificate request.
What you are about to enter is what is called a Distinguished Name or a DN.
There are quite a few fields but you can leave some blank
For some fields there will be a default value,
If you enter '.', the field will be left blank.
-----
Country Name (2 letter code) [XX]:ES
State or Province Name (full name) []:Barcelona
Locality Name (eg, city) [Default City]:Tona
Organization Name (eg, company) [Default Company Ltd]:GSB 
Organizational Unit Name (eg, section) []:
Common Name (eg, your name or your server's hostname) []:ispconfig.local
Email Address []:guillem_solaboeck@iescarlesvallbona.cat
Configuring Mailman
Configuring Dovecot
Configuring Spamassassin
Configuring Amavisd
[INFO] service Getmail not detected
Configuring Jailkit
Configuring Pureftpd
Configuring BIND
Configuring Apache
Configuring vlogger
[INFO] service OpenVZ not detected
Configuring Bastille Firewall
[INFO] service Metronome XMPP Server not detected
Configuring Fail2ban
Configuring Apps vhost
Installing ISPConfig
ISPConfig Port [8080]: 

Admin password [b45ac812]: ispconfig

Re-enter admin password []: ispconfig

Do you want a secure (SSL) connection to the ISPConfig web interface (y,n) [y]: y

Generating RSA private key, 4096 bit long modulus
.....................................................................................++
..............................................................................++
e is 65537 (0x10001)
You are about to be asked to enter information that will be incorporated
into your certificate request.
What you are about to enter is what is called a Distinguished Name or a DN.
There are quite a few fields but you can leave some blank
For some fields there will be a default value,
If you enter '.', the field will be left blank.
-----
Country Name (2 letter code) [XX]:ES
State or Province Name (full name) []:Barcelona
Locality Name (eg, city) [Default City]:Tona
Organization Name (eg, company) [Default Company Ltd]:
Organizational Unit Name (eg, section) []:GSB
Common Name (eg, your name or your server's hostname) []:ispconfig.local
Email Address []:guillem_solaboeck@iescarlesvallbona.cat

Please enter the following 'extra' attributes
to be sent with your certificate request
A challenge password []:
An optional company name []:
writing RSA key


Configuring DBServer
Installing ISPConfig crontab
Installing ISPConfig crontab
no crontab for root
Detect IP addresses
Restarting services ...
Job for clamd@amavisd.service failed because a timeout was exceeded. See "systemctl status clamd@amavisd.service" and "journalctl -xe" for details.
Job for dovecot.service failed because a timeout was exceeded. See "systemctl status dovecot.service" and "journalctl -xe" for details.
Job for httpd.service failed because a fatal signal was delivered to the control process. See "systemctl status httpd.service" and "journalctl -xe" for details.
Installation completed.
  • Problema: veiem com les últimes línies han reportat errors al reiniciar els serveis de clamd@amavisd.service, dovecot.service i httpd.conf.
  • Solució: curiosament, si reiniciem aquests serveis manualment amb systemctl restart [servei], es reinicien i no donen cap problema:
[root@ispconfig ~]# systemctl restart clamd@amavisd.service
[root@ispconfig ~]# systemctl restart dovecot.service
[root@ispconfig ~]# systemctl restart httpd.service

Primer accés

Si visitem la pàgina https://192.168.56.100:8080 i saltem l'avís de seguretat degut al certificat autosignat, veurem la pantalla de login a l'entorn de l'ISPConfig:

M08ISPCONFIG12.png



L'accés a la interfície de control s'explica a la següent secció: Prova de funcionament

Obtingut de «http://wiki.lordwektabyte.cat/index.php?title=ASIX/M08/UF1/P41/3&oldid=4994»