Plesk Automation :: PPA Install On Infrastructure Running Parallels Cloud Server - IPTables / Firewall
Apr 9, 2014
I'm in the process of installing PPA on infrastructure running Parallels Cloud Server. Each container has 2 interfaces, one public facing and a private interface for inter-server communication.
No problems installing PPA 11.5 (specifying IP's on commandline) or adding service nodes however, the firewall rules the documentation speaks of are nowhere to be seen? i.e.:
Important: After the installation, PPA creates the special firewall chain PPA-SN-Rules-INPUT used for communication with service nodes. Do not change it, otherwise, you will not be able to add service nodes to PPA.Click to expand...
Has this been dropped from PPA 11.5 ? (I recall seeing the firewall settings in 11.1) There is also no sign of the ppa.firewall tool that is also mentioned.
The only rule I see inserted is for Postgres on the management node, and 2 for pleskd on all of the nodes (open to world!).
View 2 Replies
ADVERTISEMENT
Jun 22, 2009
We have been trying all day to resolve a very annoying issue with iptables, more info below;
[url]
After following the above guide, PIM became not available but clients were able to start their firewalls without any issues.
I made some changes and PIM and clients firewalls were fine but certain features in PIM are not functioning, as seen below;
----
Cannot create Containers on the "linux.x86_64" platform as no suitable Hardware Nodes are available.
Possible reasons
All compatible Hardware Nodes are offline.
No OS templates found.
Possible solutions
Try again and select another platform or Hardware Node.
Install at least one OS template for this platform.
----
There is 100's of templates and I was able to create containers before I made the iptable changes.
I have been in contact with Parallels but it seems they don't know how to solve it either as they haven't replied for almost 4 hours. (they were replying instantly until gave them the above)
View 9 Replies
View Related
Jul 21, 2014
I have a new 1 and 1 hosting account and have reimaged to have Plesk Panel 12 as I have used Plesk with another virtual server account.
However I do not know how to install the mail server.
Is there a simple way to install the mail server so I can set up pop mail boxes?
View 6 Replies
View Related
Apr 11, 2015
We have one Cloud Server hardware node that exists only as the backup location for containers and VMs in Cloud Server/PVA (it hosts no virtual servers). Can it also serve as a Backup Server Node?
A related question, in my case, is whether we can configure a Backup Server Node to use a particular drive/mount/directory, as we can with PVA? I couldn't find any info in the docs about any settings at all for the Backup Server Node.
View 4 Replies
View Related
May 15, 2014
I want to develop a package for Parallels Plesk Automation to introduce some services like backup email, database, websites. I want to know whether it is possible with Parallels Plesk Automation and if so any links to developers site/documentation.
View 2 Replies
View Related
Apr 4, 2015
I am installing plesk automation on centos 6.5 using this command on a fresh system
./ppa_installer --password some_password --admin_email some_email
and get the following error.
[LOGTEE]: Error Downloading Packages:
[LOGTEE]:
[LOGTEE]: libuuid-2.17.2-12.18.el6.i686: failure: Packages/libuuid-2.17.2-12.18.el6.i686.rpm from base: [Errno 256] No more mirrors to try.
Looks like some lib is not found in the mirrors.
View 1 Replies
View Related
Jan 19, 2015
I would like to ask if its possible ( supported ) to run Parallers Plesk 12 Panel on centos 7 ( openlogic) in Microsoft Azure infrastructure.
View 3 Replies
View Related
Feb 1, 2013
Receive for 2 days following error
"Parallels products install and update"
"Failed to read product information from the file: Can not process products.inf3: Failed to download the package http://autoinstall-win.pp.parallels.com/products.inf3: Could not resolve host: autoinstall-win. pp.parallels.com, no data record of requested type Can not process versions.inf3: Failed to download the package http://autoinstall-win.pp.parallels.com/versions.inf3: Could not resolve host: autoinstall win.pp.parallels.com, no data record of requested type "
[URL] .... is present.
[URL] .... is not found.
View 2 Replies
View Related
Jun 30, 2012
In Plesk Control Panel accessing Updates and Upgrades have a error that shows Failed to read product information from the file :
Can't process products.inf3: Failed to download the package http://autoinstall-win.pp.parallels.com/products.inf3: Empty reply from server Can't process versions.inf3: Failed to download the package http://autoinstall-win.pp.parallels.com/versions.inf3: Empty reply from server
View 3 Replies
View Related
Feb 13, 2015
I temporarily enabled and activated Plesk firewall module (which I wish I didn't the first time) and for some reason it seems to have overwritten the default iptables configuration that was set, leaving my ftp unable to be logged into. I tried to disable the firewall module and reboot the server. It didn't work.
I also noticed that it somehow seem to have changed my hostname to my previous server hostname as well
Is there any way to completely revert back to original iptables settings before enabling the Firewall module?
View 4 Replies
View Related
May 26, 2015
I currently have the Web Application Firewall (ModSecurity) installed but would like a visual interface to block IP's, subnets etc.. Can I install the Plesk firewall as well without any conflict with the Web Application Firewall?
View 3 Replies
View Related
Oct 23, 2009
what's the price of " parallels business automation " and from where can i paid it ?
and what's the price of " virtuozzo power panel " for a 10 vps and from where can i paid it ?
View 4 Replies
View Related
Dec 13, 2013
I configured Cloudflare in admin panel, I then logged in using my test customer account, I tried to install CloudFlare application (without license key for free mode) . I got the following error:
Error: Installation of CloudFlare for Parallels Plesk at http://MyLinuxWebsite.cyberhostpro.com/CloudFlare failed. Non-zero exit status returned by script. Output stream: 'PHP Warning: SimpleXMLElement::__construct(): Entity: line 6: parser error : Opening and ending tag mismatch: hr line 5 and body in /usr/local/psa/var/apscache/data-mezJCJ/scripts/configure.php on line 262
[code]....
View 3 Replies
View Related
Jun 24, 2014
We have a Windows server that we are deploying the PHP package onto. In the Packages Repository, there are two PHP packages (5.3.10.4 and 5.2.17.0-1). When I deploy a package to the new Hardware Node, it only shows me the latest version of the PHP package (5.3.10.4). Is there a way to select the older version of the PHP package that is in the repository (5.2.17.0-1)?
View 1 Replies
View Related
Apr 28, 2014
I have to install mediawiki application on a client website, but during installations process occur this problem, PPA version is 11.1 :
View 2 Replies
View Related
Mar 18, 2014
it is possible to run services such as Apache, Mail, MySQL etc on the Management Node.
I have PBAS setup and have registered the PPA server with PBAS, the PPA Management Node is marked as ready to provide, I have added the appropriate attributes to the MN under Service Nodes, however according to PBAS I need to install the ppa_apache package (and probably others), and when I go to install the packages it's trying to install the ppa_agent package which is conflicting with ppa_core.
View 2 Replies
View Related
Jul 17, 2014
This is a new test install of PPA 11.5.5 with currently 8 nodes: CP, Apache, IIS, MySQL, Mail, 2 BIND, and Webmail. Installation and adding nodes went pretty much without a hitch so I'm testing account creation, subscription settings, etc. but I'm not getting very far. Anytime I try to add a subscription (any subscription) to an account I get the error: "Owner with external ID = '211' does not exist in Plesk database" The actual ID number varies depending on which account I'm trying to add a subscription to, but otherwise it's always the same error. I've tried the built-in default subscriptions, I've tried creating my own...same results either way.
View 2 Replies
View Related
Jun 15, 2015
I have a problem to install a service node. In task, I have this error:
Unable to authenticate at the host '10.252.13.197'. To resolve this issue, please follow the instructions at [URL] ....
I followed the instructions, but mysql don't display my new server.
[root@plesk000-exp-01 ~]# mysql -uadmin -p`cat /etc/psa/.psa.shadow` psa -e 'select accessKey from ServiceNodes where ipAddress="10.252.13.197";'
[root@plesk000-exp-01 ~]#
I deleted service node but the problem still remains.
View 1 Replies
View Related
Apr 23, 2014
When I try to install DotNetNuke to a windows web space on PPA 11.5 #4, it fails with bad gateway.
I've tried this multiple times with same result. Other apps seem to work fine.
View 1 Replies
View Related
Jan 28, 2014
How to install a certificate for a brand ?
Let's say I have a brand B associate to a reseller R and a domain name domain.com.
When B sell a new subscription (with the associated webspace) it is available under sub.domain.com.
I would like to have a specific SSL certificate installed by default for every newly created webspaces by B under xxx.domain.co
View 7 Replies
View Related
Apr 11, 2009
im looking to add failover protection at my main server, in order that if it goes offline, all the traffic can be in a automatic way redirect to a failover / backup server.
For the failover server i was looking to buy a low-cost dedicated server located in other datacenter and have my dns be run at this failover server, but now i have been looking at Cloud Hosting, like Amazon or Mosso CloudServers and as it seems a very stable network, im thinking if it will be best to have setup/running my DNS at a Cloud Host...
So what do you think it would be best:
Option A:
1 main server
1 failover dedicated server
1 cloud (amazon/mosso) virtual server to run DNS
or
Option B:
1 main server
1 failover dedicated server (running the DNS)
View 4 Replies
View Related
Nov 6, 2009
I know CDN is only for static files, but is there such cloud host service where users from Asia, Europe and USA will face no serious latency issues?
Is this going overboard, would using Amazon Cloud suffice?
or would purchasing dedicated servers in each region like USA, Europe, and Asia be better?
View 0 Replies
View Related
Mar 8, 2007
I have several servers that have a HighPoint RocketRaid 1520 SATA raid card. I have recently discovered that this card requires drivers in the OS to actually take advantage of the raid functionality.
Well, it seems the drivers were never installed. So I essentially do not currently have a raid setup, even though I have a pair of HD's in each of the servers affected. Now, I do have a Windows server that automatically loaded the driver, but the Linux boxes do not have the driver it seems. The instructions for this card state that the driver is installed at the time of OS installation. I bought these servers when I acquired a host a couple of years ago and obviously they weren't setup properly.
So here's my question, I am thinking of trying to install this raid driver on the affected servers now. They have been running for a couple of years this way and I don't want to screw something up. Is this something that I can do at this point without going back to reinstalling the OS, etc? Can the raid driver be installed after the fact here like I'm thinking of doing?
Should I proceed with trying to get this RocketRaid card to work or would I better off buying hardware raid cards that are configured outside of the OS? And if I should go with the hardware level raid, what card do you all recommend? I'm running RHE3 on these servers and they are P4's with 1GB of RAM.
View 9 Replies
View Related
Jul 15, 2009
I heard that CSF firewall will block the ips but still its useful to install? or is there any other method to stop to automatically block the ips from csf? Just want to know about it.
View 14 Replies
View Related
Jul 2, 2007
If APF is running, but iptables is not. Will it then even work if it's not in monolythic kernel?
When i check the iptables status, i see: # service iptables status
Firewall is stopped.
Someone is assisting me with security installs on my server, and he told me it's is normal? I thought APF is an iptables based script, so iptables must be enabled?
View 0 Replies
View Related
Apr 25, 2013
I've just created a "droplet" (a VPS) from DigitalOcean with the latest version of Ubuntu Server and I have SSH access. While creating the droplet I needed to enter a hostname (a domain), which is registered at Godaddy, but I haven't touched its configuration yet.
I've installed the Webmin control panel through SSH and at the end of the installation I was told to access it through mydomain.com:10000. However, as expected, that didn't resolve in my browser (since probably the domain is not properly configured). I've tried with [the droplet's IP]:10000, but this didn't work either, the following message was displayed:
This web server is running in SSL mode. Try the URL mydomain.com:10000/ instead.
View 3 Replies
View Related
Jan 5, 2009
Is it me or that anyone else experiencing the VZ master node not properly configured for those front-end firewall programs?
I recently purchased couple Linux VPSs (OpenVZ) from different vendors and both seems not having iptables properly configured. One of them finally got resolved, but took like a week for them to figure out what's wrong with it.
I'm currently still stuck with second VPS not protected.
I have not check into which iptables modules APF or CSF requires, but VPS vendors/resellers should expect their clients would be using those and properly configure their VZ master prior to deployments.
I'm begin to wonder people that purchases VPS slices, are they using any decent firewall front-end or not.
It always seems that ip_conntrack is missing. When exists, everything works.
View 2 Replies
View Related
Feb 8, 2015
I have a problem with my plesk panel. Ever since I rebooted my server it won't load the IP:8443 page at all.
View 5 Replies
View Related
Feb 20, 2015
I'm asking if there is a server monitoring tool that has easy install steps for Parallels Plesk 12.0.18 Upd #36 or any guide since my server is running slow and I need to collect some data in order to fix the issue.
I've tried Munin on my own but got this error during install process:
Transaction Check Error:
file /usr/share/man/man3/XML::SAX::Base.3pm.gz conflicts between attempted installs of perl-XML-SAX-0.96-7.el6.noarch and perl-XML-SAX-Base-1.04-1.el6.rf.noarch
file /usr/share/man/man3/XML::SAX::Exception.3pm.gz conflicts between attempted installs of perl-XML-SAX-0.96-7.el6.noarch and perl-XML-SAX-Base-1.04-1.el6.rf.noarch
I'm running CentOS 6.6.
View 9 Replies
View Related
Jun 8, 2009
after turning on the iptables firewall i can't receive emails anymore on a dedicated centos 5.3 server with postfix and dovecot.
with iptables firewall turned off everythin works fine.
following is the /etc/sysconfig/iptables
# Firewall configuration written by system-config-securitylevel
# Manual customization of this file is not recommended.
*filter
:INPUT ACCEPT [0:0]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [0:0]
:RH-Firewall-1-INPUT - [0:0]
-A INPUT -j RH-Firewall-1-INPUT
-A FORWARD -j RH-Firewall-1-INPUT
-A RH-Firewall-1-INPUT -i lo -j ACCEPT
-A RH-Firewall-1-INPUT -p icmp --icmp-type any -j ACCEPT
-A RH-Firewall-1-INPUT -p 50 -j ACCEPT
-A RH-Firewall-1-INPUT -p 51 -j ACCEPT
# -A RH-Firewall-1-INPUT -p udp --dport 5353 -d 224.0.0.251 -j ACCEPT
-A RH-Firewall-1-INPUT -p udp -m udp --dport 631 -j ACCEPT
-A RH-Firewall-1-INPUT -p tcp -m tcp --dport 631 -j ACCEPT
-A RH-Firewall-1-INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT
-A RH-Firewall-1-INPUT -m state --state NEW -m tcp -p tcp --dport 22 -j ACCEPT
-A RH-Firewall-1-INPUT -m state --state NEW -m tcp -p tcp --dport 80 -j ACCEPT
-A RH-Firewall-1-INPUT -m state --state NEW -m tcp -p tcp --dport 53 -j ACCEPT
# ************ tried doing this first ************
#-A RH-Firewall-1-INPUT -p tcp -m tcp --dport 110 -j ACCEPT --syn
#-A RH-Firewall-1-INPUT -p tcp -m tcp --dport 25 -j ACCEPT --syn
#-A RH-Firewall-1-INPUT -p tcp -m tcp --dport 143 -j ACCEPT --syn
# ************ tried doing this too ************
-A INPUT -p tcp -s 0/0 --sport 1024:65535 -d 72.233.54.234 --dport 25 -m state --state NEW,ESTABLISHED -j ACCEPT
-A OUTPUT -p tcp -s 72.233.54.234 --sport 25 -d 0/0 --dport 1024:65535 -m state --state ESTABLISHED -j ACCEPT
-A OUTPUT -p tcp -s 72.233.54.234 --sport 1024:65535 -d 0/0 --dport 25 -m state --state NEW,ESTABLISHED -j ACCEPT
-A INPUT -p tcp -s 0/0 --sport 25 -d 72.233.54.234 --dport 1024:65535 -m state --state ESTABLISHED -j ACCEPT
-A RH-Firewall-1-INPUT -j REJECT --reject-with icmp-host-prohibited
COMMIT
as you can see here i have tried opening ports 110, 25, 143 earlier. still did not work.
View 2 Replies
View Related
Oct 21, 2009
Hello !
I've got problems with my APF firewall. Here is are the errors I get :
[root@ks123456 ~]# apf -r
apf(6493): {glob} flushing & zeroing chain policies
apf(6493): {glob} firewall offline
apf(6530): {glob} activating firewall
Opening /proc/modules: No such file or directory
apf(6570): {glob} unable to load iptables module (ip_tables), aborting.
apf(6530): {glob} firewall initalized
apf(6530): {glob} fast load snapshot saved
The /var/log/apf_log file is full of these errors.
I've been told that it was a compatibility issue with the server's kernel. So I upgraded the kernel to the last version, but the problem still remains and I get the same errors...
Can you advise about what I should do now ?
Thank you !
View 2 Replies
View Related
