LinkBack URL
About LinkBacks
CPanel on FreeBSD 5.4
EDIT: I try to updtate this post as I go along, if it is helpful to you feel free to rate the post or reply to it and let me know!!!Also, if I have something wrong or missing please please let me know!!!.
<---original post--->
Hello,
I am new to CPanel, and I switched from another software due to recent issues with it and FreeBSD. I must say that I am very very satisfied with CPanel, and despite a few little glitches during the install, it has been a wonderfull experience (so much so that I am buying multiple licenses)
This post is broken into two parts (FreeBSD OS and CPanel, and IPFW and CPanel), and I will apologize in advance because it is quite long. I post this here, for many reasons, I spent countless hours searching for a few of the tidbits in here to fix my problems (and some experimenting), and even more importantly I would like to see what experienced users can tell me about what aspects I may have done wrong along the way!
Thanks!
Server hardware (in case it is needed): Dual Xeon 2.8Ghz, Dual SATA 160GB RAID 0 w/ 3Ware Escalade PCI RAID 2GB DDR
Operating system FreeBSD 5.4 STABLE i386 with SMP kernel
Partitioning: 1G / , 4G Swap, 1G /tmp, 7G /var, 7G /usr, ~135G /home
Distribution: Developer, full binaries, sources, doc, & Linux compatability lib
Once SysInstall completed, I logged in and changed /etc/ssh/sshd_config:
-changed ssh port to a {unique port #} –limited to protocol 2, set to a secondary IP
Compiled a tweaked multiprocessor kernel:
SMP, enabled QUOTA, and IPFIREWALL (etc)
---note: Tested FreeBSD ULE scheduler in kernel (designed for SMP) no negative effect noted until attempting to install CPanel later, this configuration was the only one of many to cause the configure process (not build) for php4.3.11 to silently terminate, the whole install process stalled completely with no errors, I let it go for two hours and got nothing but an ssh terminal full of periods….repeated twice to be sure. I was only able to get the 4BSD scheduler to work with CPanel install.
Configured the rest of the system for quota support:
edited /etc/fstab to enable quotas on partitions, then used command: quotacheck –a, quotaon /{dir names} to generate necessary quota files.
Then added enable_quotas=”YES” and check_quotas=”NO” to /etc/rc.conf.
Installed portsentry, chkrootkit, logcheck (w/ crontab -e for every two minute scan)
Prepared for MySQL installation into a different partition:
Made a few directories and simlinks (pre-emptive strike) to move the MySQL db storage location to the home directory: reason for this was that /home was partitioned with a size intended to support our users, which will have unpredictably large databases.
root@ns1# mkdir /var/db
root@ns1# mkdir /var/db/mysql
root@ns1# ln -s /home/mysql_db /var/db
Unistalled perl-5.6.2 and installed perl-5.8.7 from FreeBSD ports collection:
I did this when I realized that CPanel would't install with the older perl that the FBSD installation added by default during OS install. I tried to install CPanel several times and it failed until I installed perl 5.8.6 or greater
Installed CPanel:
Mkdir and cd to /home/cpins, wget http://layer1.cpanel.net/latest, sh latest, to install CPanel, worked fine, although the CPanel website indicates that an alternate method must be used?
{another note: Thurs. and Fri. of last week, spamd would fail when installing, and required spamassassin to be installed (on top of current) from ports collection to fix (fix scripts didn’t work). As of this week, spamd installs and runs great right out of the box with no mods needed, thanks for the fix CPanel!
Install complete with some errors along the way, logged into CPanel via https://IPADDRESS:2087
Bind install failed, named.root not found:
File was not in system's desired directory, copied file from /etc/namedb to /var/named/ and then edited /etc/namedb/named.conf to remove the example dns zones (leaving them there on previous installs resulted in a periodic stream of errors stating that the attempt to transfer domain: example.com failed. I thought they were commented out, but alas, nope! Silly me.} Re-activated nameservers: this time bind started due to named.root being found, and finished the config wizard
Checked the service manager:
Bind, eximstats, mysql, imap had failed. Bind and imap are actually working, just a 10 min delay in indication as usual after a reboot, no corrective action was necessary for those, but MySQL and EximStats were actually broke.
To fix MySQL I had to do both:
Deinstalled mysql40-server, reinstalled from fbsd ports collection, and add mysql_enable="YES" to rc.conf
To fix EximStats:
I had to fix MySQL AND run /scripts/upcp
Graceful reboot, mysql service indicates running, bind, eximstats, imap delayed indication but running. All services seem to be fixed, and the flood of service manager emails has stopped, YAY!
Added a test account for further testing, add completed with no errors.
Tested webmail:
SQUIRRELMAIL very broken:
>>touch /usr/local/cpanel/base/3rdparty/squirrelmail/functions/../config/config.php fixed part of it, SQUIRREL login page now shows, but after login the errors state imap directory cannot be found… giving up, disabling SQUIRREL until I find out which piece of the puzzle is missing.
HORDE Seems broken as well:
Upon initial login the left side menu displays php warnings for 3 failed fopens(), refreshing the browser window makes these errors disappear and the program works just fine for rest of session=>only show on initial login.
Everything else seems to work perfectly, and I find that I am exceedingly happy with CPanel, and have now aquired a full license and will be dropping this new box off in the co-location rack tonight.
Thanks again for your feedback and hopefully some insight to the webmail issues that I still currently have! I will post my IPFW rant as a reply to this.....
EDIT: Horde & Squirrel (7/25): Horde issue was caused by enabling phpSuEXEC, required that /tmp/horde_1003.log be re-owned#>> chown cpanel:cpanel /tmp/horde_1003.log.
Horde works without issue now.
EDIT: GD Lib and Disk Usage/Bandwidth Images in WHM (7/27): An issue exists with the gd installation on FBSD 5.4 w/ CPanel-stable that prevents the diskusage.cgi generated pie graphs and bandwidth pie graphs from being generated, a simple compile flag difference that prevents png functionality. This issue is reported to be fixed in edge. (special thanks to B. Vincent: http://bugzilla.cpanel.net/show_bug.cgi?id=2786 for this manual fix that I applied):
--------------------------------------
>> cd /usr/ports/graphics/gd
>> make deinstall
>> cd /usr/ports/graphics/p5-GD
>> make
>> make deinstall
>> cd /usr/ports/graphics/p5-GD/work/GD-2.23/
>> perl Makefile.PL -options=GD_PNG,GD_XPM,GD_JPEG,GD_FONTCONFIG,GD_FREETYPE,GD_GIF,GD_UNCLOSEDPOLY,GD_ANIMGIF,GD_FTCIRCLE
>> cd /usr/ports/graphics/gd
>> make install
and.... fixed.
EDIT: Zend Optimizer (7/29): The script /scripts/installzendopt is broken due to a change on the zend.com website. To fix this (thanks to Mike2Own), edit /scripts/installzendopt and change line 8 From:
'FreeBSD 5.x' => 'http://www.zend.com/store/getfreefile.php?pid=13&zbid=847&iagree=1',
To:
'FreeBSD 5.x' => 'http://downloads.zend.com/optimizer/2.5.10/ZendOptimizer-2.5.10a-freebsd5.1-i386.tar.gz',
Install process worked,
EDIT: PortSentry (7/29): I needed PortSentry to startup at reboot, so I added portsentry_enable="YES" to /etc/rc.conf and then made the startup script (copied from a FBSD 5.0 book long ago) and saved it as /usr/local/etc/rc.d/portsentry.sh and set chmod u+x portsentry.sh:
_____________________
#!/bin/sh
PORTSENTRY="/usr/local/bin/portsentry"
case "$1" in
start)
${PORTSENTRY} -tcp && echo "Starting PortSentry TCP Mode..."
${PORTSENTRY} -udp && echo "Starting PortSentry UDP Mode..."
;;
stop)
killall `basename ${PORTSENTRY}`
;;
*)
echo " "
echo "Usage: `basename $0` { start | stop }"
echo " "
;;
esac
_____________________
EDIT: ClamAV and Email Scanning (7/30): ClamAV isn't capable of scanning incoming email with the default installation provided by the cpanel pro and clamav connector modules. To enable this: http://www.rvskin.com/index.php?page=public/antispam#3 option i.
Reply With Quote
IPFW and CPanel... revisited
