Jump to content
Froxlor Forum


  • Content count

  • Joined

  • Last visited

Community Reputation

0 Neutral

About llucps

  • Rank
  1. Hi, I see that stretch packages are available already . I'll update my server to stretch this weekend. Fingers crossed !! Thanks
  2. Hi d00p, I'll wait for the 0.9.x packages. But if I installed froxlor using Debian packages, can I update using the auto-update? or would it screw up my froxlor system? I'm just curious. Thanks.
  3. Zone file creation (DNS)

    Yes you're right. The funny thing is why bind is not complaining when I do it wrong and starts complaining when I do it right. And yes, despite of getting that warning, everything works perfectly. I was just curious to know why. Thanks
  4. Zone file creation (DNS)

    Umm.. yes I'm using the latest version 0.9.37-1 from the Debian repos. If I put: @ IN TXT “v=spf1 a mx -all” It creates this line: @ 18000 IN TXT "@ IN TXT “v=spf1 a mx -all”" If instead I put just: "v=spf1 a mx -all" It creates this line: @ 18000 IN TXT "v=spf1 a mx -all" and then bind starts to complain and giving this warning for each domain: warning: zone xxxxxxxx.com/IN: 'xxxxxxxx.com' found SPF/TXT record but no SPF/SPF record found, add matching type SPF record
  5. Zone file creation (DNS)

    Fixed.. On Domain SPF settings I changed the entry: "v=spf1 a mx -all" for this: @ IN TXT “v=spf1 a mx -all” and it works perfectly now without warning or errors. Thanks,
  6. Zone file creation (DNS)

    Yes you were right.. I specified all the nameservers, the AXFR, MX and imap, pop3 smtp creation and it works now.. The only little warning that I get for each of the domains is this: warning: zone xxxxxxxx.com/IN: 'xxxxxxxx.com' found SPF/TXT record but no SPF/SPF record found, add matching type SPF record I guess i could add the with new DNS editor integrated in Froxlor. It looks like I can't specify a SPF Type usign the DNS Editor.. although it seems it's adding the SPF anyway. Thanks a lot!
  7. Zone file creation (DNS)

    Oh I wasn't aware that changed so much., good to know. This is the error I'm getting if I use the zone file generated by Froxlor 11-Aug-2016 12:18:32.459 general: error: zone xxxxxxxxxx.com/IN: has no NS records 11-Aug-2016 12:18:32.459 general: error: zone xxxxxxxxxx.com/IN: not loaded due to errors. This is how I set up my nameserver settings initially (from 2014) which I haven't modify any setting... and I guess the problem is here... Nameserver, MX servers, AXFR servers as well as the option to create mail, imap, pop3 and smtp entries are empty... Could the problem be here? The ns-records that you mentioned is from the auto-generated zone file which are overwritten everytime Froxlor lunches the cron job.. so Froxlor had to create it. Thanks
  8. Zone file creation (DNS)

    Hi, A couple of days ago I screwed my DNS Zone from my hosting provider manager.. and becasue of that I reset the DNS Zone and change the DNS.. yes I know my fault .. but happend. So since then the Zone file from each of my domains (they are virtual hosts) mysteriously changed a bit and bind9 started to give me errors, basically complaning about the zone file and being unable to loaded. I know they changed, because I restored a copy of the zone files from a previous back-up. Here is the old zone file from one the domains (which works perfectly): $TTL 604800 @ IN SOA ns xxx.xxxxxx.com. ( 2016080212 ; serial 8H ; refresh 2H ; retry 1W ; expiry 11h) ; minimum @ IN NS ns ns IN A @ IN MX 10 mail @ IN TXT "v=spf1 a mx -all" @ IN SPF "v=spf1 a mx -all" mail IN TXT "v=spf1 a mx -all" mail IN SPF "v=spf1 a mx -all" dkim_34._domainkey IN TXT ("v=DKIM1;k=rsa;p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQ" "KBgQDGF5JeukrcQzbnPsbx/8yqhhguKxim7/oh8ycCQfauh7WG" "BoTNNVQleA16a2gGr5qeVHLxJWsHQiYXvd4wCCVbiTBkecl+x/" "6ZgL12vnSzprL4IKNLu1nNWhxuEX3tN82KbX1tJGteNa/zbzaE" "zqvYCRAYcjSE7FkHVZyrClD2dQIDAQAB;t=s") _adsp._domainkey IN TXT "dkim=all" mail IN A imap IN A smtp IN A pop3 IN A @ IN A www IN A And this is the new zone that Froxlor automatically generates after I messed up with the DNS Zone from my hosting provider... but I don't recall to change anything from Froxlor domain settings (this zone file doesn't work at all and bind9 is unable to load it, giving en error. $TTL 604800 $ORIGIN janetgreco.com. @ 18000 IN SOA squeakyhost.com lluc.squeakycarrot.com. ( 2016081100 ; serial 1800 ; refresh (30 mins) 900 ; retry (15 mins) 604800 ; expire (7 days) 1200 ) ; minimum (20 mins) @ 18000 IN A www 18000 IN A @ 18000 IN TXT "v=spf1 a mx -all" dkim_34._domainkey 18000 IN TXT ("v=DKIM1;k=rsa;p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQ" "KBgQDGF5JeukrcQzbnPsbx/8yqhhguKxim7/oh8ycCQfauh7WG" "BoTNNVQleA16a2gGr5qeVHLxJWsHQiYXvd4wCCVbiTBkecl+x/" "6ZgL12vnSzprL4IKNLu1nNWhxuEX3tN82KbX1tJGteNa/zbzaE" "zqvYCRAYcjSE7FkHVZyrClD2dQIDAQAB;t=s") _adsp._domainkey 18000 IN TXT "dkim=all" As you can see changes quite a bit and I have no idea why For now I created another directory inside /etc/bind containing all the zone files from my back-up and I specified the file here (and doing this all is working again): The problem is from now on Froxlor generates the zonfiles which don't work at all and I have no idea why? Mainly because before I screwed it up the files generated by Froxlor worked perfectly. Here you have an screenshot of one of my domain settings.. (all the other domains that I have share exactly the same settings: Anyone see a reason for this? I would like to find out why?.. specially to generate the zone files automatically again. Thanks.
  9. Let's Encrypt configuration

    Thanks. Perfect I'll wait for the next version. Lluc
  10. Let's Encrypt configuration

    I did it! it's working now For some reason when I enable Let's encrypt on one of the domains, if I force the cronjob and check the 35_froxlor_ssl_vhost_xxxxxxxxx.com.conf file I see is using the certificate from the system hostname domain (the one setu pin PORTS/IP).. If i force the cronjob again then it gets the Let's encrypt certificate. Although I have one last question which is how can I use Let's encrypted on the system hostname instead of the self-signed that I'm using now.. I don't see how it can done. Thanks for your help
  11. Let's Encrypt configuration

    Yes it is.. # automatically generated cron-configuration by froxlor # do not manually edit this file as it will be re-generated periodically. PATH=/usr/local/sbin:/usr/local/bin:/sbin:/bin:/usr/sbin:/usr/bin # */5 * * * * root /usr/bin/nice -n 5 /usr/bin/php5 -q /var/www/froxlor/scripts/froxlor_master_cronjob.php --tasks 1> /dev/null 0 */6 * * * root /usr/bin/nice -n 5 /usr/bin/php5 -q /var/www/froxlor/scripts/froxlor_master_cronjob.php --mailboxsize 1> /dev/null */5 * * * * root /usr/bin/nice -n 5 /usr/bin/php5 -q /var/www/froxlor/scripts/froxlor_master_cronjob.php --letsencrypt 1> /dev/null Also according to the logs, it seems it's trying to look for a token.. but that directory doesn't really exists, that directory is on /var/www/froxlor.well/known/acme-challenge: Could not get Let's Encrypt certificate for xxxxxxxx.com: Please check http://xxxxxxxx.com/.well-known/acme-challenge/8fyzyv9H_IW2BNwwNGlKaME1NVurzavIZN9ut-QpZao - token not available Any ideas? Thanks Lluc
  12. Let's Encrypt configuration

    Thanks for your help, Yes I put my sef-signed certificate back to IP/Port settings.. so now the 10_froxlor_ipandport_xxxxxxxxxxx.443.conf has the ceritifcate and doesn't give me the [error] xxxxxx.com :: empty certificate file! Cannot create ssl-directives error. That's good. But if I try to access to the domain that has Let's Encrypt activated (I disabled wildcard and changed to www) I see that is using my self-signed certificated instead of using a Let's encrypt.. and I don't see any errors on the log: The settings for that domain are: SSL IP address(es): activated Use Let's Encrypt: Yes ServerAlias value for the domain: WWW (wwww.domain.tld) On System/Settings/SSL Settings: Let's Encrypt environment: Live Let's Encrypt country code : ES Let's Encrypt state: Spain Path for Let's Encrypt challenges: /var/www/froxlor (which is correct) Key size for new Let's Encrypt certificates 4096 Re-use Let's Encrypt key / CSR No How can I check that is Let's encrypt is generating the certificate? It seems is not doing anything at all. Thanks, Lluc
  13. Hi everyone, I've been struggling to make Let's Encrypt work on my own server.. specially because it's not really clear what I have to do, sorry about that On my IP/PORT settings the Webserver Config SSL fields port 443 (all of them are empty) and also on System/Settings/SSL Settings Path to the SSL certificate, Path to the SSL Keyfile and Path to the SSL CertificateChainFile. Before I had setup my own certificate which was for my own use only but I assumed that if Let's Encrypt is activated because creates a certificate for each of the domains, the general SSL settings won't be needed anymore.. The problem is if I leave the IP/Ports settings and System/Settings/SSL Settings with no values and Let's Encrypt is activated I get this error: [error] xxxxxx.com :: empty certificate file! Cannot create ssl-directives If I put the previous values on the SSL settings doesn't give any error.. but Let's encrypt doesn't generate any certificate for the domains that have Let's Encrypt activated.. I created the acme.conf with the right permissions and the /var/www/froxlor/.well-known/acme-challenge was created successfully but is empty. I'm pretty sure that I'm doing something wrong but I can't figure out what it is. More progress.. I put back the my self-created certificate on IP/Port SSL settings and on the log says: Could not get Let's Encrypt certificate for xxxxxxxx.com: Please check http://xxxxxxxxxx.com/.well-known/acme-challenge/7wcMM9v04yGEmDB97po3ljdpjzxYaJuxa-IHeC4tKvs - token not available Thank you, Lluc
  14. Yes, that's the issue. I'll try to google it again and see if I find the solution. Thanks,