From owner-freebsd-questions@freebsd.org Fri Nov 20 15:10:42 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 132DA2ED368 for ; Fri, 20 Nov 2020 15:10:42 +0000 (UTC) (envelope-from dalescott@shaw.ca) Received: from smtp-out-no.shaw.ca (smtp-out-no.shaw.ca [64.59.134.12]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "Client", Issuer "CA" (not verified)) by mx1.freebsd.org (Postfix) with ESMTPS id 4Cd0Nd08ylz3lc5 for ; Fri, 20 Nov 2020 15:10:40 +0000 (UTC) (envelope-from dalescott@shaw.ca) Received: from cds220.dcs.int.inet ([10.0.153.144]) by shaw.ca with ESMTP id g83Zkw3NM34axg83akyIZ4; Fri, 20 Nov 2020 08:10:39 -0700 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=shaw.ca; s=s20180605; t=1605885039; bh=HjkdIqf4v1kTVazE4/ULkqocz4t8LB1XiaFqI+2OvHA=; h=Date:From:To:In-Reply-To:References:Subject; b=iJJrS4Xq93viPzfViGdSVyjFHxFLx9VTrO2lZNQMrJz/yR8r/AuFSGQFpu8PjZQq1 G9BHJwmXbCrYA0ER35/YT1CuG8SkEGevB6jKET339Xm41+avWlP2ug/HXS9/OFGGI0 XkWDcJkevtMHZbc84iSMbVGpQK+JpGUcg46rE3VNeBCUgUbj47BZrIzEQ0DMrswbAI rktlx7/RUsqYoUKPOyGG6Ou2L6IkYHMG2t/Gmiop7p40ohTpWy9grk6gWUzGX8zl9d YdvePS2piKt74HKmjBVpFIfsZ6NEZrIo58PnuCbssJ8AXkwjffVe5hiYluIoMql48s BsbG1viW6YOTg== X-Authority-Analysis: v=2.4 cv=LvQsdlRc c=1 sm=1 tr=0 ts=5fb7dc6f a=YjOmSjUxhsfmstj0eziGpw==:117 a=FKkrIqjQGGEA:10 a=RDteU5_PNoYA:10 a=IkcTkHD0fZMA:10 a=_Dj-zB-qAAAA:8 a=6I5d2MoRAAAA:8 a=5mcg790sAAAA:8 a=EQpedfl2a0E3jVRWKy4A:9 a=0vqECL6Z7DGxyHpy:21 a=QEXdDO2ut3YA:10 a=c-cOe7UV8MviEfHuAVEQ:22 a=IjZwj45LgO3ly-622nXo:22 a=uQeDYW1NI25gHNlrW_eK:22 Date: Fri, 20 Nov 2020 08:10:37 -0700 (MST) From: Dale Scott To: Yuri Pankov , freebsd-questions Message-ID: <958896405.36997717.1605885037710.JavaMail.zimbra@shaw.ca> In-Reply-To: References: Subject: Re: Please help with Apache virtual servers and DNS trouble (I think) MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: 7bit X-Originating-IP: [174.0.43.39, 174.0.43.39] X-Mailer: Zimbra 8.8.15_GA_3968 (ZimbraWebClient - GC87 (Win)/8.8.15_GA_3968) Thread-Topic: Please help with Apache virtual servers and DNS trouble (I think) Thread-Index: YMoRrABilhPaHR8kgxI4LuISrAQgAw== X-CMAE-Envelope: MS4xfCGZtfv89VnjmjEJVt1QesirbT9y1lFLhJsiMf9NSvcVGFjgsdQHI6TUebsfG2Ioh/ZkxKlMlVGszTvnDCwaefcE7kTLU/vf7UDny5bJ6SosFz5xxzDE VP+TzjayQzaY3uAWB3m/jY9ZdA0wYvXZQJyMk82AmDwm6269ZolFDGSKY/GUbpmIThFlUbHMLXdTGWxIaZBlQKxcmUPWsZwDBVCa02GYT/Rx81GeKqUwZ49w X-Rspamd-Queue-Id: 4Cd0Nd08ylz3lc5 X-Spamd-Bar: ---- Authentication-Results: mx1.freebsd.org; dkim=pass header.d=shaw.ca header.s=s20180605 header.b=iJJrS4Xq; dmarc=pass (policy=none) header.from=shaw.ca; spf=pass (mx1.freebsd.org: domain of dalescott@shaw.ca designates 64.59.134.12 as permitted sender) smtp.mailfrom=dalescott@shaw.ca X-Spamd-Result: default: False [-4.10 / 15.00]; HAS_XOIP(0.00)[]; RWL_MAILSPIKE_GOOD(0.00)[64.59.134.12:from]; R_SPF_ALLOW(-0.20)[+ip4:64.59.134.0/25]; TO_DN_ALL(0.00)[]; DKIM_TRACE(0.00)[shaw.ca:+]; RCPT_COUNT_TWO(0.00)[2]; DMARC_POLICY_ALLOW(-0.50)[shaw.ca,none]; NEURAL_HAM_SHORT(-1.00)[-1.000]; RCVD_IN_DNSWL_LOW(-0.10)[64.59.134.12:from]; RCVD_TLS_LAST(0.00)[]; RBL_DBL_DONT_QUERY_IPS(0.00)[64.59.134.12:from]; FROM_EQ_ENVFROM(0.00)[]; MID_RHS_MATCH_FROM(0.00)[]; DWL_DNSWL_NONE(0.00)[shaw.ca:dkim]; MIME_TRACE(0.00)[0:+]; ARC_NA(0.00)[]; R_DKIM_ALLOW(-0.20)[shaw.ca:s=s20180605]; NEURAL_HAM_MEDIUM(-1.00)[-1.000]; FROM_HAS_DN(0.00)[]; ASN(0.00)[asn:6327, ipnet:64.59.128.0/20, country:CA]; NEURAL_HAM_LONG(-1.00)[-1.000]; MIME_GOOD(-0.10)[text/plain]; SPAMHAUS_ZRD(0.00)[64.59.134.12:from:127.0.2.255]; TO_MATCH_ENVRCPT_SOME(0.00)[]; RCVD_COUNT_TWO(0.00)[2]; MAILMAN_DEST(0.00)[freebsd-questions] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.34 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 20 Nov 2020 15:10:42 -0000 > From: "Yuri Pankov" > To: "Dale Scott (dalescott@shaw)" , "freebsd-questions" > Sent: Friday, November 20, 2020 12:12:31 AM > Subject: Re: Please help with Apache virtual servers and DNS trouble (I think) > dalescott@shaw.ca wrote: > ...Nothing... > > HTML is stripped by the list, please use plain text. Thanks Yuri, sorry all, I didn't realize gmail on my new Android phone must be sending HTML only. I'm hoping someone can help point me in the right direction to diagnose and fix this. I am rebuilding my fbsd-11 server after the system drive failed. I had been using Apache virtual servers to serve several web apps on port 80, with a single wildcard DNS entry from No-IP. The server also hosted a Linux vm running in vbox, and used the vbox NAT to forward vm port 80 to host 8080, and vm port 22 to host 3022. This worked well as I only have one IP address from my ISP. The virtual hosts are accessed normally e.g. www.dalescott.net (WordPress), mantisbt.dalescott.net, timetracker.dalescott.net..., I can ssh to the vm on port 3022, and the vm web server is accessed with port number i.e. http://dalescott.net:8080. Then the system drive failed and it seemed a good time to re-build it with fbsd-12, and switch at least some of the web apps (not the vm) to https with LetsEncrypt certs. My understanding of LetsEncrypt (and certbot and the Apache certbot plugin) is that subdomain DNS entry will be required for each Apache virtual server that will https. So I removed the wild card from my dalescott.net DNS entry and configured new subdomain DNS entries for the Apache virtual servers. However I didn't create certificates or change Apache httpd-vhosts.conf, and I'm still not trying to serve anything but pure http on port 80. The problem is that I can access all my virtual servers and ssh to the vm using port 3022, but I get a "no server response" error in the browser when trying to access the vm web server on port 8080. Because it worked before, I'm assumming I created a situation with the subdomain DNS entries and my Apache httpd-vhosts.conf where Apache is grabbing the port 8080 requests and not responding, instead of the request getting to the vm. Is that possible? Can you tell where I've gone wrong, or have suggestions for diagnosing? Does anyone want to see my httpd.conf and httpd-vhosts.conf? Thanks, Dale