Notes on VPSLink and Virtualmin
I'm not sure of the Etiquette but I included some logs to see if a problem can be spotted in them. They are kind of long so if this is bad, let me know and I won't do it again.
I installed and tested Virtualmin Pro on my test box to bring myself up to speed before using it on http://www.vpslink.com which is based on the http://openvz.org/ project.
On my test box it seems to work perfect.
Without reading my long lead in diatribe... In a nutshell (in case there is a quick answer) Are there issues with OpenVZ/Virtualmin setup?
I'm beginning to wonder if oddities of a VPS instead of a physical server is causing some issues. Kind of like Virtualmin is parsing the VPS for something and getting back something it doesn't like? Not sure.
Or maybe they reboot the physical machine the VPS is running on and this cures the issues for a while?
Sometimes everything seems to be going very well and then it will start to malfunction so I can't tell if it's the VPS or Virtualmin or a combo of both interacting?
I also suspect a filewall interaction which I talk about later.
The problem I'm haveing is, the miniserver is shutting down periodically and needs to be restarted via the shell.
[[root@sitename ~]]# service webmin restart Stopping Webmin server in /usr/libexec/webmin /etc/webmin/stop: line 4: kill: (32381) - No such process
[[root@sitename ~]]# service webmin start ... to get the miniserver going again.
Now that it's started you can issue a restart and a list of modules getting pre-loaded scroll by.
OK... back to the leadin to the problem.
The VPSLink CentOS installation is very lite. So lite that you have to begin by installing yum and it's dependencies as well as up2date so that virtualmin pro can begin to install.
Also I found that the install.sh script points to up2date in the /usr/bin dir but on the lite centos, yum install up2date places up2date in the /usr/sbin as well as the /usr/bin and for some reason the one in /usr/bin is not found by install.sh
No problems here... I edited the install.sh to point to the /usr/sbin/up2date and it worked perfectly.
Virtualmin pro is now intalled on vpslink plan #4 which gives you 3 ip addresses and resides on a scsi drive.
Virtualmin didn't detect the virtual network interface so I input that and that works fine now.
Everything worked now accept quotas because of how the VPS is setup or something. I got this working by following sleddogs instructions by using Webmin and System/Disk and Network Filesystems/module config and telling it to use mtab instead of fstab as noted in his post here: http://forums.vpslink.com/showpost.php?p=1699&postcount=9
However the config isn't under hardware as his post suggests, it's under system.
Quotas and everything else works great now Except...
Webmin is needs to be restarted periodically or more precicely, if it shuts down, you have to issue a service webmin start because if the webmin service is not running so the restart doesn't work until you start it.
Since I received zero errors during the install and the install seemed to complete ok, and then later found that the miniserver keeps shutting down and needing to be restarted I thought there may be a conflict with VPS's.
I move around pretty quick in the Virtualmin interface and usually have 3 tabs open in firefox to display the filemanager and 2 other sectons of the virtualmin interface.
I thought this may be causing a problem but this is the way I have worked in webmin for years so I figured it's a symptom of the VPS and Virtualmins interactions.
After looking at the logs I found that it may have something to do with Authen::PAM so I installed that and while I was at it I installed Authen::Libwrap so now All of the Perl modules recommended by Webmin are installed.
The error I saw concerning PAM is now gone but the miniserver is still shutting down so I guess it's not PAM.
Anyway I have until the end of this month to get this working on the VPS before the half price deal goes away.
If I can get this to be reliable on the VPS, I'll buy a year from them.
I also tried to run install.sh again to see what would happen and it did pull a couple of things down but still no luck.
Also I tried the rpm -e virtualmin-release and running install.sh again and still no party.
I've tried total reinstalls several times to see if I can figure out when the miniserver starts shutting down or if it's one of those problems that corrects itself because the planets are in the right place during the install :-).
I noticed during one of the reinstalls that I hadn't initialized the firewall and there was no problems. I then used the webin module to initialize the firewall and opened the webmin and usermin ports and applied the config and within a short time the problems started again so I'm wondering if the firewall could be causing an issue?
Now after all this writing you will probably tell me about a simple switch to cure my problems :-)
Thanks John
Here are some logs
INSTALL LOG
2006-07-26 23:33:16 INFO - Started installation log in virtualmin-install.log 2006-07-26 23:33:16 DEBUG - Install mode: full 2006-07-26 23:33:16 DEBUG - Virtualmin Meta-Packages list: virtualmin-base 2006-07-26 23:33:16 INFO - Loading OS selection library... 2006-07-26 23:33:17 INFO - Succeeded. 2006-07-26 23:33:17 INFO - *********************************************************************** 2006-07-26 23:33:17 INFO - Operating system name: CentOS Linux 2006-07-26 23:33:17 INFO - Operating system version: 4.3 2006-07-26 23:33:17 INFO - *********************************************************************** 2006-07-26 23:33:18 INFO - Installing virtualmin-release package for CentOS Linux 4.3... 2006-07-26 23:33:18 INFO - Disabling SELinux during installation... 2006-07-26 23:33:18 DEBUG - setenforce 0 returned 2006-07-26 23:33:23 DEBUG - Preparing... 2006-07-26 23:33:23 INFO - Succeeded. 2006-07-26 23:33:23 INFO - Installing dependencies using command: /usr/sbin/up2date --nox httpd-devel postfix bind spamassassin procmail perl perl-DBD-Pg perl-DBD-MySQL quota iptables openssl python mailman subversion ruby rdoc ri mysql mysql-server postgresql postgresql-server rh-postgresql rh-postgresql-server logrotate webalizer php php-domxl php-gd php-imap php-mysql php-odbc php-pear php-pgsql php-snmp php-xmlrpc mod_perl mod_python cyrus-sasl dovecot spamassassin mod_dav_svn cyrus-sasl-gssapi mod_fastcgi mod_ssl 2006-07-26 23:46:20 INFO - Package Type = rpm 2006-07-26 23:46:20 INFO - Installing Virtualmin and all related packages now using the command: 2006-07-26 23:46:20 INFO - yum -y virtualmin-base 2006-07-26 23:50:45 INFO - Installation of virtualmin-base completed. 2006-07-26 23:50:45 INFO - Updating all packages to the latest versions now using the command: 2006-07-26 23:50:45 INFO - yum -y update 2006-07-26 23:51:13 INFO - Update completed successfully. 2006-07-26 23:51:13 DEBUG - yum returned: 0
Basic FFIREWALL CONFIG. Nothing special generated by webmin with added ports like 995 10000 20000 etc.
Generated by iptables-save v1.2.11 on Wed Jul 26 23:52:27 2006*mangle :PREROUTING ACCEPT [[158189:175241514]] :INPUT ACCEPT [[158189:175241514]] :FORWARD ACCEPT [[0:0]] :OUTPUT ACCEPT [[100964:11037458]] :POSTROUTING ACCEPT [[100964:11037458]] COMMIT
Completed on Wed Jul 26 23:52:27 2006 Generated by iptables-save v1.2.11 on Wed Jul 26 23:52:27 2006*filter :FORWARD ACCEPT [[0:0]] :INPUT DROP [[0:0]] :OUTPUT ACCEPT [[0:0]]
Accept traffic from internal interfaces-A INPUT ! -i venet0:0 -j ACCEPT
Accept traffic with the ACK flag set-A INPUT -p tcp -m tcp --tcp-flags ACK ACK -j ACCEPT
Allow incoming data that is part of a connection we established-A INPUT -m state --state ESTABLISHED -j ACCEPT
Allow data that is related to existing connections-A INPUT -m state --state RELATED -j ACCEPT
Accept responses to DNS queries-A INPUT -p udp -m udp --dport 1024:65535 --sport 53 -j ACCEPT
Accept responses to our pings-A INPUT -p icmp -m icmp --icmp-type echo-reply -j ACCEPT
Accept notifications of unreachable hosts-A INPUT -p icmp -m icmp --icmp-type destination-unreachable -j ACCEPT
Accept notifications to reduce sending speed-A INPUT -p icmp -m icmp --icmp-type source-quench -j ACCEPT
Accept notifications of lost packets-A INPUT -p icmp -m icmp --icmp-type time-exceeded -j ACCEPT
Accept notifications of protocol problems-A INPUT -p icmp -m icmp --icmp-type parameter-problem -j ACCEPT
Allow connections to our SSH server-A INPUT -p tcp -m tcp --dport ssh -j ACCEPT
Allow connections to our IDENT server-A INPUT -p tcp -m tcp --dport auth -j ACCEPT
Allow connections to our SSH server-A INPUT -p tcp -m tcp --dport 10000 -j ACCEPT
Allow http 80-A INPUT -p udp -m udp --dport 53 -j ACCEPT
Allow http 80-A INPUT -p tcp -m tcp --dport 80 -j ACCEPT
Allow Secure Pop3s-A INPUT -p tcp -m tcp --dport 995 -j ACCEPT
Allow Secure IMAPs-A INPUT -p tcp -m tcp --dport 993 -j ACCEPT COMMIT
Completed on Wed Jul 26 23:52:27 2006 Generated by iptables-save v1.2.11 on Wed Jul 26 23:52:27 2006*nat :PREROUTING ACCEPT [[91:6132]] :POSTROUTING ACCEPT [[2174:132430]] :OUTPUT ACCEPT [[2174:132430]] COMMIT
Completed on Wed Jul 26 23:52:27 2006[[26/Jul/2006:23:51:38 -0700]] [[74.135.46.100]] Bad Request : This web server is running in SSL mode. Try the URL[a href='https://64.79.199.144:10000/'>https://64.79.199.144:10000/</a> instead.<br> [[27/Jul/2006:00:00:24 -0700]] miniserv.pl started [[27/Jul/2006:00:00:24 -0700]] PAM authentication enabled [[27/Jul/2006:00:12:15 -0700]] miniserv.pl started [[27/Jul/2006:00:12:15 -0700]] PAM authentication enabled [[27/Jul/2006:10:48:16 -0700]] miniserv.pl started [[27/Jul/2006:10:48:16 -0700]] PAM authentication enabled bad reqline [[27/Jul/2006:10:51:20 -0700]] [[74.135.46.100]] Bad Request : This web server is running in SSL mode. Try the URL[a href='https://64.79.199.144:10000/'>https://64.79.199.144:10000/</a> instead.<br> [[27/Jul/2006:11:07:47 -0700]] Reloading configuration [[27/Jul/2006:11:08:13 -0700]] Reloading configuration [[27/Jul/2006:11:10:01 -0700]] Reloading configuration [[27/Jul/2006:11:11:23 -0700]] Reloading configuration [[27/Jul/2006:11:13:58 -0700]] Reloading configuration [[27/Jul/2006:11:14:21 -0700]] Reloading configuration [[27/Jul/2006:11:15:30 -0700]] Reloading configuration bad reqline [[27/Jul/2006:15:02:42 -0700]] [[74.135.46.100]] Bad Request : This web server is running in SSL mode. Try the URL[a href='https://64.79.199.144:10000/'>https://64.79.199.144:10000/</a> instead.<br> Failed to initialize SSL connection Failed to initialize SSL connection Failed to initialize SSL connection Failed to initialize SSL connection Failed to initialize SSL connection Failed to initialize SSL connection [[27/Jul/2006:21:52:51 -0700]] miniserv.pl started [[27/Jul/2006:21:52:51 -0700]] PAM authentication enabled bad reqline [[27/Jul/2006:22:53:00 -0700]] [[74.135.46.100]] Bad Request : This web server is running in SSL mode. Try the URL[a href='https://64.79.199.144:10000/'>https://64.79.199.144:10000/</a> instead.<br> [[28/Jul/2006:00:13:03 -0700]] miniserv.pl started [[28/Jul/2006:00:13:03 -0700]] PAM authentication enabled Failed to initialize SSL connection [[28/Jul/2006:10:52:41 -0700]] miniserv.pl started [[28/Jul/2006:10:52:41 -0700]] PAM authentication enabled bad reqline [[28/Jul/2006:10:54:35 -0700]] [[74.135.46.100]] Bad Request : This web server is running in SSL mode. Try the URL[a href='https://64.79.199.144:10000/'>https://64.79.199.144:10000/</a> instead.<br> bad reqline [[28/Jul/2006:13:39:56 -0700]] [[74.135.46.100]] Bad Request : This web server is running in SSL mode. Try the URL[a href='https://64.79.199.144:10000/'>https://64.79.199.144:10000/</a> instead.<br> [[28/Jul/2006:16:19:22 -0700]] Reloading configuration [[28/Jul/2006:16:19:59 -0700]] Reloading configuration [[28/Jul/2006:21:27:01 -0700]] Reloading configuration [[28/Jul/2006:23:33:42 -0700]] miniserv.pl started [[28/Jul/2006:23:33:42 -0700]] PAM authentication enabled [[28/Jul/2006:23:37:34 -0700]] miniserv.pl started [[28/Jul/2006:23:37:34 -0700]] PAM authentication enabled bad reqline [[28/Jul/2006:23:43:49 -0700]] [[74.135.46.100]] Bad Request : This web server is running in SSL mode. Try the URL[a href='https://64.79.199.144:10000/'>https://64.79.199.144:10000/</a> instead.<br> [[28/Jul/2006:23:45:30 -0700]] Reloading configuration [[28/Jul/2006:23:56:09 -0700]] Reloading configuration bad reqline [[29/Jul/2006:00:46:59 -0700]] [[74.135.46.100]] Bad Request : This web server is running in SSL mode. Try the URL[a href='https://64.79.199.144:10000/'>https://64.79.199.144:10000/</a> instead.<br> Out of memory! [[29/Jul/2006:00:56:51 -0700]] miniserv.pl started [[29/Jul/2006:00:56:51 -0700]] PAM authentication enabled bad reqline [[29/Jul/2006:00:57:13 -0700]] [[74.135.46.100]] Bad Request : This web server is running in SSL mode. Try the URL[a href='https://64.79.199.144:10000/'>https://64.79.199.144:10000/</a> instead.<br> Out of memory! [[29/Jul/2006:01:01:08 -0700]] miniserv.pl started [[29/Jul/2006:01:01:08 -0700]] PAM authentication enabled [[29/Jul/2006:03:13:54 -0700]] miniserv.pl started [[29/Jul/2006:03:13:54 -0700]] PAM authentication enabled [[29/Jul/2006:03:14:08 -0700]] miniserv.pl started [[29/Jul/2006:03:14:08 -0700]] PAM authentication enabled [[29/Jul/2006:03:14:43 -0700]] miniserv.pl started [[29/Jul/2006:03:14:43 -0700]] PAM authentication enabled [[29/Jul/2006:03:15:05 -0700]] miniserv.pl started [[29/Jul/2006:03:15:05 -0700]] PAM authentication enabled [[29/Jul/2006:03:15:40 -0700]] miniserv.pl started [[29/Jul/2006:03:15:40 -0700]] PAM authentication enabled [[29/Jul/2006:11:03:26 -0700]] miniserv.pl started [[29/Jul/2006:11:03:26 -0700]] PAM authentication enabled bad reqline [[29/Jul/2006:11:08:47 -0700]] [[74.135.46.100]] Bad Request : This web server is running in SSL mode. Try the URL[a href='https://64.79.199.144:10000/'>https://64.79.199.144:10000/</a> instead.<br> bad reqline
[[Fri Jul 28 21:18:50 2006]] [[notice]] caught SIGTERM, shutting down No log handling enabled - turning on stderr logging Cannot find module (IP-MIB): At line 0 in (none) Cannot find module (IF-MIB): At line 0 in (none) Cannot find module (TCP-MIB): At line 0 in (none) Cannot find module (UDP-MIB): At line 0 in (none) Cannot find module (HOST-RESOURCES-MIB): At line 0 in (none) Cannot find module (SNMPv2-MIB): At line 0 in (none) Cannot find module (SNMPv2-SMI): At line 0 in (none) Cannot find module (NOTIFICATION-LOG-MIB): At line 0 in (none) Cannot find module (UCD-SNMP-MIB): At line 0 in (none) Cannot find module (UCD-DEMO-MIB): At line 0 in (none) Cannot find module (SNMP-TARGET-MIB): At line 0 in (none) Cannot find module (NET-SNMP-AGENT-MIB): At line 0 in (none) Cannot find module (HOST-RESOURCES-TYPES): At line 0 in (none) Cannot find module (LM-SENSORS-MIB): At line 0 in (none) Cannot find module (IPV6-ICMP-MIB): At line 0 in (none) Cannot find module (IPV6-MIB): At line 0 in (none) Cannot find module (IPV6-TCP-MIB): At line 0 in (none) Cannot find module (IPV6-UDP-MIB): At line 0 in (none) Cannot find module (SNMP-VIEW-BASED-ACM-MIB): At line 0 in (none) Cannot find module (SNMP-COMMUNITY-MIB): At line 0 in (none) Cannot find module (UCD-DLMOD-MIB): At line 0 in (none) Cannot find module (SNMP-FRAMEWORK-MIB): At line 0 in (none) Cannot find module (SNMP-MPD-MIB): At line 0 in (none) Cannot find module (SNMP-USER-BASED-SM-MIB): At line 0 in (none) Cannot find module (SNMP-NOTIFICATION-MIB): At line 0 in (none) Cannot find module (SNMPv2-TM): At line 0 in (none) [[Fri Jul 28 21:18:53 2006]] [[notice]] suEXEC mechanism enabled (wrapper: /usr/sbin/suexec) [[Fri Jul 28 21:18:53 2006]] [[notice]] Digest: generating secret for digest authentication ... [[Fri Jul 28 21:18:53 2006]] [[notice]] Digest: done [[Fri Jul 28 21:18:53 2006]] [[notice]] LDAP: Built with OpenLDAP LDAP SDK [[Fri Jul 28 21:18:53 2006]] [[notice]] LDAP: SSL support unavailable [[Fri Jul 28 21:18:54 2006]] [[notice]] mod_python: Creating 4 session mutexes based on 256 max processes and 0 max threads. [[Fri Jul 28 21:18:54 2006]] [[notice]] Apache/2.0.53 (Fedora) configured -- resuming normal operations [[Fri Jul 28 23:37:15 2006]] [[notice]] suEXEC mechanism enabled (wrapper: /usr/sbin/suexec) [[Fri Jul 28 23:37:15 2006]] [[notice]] Digest: generating secret for digest authentication ... [[Fri Jul 28 23:37:15 2006]] [[notice]] Digest: done [[Fri Jul 28 23:37:15 2006]] [[notice]] LDAP: Built with OpenLDAP LDAP SDK [[Fri Jul 28 23:37:15 2006]] [[notice]] LDAP: SSL support unavailable [[Fri Jul 28 23:37:16 2006]] [[notice]] mod_python: Creating 4 session mutexes based on 256 max processes and 0 max threads. [[Fri Jul 28 23:37:16 2006]] [[notice]] Apache/2.0.53 (Fedora) configured -- resuming normal operations [[Sat Jul 29 01:00:37 2006]] [[notice]] suEXEC mechanism enabled (wrapper: /usr/sbin/suexec) [[Sat Jul 29 01:00:38 2006]] [[notice]] Digest: generating secret for digest authentication ... [[Sat Jul 29 01:00:38 2006]] [[notice]] Digest: done [[Sat Jul 29 01:00:38 2006]] [[notice]] LDAP: Built with OpenLDAP LDAP SDK [[Sat Jul 29 01:00:38 2006]] [[notice]] LDAP: SSL support unavailable [[Sat Jul 29 01:00:39 2006]] [[notice]] mod_python: Creating 4 session mutexes based on 256 max processes and 0 max threads. [[Sat Jul 29 01:00:39 2006]] [[notice]] Apache/2.0.53 (Fedora) configured -- resuming normal operations [[Sat Jul 29 11:03:06 2006]] [[notice]] suEXEC mechanism enabled (wrapper: /usr/sbin/suexec) [[Sat Jul 29 11:03:07 2006]] [[notice]] Digest: generating secret for digest authentication ... [[Sat Jul 29 11:03:07 2006]] [[notice]] Digest: done [[Sat Jul 29 11:03:07 2006]] [[notice]] LDAP: Built with OpenLDAP LDAP SDK [[Sat Jul 29 11:03:07 2006]] [[notice]] LDAP: SSL support unavailable [[Sat Jul 29 11:03:07 2006]] [[notice]] mod_python: Creating 4 session mutexes based on 256 max processes and 0 max threads. [[Sat Jul 29 11:03:08 2006]] [[notice]] Apache/2.0.53 (Fedora) configured -- resuming normal operations
Jul 29 01:00:24 peerlesswebhosting xinetd: xinetd startup succeeded Jul 29 01:00:25 peerlesswebhosting clamd: LibClamAV Warning: ******************************************************** Jul 29 01:00:25 peerlesswebhosting clamd: LibClamAV Warning: *** This version of the ClamAV engine is outdated. *** Jul 29 01:00:25 peerlesswebhosting clamd: LibClamAV Warning: *** DON'T PANIC! Read http://www.clamav.net/faq.html *** Jul 29 01:00:25 peerlesswebhosting clamd: LibClamAV Warning: ******************************************************** Jul 29 01:00:25 peerlesswebhosting clamd: LibClamAV Warning: ******************************************************** Jul 29 01:00:25 peerlesswebhosting clamd: LibClamAV Warning: *** This version of the ClamAV engine is outdated. *** Jul 29 01:00:25 peerlesswebhosting clamd: LibClamAV Warning: *** DON'T PANIC! Read http://www.clamav.net/faq.html *** Jul 29 01:00:25 peerlesswebhosting clamd: LibClamAV Warning: ******************************************************** Jul 29 01:00:21 peerlesswebhosting rc.sysinit: -e Jul 29 01:00:21 peerlesswebhosting sysctl: net.ipv4.ip_forward = 0 Jul 29 01:00:21 peerlesswebhosting sysctl: error: unknown error 1 setting key 'net.ipv4.conf.default.rp_filter' Jul 29 01:00:21 peerlesswebhosting sysctl: error: unknown error 1 setting key 'net.ipv4.conf.default.accept_source_route' Jul 29 01:00:21 peerlesswebhosting sysctl: error: unknown error 1 setting key 'kernel.sysrq' Jul 29 01:00:21 peerlesswebhosting sysctl: error: unknown error 1 setting key 'kernel.core_uses_pid' Jul 29 01:00:21 peerlesswebhosting rc.sysinit: Configuring kernel parameters: failed Jul 29 01:00:21 peerlesswebhosting date: Sat Jul 29 01:00:21 PDT 2006 Jul 29 01:00:21 peerlesswebhosting rc.sysinit: Setting clock : Sat Jul 29 01:00:21 PDT 2006 succeeded Jul 29 01:00:21 peerlesswebhosting rc.sysinit: Setting hostname peerlesswebhosting.com: succeeded Jul 29 01:00:22 peerlesswebhosting rc.sysinit: Mounting local filesystems: succeeded Jul 29 01:00:22 peerlesswebhosting rc.sysinit: Enabling local filesystem quotas: succeeded Jul 29 01:00:22 peerlesswebhosting rc.sysinit: Enabling swap space: succeeded Jul 29 01:00:22 peerlesswebhosting iptables: succeeded Jul 29 01:00:22 peerlesswebhosting last message repeated 2 times Jul 29 01:00:23 peerlesswebhosting sysctl: net.ipv4.ip_forward = 0 Jul 29 01:00:23 peerlesswebhosting sysctl: error: unknown error 1 setting key 'net.ipv4.conf.default.rp_filter' Jul 29 01:00:23 peerlesswebhosting sysctl: error: unknown error 1 setting key 'net.ipv4.conf.default.accept_source_route' Jul 29 01:00:23 peerlesswebhosting sysctl: error: unknown error 1 setting key 'kernel.sysrq' Jul 29 01:00:23 peerlesswebhosting sysctl: error: unknown error 1 setting key 'kernel.core_uses_pid' Jul 29 01:00:23 peerlesswebhosting network: Setting network parameters: failed Jul 29 01:00:23 peerlesswebhosting network: Bringing up loopback interface: succeeded Jul 29 01:00:23 peerlesswebhosting ifup: SIOCADDRT: Network is unreachable Jul 29 01:00:23 peerlesswebhosting last message repeated 2 times Jul 29 01:00:24 peerlesswebhosting network: Bringing up interface venet0: succeeded Jul 29 01:00:24 peerlesswebhosting vzquota: quotaon: using //aquota.group on /dev/simfs [[/]]: Device or resource busy Jul 29 01:00:24 peerlesswebhosting vzquota: quotaon: using //aquota.user on /dev/simfs [[/]]: Device or resource busy Jul 29 01:00:24 peerlesswebhosting rc: Starting vzquota: failed Jul 29 01:00:28 peerlesswebhosting clamd: clamd startup succeeded Jul 29 01:00:29 peerlesswebhosting mysqld: Starting MySQL: succeeded Jul 29 01:00:31 peerlesswebhosting postgresql: Starting postgresql service: failed Jul 29 01:00:34 peerlesswebhosting postfix: succeeded Jul 29 01:00:34 peerlesswebhosting proftpd: - warning: AuthPAMAuthoritative is deprecated Jul 29 01:00:34 peerlesswebhosting proftpd: proftpd startup succeeded Jul 29 01:00:35 peerlesswebhosting sendmail: sendmail startup succeeded Jul 29 01:00:35 peerlesswebhosting sendmail: sendmail: fatal: flush queue mode requires no recipient Jul 29 01:00:36 peerlesswebhosting sendmail: sm-client startup failed Jul 29 01:00:36 peerlesswebhosting gpm: O0o.oops(): [[console.c(253)]]: Can't determine console device Jul 29 01:00:36 peerlesswebhosting gpm: gpm startup failed Jul 29 01:00:37 peerlesswebhosting httpd: [[Sat Jul 29 01:00:37 2006]] [[warn]] NameVirtualHost 64.79.199.144:80 has no VirtualHosts Jul 29 01:00:38 peerlesswebhosting httpd: httpd startup succeeded Jul 29 01:00:38 peerlesswebhosting crond: crond startup succeeded Jul 29 01:00:39 peerlesswebhosting saslauthd: saslauthd startup succeeded Jul 29 01:00:59 peerlesswebhosting rc: Starting usermin: succeeded Jul 29 01:01:09 peerlesswebhosting rc: Starting webmin: succeeded Jul 29 11:02:56 peerlesswebhosting syslog: syslogd startup succeeded Jul 29 11:02:56 peerlesswebhosting syslog: klogd succeeded Jul 29 11:02:56 peerlesswebhosting dovecot: dovecot startup succeeded Jul 29 11:02:56 peerlesswebhosting named: named startup succeeded Jul 29 11:02:57 peerlesswebhosting sshd: succeeded Jul 29 11:02:57 peerlesswebhosting xinetd: xinetd startup succeeded Jul 29 11:02:57 peerlesswebhosting clamd: LibClamAV Warning: ******************************************************** Jul 29 11:02:57 peerlesswebhosting clamd: LibClamAV Warning: *** This version of the ClamAV engine is outdated. *** Jul 29 11:02:57 peerlesswebhosting clamd: LibClamAV Warning: *** DON'T PANIC! Read http://www.clamav.net/faq.html *** Jul 29 11:02:57 peerlesswebhosting clamd: LibClamAV Warning: ******************************************************** Jul 29 11:02:57 peerlesswebhosting clamd: LibClamAV Warning: ******************************************************** Jul 29 11:02:57 peerlesswebhosting clamd: LibClamAV Warning: *** This version of the ClamAV engine is outdated. *** Jul 29 11:02:57 peerlesswebhosting clamd: LibClamAV Warning: *** DON'T PANIC! Read http://www.clamav.net/faq.html *** Jul 29 11:02:57 peerlesswebhosting clamd: LibClamAV Warning: ******************************************************** Jul 29 11:02:54 peerlesswebhosting rc.sysinit: -e Jul 29 11:02:54 peerlesswebhosting sysctl: error: unknown error 1 setting key 'net.ipv4.conf.default.rp_filter' Jul 29 11:02:54 peerlesswebhosting sysctl: net.ipv4.ip_forward = 0 Jul 29 11:02:54 peerlesswebhosting sysctl: error: unknown error 1 setting key 'net.ipv4.conf.default.accept_source_route' Jul 29 11:02:54 peerlesswebhosting sysctl: error: unknown error 1 setting key 'kernel.sysrq' Jul 29 11:02:54 peerlesswebhosting sysctl: error: unknown error 1 setting key 'kernel.core_uses_pid' Jul 29 11:02:54 peerlesswebhosting rc.sysinit: Configuring kernel parameters: failed Jul 29 11:02:54 peerlesswebhosting date: Sat Jul 29 11:02:54 PDT 2006 Jul 29 11:02:54 peerlesswebhosting rc.sysinit: Setting clock : Sat Jul 29 11:02:54 PDT 2006 succeeded Jul 29 11:02:54 peerlesswebhosting rc.sysinit: Setting hostname peerlesswebhosting.com: succeeded Jul 29 11:02:54 peerlesswebhosting rc.sysinit: Mounting local filesystems: succeeded Jul 29 11:02:55 peerlesswebhosting rc.sysinit: Enabling local filesystem quotas: succeeded Jul 29 11:02:55 peerlesswebhosting rc.sysinit: Enabling swap space: succeeded Jul 29 11:02:55 peerlesswebhosting iptables: succeeded Jul 29 11:02:55 peerlesswebhosting last message repeated 2 times Jul 29 11:02:56 peerlesswebhosting sysctl: error: unknown error 1 setting key 'net.ipv4.conf.default.rp_filter' Jul 29 11:02:56 peerlesswebhosting sysctl: net.ipv4.ip_forward = 0 Jul 29 11:02:56 peerlesswebhosting sysctl: error: unknown error 1 setting key 'net.ipv4.conf.default.accept_source_route' Jul 29 11:02:56 peerlesswebhosting sysctl: error: unknown error 1 setting key 'kernel.sysrq' Jul 29 11:02:56 peerlesswebhosting sysctl: error: unknown error 1 setting key 'kernel.core_uses_pid' Jul 29 11:02:56 peerlesswebhosting network: Setting network parameters: failed Jul 29 11:02:56 peerlesswebhosting network: Bringing up loopback interface: succeeded Jul 29 11:02:56 peerlesswebhosting ifup: SIOCADDRT: Network is unreachable Jul 29 11:02:56 peerlesswebhosting last message repeated 2 times Jul 29 11:02:56 peerlesswebhosting network: Bringing up interface venet0: succeeded Jul 29 11:02:56 peerlesswebhosting vzquota: quotaon: using //aquota.group on /dev/simfs [[/]]: Device or resource busy Jul 29 11:02:56 peerlesswebhosting vzquota: quotaon: using //aquota.user on /dev/simfs [[/]]: Device or resource busy Jul 29 11:02:56 peerlesswebhosting rc: Starting vzquota: failed Jul 29 11:02:59 peerlesswebhosting clamd: clamd startup succeeded Jul 29 11:03:00 peerlesswebhosting mysqld: Starting MySQL: succeeded Jul 29 11:03:02 peerlesswebhosting postgresql: Starting postgresql service: failed Jul 29 11:03:04 peerlesswebhosting postfix: succeeded Jul 29 11:03:04 peerlesswebhosting proftpd: - warning: AuthPAMAuthoritative is deprecated Jul 29 11:03:04 peerlesswebhosting proftpd: proftpd startup succeeded Jul 29 11:03:04 peerlesswebhosting sendmail: sendmail startup succeeded Jul 29 11:03:04 peerlesswebhosting sendmail: sendmail: fatal: flush queue mode requires no recipient Jul 29 11:03:05 peerlesswebhosting sendmail: sm-client startup failed Jul 29 11:03:05 peerlesswebhosting gpm: O0o.oops(): [[console.c(253)]]: Can't determine console device Jul 29 11:03:05 peerlesswebhosting gpm: gpm startup failed Jul 29 11:03:06 peerlesswebhosting httpd: [[Sat Jul 29 11:03:06 2006]] [[warn]] NameVirtualHost 64.79.199.144:80 has no VirtualHosts Jul 29 11:03:07 peerlesswebhosting httpd: httpd startup succeeded Jul 29 11:03:07 peerlesswebhosting crond: crond startup succeeded Jul 29 11:03:07 peerlesswebhosting saslauthd: saslauthd startup succeeded Jul 29 11:03:20 peerlesswebhosting rc: Starting usermin: succeeded Jul 29 11:03:26 peerlesswebhosting rc: Starting webmin: succeeded
Now I wonder if it could be memory related. Maybe I need t go ahead and get the #5 plan with 1024 ram[p][font face="Courier New, Courier, mono"]vpsstat[/p]Resource Current Recent Max Barrier Limit Failures
------------ ---------- ---------- ---------- ---------- ----------
oomguarpages 172.1 MB 243.3 MB 225 MB n/a 0
privvmpages 346.3 MB 500.4 MB 480 MB 480 MB 7
numproc 58 68 n/a 512 0
numtcpsock 19 36 n/a 480 0
numothersock 128 145 n/a 512 0[/reftxt][/p]
John Wolgamot
Hi John,
Looks kinda like memory might be an issue.
You can probably shutdown some unnecessary services, depending on your needs, which might free up enough memory.
FTP is unnecessary and dangerous, if you and your users can be convinced not to use it, and to use SSH/SCP and FTP over SSH instead. So, you can turn off ProFTPd with (the following two commands will shutdown and disable on boot whatever service you name):
service proftpd stop
chkconfig --level 345 proftpd off
You can shutdown and disable whichever database server(s) you don't use, whether it's PostgreSQL or MySQL. You'll have to tell Virtualmin that you don't use it, too, of course. If the software you're using supports SQLite, you could disable both of the big databases and just use SQLite, which is much smaller. Virtualmin doesn't rely on any database to be running, as long as you tell it you don't want to provide databases for your users.
gpm can be disabled. You probably don't have console access anyway. gpm is the console mouse service. Oh, actually, I see that it's failing...so it's not taking memory anyway. But removing it will clean up your log some.
If you don't use telnet (please tell me you don't use telnet!) you can probably shutdown xinetd. It can be used to start other services, but it probably isn't, so kill it and get back that little bit of memory.
The rpc and nfs stuff is possibly not needed (but check to be sure none of your directories are being mounted via NFS first). This would include portmap, nfslock, nfs, netfs, rpc*. But I don't see it being started, so this might already be disabled.
That's at least a start. There's probably some other stuff you can kill to free up some memory, if budget prevents you from getting more memory.
Webmin and Usermin aren't huge, but they aren't tiny either. My parent processes are running at about 10MB each (with quite a bit of that being shared libs that both are using). Though, the child processes, spawned for each new user that is logged in at any given time, can grow quite a bit bigger when used for things that require caching and/or indexing, like reading email. I've seen them grow to 50 MB or so, I think. Not much to be done about that, except maybe not using webmail (of any sort--any webmail that provides reasonable search, sort, and speed, is going to have to do caching in a pretty similar way)...or making sure mailboxes are never very big.
--
Check out the forum guidelines!
Thanks so much for the quick reply Joe.
I went ahead and upgraded the VLink #5 to get the higher mem/disk space and 2 more IP's
I disabled ProFTPd. I don't use it and wouldn't have allowed any users to use it either.
No :-) I don't use telnet.
I'm just setting up a small VPS to consolidate some clients and they really won't be purposly given the ability to mess things up and 99.9% of them would have to call me to find out how to setup their ftp client to use ssh if they ever cared to do that.
They mainly use the admin interface of interchange or OSCommerce to add products and manage customers.
I have one girl I trained to winscp images to a directory so she could make banners.
I'm really happy you have implemented an easy way to use pop3s via dovecot so I can set my clients up with outlook and still keep their passwords encrypted.
I disabled plain text logins in dovecot but I need to make sure there is no other way to do a plain text login.
Before dovecot I found a great pop3s howto and I disabled pop3 completely so all that could be used was pop3s.
Anyway, memory should be less of an issue now that I switched to the better VPS plan.
I noticed there a lot of duplicate processes. Is this fairly normal?
This is a pretty much stock minimal server with only Virtualmin installed. Oh and Interchange.
As I mentioned, it's so minimal I even had to start by installing yum and up2date just to get going :-)
I have 4 domains installed at the moment only 2 of which are live and none really active either at the moment
Thanks again,
John
Command: ps -auxh --sort=size | tac
USER PID %CPU %MEM VSZ RSS TTY STAT START TIME COMMAND
mysql 28439 0.0 0.3 110552 19592 ? Sl 12:26 0:00 /usr/libexec/mysqld --defaults-file=/etc/my.cnf --basedir=/usr --datadir=/var/lib/mysql --user=mysql --pid-file=/var/run/mysqld/mysqld.pid --skip-locking --socket=/var/lib/mysql/mysql.sock
root 30155 0.0 1.2 78820 76092 ? Ss 12:26 0:01 /usr/bin/perl /usr/libexec/webmin/miniserv.pl /etc/webmin/miniserv.conf
interch 30091 0.0 0.5 40684 36712 ? Ss 12:26 0:00 interchange
named 28263 0.0 0.0 38280 2972 ? Ssl 12:26 0:00 /usr/sbin/named -u named
clamav 28329 0.0 0.2 17472 14568 ? Ss 12:26 0:00 clamd
apache 28666 0.0 0.2 23180 12880 ? S 12:26 0:00 /usr/sbin/httpd
apache 29697 0.0 0.2 22964 12664 ? S 12:26 0:00 /usr/sbin/httpd
apache 28670 0.0 0.2 22960 12656 ? S 12:26 0:00 /usr/sbin/httpd
apache 29696 0.0 0.2 22952 12660 ? S 12:26 0:00 /usr/sbin/httpd
apache 28668 0.0 0.2 22948 12660 ? S 12:26 0:00 /usr/sbin/httpd
apache 10101 0.0 0.2 22944 12636 ? S 12:37 0:00 /usr/sbin/httpd
apache 28669 0.0 0.2 22936 12640 ? S 12:26 0:00 /usr/sbin/httpd
apache 28667 0.0 0.2 22936 12644 ? S 12:26 0:00 /usr/sbin/httpd
apache 28671 0.0 0.2 22928 12652 ? S 12:26 0:00 /usr/sbin/httpd
root 28626 0.0 0.1 22516 11728 ? Ss 12:26 0:00 /usr/sbin/httpd
root 30132 0.0 0.1 9576 6756 ? Ss 12:26 0:00 /usr/bin/perl /usr/libexec/usermin/miniserv.pl /etc/usermin/miniserv.conf
root 28638 0.0 0.0 2460 1044 ? Ss 12:26 0:00 crond
apache 7396 0.0 0.0 2296 748 ? R 14:49 0:00 ps -auxh --sort=size
root 28311 0.0 0.0 5936 1724 ? S 12:26 0:00 dovecot-auth
root 28277 0.0 0.0 3992 1704 ? Ss 12:26 0:00 /usr/sbin/sshd
postfix 9433 0.0 0.0 5132 1580 ? S 14:06 0:00 pickup -l -t fifo -u
postfix 28586 0.0 0.0 5176 1680 ? S 12:26 0:00 qmgr -l -t fifo -u
root 28576 0.0 0.0 5076 1620 ? Ss 12:26 0:00 /usr/libexec/postfix/master
root 28653 0.0 0.0 4032 1176 ? S 12:26 0:00 /usr/sbin/saslauthd -m /var/run/saslauthd -a shadow
root 28651 0.0 0.0 4032 1176 ? S 12:26 0:00 /usr/sbin/saslauthd -m /var/run/saslauthd -a shadow
root 28649 0.0 0.0 4032 1176 ? S 12:26 0:00 /usr/sbin/saslauthd -m /var/run/saslauthd -a shadow
root 28648 0.0 0.0 4032 1176 ? S 12:26 0:00 /usr/sbin/saslauthd -m /var/run/saslauthd -a shadow
root 28647 0.0 0.0 4032 1176 ? Ss 12:26 0:00 /usr/sbin/saslauthd -m /var/run/saslauthd -a shadow
root 28300 0.0 0.0 2068 864 ? Ss 12:26 0:00 xinetd -stayalive -pidfile /var/run/xinetd.pid
dovecot 19456 0.0 0.0 3508 1524 ? S 12:41 0:00 pop3-login
dovecot 18385 0.0 0.0 3508 1524 ? S 12:41 0:00 pop3-login
dovecot 16106 0.0 0.0 3508 1528 ? S 12:39 0:00 pop3-login
dovecot 28314 0.0 0.0 3516 1528 ? S 12:26 0:00 imap-login
dovecot 28313 0.0 0.0 3516 1528 ? S 12:26 0:00 imap-login
dovecot 28312 0.0 0.0 3516 1528 ? S 12:26 0:00 imap-login
root 28250 0.0 0.0 3516 1148 ? Ss 12:26 0:00 /usr/sbin/dovecot
root 1 0.0 0.0 1616 608 ? Ss 12:26 0:00 init [[3]]
root 28403 0.0 0.0 2140 1108 ? S 12:26 0:00 /bin/sh /usr/bin/mysqld_safe --defaults-file=/etc/my.cnf --pid-file=/var/run/mysqld/mysqld.pid
apache 7394 0.0 0.0 2136 1000 ? S 14:49 0:00 sh -c ps -auxh --sort=size | tac
root 28240 0.0 0.0 1520 584 ? Ss 12:26 0:00 syslogd -m 0
apache 7397 0.0 0.0 1456 428 ? S 14:49 0:00 tac
John Wolgamot
<i>I noticed there a lot of duplicate processes. Is this fairly normal?</i>
Yes, all of the servers start a parent process, plus some number of children (or they spawn children on an as-needed basis). All of them are configurable, and you may see a small (probably tiny) memory usage benefit from cutting back on the number of idle Apache processes. The mail processes are spawned on an as-needed basis. None of them take up very much memory, as they use a lot of shared libraries, and so the actual usage is probably half or less of what it appears.
--
Check out the forum guidelines!
Ahh,
Sorry. I think this was asked and answered. I remember you mentioning something about this to someone else as I was browsing your forums.
And so far so good on the upgraded VPS with 1024 megs of memory. :-) No quirks at all. I hope it was as easy as a memory issue.
http://forums.vpslink.com/showpost.php?p=2092&postcount=6
Thanks,
John
John Wolgamot