Thanks again for all the help. Bit of an update: I’m still having issues with mail exchanges recognising the new SSL, they still show the expired one. Also, when I test on //email/testTo: I get the both results.
i was talking about SSL button not about renew cron. Also, sometimes lsws not getting restart even after sucessful renew by cron. so you can set lsws restart cron once a week.
Don’t use Cyberpanel SSL renew button showing on website listing page more than once. if first time its not working then run from commandline with --debug option for finding issue.
For now run below commands:
cat /root/.acme.sh/intervalle-arts.com_ecc/backup/fullchain.bak> /etc/letsencrypt/live/intervalle-arts.com/fullchain.pem
cat /root/.acme.sh/intervalle-arts.com_ecc/backup/key.bak > /etc/letsencrypt/live/intervalle-arts.com/privkey.pem
rm /etc/pki/dovecot/certs/dovecot.pem /etc/pki/dovecot/private/dovecot.pem
ln -s /etc/letsencrypt/live/mail.intervalle-arts.com/fullchain.pem /etc/pki/dovecot/certs/dovecot.pem
ln -s /etc/letsencrypt/live/mail.intervalle-arts.com/privkey.pem /etc/pki/dovecot/private/dovecot.pem
service lsws restart && service postfix restart && service dovecot restart
tail -n 4 /etc/dovecot/dovecot.conf #make sure above tail command output have without # #local_namemail.intervalle-arts.com {
if you are not able to get www SSL working, Please renew SSL after limit ban removal. or try other SSL like zero SSL instead of LE.
Hope everything will be fine.
Hi @luckyrajpurohit@josephgodwinke. Sorry to bother you again, but I’m getting some very odd errors since yesterday evening.
I received a couple of mails from Cyberpanel Log:
The first:
[12.05.2022_00-00-06] [Errno 2] No such file or directory: ‘/home/cyberpanel/git’. [IncScheduler.git:90].
The second:
[12.05.2022_02-00-04] [Errno 2] No such file or directory: ‘postmap’: ‘postmap’. [ProcessUtilities.normalExecutioner.Base].
[12.05.2022_02-00-04] Running SSL Renew Utility.
The third:
[12.05.2022_03-05-32] (421, b’4.7.0 mail.intervalle-arts.com Error: too many connections from ::1’).
[12.05.2022_03-05-32] (421, b’4.7.0 mail.intervalle-arts.com Error: too many connections from ::1’).
I exported the CYBERPANEL LOG below:
[12.05.2022_03-00-29] (421, b’4.7.0 mail.intervalle-arts.com Error: too many connections from ::1’)
[12.05.2022_03-00-29] (421, b’4.7.0 mail.intervalle-arts.com Error: too many connections from ::1’)
[12.05.2022_03-00-29] (421, b’4.7.0 mail.intervalle-arts.com Error: too many connections from ::1’)
[12.05.2022_03-00-29] (421, b’4.7.0 mail.intervalle-arts.com Error: too many connections from ::1’)
[12.05.2022_03-00-29] (421, b’4.7.0 mail.intervalle-arts.com Error: too many connections from ::1’)
[12.05.2022_03-00-29] (421, b’4.7.0 mail.intervalle-arts.com Error: too many connections from ::1’)
[12.05.2022_03-00-29] (421, b’4.7.0 mail.intervalle-arts.com Error: too many connections from ::1’)
[12.05.2022_03-00-29] (421, b’4.7.0 mail.intervalle-arts.com Error: too many connections from ::1’)
[12.05.2022_03-00-29] (421, b’4.7.0 mail.intervalle-arts.com Error: too many connections from ::1’)
[12.05.2022_03-00-29] (421, b’4.7.0 mail.intervalle-arts.com Error: too many connections from ::1’)
[12.05.2022_03-00-29] (421, b’4.7.0 mail.intervalle-arts.com Error: too many connections from ::1’)
[12.05.2022_03-00-29] (421, b’4.7.0 mail.intervalle-arts.com Error: too many connections from ::1’)
[12.05.2022_03-00-29] (421, b’4.7.0 mail.intervalle-arts.com Error: too many connections from ::1’)
[12.05.2022_03-00-29] (421, b’4.7.0 mail.intervalle-arts.com Error: too many connections from ::1’)
[12.05.2022_03-00-29] (421, b’4.7.0 mail.intervalle-arts.com Error: too many connections from ::1’)
[12.05.2022_03-00-29] (421, b’4.7.0 mail.intervalle-arts.com Error: too many connections from ::1’)
[12.05.2022_03-00-29] (421, b’4.7.0 mail.intervalle-arts.com Error: too many connections from ::1’)
[12.05.2022_03-00-29] (421, b’4.7.0 mail.intervalle-arts.com Error: too many connections from ::1’)
[12.05.2022_03-00-29] (421, b’4.7.0 mail.intervalle-arts.com Error: too many connections from ::1’)
[12.05.2022_03-00-29] (421, b’4.7.0 mail.intervalle-arts.com Error: too many connections from ::1’)
[12.05.2022_03-00-29] (421, b’4.7.0 mail.intervalle-arts.com Error: too many connections from ::1’)
[12.05.2022_03-00-29] (421, b’4.7.0 mail.intervalle-arts.com Error: too many connections from ::1’)
[12.05.2022_03-00-29] (421, b’4.7.0 mail.intervalle-arts.com Error: too many connections from ::1’)
[12.05.2022_03-00-29] (421, b’4.7.0 mail.intervalle-arts.com Error: too many connections from ::1’)
[12.05.2022_03-00-29] (421, b’4.7.0 mail.intervalle-arts.com Error: too many connections from ::1’)
[12.05.2022_03-00-29] (421, b’4.7.0 mail.intervalle-arts.com Error: too many connections from ::1’)
[12.05.2022_03-00-29] (421, b’4.7.0 mail.intervalle-arts.com Error: too many connections from ::1’)
[12.05.2022_03-00-29] (421, b’4.7.0 mail.intervalle-arts.com Error: too many connections from ::1’)
[12.05.2022_03-00-29] (421, b’4.7.0 mail.intervalle-arts.com Error: too many connections from ::1’)
[12.05.2022_03-00-29] (421, b’4.7.0 mail.intervalle-arts.com Error: too many connections from ::1’)
[12.05.2022_03-00-29] (421, b’4.7.0 mail.intervalle-arts.com Error: too many connections from ::1’)
[12.05.2022_03-00-29] (421, b’4.7.0 mail.intervalle-arts.com Error: too many connections from ::1’)
[12.05.2022_03-00-29] (421, b’4.7.0 mail.intervalle-arts.com Error: too many connections from ::1’)
[12.05.2022_03-00-29] (421, b’4.7.0 mail.intervalle-arts.com Error: too many connections from ::1’)
[12.05.2022_03-00-29] (421, b’4.7.0 mail.intervalle-arts.com Error: too many connections from ::1’)
[12.05.2022_03-00-29] (421, b’4.7.0 mail.intervalle-arts.com Error: too many connections from ::1’)
[12.05.2022_03-00-29] (421, b’4.7.0 mail.intervalle-arts.com Error: too many connections from ::1’)
[12.05.2022_03-00-29] (421, b’4.7.0 mail.intervalle-arts.com Error: too many connections from ::1’)
[12.05.2022_03-00-29] (421, b’4.7.0 mail.intervalle-arts.com Error: too many connections from ::1’)
[12.05.2022_03-00-29] (421, b’4.7.0 mail.intervalle-arts.com Error: too many connections from ::1’)
[12.05.2022_03-00-29] (421, b’4.7.0 mail.intervalle-arts.com Error: too many connections from ::1’)
[12.05.2022_03-00-29] (421, b’4.7.0 mail.intervalle-arts.com Error: too many connections from ::1’)
[12.05.2022_03-00-29] (421, b’4.7.0 mail.intervalle-arts.com Error: too many connections from ::1’)
[12.05.2022_03-00-29] (421, b’4.7.0 mail.intervalle-arts.com Error: too many connections from ::1’)
[12.05.2022_03-00-29] (421, b’4.7.0 mail.intervalle-arts.com Error: too many connections from ::1’)
[12.05.2022_03-00-31] (421, b’4.7.0 mail.intervalle-arts.com Error: too many connections from ::1’)
[12.05.2022_03-01-50] (421, b’4.7.0 mail.intervalle-arts.com Error: too many connections from ::1’)
[12.05.2022_03-02-04] (421, b’4.7.0 mail.intervalle-arts.com Error: too many connections from ::1’)
[12.05.2022_03-05-32] (421, b’4.7.0 mail.intervalle-arts.com Error: too many connections from ::1’)
[12.05.2022_03-05-32] (421, b’4.7.0 mail.intervalle-arts.com Error: too many connections from ::1’)
Aslo, if the auto-renewal is running via Cyberpanel and requesting certs from Let’s Encrypt, does that mean the limit ban will just keep continuing forever?
Outgoing emails are being rejected. Are you sendin bulk emails? Your postfix MTA is opening so many concurrent connections at a single time 03-00-29
Solution: As explained here Postfix Configuration Parameters run the command nano /etc/postfix-out/main.cf or vi /etc/postfix-out/main.cf on AlmaLinux and change
# Don't anvil(8) control the re-injection port.
#
# smtpd_client_connection_count_limit = 0
# 50 concurrent connections
smtpd_client_connection_count_limit = 50
Hi! No, I’ve only sent two or three mails out to test the new SSLs. I’ve checked all the mails and there’s nothing outgoing or stuck in a queue. What could be causing this? Maybe something I did yesterday while trying to fix the SSL issue?
I read the article on rate limits, but if Cyberpanel is requesting new SSLs every day via auto renew doesn’t that mean that the limit will be hit again an again and again?
I believe @luckyrajpurohit gave you the proper way to solve this issue rather than my delete-all-start-all-over again method. I have taken the time to look over his/her steps and they look okay to me.
Did you do anything extra out of what he/she posted?
Thanks for the reply, I haven’t done anything extra at all. I honestly wouldn’t know how!
I just want to check the below questions before I proceed with @luckyrajpurohit 's fix as things are getting a little confusing for me.
for the multiple connections issue. In cyberpanel how can I diagnose the cause of these hundreds of connections? Also, should I do the Postfix Configuration Parameters you suggested? I filled the nano command but there was no such document.
the limit ban with Let’s Encrypt. For this ban to be lifted, I mustn’t request/renew my SSL for one week. But everyday, Cyberpanel is renewing SSL automatically, so I will never escape the ban. Is this correct?
after, should I know run the fix from @luckyrajpurohit to solve the issues from my previous post?
I have new errors today. I didn’t touch anything yesterday other than look at logs, but now cyberpanel is reporting multiple errors.
My mail client was unable to connect to my e-mail sever this morning at the same time Cyberpanel was running the auto-renewal SSL function. I got a sever 500 error in Cyberpanle and the mail client error was:
I checked the EMAIL logs in cyberpanel and got this:
Dec 6 03:01:41 taro postfix/trivial-rewrite[69828]: warning: virtual_mailbox_domains lookup failure
Dec 6 03:01:47 taro postfix/trivial-rewrite[69828]: warning: virtual_mailbox_domains: proxy:mysql:/etc/postfix/mysql-virtual_domains.cf: table lookup problem
Dec 6 03:01:49 taro postfix/trivial-rewrite[69828]: warning: virtual_mailbox_domains lookup failure
Dec 6 03:01:55 taro postfix/smtpd[69900]: NOQUEUE: reject: RCPT from o19837159x89.outbound-mail.sendgrid.net[198.37.159.89]: 451 4.3.0 [email protected]: Temporary lookup failure; from=bounces+5900088-83b4-chris.hayes=intervalle-arts.com@sendgrid.net to=[email protected] proto=ESMTP helo=<o19837159x89.outbound-mail.sendgrid.net>
Dec 6 03:01:55 taro postfix/smtpd[69900]: using backwards-compatible default setting smtpd_relay_before_recipient_restrictions=no to reject recipient “[email protected]” from client “o19837159x89.outbound-mail.sendgrid.net[198.37.159.89]”
Dec 6 03:01:55 taro postfix/smtpd[69900]: disconnect from o19837159x89.outbound-mail.sendgrid.net[198.37.159.89] ehlo=2 starttls=1 mail=1 rcpt=0/1 quit=1 commands=5/6
Dec 6 03:01:55 taro dovecot: auth-worker(70068): Error: mysql(localhost): Connect failed to database (cyberpanel): Can’t connect to local MySQL server through socket ‘/var/lib/mysql/mysql.sock’ (2 “No such file or directory”) - waiting for 125 seconds before retry
Dec 6 03:01:55 taro dovecot: auth-worker(70068): Error: mysql(localhost): Connect failed to database (cyberpanel): Can’t connect to local MySQL server through socket ‘/var/lib/mysql/mysql.sock’ (2 “No such file or directory”) - waiting for 125 seconds before retry
Dec 6 03:01:55 taro dovecot: auth-worker(70068): Error: mysql(localhost): Connect failed to database (cyberpanel): Can’t connect to local MySQL server through socket ‘/var/lib/mysql/mysql.sock’ (2 “No such file or directory”) - waiting for 125 seconds before retry
Dec 6 03:01:55 taro dovecot: auth-worker(70068): Error: mysql(localhost): Connect failed to database (cyberpanel): Can’t connect to local MySQL server through socket ‘/var/lib/mysql/mysql.sock’ (2 “No such file or directory”) - waiting for 125 seconds before retry
Dec 6 03:02:15 taro spamd[70019]: spamd: server killed by SIGTERM, shutting down
Dec 6 03:02:15 taro dovecot: auth-worker(70068): Error: sqlpool(mysql): Finished query ‘SELECT email as user, password FROM e_users WHERE email=‘[email protected]’;’ in 60018 msecs: Query timed out (no free connections for 60 secs)
Dec 6 03:02:15 taro dovecot: auth-worker(70068): Error: conn unix:auth-worker (pid=69764,uid=0): auth-worker<1>: sql([email protected],203.10.99.13,<QUuPAiDvI/3LCmMN>): Password query failed: Not connected to database
Dec 6 03:02:15 taro dovecot: auth: Error: auth-worker: Aborted PASSV request for [email protected]: Lookup timed out
Dec 6 03:02:15 taro dovecot: imap-login: Login: user=[email protected], method=PLAIN, rip=86.48.13.251, lip=93.188.165.29, mpid=70138, TLS, session=<w9uf/x/v0PRWMA37>
Dec 6 03:02:15 taro dovecot: imap-login: Login: user=[email protected], method=PLAIN, rip=86.48.13.251, lip=93.188.165.29, mpid=70141, TLS, session=<1BHGByDvK/VWMA37>
Dec 6 03:02:15 taro dovecot: imap-login: Login: user=[email protected], method=PLAIN, rip=86.48.13.251, lip=93.188.165.29, mpid=70143, TLS, session=
Dec 6 03:02:16 taro dovecot: imap-login: Login: user=[email protected], method=PLAIN, rip=86.48.13.251, lip=93.188.165.29, mpid=70145, TLS, session=
Dec 6 03:02:16 taro dovecot: imap([email protected])<70145>: Disconnected: Logged out in=36 out=555 deleted=0 expunged=0 trashed=0 hdr_count=0 hdr_bytes=0 body_count=0 body_bytes=0
Dec 6 03:02:17 taro dovecot: imap-login: Login: user=[email protected], method=PLAIN, rip=203.10.99.13, lip=93.188.165.29, mpid=70146, TLS, session=<QUuPAiDvI/3LCmMN>
Dec 6 03:02:21 taro spamd[70149]: logger: removing stderr method
Dec 6 03:02:21 taro spamd[70153]: spamd: server started on IO::Socket::IP [127.0.0.1]:783, IO::Socket::IP [::1]:783 (running version 3.4.0)
Dec 6 03:02:27 taro spamd[70153]: spamd: server pid: 70153
Dec 6 03:02:27 taro spamd[70153]: spamd: server successfully spawned child process, pid 70155
Dec 6 03:02:27 taro spamd[70153]: spamd: server successfully spawned child process, pid 70156
Dec 6 03:02:27 taro spamd[70153]: prefork: child states: IS
Dec 6 03:02:27 taro spamd[70153]: prefork: child states: II
Dec 6 03:02:27 taro dovecot: imap-login: Login: user=[email protected], method=PLAIN, rip=203.10.99.13, lip=93.188.165.29, mpid=70157, TLS, session=<kdQ5CCDvK/3LCmMN>
Dec 6 03:02:27 taro dovecot: imap([email protected])<70143>: Disconnected: Logged out in=697 out=6699 deleted=0 expunged=0 trashed=0 hdr_count=0 hdr_bytes=0 body_count=0 body_bytes=0
Dec 6 03:02:58 taro postfix/smtpd[69900]: connect from o19837159x89.outbound-mail.sendgrid.net[198.37.159.89]
Dec 6 03:02:58 taro postfix/smtpd[69900]: NOQUEUE: reject: RCPT from o19837159x89.outbound-mail.sendgrid.net[198.37.159.89]: 451 4.3.0 [email protected]: Temporary lookup failure; from=bounces+5900088-83b4-chris.hayes=intervalle-arts.com@sendgrid.net to=[email protected] proto=ESMTP helo=<o19837159x89.outbound-mail.sendgrid.net>
Dec 6 03:02:58 taro postfix/smtpd[69900]: using backwards-compatible default setting smtpd_relay_before_recipient_restrictions=no to reject recipient “[email protected]” from client “o19837159x89.outbound-mail.sendgrid.net[198.37.159.89]”
Dec 6 03:02:58 taro postfix/smtpd[69900]: disconnect from o19837159x89.outbound-mail.sendgrid.net[198.37.159.89] ehlo=2 starttls=1 mail=1 rcpt=0/1 quit=1 commands=5/6
Dec 6 03:02:58 taro postfix/smtpd[69900]: connect from localhost[::1]
Dec 6 03:02:58 taro postfix/smtpd[69900]: NOQUEUE: reject: RCPT from localhost[::1]: 451 4.3.0 [email protected]: Temporary lookup failure; from=[email protected] to=[email protected] proto=ESMTP helo=<taro.intervalle-arts.com>
Dec 6 03:02:58 taro postfix/smtpd[69900]: using backwards-compatible default setting smtpd_relay_before_recipient_restrictions=no to reject recipient “[email protected]” from client “localhost[::1]”
Dec 6 03:02:58 taro postfix/smtpd[70165]: connect from localhost[::1]
Dec 6 03:02:58 taro postfix/smtpd[70165]: 827FDC00A2: client=localhost[::1]
Dec 6 03:02:58 taro postfix/cleanup[70170]: 827FDC00A2: message-id=[email protected]
Dec 6 03:02:58 taro opendkim[496]: 827FDC00A2: no signing table match for ‘[email protected]’
Dec 6 03:02:58 taro opendkim[496]: 827FDC00A2: no signature data
Dec 6 03:02:59 taro postfix/qmgr[68174]: 827FDC00A2: from=[email protected], size=605, nrcpt=1 (queue active)
Dec 6 03:03:00 taro postfix/smtpd[70165]: disconnect from localhost[::1] ehlo=1 mail=1 rcpt=1 data=1 commands=4
Dec 6 03:03:00 taro postfix/smtpd[69900]: lost connection after RSET from localhost[::1]
Dec 6 03:03:00 taro postfix/smtpd[69900]: disconnect from localhost[::1] ehlo=1 mail=1 rcpt=0/1 rset=1 commands=3/4
Dec 6 03:03:00 taro postfix/pipe[70172]: 827FDC00A2: to=[email protected], relay=dovecot, delay=0.11, delays=0.09/0.01/0/0.01, dsn=2.0.0, status=sent (delivered via dovecot service)
Dec 6 03:03:00 taro postfix/qmgr[68174]: 827FDC00A2: removed
Dec 6 03:03:07 taro dovecot: imap-login: Login: user=[email protected], method=PLAIN, rip=203.10.99.13, lip=93.188.165.29, mpid=70190, TLS, session=
Dec 6 03:03:56 taro dovecot: imap([email protected])<70157><kdQ5CCDvK/3LCmMN>: Disconnected: Logged out in=320 out=1940 deleted=0 expunged=0 trashed=0 hdr_count=0 hdr_bytes=0 body_count=0 body_bytes=0
Dec 6 03:04:26 taro dovecot: imap([email protected])<70146><QUuPAiDvI/3LCmMN>: Disconnected: Logged out in=1424 out=3264 deleted=0 expunged=0 trashed=0 hdr_count=0 hdr_bytes=0 body_count=0 body_bytes=0
I received this error in an e-mail report from Cyberpanel at the same time it was running the SSL auto-renewal function:
I also received this error in a separate report at the same time as (2):
[12.06.2022_02-00-03] [Errno 2] No such file or directory: ‘postmap’: ‘postmap’. [ProcessUtilities.normalExecutioner.Base].
earlier this morning I received this error report:
[12.06.2022_00-00-05] [Errno 2] No such file or directory: ‘/home/cyberpanel/git’. [IncScheduler.git:90].
I’ve been getting regular Server 500 errors while logged onto Cyberpanel.
I’m still getting the “too many connections errors” In Cyberpanel main log. It’s about the same time as yesterday, could there be a process causing this?:
[12.06.2022_03-34-28] (421, b’4.7.0 mail.intervalle-arts.com Error: too many connections from ::1’)
[12.06.2022_03-34-28] maximum recursion depth exceeded while calling a Python object
DKIM errors (see below)
I really, really appreciate the help from you both, but I feel like I might be making things worse!!!
If I go into DKIM manager in Cyberpanel it says “key successfully fetched” and displays key, but when I look at the Cyberpanle error log it says
[12.06.2022_04-49-06] We had errors while creating DKIM record for: intervalle-arts.com. Error message: Command '[‘cat’, ‘/etc/opendkim/keys/intervalle-arts.com/default.txt’]’ returned non-zero exit status 1…
Yes the ssl was valid but for some reason CYberPanel chose to renew the certificate. I have removed the cronjob and added my own - nothing special just added a sink and different timing
I think at this stage it’s a delete the server and start again after a week or so. That way Cyberpanel doesn’t request any more SSL certs, the LE ban resets and all these connected errors will hopefully go away. Something in the above fixes that I’ve applied has caused a whole bunch of new but connected problems. This is too much work for just a simple Wordpress site and e-mail server.
Thanks both for all your help over the last few days.