VLinux server with Parallel Plesk von Strato.de
====== Server info ======
host:
ip:
sudoer
td txdx
webadmin w2e3b5

====== Server Data ======
<code>

Operating system	CentOS 7 64bit + Plesk 12.5
Host Name	        h2431351.stratoserver.net
IP address	        85.214.233.136
Initial root password:	vYr9hY6J

</code>
====== big boss ======
https://h2431351.stratoserver.net:8443/

Plesk admin
admin K68255tz

Can be reset with root password.
===== Login =====

mailing list
thuydang.de@gmail.com
mailing*list
mailing*list list*admin?

===== reseller thuydang =====
thuydang

1sak2*

SSH: not possible??

==== own subscription ====
==== vfoss.org ====
==== system user (ssh/ftp)====

vfossadmin:t5d3t5d3

SSH to /var/www/vhost/vfoss.org/

==== ftp ====
vfossftp
vfoss*ftp

==== database ====
db: vfossorgdb
user: vfossorgdbuser
pwd: kU3ie9#0

==== DEL in-hanoi.vn ====
== sys user ssh/ftp ==
in_hanoiadmin
a1d3m7

== ftp ==

===== <del>reseller sividuchosting</del> =====
sividuchosting
sividuc*hosting

==== own subscription ====
=== sividuc.org ===
== sys user ssh/ftp ==
sividucadmin
sividuc*admin

== ftp ==

== database ==
dbname: sividuchosting_sividucorg_cms
user: sividucdb
pwd: sividucdb

====== System Service ======
===== Docker =====
Do not use CentOS package, follow this:
  * https://docs.docker.com/engine/installation/linux/centos/

If conflict error: docker-engine-selinux conflicts with 2:container-selinux-1.10.3-59.el7.centos.x86_64.
    yum erase container-selinux
    yum remove docker-common
    
==== Docker not started ====

    systemctl status docker.service -l
<code>
level=info msg="libcontainerd: new containerd process, pid: 19089"
level=error msg="'overlay' not found as a supported filesystem on this host. Please ensure kernel is new enough and has overlay support loaded."
level=info msg="Graph migration to content-addressability took 0.00 seconds"
level=warning msg="Your kernel does not support oom control."
level=warning msg="Your kernel does not support memory swappiness."
level=warning msg="Your kernel does not support kernel memory limit."
level=warning msg="Unable to find cpu cgroup in mounts"
level=warning msg="Unable to find cpuset cgroup in mounts"
level=warning msg="mountpoint for pids not found"
level=fatal msg="Error starting daemon: Devices cgroup isn't mounted"

</code>
====== Plesk Services ======
===== Nginx proxy =====
Enable nginx with plesk 12.0.1:
  * better https://kb.plesk.com/de/119595
  * https://support.plesk.com/hc/en-us/articles/213944825
  * httpd port: https://support.plesk.com/hc/en-us/articles/213913245


Configure nginx
  * http://grafxsoftware.com/faq.php/HOW-TO_configure_PLESK_with_NGinx_proxy_reverse/1/1/

  - Configure global /etc/nginx/nginx.conf to use /var/www/vhost/domain.name/conf/nginx.conf : /var/www/vhosts/*/conf/nginx.conf 
  - config domain specific nginx.conf, proxy_pass domain.name:8080 for current domains
  - Open iptables port 8080 for apache, as the proxy tries to connect to http://www.domain.com:8080, this will go through the firewall.
  - Test nginx: nginx -t
  - Restart apache with new port:
<code>
/usr/local/psa/admin/sbin/websrvmng --set-http-port --port=8080 # NOT WORKING
# edit 
Replace Listen 7080 with Listen 8080 in the /etc/httpd/conf/httpd.conf file.
Replace Listen 7081 with Listen 8081 in the /etc/httpd/conf.d/ssl.conf file.
/usr/local/psa/admin/sbin/httpdmng --reconfigure-all
/usr/local/psa/admin/sbin/webmailmng --disable --name=horde
/usr/local/psa/admin/sbin/webmailmng --enable --name=horde
/usr/local/psa/admin/sbin/webmailmng --disable --name=atmail
/usr/local/psa/admin/sbin/webmailmng --enable --name=atmail
/usr/local/psa/admin/sbin/webmailmng --disable --name=atmailcom
/usr/local/psa/admin/sbin/webmailmng --enable --name=atmailcom
service httpd restart
service nginx restart
</code>

===== Headline =====
Get from our link the nginx.conf and proxy.conf and copy it into your install folder /etc/nginx/
=== nginnx.conf ===
<code>
user apache apache; 
worker_processes  8;
timer_resolution 100ms;     #custom
worker_rlimit_nofile 8192;  #custom
worker_priority -5;          #custom
error_log  /var/log/nginx/error.log;

events {
    worker_connections  2048;
    use epoll;
}


http {
    include       mime.types;
    default_type  application/octet-stream;

   log_format main '$remote_addr - $remote_user [$time_local] '
                   '"$request" $status $bytes_sent ' 
                   '"$http_referer" "$http_user_agent" '
                   '"$gzip_ratio"';
 
    log_format download '$remote_addr - $remote_user [$time_local] '
    		      '"$request" $status $bytes_sent '
                      '"$http_referer" "$http_user_agent" '
                      '"$http_range" "$sent_http_content_range"';

     client_header_timeout 10m;
     client_body_timeout 10m;
     send_timeout 10m;
     proxy_read_timeout 10m;
     proxy_connect_timeout 75;
     proxy_send_timeout 10m;
     connection_pool_size 256;
     client_header_buffer_size 1k;
     large_client_header_buffers 4 2k;
     request_pool_size 4k;


    sendfile        on;
    tcp_nopush     on;
    tcp_nodelay on;
    keepalive_timeout  5 20;

    gzip on;
    gzip_min_length 1024;
    gzip_buffers 4 8k;
    gzip_http_version 1.1;
    gzip_proxied any;
    gzip_comp_level 7;
    gzip_types text/plain text/css application/x-javascript text/xml application/xml application/xml+rss text/javascript;

    #include /etc/nginx/sites/*.conf;   #custom
    include /var/www/vhosts/*/conf/nginx.conf;
	include webmail.conf;
    
    ignore_invalid_headers on;
    resolver 127.0.0.1;
    
    server {
        listen       80;
        server_name  localhost;

        location / {
            root   html;
            index index.php index.html index.htm;
        }

        error_page  404              /404.html;
        error_page   500 502 503 504  /50x.html;
        location = /50x.html {
            root   html;
        }
    }
    #server {
    #    listen       443;
    #    server_name  localhost;

    #    ssl                  on;
    #    ssl_certificate      cert.pem;
    #    ssl_certificate_key  cert.key;

    #    ssl_session_timeout  5m;

    #    ssl_protocols  SSLv2 SSLv3 TLSv1;
    #    ssl_ciphers  ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP;
    #    ssl_prefer_server_ciphers   on;

    #    location / {
    #        root   html;
    #        index  index.html index.htm;
    #    }
    #}
}
</code>
=== proxy.conf ===
<code>
proxy_redirect   off;
proxy_set_header   Host $host;
proxy_set_header   X-Real-IP $remote_addr;
proxy_set_header   X-Forwarded-For $proxy_add_x_forwarded_for;
client_max_body_size       10m;
client_body_buffer_size    128k;
proxy_connect_timeout      90;
proxy_send_timeout         90;
proxy_read_timeout         90;
proxy_buffer_size          4k;
proxy_buffers               4 32k;
proxy_busy_buffers_size     64k;
proxy_temp_file_write_size 64k;
open_file_cache max=1024 inactive=600s;
open_file_cache_valid 2000s;
open_file_cache_min_uses 1;
open_file_cache_errors on;
</code>

=== generate_nginx_conf_for_tenant.sh ===
<code>

</code>
==== Adding new domain ====
  - Create /var/www/vhost/domain.name/conf/nginx.conf
  -