Because two virtual servers block all other connections, but from only AG IP pool:
Deny from all Allow from 66.160.206.192/26 Allow from 216.218.184.96/27 Allow from 216.218.219.80/28 Allow from 216.218.139.240/29 Allow from 65.49.80.96/27 Allow from 216.218.133.16/28
we need to write specific permission for .well-know directory as otherwise renewing Let's Encrypt certificate fails:
<Directory /home/altaorg/domains/in.altagrade.org/public_html/.well-known> allow from all Require all granted </Directory>
<VirtualHost 65.49.80.99:8080> SuexecUserGroup "#1002" "#1002" ServerName in.altagrade.org ServerAlias www.in.altagrade.org ServerAlias webmail.in.altagrade.org ServerAlias admin.in.altagrade.org ServerAlias altagrade.in ServerAlias www.altagrade.in DocumentRoot /home/altaorg/domains/in.altagrade.org/public_html ScriptAlias /cgi-bin/ /home/altaorg/domains/in.altagrade.org/cgi-bin/ DirectoryIndex index.html index.htm index.php index.php4 index.php5 <Directory /home/altaorg/domains/in.altagrade.org/public_html> Options -Indexes +IncludesNOEXEC +SymLinksIfOwnerMatch +ExecCGI Deny from all Allow from 66.160.206.192/26 Allow from 216.218.184.96/27 Allow from 216.218.219.80/28 Allow from 216.218.139.240/29 Allow from 65.49.80.96/27 Allow from 216.218.133.16/28 AllowOverride All Options=ExecCGI,Includes,IncludesNOEXEC,Indexes,MultiViews,SymLinksIfOwnerMatch Require all granted AddType application/x-httpd-php .php AddHandler fcgid-script .php AddHandler fcgid-script .php5 AddHandler fcgid-script .php7.0 FCGIWrapper /home/altaorg/domains/in.altagrade.org/fcgi-bin/php7.0.fcgi .php FCGIWrapper /home/altaorg/domains/in.altagrade.org/fcgi-bin/php5.fcgi .php5 FCGIWrapper /home/altaorg/domains/in.altagrade.org/fcgi-bin/php7.0.fcgi .php7.0 </Directory> <Directory /home/altaorg/domains/in.altagrade.org/public_html/.well-known> allow from all Require all granted </Directory> <Directory /home/altaorg/domains/in.altagrade.org/cgi-bin> allow from all AllowOverride All Options=ExecCGI,Includes,IncludesNOEXEC,Indexes,MultiViews,SymLinksIfOwnerMatch Require all granted </Directory> RewriteEngine on RewriteCond %{HTTP_HOST} =webmail.in.altagrade.org RewriteRule ^(.*) https://in.altagrade.org:20000/ [R] RewriteCond %{HTTP_HOST} =admin.in.altagrade.org RewriteRule ^(.*) https://in.altagrade.org:10000/ [R] RemoveHandler .php RemoveHandler .php5 RemoveHandler .php7.0 php_admin_value engine Off FcgidMaxRequestLen 1073741824 IPCCommTimeout 9999 </VirtualHost> <VirtualHost 65.49.80.99:8080> SuexecUserGroup "#1002" "#1002" ServerName repo.altagrade.org DocumentRoot /home/altaorg/domains/repo.altagrade.org/public_html ScriptAlias /cgi-bin/ /home/altaorg/domains/repo.altagrade.org/cgi-bin/ DirectoryIndex index.html index.htm index.php index.php4 index.php5 <Directory /home/altaorg/domains/repo.altagrade.org/public_html> Options +Indexes +IncludesNOEXEC +SymLinksIfOwnerMatch +ExecCGI Deny from all Allow from 66.160.206.192/26 Allow from 216.218.184.96/27 Allow from 216.218.219.80/28 Allow from 216.218.139.240/29 Allow from 65.49.80.96/27 Allow from 216.218.133.16/28 AllowOverride All Options=ExecCGI,Includes,IncludesNOEXEC,Indexes,MultiViews,SymLinksIfOwnerMatch Require all granted AddType application/x-httpd-php .php AddHandler fcgid-script .php AddHandler fcgid-script .php5 AddHandler fcgid-script .php7.0 FCGIWrapper /home/altaorg/domains/repo.altagrade.org/fcgi-bin/php7.0.fcgi .php FCGIWrapper /home/altaorg/domains/repo.altagrade.org/fcgi-bin/php5.fcgi .php5 FCGIWrapper /home/altaorg/domains/repo.altagrade.org/fcgi-bin/php7.0.fcgi .php7.0 </Directory> <Directory /home/altaorg/domains/repo.altagrade.org/public_html/.well-known> allow from all Require all granted </Directory> <Directory /home/altaorg/domains/repo.altagrade.org/cgi-bin> allow from all AllowOverride All Options=ExecCGI,Includes,IncludesNOEXEC,Indexes,MultiViews,SymLinksIfOwnerMatch Require all granted </Directory> RewriteEngine on RewriteCond %{HTTP_HOST} =webmail.repo.altagrade.org RewriteRule ^(.*) https://repo.altagrade.org:20000/ [R] RewriteCond %{HTTP_HOST} =admin.repo.altagrade.org RewriteRule ^(.*) https://repo.altagrade.org:10000/ [R] RemoveHandler .php RemoveHandler .php5 RemoveHandler .php7.0 php_admin_value engine Off FcgidMaxRequestLen 1073741824 </VirtualHost>
- Log in to post comments