If you have a cloud server with us you can install DirectAdmin on it. DirectAdmin is a program that allows you to start your own webhosting server. In this manual we'll explain how this works.
Table of contents
- Introduction
- Creating a cloud server
- Obtaining a DirectAdmin license
- Opening port 25 for outgoing mail
- Safety
- Add main domain
Introduction
There are several reasons for setting up your own hostingserver. For example:
- Create and maintain websites for customers
- Host a webshop that requires too much traffic for shared hosting but too little for managed hosting
- Enable webhosting that can easily scale up for an expected visitor peak
Creating a cloud server
We start by creating a cloud server. We recommend the following properties.
- OS: CentOS 7.6
- Cores: 4
- RAM: 4GB
- Disk: 100GB
Use a subdomain as host name. For our example we use the following subdomain: directadmin.hetvoorbeelddomein.xyz
Note: You must use a domain you own or manage so that you can point the DNS to the server in a next step.
- After the server has been created point your domain to the new server
- Create an A record for the root domain;
- Ceate a Wildcard record (*.domain.tld) for all subdomains;
- We recommend using a CNAME-record set-up;
- If you want to send and receive mail with DirectAdmin set an MX record and an SPF record.
Obtaining a DirectAdmin license
You can obtain your license directly via DirectAdmin. They will require the following information from you.
- IP-adres of the server
- The server’s host name
- The operating system (OS)
When this information has been processed you are ready to install DirectAdmin on your server. The license will be automatically obtained during the installation proces.
Opening port 25 for outgoing mail
On our cloud servers port 25 for outgoing mail traffic is blocked by default. This is done to ensure the safety and integrity of the platform. To open this port follow these steps.
- Go to the control panel;
- Click on Outgoing port rules;
- Choose Add outgoing port rule.
The server and domain are now ready to install DirectAdmin. To install DirectAdmin, you must first connect via SSH.
MacOS and Linux
On MacOS and Linux you can do this via the Terminal. Use the following command: ssh [email protected] (You replace hetvoorbeeldomein.xyz with your actual domainname). If you did not setup the SSH-keys the server will prompt you for the password. You are now logged in on the server.
Windows
When using Windows you usually need a separate program to connect via SSH. For instance the free application Putty. Experience has shown that it is not straightforward to copy and paste text. So check in advance how you can do this easily.
The first command we issue on the server is to update all software on the machine: yum update && yum upgrade
A number of questions are asked to which you can all answer Yes by typing “Y”.
Issuing the following commands:
- yum install -y yum-cron
- sed -i '/apply_updates/s/no/yes/g' /etc/yum/yum-cron.conf systemctl
- enable yum-cron service yum-cron start
Install the packages
Now that everything is up to date, we are going to install some packages (programs) that are needed for DirectAdmin. You can copy and paste the following lines entirely.
yum install wget tar gcc gcc-c++ flex bison make bind bind-libs bind-utils openssl openssl-devel perl quota libaio \ libcom_err-devel libcurl-devel gd zlib-devel zip unzip libcap-devel cronie bzip2 cyrus-sasl-devel perl-ExtUtils-Embed \ autoconf automake libtool which patch mailx bzip2-devel lsof glibc-headers kernel-devel expat-devel \ psmisc net-tools systemd-devel libdb-devel perl-DBI perl-Perl4-CoreLibs perl-libwww-perl xfsprogs rsyslog logrotate crontabs file kernel-headers
Any questions can again be answered with Yes or simply y.
The following three commands get the DirectAdmin installation file, change the permissions of said file, and install DirectAdmin. The last step should take a while.
- wget -O setup.sh https://www.directadmin.com/setup.sh
- chmod 755 setup.sh
- ./setup.sh auto
When the message comes that everything is installed, you can scroll up to find the login password. In our example it looks like this
Admin username: admin Admin password: [******************] Admin email: [email protected]
If you accidentally close the terminal or did not save the information, you can reset the password. Login via SSH and enter the following command: passwd admin.
Safety
The following steps are advised to harden the security of your DirectAdmin Server.
Protect against DNS Amp Attacks
Bind (nameserver) allows default recursion, which MUST be turned off. Otherwise, you are vulnerable to dns amp attacks. Via SSH, use the following command to edit the configuration file:
- nano /etc/named.conf
- then, find the following line.
- // recursion yes;
- Change it to the following: recursion no;
Activate SSL/HTTPS
To ensure that the administration page is secured with an SSL certificate execute the following commands via SSH. Make sure to replace directadmin.hetvoorbeelddomein.xyz with your own subdomain.
- Create the certificate: cd /usr/local/directadmin/scripts && ./letsencrypt.sh request_single directadmin.hetvoorbeelddomein.xyz 4096
- You will see the following message in your terminal: Certificate for directadmin.hetvoorbeelddomein.xyz has been created successfully!
- Ensure that the certificate is actually used: cd /usr/local/directadmin ./directadmin set ssl 1 \ ./directadmin set carootcert /usr/local/directadmin/conf/carootcert.pem \ ./directadmin set ssl_redirect_host directadmin.hetvoorbeelddomein.xyz service directadmin restart
Activate Two-factor-authentication (2FA)
With the user admin you can manage all settings and websites on your DirectAdmin installation. Protect this user with 2FA.
- Login to your DirectAdmin installation;
- Click on the Admin User and select Password;
- Go to Two-Step Authentication and generate a Secret;
- A QR code will appear which you can scan;
- You will be automatically logged out to log in again with 2FA.
Add main domain
Finally we are going to add the main domain within DirectAdmin. Site-management is done at user level and for this you have to adjust the access level at the top.
- Go to Account Manager and pick Domain Setup at the top menu;
- Enter the domain and click Create at the bottom;
- Your DirectAdmin is now ready to use.
You can find the FTP data, create a database, and provide SSL certificates through the account manager.
Was dit artikel nuttig?
Dat is fantastisch!
Hartelijk dank voor uw beoordeling
Sorry dat we u niet konden helpen
Hartelijk dank voor uw beoordeling
Feedback verzonden
We stellen uw moeite op prijs en zullen proberen het artikel te verbeteren