ISPConfig as a docker image
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
Andreas Peters a812c827dd
add message size to postfix
3 months ago
bin first commit 7 months ago
etc add phpmyadmin config 5 months ago
.gitignore first commit 7 months ago
Dockerfile add quota 5 months ago add phpmyadmin config 5 months ago
autoinstall.ini change dovecot to courier to be compatible to the old installation 6 months ago
install.php lot of changes 6 months ago add message size to postfix 3 months ago
supervisord.conf change fail2ban config 6 months ago
update.php lot of changes 6 months ago lot of changes 6 months ago

ISPConfig3 in a docker container

Docker Pulls

This docker image include a whole ISPConfig3 software stack. For details, I’m sorry have a look in the Dockerfile. Later I will write down all installed packages.

How to use it

First, have a look at the following docker-compose file to get an idea.

version: '3'

    image: mariadb
    command: --max_allowed_packet=32505856
    restart: always
      - /data/db:/var/lib/mysql
      - default
    hostname: master.weave.local

    image: avhost/ispconfig:latest
      - "443:443"
      - "80:80"
    volumes: ["/data/amavis:/var/lib/amavis","/data/etc/amavis:/etc/amavis", "/data/letsencrypt:/etc/letsencrypt", "/data/etc/apache2/sites-available:/etc/apache2/sites-available", "/data/etc/apache2/sites-enabled:/etc/apache2/sites-enabled", "/data/www:/var/www/", "/data/backup:/var/backup/", "/data/usr:/usr/local/ispconfig", "/data/etc/cron.d:/etc/cron.d", "/data/kis/bind:/etc/bind"]
    restart: always
      - master
      - default
    hostname: server1.weave.local
      - NET_ADMIN
      - NET_RAW
      isp_mysql_hostname: "master.weave.local"
      isp_mysql_root_password: "<PASSWORD>"
      isp_mysql_ispconfig_password: "<PASSWORD>"
      isp_admin_password: "<PASSWORD>"
      isp_mysql_master_root_password: "<PASSWORD>"
      isp_mysql_master_hostname: "master"
      isp_enable_mail: "n"
      isp_enable_jailkit: "n"
      isp_enable_ftp: "n"
      isp_enable_dns: "n"
      isp_enable_apache: "y"
      isp_enable_nginx: "y"
      isp_enable_firewall: "y"
      isp_enable_webinterface: "n"
      isp_enable_multiserver: "y"
      isp_hostname: "server1"
      isp_use_ssl: "y"
      isp_phpmyadmin_blowfish_secret: "advpDZ9wHZXkZSfV78DLRjzSPaTm5yBC"

      name: weave

Next, some words to say. If you will deploy a docker container with this image for the first time, it will not work if you persist already all the data (like above). First, just mount /var/backup inside of the container, start the container and then copy all the needed files/directories ONE TIME into the backup directory. Then shutdown the container, and persist the data like above with all the files you copied into the backup directory. Thats just a one time job. :-) Why you have to do it! As example, bind, amavis, postfix, all these packages have default files. If you persist from the beginging, the default files will not be there and the services will crash.

Persist Data

There are some directories and files its easier if you don’t persist them. As example:

  • /etc/passwd
  • /etc/shadow
  • /etc/group
  • /var/log/ispconfig

Specialy the system authentication files makes only problems if you try to persist them. Docker cannot handle a group/useradd on mounted auth files. To recreate the web/client users from ispconfig, you have to login into the webinterface, go to “Configuration”, there on “resync” and then resync the “Websites” on the container you restarted. Thats it!

The idea behind

The idea behind this images is the flexibility to move the whole ISPConfig Container, with the data, with the config, as is, to a other server if you have to update or migrate the host system. Use this container as the “Real Server”, and the Server where its running, just as a host system. This image should give you a posibility to maintain and fix your whole ISPConfig infrastructure very fast.

Multiuser Environment

Yes its working! We are using it with and docker-compose. At the host system is dnsmasq to seperate the weave dns resolution from the external one and the one inside of the container.

What it is not

It’s definitly not a microservice. :-) So, you cannot recreate the running container like you want and to everytime. You need a downtime, and maybe you also have so cleanup a little bit after you restart the container.