{"id":36,"date":"2020-05-16T18:15:20","date_gmt":"2020-05-16T18:15:20","guid":{"rendered":"http:\/\/lookouthost.com\/?p=36"},"modified":"2026-04-03T06:39:47","modified_gmt":"2026-04-03T01:09:47","slug":"setup-a-whm-cpanel-server","status":"publish","type":"post","link":"https:\/\/lookouthost.com\/blog\/setup-a-whm-cpanel-server\/","title":{"rendered":"Setup a WHM\/CPanel Server"},"content":{"rendered":"

This guide will tell you how to setup WHM\/Cpanel on a fresh sever. This guide is specifically for web hosting resellers as it is aim to tune\/optimize and secure the server for selling purpose. <\/p>

  1. SERVER PARTIION SIZE
    Cpanel condition: swap to be 4 GB<\/li><\/ol>

    Croc Web
    Device Mount Point Usage Status
    \/boot \/boot 28% (133,214 of 499,492)
    \/var\/tmp \/var\/tmp 8% (318,684 of 4,059,840)
    \/tmp \/tmp 8% (318,684 of 4,059,840)
    \/ \/ 78% (1,188,088,984 of 1,612,302,348)<\/p>

    All tmp are created by themselves so dedicated server with 32 GB RAM is ordered from WSI with 4GB Swap as recommended by Capnel.<\/p>

    1. FQDN
      CREATE\/UPDATE NAMESERVER
      srv1.fqdn.com <\/li><\/ol>

      <\/p>

      Loginto New Dedi<\/p>

      1. yum update<\/li>\n\n
      2. nano \/etc\/ssh\/sshd_config
        Port 2244
        reboot<\/li>\n\n
      3. hostname srv1.fqdn.com<\/li>\n\n
      4. Disable NetworkManager (ifconfig -a) for all networks<\/li><\/ol>

        systemctl stop NetworkManager.service
        systemctl disable NetworkManager.service
        OR for centos6
        service NetworkManager stop<\/p>

        cd \/etc\/sysconfig\/network-scripts
        ls
        Open the ifcfg-eth0 and ifcfg-lo files with your preferred text editor and, if they exist, set the following keys’ values: \/etc\/sysconfig\/network-scripts\/ifcfg-ethX
        ifcfg-eth0 and ifcfg-lo OR ifcfg-eno1, ifcfg-eno2(Skipped as on boot was set as no despite being Type Ehternet it was ipv6), ifcfg-lo
        NM_CONTROLLED=no
        ONBOOT=yes
        cp ifcfg-eno1 ifcfg-eno1:0<\/p>

        systemctl enable network.service
        systemctl start network.service
        systemctl status network<\/p>

        ip a
        cd \/etc\/sysconfig\/network-scripts<\/p>

        cd \/etc\/sysconfig\/network-scripts\/<\/h1>

        Centos7<\/p>

        cp ifcfg-eno1 ifcfg-eno1:0<\/h1>

        cp ifcfg-eno1:0 ifcfg-eno1:1
        Centos 6<\/p>

        cp ifcfg-eth0 ifcfg-eth0:0 63<\/h1>

        cp ifcfg-eth0 ifcfg-eth0:1 64<\/h1>

        cp ifcfg-eth0 ifcfg-eth0:2 65<\/h1>

        DEVICE=”eth0″
        BOOTPROTO=static
        ONBOOT=yes
        TYPE=”Ethernet”
        IPADDR=63.141.238.166
        NETMASK=255.255.255.224
        GATEWAY=172.16.16.100
        HWADDR=00:0C:29:28:FD:4C<\/p>

        DEVICE=”eth0:0″ IMPORTANT
        BOOTPROTO=static IMPORTANT
        ONBOOT=yes
        TYPE=”Ethernet”
        IPADDR=172.16.16.126 IMPORTANT
        NETMASK=255.255.255.224
        GATEWAY=172.16.16.100
        HWADDR=00:0C:29:28:FD:4C<\/p>

        \/etc\/init.d\/network restart<\/p>

        https:\/\/www.tecmint.com\/create-multiple-ip-addresses-to-one-single-network-interface\/IPADDR=63.141.238.162IPADDR=63.141.238.163IPADDR=63.141.238.164<\/a><\/p>

        1. cd \/home && curl -o latest -L https:\/\/securedownloads.cpanel.net\/latest && sh latest
          Run the one time url given by cpanel<\/li><\/ol>

          https:\/\/www.cyberciti.biz\/faq\/howto-setting-rhel7-centos-7-static-ip-configuration\/<\/a><\/p>

          DNS Zone
          Add a DNS ZONE
          63.141.238.162 fqdn.com \/\/To resolve Nameserver is not authoritative error<\/p>

          Add a DNS ZONE
          63.141.238.163 ns4.fqdn.com
          Edit DNS Zone
          ns4.fqdn.com<\/p>

          I added A records as well NS A records and NS records inside the DNS of main damain of reseller. then it was resolved.<\/p>

          MySQL<\/strong><\/h2>
          1. Upgrage to MariaDB before installing CL MysqlGoverner otherwise run
            To remove MySQL Governor :<\/li><\/ol>

            $ \/usr\/share\/lve\/dbgovernor\/mysqlgovernor.py –delete<\/p>

            \/usr\/share\/lve\/dbgovernor\/mysqlgovernor.py –install<\/p>

            Open Remote Connection Port on MySQL \/ MariaDB<\/a><\/p>

            1. Feature Manager \u00bbEdit Feature ListDocumentation<\/li>\n\n
            2. Install CL
              cd \/root
              $ wget https:\/\/repo.cloudlinux.com\/cloudlinux\/sources\/cln\/cldeploy
              If you have activation key:
              $ sh cldeploy -k
              If you have IP-based license:
              $ sh cldeploy -i
              $ reboot<\/li><\/ol>

              Run Wizard and install CageFS, LSAPI,MysqlGoverner<\/p>

              1. MYSQL MYCNF File in Guides folder
                max_connections=150
                service mysql restart<\/li><\/ol>

                pid-file=\/var\/run\/mysqld\/mysqld.pid This one not worked.<\/p>

                1. Install CLAMAV THEN ConfigServer cxs Script Installer
                  cd \/usr\/src
                  rm -f cxs*
                  wget https:\/\/download.configserver.com\/cxsinstaller.tgz
                  tar -xzf cxsinstaller.tgz
                  perl cxsinstaller.pl ipv4
                  rm -fv cxsinstaller.*<\/li><\/ol>

                  Run Wizard
                  Enable IP Reputation after cSF firewall<\/p>

                  You should be able to edit
                  Code: Select all
                  \/etc\/cxs\/cxs.ignore
                  Then add:-
                  Code: Select all
                  hdir:\/public_html\/wp-content\/cache\/supercache
                  hdir<\/code> is relative to the users home folder.<\/p>

                  Then restart cxs:-
                  Code: Select all
                  service cxswatch restart<\/p>

                  1. ConfigServer Security & Firewall (csf)
                    cd \/usr\/src
                    rm -fv csf.tgz
                    wget https:\/\/download.configserver.com\/csf.tgz
                    tar -xzf csf.tgz
                    cd csf
                    sh install.sh<\/li><\/ol>

                    Next, test whether you have the required iptables modules:<\/p>

                    perl \/usr\/local\/csf\/bin\/csftest.pl<\/p>

                    Resutl all ok<\/p>

                    Enable Firewall
                    Check Basic Security
                    Change incoming outgoing TCP_IN & TCP_OUT port as of your ssh port.<\/p>

                    1. Remove All PHP versions from EA4.<\/li><\/ol>

                      Dealing with cPanel\u2019s MultiPHP and CloudLinux\u2019s PHP Selector.
                      July 8th, 2018 \u2014 whplus
                      If you are using PHP-FPM you cannot use Cloudlinux\u2019s PHP selector so you may want to scrap PHP selector off the bat if that is the case, unless you plan on only using PHP-FPM for some account and not all.<\/p>

                      If PHP-FPM isn\u2019t a worry, then what I would recommend you doing is going into:<\/p>

                      WHM > EasyApache4<\/p>

                      Installed CL+OPCACHE+Modlasapi+All PHP (Then customised ioncube for php)<\/p>

                      Then go into<\/p>

                      WHM > CloudLinux LVE Manager > Selector<\/p>

                      Set your \u2018Default php version\u2019 to PHP 7.2(not native).<\/p>

                      Then below that, I personally uncheck \u201cnative\u201d all together.<\/p>

                      at the very bottom click the \u201cPanel Default\u201d option and click \u201cSave\u201d.<\/p>

                      This will select all the PHP extensions you chose for the PHP version in EasyApache.<\/p>

                      You will want to do this for each PHP version there.<\/p>

                      Next, go to<\/p>

                      WHM > MultiPHP Manager<\/p>

                      Make sure you set \u201cSystem PHP Version\u201d to EA-PHP70 (or whichever EA version you chose in EasyApache).<\/p>

                      Make sure ALL cPanel accounts are set to the inherited version of PHP. This will make sure all cPanel accounts are now only able to use PHP versions from Cloudlinux\u2019s PHP Selector.<\/p>

                      I would also go to<\/p>

                      WHM > Feature Manager<\/p>

                      Edit your default and other feature list\u2019s that you use and disable both the:<\/p>

                      MultiPHP INI Editor
                      MultiPHP Manager<\/p>

                      \n
                      Dealing with cPanel’s MultiPHP and CloudLinux’s PHP Selector.<\/a><\/blockquote>