Mairadb Galera iptables配置,需要开启的端口号
2014-05-04 16:30
211 查看
Firewall Settings
By default, Galera Cluster may require all or some of the following ports to be open between the nodes:
3306 MySQL client connections and mysqldump SST
4567 Galera Cluster replication traffic
4568 IST
4444 all SSTs besides mysqldump
For example, in a LAN environment the iptables configuration on each node may look as follows:
# iptables -A INPUT -i eth0 -p tcp -m tcp --source 192.168.0.1/24 --dport 3306 -j ACCEPT
# iptables -A INPUT -i eth0 -p tcp -m tcp --source 192.168.0.1/24 --dport 4567 -j ACCEPT
# iptables -A INPUT -i eth0 -p tcp -m tcp --source 192.168.0.1/24 --dport 4568 -j ACCEPT
# iptables -A INPUT -i eth0 -p tcp -m tcp --source 192.168.0.1/24 --dport 4444 -j ACCEPT
In a WAN environment, this setup may be tedious to manage. Alternatively, with not much loss of security, you can simply open a full range of ports between trusted hosts:
# iptables -A INPUT -p tcp -s 64.57.102.34 -j ACCEPT
# iptables -A INPUT -p tcp -s 193.166.3.2 -j ACCEPT
本文出自 “飞羽竹芋” 博客,请务必保留此出处http://atlas.blog.51cto.com/5745128/1406199
By default, Galera Cluster may require all or some of the following ports to be open between the nodes:
3306 MySQL client connections and mysqldump SST
4567 Galera Cluster replication traffic
4568 IST
4444 all SSTs besides mysqldump
For example, in a LAN environment the iptables configuration on each node may look as follows:
# iptables -A INPUT -i eth0 -p tcp -m tcp --source 192.168.0.1/24 --dport 3306 -j ACCEPT
# iptables -A INPUT -i eth0 -p tcp -m tcp --source 192.168.0.1/24 --dport 4567 -j ACCEPT
# iptables -A INPUT -i eth0 -p tcp -m tcp --source 192.168.0.1/24 --dport 4568 -j ACCEPT
# iptables -A INPUT -i eth0 -p tcp -m tcp --source 192.168.0.1/24 --dport 4444 -j ACCEPT
In a WAN environment, this setup may be tedious to manage. Alternatively, with not much loss of security, you can simply open a full range of ports between trusted hosts:
# iptables -A INPUT -p tcp -s 64.57.102.34 -j ACCEPT
# iptables -A INPUT -p tcp -s 193.166.3.2 -j ACCEPT
本文出自 “飞羽竹芋” 博客,请务必保留此出处http://atlas.blog.51cto.com/5745128/1406199
内容来自用户分享和网络整理,不保证内容的准确性,如有侵权内容,可联系管理员处理 
相关文章推荐
- Linux防火墙(iptables)关闭与开启配置
- 在ubuntu上进行android开发真机调试,并且配置自动开启adb服务脚本
- linux iptables 开启和关闭服务端口号
- Android 常见命令操作(需要配置adb.exe的环境变量)
- Mac系统下使用uiautomator需要配置ADB环境ANT环境Android环境配置
- 关于web dynpro的配置是需要开启的服务
- wampserver修改端口号后,phpMyAdmin进不去,需要修改相关配置文件
- 配置防火墙,开启80端口、3306端口 & iptables 使用详解
- 开启iptables情况下Swarm、kubernetes等组件正常工作的配置
- 思考博客园的机器人攻击,想到我们可能也需要开启iptables
- 配置防火墙,开启80端口、3306端口 & iptables 使用详解
- 配置iptables防火墙,开启80端口、3306端口
- 配置防火墙,开启80端口、3306端口 & iptables 使用详解
- linux 配置 Iptables开启端口
- 配置防火墙,开启80端口、3306端口 & iptables 使用详解
- Windows7开启透明效果即Aero特效需要什么配置
- android开发常见命令操作(需要配置adb.exe的环境变量)
- 配置防火墙,开启80端口、3306端口 & iptables 使用详解
- 修改防火墙配置,开启端口号!
- 配置防火墙,开启80端口、3306端口 & iptables 使用详解