Firewall Settings
By default, Galera Cluster may require all or some of the following ports to be open between the nodes:
3306 MySQL client connections and mysqldump SST
4567 Galera Cluster replication traffic
4568 IST
4444 all SSTs besides mysqldump
For example, in a LAN environment the iptables configuration on each node may look as follows:
# iptables -A INPUT -i eth0 -p tcp -m tcp --source 192.168.0.1/24 --dport 3306 -j ACCEPT
# iptables -A INPUT -i eth0 -p tcp -m tcp --source 192.168.0.1/24 --dport 4567 -j ACCEPT
# iptables -A INPUT -i eth0 -p tcp -m tcp --source 192.168.0.1/24 --dport 4568 -j ACCEPT
# iptables -A INPUT -i eth0 -p tcp -m tcp --source 192.168.0.1/24 --dport 4444 -j ACCEPT
In a WAN environment, this setup may be tedious to manage. Alternatively, with not much loss of security, you can simply open a full range of ports between trusted hosts:
# iptables -A INPUT -p tcp -s 64.57.102.34 -j ACCEPT
# iptables -A INPUT -p tcp -s 193.166.3.2 -j ACCEPT
Mairadb Galera iptables配置,需要开启的端口号
原创
©著作权归作者所有:来自51CTO博客作者ohio的原创作品,请联系作者获取转载授权,否则将追究法律责任
上一篇:SSDB 替代 Redis
下一篇:我的友情链接
提问和评论都可以,用心的回复会被更多人看到
评论
发布评论
相关文章
-
redis 端口号 redis端口号的故事
000 024
redis 端口号