and
> Server-2.
> Steve
>
>
> -Original Message-
> From: Mogens Melander [mailto:[EMAIL PROTECTED]
> Sent: Monday, May 07, 2007 1:35 PM
> To: Steven Buehler
> Cc: mysql@lists.mysql.com
> Subject: RE: secure port 3306
>
>
> On Mon, May 7, 2007 17:40, Steven
But I also need to make sure that nobody is sniffing between Server-1 and
Server-2.
Steve
-Original Message-
From: Mogens Melander [mailto:[EMAIL PROTECTED]
Sent: Monday, May 07, 2007 1:35 PM
To: Steven Buehler
Cc: mysql@lists.mysql.com
Subject: RE: secure port 3306
On Mon, May 7
On Mon, May 7, 2007 17:40, Steven Buehler wrote:
> The thing is...I need to securely do this. Here would be the setup
> Desktop -> Secure connection to Server 1 -> Secure connection to Server 2.
> So I am assuming that what I need to do is to have the Desktop SSH into
> Server 1 which will have t
On 5/7/07, Steven Buehler <[EMAIL PROTECTED]> wrote:
Thank You so much. I will have to try this later today. I have
never done a port forward in iptables before. I knew that I could, but
just
never had a need or tried so it slipped my mind about this.
The thing is...I need to
Thank You so much. I will have to try this later today. I have
never done a port forward in iptables before. I knew that I could, but just
never had a need or tried so it slipped my mind about this.
The thing is...I need to securely do this. Here would be the setup
Desktop -> Se
Thank You so much. I will have to try this later today. I have never done
a port forward in iptables before. I knew that I could, but just never had
a need or tried so it slipped my mind about this.
Again, Thank You.
Steve
On linux, one could do a port forward:
EXTIF=eth0 # Or wha
On linux, one could do a port forward:
EXTIF=eth0 # Or whatever the interface that faces internet is called.
iptables -A FORWARD -i $EXTIF -p tcp -s --dport 3306 -j ACCEPT
iptables -A PREROUTING -t nat -p tcp -s \
-d --dport 3306 -j DNAT --to :3306
On Wed, May 2, 2007 17:03, Steven Buehler
[snip]
I have a client that needs to be able to remotely connect to port 3306
securely. I have tried to suggest an SSH Tunnel, but they do not want
their
clients to have SSH access. Another problem is that even if we do
tunnel,
it needs to go thru one server that is connected to the Internet and
I have a client that needs to be able to remotely connect to port 3306
securely. I have tried to suggest an SSH Tunnel, but they do not want their
clients to have SSH access. Another problem is that even if we do tunnel,
it needs to go thru one server that is connected to the Internet and into
th