Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!

mySQL Allow remote connection on different port(not 3306)

Discussion in 'Database Discussion' started by _Dejan_, Jun 10, 2011.

  1. _Dejan_

    _Dejan_ Member

    Joined:
    Feb 24, 2010
    Messages:
    24
    Likes Received:
    0
    Trophy Points:
    51
    Hi,
    I have cPanel WHM(On VPS) with ConfigServer Security & Firewall. I would like allow remote connections for example on port 5432 and not on 3306 port. How can I do this? Im try some iptables commands(Redirect) but connection trough port 5432 work only if also 3306 is opened what I don't want.
    Can someone tell me what I must edit in CSF that this will work?
    Thanks for any help.
     
    #1 _Dejan_, Jun 10, 2011
  2. cPanelTristan

    cPanelTristan Quality Assurance Analyst
    Staff Member

    Joined:
    Oct 2, 2010
    Messages:
    7,608
    Likes Received:
    32
    Trophy Points:
    238
    Location:
    somewhere over the rainbow
    cPanel Access Level:
    Root Administrator
    Hello,

    You are wanting to change the default port for MySQL from 3306 to 5432 instead? If so, then you will need to change this in MySQL as well. You cannot simply open the port in the firewall if this has not been changed in MySQL's configuration.

    Edit the /etc/my.cnf file and add the following:

    Code:
    port=5432
    Then restart MySQL. To check it works locally, try to access the port on localhost first:

    Code:
    telnet localhost 5432
    You should connect to MySQL. You could then add it into CSF as one of the incoming ports that can be used.

    If this is not working, please provide these results provided you have actually changed the port in the /etc/my.cnf configuration file and restarted MySQL:

    Code:
    telnet IP# 5432
telnet localhost 5432
lsof -i :5432
netstat -an | grep :5432
    Thanks.
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #2 cPanelTristan, Jun 10, 2011
  3. _Dejan_

    _Dejan_ Member

    Joined:
    Feb 24, 2010
    Messages:
    24
    Likes Received:
    0
    Trophy Points:
    51
    Hi,
    Thanks for your reply but I think you are misunderstand what I need.
    I need that clients which run web pages on this XXX.XXX.XXX.XXX server can connect by using local localhost connection to 3306 port for example if they in php use:
    mysql_connect("localhost:3306",username,password);
    This connection must work.
    Also I need that this users can connect from external application which run on clients(Clients have dynamic IP's so adding host to "whitelist" is not option) to same server and database for example if they use php on other server:
    mysql_connect("XXX.XXX.XXX.XXX:5432",username,password);
    And next connection can't be allowed:
    mysql_connect("XXX.XXX.XXX.XXX:3306",username,password);
    because most of attack's will try 3306 port. If someone will try portscan will be automatic blocked by CSF.

    I think this can be done by iptables/CSF that it make some port forward on same computer but I don't know how to do that.
    Thanks for any help.
     
    #3 _Dejan_, Jun 11, 2011
  4. cPanelTristan

    cPanelTristan Quality Assurance Analyst
    Staff Member

    Joined:
    Oct 2, 2010
    Messages:
    7,608
    Likes Received:
    32
    Trophy Points:
    238
    Location:
    somewhere over the rainbow
    cPanel Access Level:
    Root Administrator
    If what you are instead asking is to be able to deny connections set on a certain port, that's not something configurable by cPanel, since it is rather a CSF or LFD question, which would more appropriately be posted in their forums at the following location:

    http://forum.configserver.com/
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #4 cPanelTristan, Jun 12, 2011
(You must log in or sign up to post here.)
Loading...
Similar Threads - mySQL Allow remote
  1. osirion

    Allow Remote MySQL Checklist

    osirion, Jan 29, 2018, in forum: General Discussion
    Replies:
    3
    Views:
    308
    cPanelMichael
    Jan 31, 2018
  2. KV Karia

    Allow only remote mysql ip address

    KV Karia, Feb 24, 2017, in forum: Security
    Replies:
    2
    Views:
    1,042
    iserversupport
    Feb 24, 2017
  3. Bdzzld

    Mysqldump failure during automatic backups (max_allowed_packet)

    Bdzzld, Sep 18, 2018, in forum: Database Discussion
    Replies:
    3
    Views:
    152
    cPanelLauren
    Sep 18, 2018
  4. joaosavioli

    Mysql does not allow additional IP connection

    joaosavioli, Mar 20, 2018, in forum: Database Discussion
    Replies:
    5
    Views:
    373
    cPanelMichael
    Mar 22, 2018
  5. HostSane

    New Thread Mysql Database sync between 2 servers

    HostSane, Dec 10, 2018 at 7:23 AM, in forum: Database Discussion
    Replies:
    0
    Views:
    32
    HostSane
    Dec 10, 2018 at 7:23 AM

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Accept Learn More...
    Dismiss Notice