[Maria-discuss] debian 11 + mariadb remote connections
Howdy all! I'm having trouble figuring out why a new install on a debian 11 box of mariadb 10.10 is not allowing remote connections. I'm really at a loss for what's going on. I've adjusted the bind address and made sure it's setup for remote connections. From this box, I am able to access mysql using 127.0.0.1, 192.168.0.143 or the external IP without any issue. When trying to connect from any other box, it's acting like it's blocked by the firewall. * iptables is what I generally use but i've cleared out all rules, flushed all tables, and all policies are set to accept. * There is no firewall running from my cloud host - verified with their support team. * Other services are connecting just fine externally, which would really point towards an issues specific with mariadb. MariaDB is currently binding to app ipv4 and ipv6 interfaces. I've tried having only bind to ipv4, changing the default port to something other than 3306. I even went as far as spinning up a test server, same config and it's working as expected. This server is setup for email - so it's also running postfix, dovecot, rspam, redis and apache. Any suggestions or thoughts are greatly appreciated! -- Aaron Axelsen
On Thursday 29 December 2022 at 18:31:47, Aaron Axelsen wrote:
Howdy all! I'm having trouble figuring out why a new install on a debian 11 box of mariadb 10.10 is not allowing remote connections.
Any suggestions or thoughts are greatly appreciated!
Use something like tshark to do a packet capture of port 3306 on the machine you're trying to connect from (and preferably on the machine you're trying to connect to as well). This will at least tell you whether the problem is basic networking (TCP request, no response), or something higher level (TCP working fine but connections rejected, hopefully with some noticeable error message). Antony. -- In science, one tries to tell people in such a way as to be understood by everyone something that no-one ever knew before. In poetry, it is the exact opposite. - Paul Dirac Please reply to the list; please *don't* CC me.
What gives the result of « ss -taupen | grep 3306 » ? Benoit
On 29 Dec 2022, at 19:23, Antony Stone
wrote: On Thursday 29 December 2022 at 18:31:47, Aaron Axelsen wrote:
Howdy all! I'm having trouble figuring out why a new install on a debian 11 box of mariadb 10.10 is not allowing remote connections.
Any suggestions or thoughts are greatly appreciated!
Use something like tshark to do a packet capture of port 3306 on the machine you're trying to connect from (and preferably on the machine you're trying to connect to as well). This will at least tell you whether the problem is basic networking (TCP request, no response), or something higher level (TCP working fine but connections rejected, hopefully with some noticeable error message).
Antony.
-- In science, one tries to tell people in such a way as to be understood by everyone something that no-one ever knew before.
In poetry, it is the exact opposite.
- Paul Dirac
Please reply to the list; please *don't* CC me.
_______________________________________________ Mailing list: https://launchpad.net/~maria-discuss Post to : maria-discuss@lists.launchpad.net Unsubscribe : https://launchpad.net/~maria-discuss More help : https://help.launchpad.net/ListHelp
Here is the output: ss -taupen | grep 3306 tcp LISTEN 0 80 0.0.0.0:3306 0.0.0.0:* users:(("mariadbd",pid=143847,fd=18)) uid:111 ino:3514095 sk:4b cgroup:/system.slice/mariadb.service <-> tcp LISTEN 0 80 [::]:3306 [::]:* users:(("mariadbd",pid=143847,fd=19)) uid:111 ino:3514096 sk:68 cgroup:/system.slice/mariadb.service v6only:1 <-> Aaron On 12/29/2022 12:27 PM, Benoit Plessis wrote:
What gives the result of « ss -taupen | grep 3306 » ?
Benoit
On 29 Dec 2022, at 19:23, Antony Stone
wrote: On Thursday 29 December 2022 at 18:31:47, Aaron Axelsen wrote:
Howdy all! I'm having trouble figuring out why a new install on a debian 11 box of mariadb 10.10 is not allowing remote connections. Any suggestions or thoughts are greatly appreciated! Use something like tshark to do a packet capture of port 3306 on the machine you're trying to connect from (and preferably on the machine you're trying to connect to as well). This will at least tell you whether the problem is basic networking (TCP request, no response), or something higher level (TCP working fine but connections rejected, hopefully with some noticeable error message).
Antony.
-- In science, one tries to tell people in such a way as to be understood by everyone something that no-one ever knew before.
In poetry, it is the exact opposite.
- Paul Dirac
Please reply to the list; please *don't* CC me.
_______________________________________________ Mailing list: https://launchpad.net/~maria-discuss Post to : maria-discuss@lists.launchpad.net Unsubscribe : https://launchpad.net/~maria-discuss More help : https://help.launchpad.net/ListHelp
_______________________________________________ Mailing list: https://launchpad.net/~maria-discuss Post to : maria-discuss@lists.launchpad.net Unsubscribe : https://launchpad.net/~maria-discuss More help : https://help.launchpad.net/ListHelp
participants (3)
-
Aaron Axelsen
-
Antony Stone
-
Benoit Plessis