By Angel Cantu
I installed in my droplet mariadb and configure the ufw firewall:
# ufw allow from Ip.Slave.Server to any port 3306
# ufw allow from Ip.Second.Slave.Server to any port 3306
# ufw status
22/tcp ALLOW Anywhere
3306/tcp ALLOW Ip.Slave.Ser.ver
3306/tcp ALLOW Ip.Second.Slave.Server
80/tcp ALLOW Anywhere
443/tcp ALLOW Anywhere
22/tcp (v6) ALLOW Anywhere (v6)
80/tcp (v6) ALLOW Anywhere (v6)
443/tcp (v6) ALLOW Anywhere (v6)
But I’m in my House (IP is different of Slave Server and Second Slave server), I can see the port open and make connection :(, Why? … I shouldn’t connect.
# nmap -sT -P0 -p 3306 ip.my.droplet
3306/tcp open mysql
I need close the connection to 3306 for all, and only open for the Specifics IP (Slave and SeconSlave) !
Regards!
This textbox defaults to using Markdown to format your answer.
You can type !ref in this text area to quickly search our full set of tutorials, documentation & marketplace offerings and insert the link!
Hi @siegroupmx,
The same topic has been discussed in the following Community Question - Block port 3306
Let me summarize it, you’ll need to manually deny traffic to the port and then allow only your IP on the said port. In ohter words, you’l need to do this
sudo ufw deny 3306/tcp
then allow your IP to your server
sudo ufw allow from Your.IP.Address to any port 3306 proto tcp
That’s it!
Regards, KDSYS
Become a contributor for community
Get paid to write technical tutorials and select a tech-focused charity to receive a matching donation.
DigitalOcean Documentation
Full documentation for every DigitalOcean product.
Resources for startups and AI-native businesses
The Wave has everything you need to know about building a business, from raising funding to marketing your product.
The developer cloud
Scale up as you grow — whether you're running one virtual machine or ten thousand.
Get started for free
Sign up and get $200 in credit for your first 60 days with DigitalOcean.*
*This promotional offer applies to new accounts only.