On Tue, Aug 22, 2017 at 12:26:30PM +0200, Davide Marchi wrote: > Hi friends, > I've just configured MySQL Replication, between two VPS Debian Jessie. > > I've open the 3306 port on each server and ssh port (60319), but this seem > not sufficient, > could you suggest me please if I should open other specific TCP/UDP port? > ..... > > This is the syslog on MASTER: > > Aug 22 11:57:06 server kernel: [17623379.688961] > Shorewall:net-fw:DROP:IN=eth0 OUT= > MAC=00:50:56:3c:a8:50:00:08:e3:ff:fd:90:08:00 SRC=5.189.144.220 > DST=91.205.175.213 LEN=55 TOS=0x00 PREC=0x00 TTL=58 ID=0 DF PROTO=UDP > SPT=38443 DPT=1370 LEN=35 ..... > > This is the syslog on SLAVE: > > Aug 22 11:57:24 server2 kernel: [11466741.408787] > Shorewall:net-fw:DROP:IN=eth0 OUT= > MAC=00:50:56:3c:fb:65:28:99:3a:4d:23:91:08:00 SRC=82.146.62.226 > DST=5.189.166.16 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=5607 PROTO=TCP > SPT=52617 DPT=3390 WINDOW=1024 RES=0x00 SYN URGP=0 .....
Hi Davide, Diagnosing something like this typically requires the complete output of 'shorewall dump'. However, based on the syslog messages it looks like you simply need to add the 'routeback' option to the eth0 line in /etc/shorewall/interfaces on both hosts. If that does not resolve the problem, please post the complete output of 'shorewall dump' so that we can help you identify the cause. Regards, -Roberto -- Roberto C. Sánchez http://people.connexer.com/~roberto http://www.connexer.com
signature.asc
Description: Digital signature
------------------------------------------------------------------------------ Check out the vibrant tech community on one of the world's most engaging tech sites, Slashdot.org! http://sdm.link/slashdot
_______________________________________________ Shorewall-users mailing list Shorewall-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/shorewall-users
