Pre-Install question

first off, I've been using centminmod now for a few years. It's getting to the point however that on some of my sites I need a dedicated database server. Does centminmod support this?

---

Maybe with 2 installs? Disable Nginx on one node and disable mariadb on the other?

Let me know what you think if it's possible (and clean) to do this, thanks as always for this wonderful set of scripts

 

Easy peasy! Or atleast i think so starting it up now!

 

So I just want to follow up with this, After everything is installed and the applications on each server are disabled. I will just need to run "csf -a IP" of each... is there a way to set the port to the mariaDB port 3306?

 

Ah! So I know I'd need to do a tcp "in" rule on the "DB" side... would I need to also do an "out" rule as well on the "app" side?

 

Hopefully last question...
added this to the app server :
tcp|out|d=3306|s=IP

and this to the DB :
tcp|in|d=3306|s=IP

Restarted CSF :
csf -r

This SHOULD be all i need to do.. correct?
PS Thank you so much for all this help

 

So i did just as the guy on that forum did, and im getting a MYSQL time out error. I noticed i added the TCP rules to /etc/csf.allow instead of /etc/csf/csf.allow so i made that change and reloaded the firewall... still a mysql time out error... rebooted... same error.

 

now im trying a [root@app01 log]# telnet DB-IP 3306
getting a time out :/

 

Ugh nvm got it... i was being stupid.
i was looking at # tcp/udp|in/out|s/d=port|s/d=ip
without reading "s/d=ip : EITHER source OR destination IP address"
so i was doing s/d instead of JUST s.

Seriously thank you for all of the help. time to donate
Enjoy a beer/coffee/something

 

okay what am i doing wrong, i had to migrate to a KVM and now its borked...

web tier :
tcp|out|d=3306|d=DBIP
DB tier :
tcp|in|s=3306|s=WEBIP

 

nvm ...
tcp|in|d=3306|s=WEBIP

 

Ugh, trying to do this again and im still getting an error and not quite sure what im doing wrong.. in the file : /etc/csf/csf.allow

i added on the "app side"
tcp|out|d=3306|d=DB_SERVER_IP


and on the "database side"
tcp|in|d=3306|s=APP_SERVER_IP

and I'm getting :
[07:58][root@APP public]# mysql -u root -p -h DB_SERVER_IP
Enter password:
ERROR 1130 (HY000): Host 'APP_SERVER_IP' is not allowed to connect to this MariaDB server

Is there something im doing wrong?

 

doh! forgot to edit

Code:

 /usr/local/src/centminmod/addons/mysqladmin_shell.sh

and edit the line

Code:

MYSQLHOSTNAME='APP_SERVER_IP'

 

Yep! Sometimes you have to set back and take a break lol.