:: Allow outgoing MySQL connection on CSF
:: What is CSF
CSF firewall commonly known as Configserver Security and Firewall has become one of the popular firewall not just because of its easy of use it also provides a cpanel interface and can be easily installed and tuned by any novice users. If you are running cpanel without firewall then CSF firewall is very much recommended, considering the security aspects of your server.
:: How to allow outgoing mysql on CSF
vi /etc/csf/csf.conf
add port 3306 on outgoing
# Allow outgoing TCP ports TCP_OUT = "20,21,22,25,37,43,53,80,110,113,443,995,3306"
:: How to allow outgoig mysql only one ip
vi /etc/csf/csf.allow
add line like:
tcp:out:d=3306:d=1.2.3.4
:: Restarting csf
/etc/init.d/csf restart
Is there any way to dynamically allow the IP’s from “Remote MySQL” in cPanel through on port 3306? i.e. I don’t want to allow all IP’s on the internet through, but allow clients to add their own IP’s and have CSF automatically allow it through?
i think you could do with this – as admin :
o setup DynamicDNS on your connection
o add the DDNS name on /etc/csf/csf.dyndns
o allow the DDNS name on /etc/csf/csf.allow
i think you could do with this – as admin :
o setup DynamicDNS on your connection
o add the DDNS name on /etc/csf/csf.dyndns
o allow the DDNS name on /etc/csf/csf.allow