?
Solved

set linux box that only computer in the club can get the data

Posted on 2006-11-22
6
Medium Priority
?
219 Views
Last Modified: 2010-04-20
I have mysql database and some file in folde /home/image that I want only computer of my staff can go to up date data, I have one computer that is a server install linux fedola 3 and 10 computer of mystaff  that i want 10 computer to update my sql data base and file in folder /home/image please suggest me the methodthat  only 10 computer of my staff can update data form the server the 10 computer will update automaticly every day with difference time
0
Comment
Question by:teera
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
6 Comments
 
LVL 14

Accepted Solution

by:
ppfoong earned 1000 total points
ID: 17995944

For MySQL, you need to enable tcpip socket, as well as grant user access to the IP addresses of the 10 computers.

The MySQL command is:

GRANT ALL PRIVILEGES ON *.* TO 'root'@'ip.address.of.remote.host' IDENTIFIED BY 'thepassword';
 

For the server, it would be straightforward if you have shorewall and iptables installed.

Just edit the /etc/shorewall/rules file, add in:

ACCEPT  net:ip.address.of.remote.host1       fw             all
ACCEPT  net:ip.address.of.remote.host2       fw             all
ACCEPT  net:ip.address.of.remote.host3       fw             all

and restart the shorewall service.

All other IP addresses will be denied.
0
 

Author Comment

by:teera
ID: 17996133
Hi ppfoong
the problem is I use adsl for client
0
 
LVL 30

Assisted Solution

by:Kerem ERSOY
Kerem ERSOY earned 400 total points
ID: 17999217
In fact you have supplied very less information.

Is your MySQL server open to internet via an ADSL line ?
What OS your 10 clients use ?
Do they have fixed IP addresses ?

In fact I will suggest you to use SSH on theclients. and do a port redirection on Shorewall Firewall to allow SSH connections
and You must do a port forwarding on SSH client side. This way you can both:
- be sure that only previously authorized users (by SSH) be able to access MySQL athus this will be preventing you from attacks to your MySQL port (3306)
- SSH suppors decre file transfers so you can automate transfers on a certain time.
0
Simplifying Server Workload Migrations

This use case outlines the migration challenges that organizations face and how the Acronis AnyData Engine supports physical-to-physical (P2P), physical-to-virtual (P2V), virtual to physical (V2P), and cross-virtual (V2V) migration scenarios to address these challenges.

 
LVL 8

Expert Comment

by:John Kawakami
ID: 18000534
If possible, tunnel your traffic through OpenVPN.  That will give you a stable IP address on a fake subnetwork.  You can then open a port from a single machine in your office that tunnels all mysql traffic to the server.
0
 
LVL 14

Assisted Solution

by:ppfoong
ppfoong earned 1000 total points
ID: 18000657

jk2001 is right. OpenVPN will be a solution if your users are from remote network with dynamic IP address. With OpenVPN, you establish secured VPN tunnel to your HQ, and have the option to assigned specific local VPN IP address to the client.

There is a simple GUI OpenVPN configuration interface for Windows too.

http://www.itsatechworld.com/2006/01/29/how-to-configure-openvpn/


0
 
LVL 30

Expert Comment

by:Kerem ERSOY
ID: 18001447
It is OK to use OpenVPN but here the user will only need to uredirect a single port and it is obvious that setting-up OpenVPN much more harder than installing PuTTY on clients. Besides SSH server is already installed in all inux Distributions. With SSH they will have a fixed address to connect too.

So I still think that using SSH port redirection is simpler to implement yet as secure as the OpenVPN solution.
0

Featured Post

Want to be a Web Developer? Get Certified Today!

Enroll in the Certified Web Development Professional course package to learn HTML, Javascript, and PHP. Build a solid foundation to work toward your dream job!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Setting up Secure Ubuntu server on VMware 1.      Insert the Ubuntu Server distribution CD or attach the ISO of the CD which is in the “Datastore”. Note that it is important to install the x64 edition on servers, not the X86 editions. 2.      Power on th…
If you use Debian 6 Squeeze and you are tired of looking at the childish graphical GDM login screen that is used by default, here's an easy way to change it. If you've already tried to change it you've probably discovered that none of the old met…
Learn how to find files with the shell using the find and locate commands. Use locate to find a needle in a haystack.: With locate, check if the file still exists.: Use find to get the actual location of the file.:
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.
Suggested Courses
Course of the Month10 days, 12 hours left to enroll

764 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question