Secure connection between master and slave servers

Discussion in 'ISPConfig 3 Priority Support' started by felan, Mar 8, 2019.

  1. felan

    felan Member HowtoForge Supporter

    Good evening.

    I have an interesting question. One of our customers requires a high level of security on our setup and one of the things, I have to admit that I am not sure about, is how the connection between the master and slave ispconfig servers happen? Is this direct connection between MySQL or is it done only through https?
    If it's between MySQL servers, is this connection secured?
    If it's done through HTTPS, can I safely close port 3306 in the firewalls?

    This might sound stupid, but I can't find info on this in the manual or in other documentation, I've seen on ispconfig.org or here.

    I hope you can help me out here.

    Cheers,
    Mike Hansen
    Design'R'Us
     
    felan, Mar 8, 2019
    #1
  2. till

    till Super Moderator Staff Member ISPConfig Developer

    The connection is done through mysql.
     
    till, Mar 9, 2019
    #2
  3. felan

    felan Member HowtoForge Supporter

    Oki. Hmm. So we would need to do a secure connection of some sorts... Is that even supported?
     
    felan, Mar 9, 2019
    #3
  4. till

    till Super Moderator Staff Member ISPConfig Developer

    You can configure SSL for mysql and enable it via php mysql driver flags (the variable is named $conf['dbmaster_client_flags'] in server config.inc.php) or you use a vpn tunnel between the servers to tunnel the mysql traffic. I don't have any manuals for that though.
     
    till, Mar 9, 2019
    #4
  5. felan

    felan Member HowtoForge Supporter

    Hi again Till.
    Thanks that looks like it would work out nicely :D
     
    felan, Mar 9, 2019
    #5

Share This Page