Allow Local 3306 Connections to MySQL on Ubuntu 18.04 with UFW

MySQLufw

If I run this command:

mysql -u root -p -h 127.0.0.1 -P 3306

with the correct password (yes, I have the correct password) it says access denied

I run the exact same thing, just disable ufw first
sudo ufw disable

then the above command, and it works.
But: now ufw is disabled :S

What I really want to do is connect via mysql workbench using ssh
but without disabling ufw altogether, and without allowing none ssh access to my mysql installation?

these are the current settings that work for me with mysql-workbench, but only if ufw is disabled. As soon as I enable ufw, this stops working. And I dont want to just open 3306 ports to everyone either using ufw. I want to close everything except ssh, and let me connect via ssh to the 3306 port of mysql.

Best Answer

To allow connection via loopback adapter only on port 3306 you can run the following:

sudo ufw allow from 127.0.0.1 to 127.0.0.1 port 3306 proto tcp

Related Solutions

Ssh – Forwarding port 3306 on Mac OS X in order to connect to a remote MySQL Database

This should work:

ssh -L 3310:127.0.0.1:3306 user@server

The first port number is the local port to use (must not be in use already), the IP in between the colons is the IP to connect to, from the perspective of the host you are sshing into. The second port number is the port to connect to. If you are connecting to a server other than the one you are sshing into, then try the following:

ssh -L 3310:<remote-IP>:3306 user@server

Usually, when I want to do this more than one time, I create an entry in ~/.ssh/config like the following where sshhost.example.com is the server I am sshing to, the local port I want to open is 5910, the IP on the other side I want to connect to is 192.168.35.69, and the port I want to connect to there is 5900:

Host desk
    Hostname sshhost.example.com
    User jed
    Port 22
    LocalForward 5910 192.168.35.69:5900

Then from a command prompt I can just do

jed@jed-mbp:~$ ssh desk

and get a tunnel to my desktop at the office.

Good luck,

--jed

Linux – what’s wrong with the ufw configuration on Ubuntu server

If I were you I would seriously consider using something like the the iptables firewall generator to make your rules, I spend two days trying to use iptables as a router and after using this site i got it working in 5 mins.

Heres the link: http://easyfwgen.morizot.net/gen/

Hope that helps, RayQuang

Best Answer

Related Solutions

Ssh – Forwarding port 3306 on Mac OS X in order to connect to a remote MySQL Database

Linux – what’s wrong with the ufw configuration on Ubuntu server

Related Topic