i&#39;ve typed in the following command:<br>service iptables stop<br><br>After which access from the remote machine it worked quite well<br><br>netstat indicates that the port 3306 is bound to both loopback as well as the machines actual ip address<br>
<br><br><br><br><div class="gmail_quote">On Thu, Feb 4, 2010 at 3:40 PM, Bernard Mwagiru <span dir="ltr">&lt;<a href="mailto:bmwagiru@gmail.com">bmwagiru@gmail.com</a>&gt;</span> wrote:<br><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
Possibly you should run the  reverse of the iptables on client and server: <br>SERVER:<div class="im"><br><pre>iptables -A OUTPUT -p tcp -s 202.54.1.20 --sport 3306 -d 202.54.1.50 --dport 1024:65535 -m state --state ESTABLISHED -j ACCEPT</pre>

<pre>iptables -A INPUT -p tcp -s 202.54.1.50 --sport 1024:65535 -d 202.54.1.20 --dport 3306 -m state --state NEW,ESTABLISHED -j ACCEPT</pre></div>CLIENT:<br><pre>iptables -A INPUT -p tcp -s 202.54.1.20 --sport 3306 -d 202.54.1.50 --dport 1024:65535 -m state --state ESTABLISHED -j ACCEPT</pre>


<pre>iptables -A OUTPUT -p tcp -s 202.54.1.50 --sport 1024:65535 -d 202.54.1.20 --dport 3306 -m state --state NEW,ESTABLISHED -j ACCEPT</pre>
<br>....depending on  which is server/client...<br>Can both access each other with iptables -FLUSH ?<br><font color="#888888"><br>./bernard<br><br></font><div class="gmail_quote"><div class="im">On Thu, Feb 4, 2010 at 3:24 PM, Nd&#39;wex Common <span dir="ltr">&lt;<a href="mailto:flexycat@gmail.com" target="_blank">flexycat@gmail.com</a>&gt;</span> wrote:<br>

</div><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;"><div><div></div><div class="h5">Hi,<br><br>I have mysql database hosted on a linux server [centos 5.4] and i would like to access the database from another machine from the network i have made the follwing configuration to iptables:<br>

<pre>iptables -A INPUT -p tcp -s 202.54.1.50 --sport 1024:65535 -d 202.54.1.20 --dport 3306 -m state --state NEW,ESTABLISHED -j ACCEPT<br>
iptables -A OUTPUT -p tcp -s 202.54.1.20 --sport 3306 -d 202.54.1.50 --dport 1024:65535 -m state --state ESTABLISHED -j ACCEPT</pre>the ip addresses here are not real.<br><br>when i try to access the server even by telneting it wont work, where could i be going wrong?<br>


<br>all assistance will be highly appreciated<br><font color="#888888"><br>Nd&#39;wex<br>
</font><br></div></div><div class="im">_______________________________________________<br>
Skunkworks mailing list<br>
<a href="mailto:Skunkworks@lists.my.co.ke" target="_blank">Skunkworks@lists.my.co.ke</a><br>
<a href="http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks" target="_blank">http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks</a><br>
------------<br>
Skunkworks Server donations spreadsheet<br>
<a href="http://spreadsheets.google.com/ccc?key=0AopdHkqSqKL-dHlQVTMxU1VBdU1BSWJxdy1fbjAwOUE&amp;hl=en" target="_blank">http://spreadsheets.google.com/ccc?key=0AopdHkqSqKL-dHlQVTMxU1VBdU1BSWJxdy1fbjAwOUE&amp;hl=en</a><br>


------------<br>
Skunkworks Rules<br>
<a href="http://my.co.ke/phpbb/viewtopic.php?f=24&amp;t=94" target="_blank">http://my.co.ke/phpbb/viewtopic.php?f=24&amp;t=94</a><br>
------------<br>
Other services @ <a href="http://my.co.ke" target="_blank">http://my.co.ke</a><br>
Other lists<br>
-------------<br>
Announce: <a href="http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks-announce" target="_blank">http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks-announce</a><br>
Science:  <a href="http://lists.my.co.ke/cgi-bin/mailman/listinfo/science" target="_blank">http://lists.my.co.ke/cgi-bin/mailman/listinfo/science</a><br>
kazi:     <a href="http://lists.my.co.ke/cgi-bin/mailman/admin/kazi/general" target="_blank">http://lists.my.co.ke/cgi-bin/mailman/admin/kazi/general</a><br></div></blockquote></div><br>
<br>_______________________________________________<br>
Skunkworks mailing list<br>
<a href="mailto:Skunkworks@lists.my.co.ke">Skunkworks@lists.my.co.ke</a><br>
<a href="http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks" target="_blank">http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks</a><br>
------------<br>
Skunkworks Server donations spreadsheet<br>
<a href="http://spreadsheets.google.com/ccc?key=0AopdHkqSqKL-dHlQVTMxU1VBdU1BSWJxdy1fbjAwOUE&amp;hl=en" target="_blank">http://spreadsheets.google.com/ccc?key=0AopdHkqSqKL-dHlQVTMxU1VBdU1BSWJxdy1fbjAwOUE&amp;hl=en</a><br>

------------<br>
Skunkworks Rules<br>
<a href="http://my.co.ke/phpbb/viewtopic.php?f=24&amp;t=94" target="_blank">http://my.co.ke/phpbb/viewtopic.php?f=24&amp;t=94</a><br>
------------<br>
Other services @ <a href="http://my.co.ke" target="_blank">http://my.co.ke</a><br>
Other lists<br>
-------------<br>
Announce: <a href="http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks-announce" target="_blank">http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks-announce</a><br>
Science:  <a href="http://lists.my.co.ke/cgi-bin/mailman/listinfo/science" target="_blank">http://lists.my.co.ke/cgi-bin/mailman/listinfo/science</a><br>
kazi:     <a href="http://lists.my.co.ke/cgi-bin/mailman/admin/kazi/general" target="_blank">http://lists.my.co.ke/cgi-bin/mailman/admin/kazi/general</a><br></blockquote></div><br>