Allow remote connections to your MySQL server
I have covered MySQL in a number of ways so far. You can read how to administer your MySQL database with MySQL Workbench (see my article "Complete database administration package MySQL Workbench"), MySQL Administrator (see my article "Creating a database with MySQL Administrator"), MySQL Navigator (see my article "Manage you MySQL databases with an easy to use GUI"), or PhpMyAdmin (see my article "Install PhpMyAdmin for easy MySQL administration"). Through my LAMP article, "How to install a LAMP server", you learned how to install MySQL. Now, it's time to see how you can extend that MySQL server to remote machines.
Why would you want to do this? A database server is a preciousÂ commodityÂ in the world of data. To have that same server pitch other forms of data and other service could quickly become a detriment to your MySQL in both performance and security categories. Because of this it is wise to isolate that MySQL such that it is only used for that service. But to do this you have to configure that server to be able to serve up databases to remote machines. Although not terribly complicated, without knowing where to look and what to do, this task can be seemingly impossible. But after this tutorial, your databases will beÂ accessibleÂ to user/machines you configure - and only those user/machines.
Before we begin
You will be glad to know, assuming you have MySQL up and running, there is no installation necessary for this task. You will need access to the MySQL administrators password as well as administrative access so you can edit a MySQL configuration file. Other than that simple necessity (and a terminal window), you are ready to get cracking.
Before you actually start editing the /etc/mysql/my.conf file, I would suggest you back up your current file. Do this with the command:
sudo cp /etc/mysql/my.conf /etc/mysql/my.conf.bak
Now that the file is backed up let's open this baby up for editing. When you have the file open you are going to want to look for this line:
bind-address = 127.0.0.1
What the above line does is limit connections to the localhost and only the localhost. You want to comment this line out by changing it to:
#bind-address = 127.0.0.1
Now save that file and restart MySQL with the command:
sudo /etc/init.d/mysql restart
When MySQL has restarted you now need to get to the MySQL command prompt.
The mysql prompt
In order to get to the mysql prompt you will want to issue the command:
mysql -u root -p
Where root is the MySQL administrative user (most like it is root).
You will be prompted for the MySQL administrators password. After you have successfully authenticated you will have a new prompt that looks like:
You are now at the MySQL prompt. You only have one command to enter for this to work. You will want to enter this command carefully:
GRANT ALL PRIVILEGES ON *.* TO username@address IDENTIFIED BY "password";
WhereÂ username is the username on the remote machine that will be connecting, address is the IP address of the remote machine, and password is the password that will be used by the remote user.
When that command is issued successfully you should see something like:
Query OK, 0 rows affected (0.00 sec)
As long as you get Query OK, you should be good to go.
Now when you need to connect from a remote machine you will use the IP address of the MySQL server, the username you entered in the MySQL command prompt, and the username will be the username you entered in the MySQL command prompt.
That's it. Your MySQL server is ready to accept remote connections.
It should go without saying that you will also want to make sure this MySQL server is protected with a good firewall. Â For this you can check out any of the iptables articles here on Ghacks. Enjoy that MySQL server!Advertisement