iptables rules with a VIP
I am looking at how I can implement an iptables rule to tackle the following
App ServerX --> VIP --> database
the VIP is a loadbalancer that round robins to 3 servers that have the database.
I want only AppServerX to be able to access the database.
I've added firewall rules iptables to all 3 servers running the database, to only allow traffic from server.
this works when the VIP is turned off. As soon as the VIP is enabled, any host is able to access the database.
How can I restrict this so that only App ServerX has access to the database. removing the VIP is not an option
|