LinuxQuestions.org
Share your knowledge at the LQ Wiki.
Home Forums Tutorials Articles Register
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - General
Reload this Page access control for rethink database
User Name
Password
Linux - General This Linux forum is for general Linux questions and discussion.
If it is Linux Related and doesn't seem to fit in any other forum then this is the place.

Notices


Reply
  Search this Thread
Old 03-15-2024, 11:41 AM   #1
dc.901
Senior Member
 
Registered: Aug 2018
Location: Atlanta, GA - USA
Distribution: CentOS/RHEL, openSuSE/SLES, Ubuntu
Posts: 1,005

Rep: Reputation: 370Reputation: 370Reputation: 370Reputation: 370
access control for rethink database

Hello all,
I am looking for a way to secure rethinkdb deployment and want to allow connection from only specific app servers; for example,
Code:
Rethink Dev DB only accepts connection from Dev app servers
Rethink Prod DB only accepts connection from Prod app servers
Rethink Dev and Prod are 2 different hosts.
Is this possible?
Looking at this doc: https://rethinkdb.com/docs/security/
But not seeing specific to what I am trying to do above
---
Note - I did post this question on RethinkDB-help Slack channel; which appears to be dead, despite being couple of thousand members.
Apologies for double posting - only posted here because there is no response on their slack
Last edited by dc.901; 03-15-2024 at 11:43 AM.
 
Old 03-15-2024, 12:07 PM   #2
lvm_
Member
 
Registered: Jul 2020
Posts: 928

Rep: Reputation: 337Reputation: 337Reputation: 337Reputation: 337
No idea what rethinkdb is but I presume it accepts connection on a specific port, and you can restrict who can connect to this port using iptables

Code:
iptables -A INPUT -p tcp --dport <port> -s <allowed-address> -j ACCEPT
iptables -A INPUT -p tcp --dport <port> -j DROP
 
Old 03-15-2024, 12:27 PM   #3
dc.901
Senior Member
 
Registered: Aug 2018
Location: Atlanta, GA - USA
Distribution: CentOS/RHEL, openSuSE/SLES, Ubuntu
Posts: 1,005

Original Poster
Rep: Reputation: 370Reputation: 370Reputation: 370Reputation: 370
Quote:
Originally Posted by lvm_ View Post
No idea what rethinkdb is but I presume it accepts connection on a specific port, and you can restrict who can connect to this port using iptables

Code:
iptables -A INPUT -p tcp --dport <port> -s <allowed-address> -j ACCEPT
iptables -A INPUT -p tcp --dport <port> -j DROP
Aagh - I was banging my head at this for bit and honestly did NOT think of this.
I did think of firewalld and restricting IPs.
Let me give this a try.
Thank you!!
 
  


Reply



Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Open source and SaaS offerings rethink the database DragonSlayer48DX Linux - News 0 03-24-2009 09:25 AM
usb mounting error: "TODO: have to rethink extra options" kaiwan Linux - Hardware 11 07-24-2008 05:14 PM
LXer: Microsoft, Novell Should Rethink Their Patent Pledge LXer Syndicated Linux News 0 11-23-2006 12:54 PM
LXer: Rethink the way you hire IT professionals LXer Syndicated Linux News 0 04-10-2006 07:03 PM
Please rethink your policy on review post counting vharishankar LQ Suggestions & Feedback 23 03-15-2005 11:26 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - General

All times are GMT -5. The time now is 10:32 AM.

Contact Us - Advertising Info - Rules - Privacy - LQ Merchandise - Donations - Contributing Member - LQ Sitemap -
Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration