yum install wireshark
Monitor FTP Traffic
tshark tcp port 21
Advertisements
Month: July 2010
Generating Table Definitions with MYSQLDUMP
Table definitions can be generated with
mysqldump –all-tables –no-data > db.sql
But this can be quite large, to split them into separate files per table I found this worked
DB=db_name
for T in `mysql -N -B -u root -pxxxxx -e ‘show tables from db_name’`;
do echo $T;
mysqldump -u root -pxxxx –no-data $DB $T
> $dbdbname_$T.sql ;
done
Analysing Slow Query Log with mk-query-digest
To analyze the slow query log to look for poorly performing queries try using mk-query-digest. The following command will analyze the slow and produce a detailed report for slow queries
./mk-query-digest /var/lib/mysql/mysql-slow.log > slow.txt
Running MySQL Replication Over SSL
This is the first part in a set of posts about setting up a DR solution for a client. First of all I had to figure out replication over SSL as the link between the data centers is outside of my control and I am paranoid 🙂
The master and slave where setup as usual, bog standard 5.5m3 installs.
Generate the SSL certs on the Master and copy them over to the slave
On the Master and the Slave
mkdir -p /etc/mysql/ssl && cd /etc/mysql/ssl
On Master
openssl genrsa 2048 > ca-key.pem
openssl req -new -x509 -nodes -days 1000 -key ca-key.pem > ca-cert.pem
openssl req -newkey rsa:2048 -days 1000 -nodes -keyout server-key.pem > server-req.pem
openssl x509 -req -in server-req.pem -days 1000 -CA ca-cert.pem -CAkey ca-key.pem -set_serial 01 > server-cert.pem
openssl req -newkey rsa:2048 -days 1000 -nodes -keyout client-key.pem > client-req.pem
openssl x509 -req -in client-req.pem -days 1000 -CA ca-cert.pem -CAkey ca-key.pem -set_serial 01 > client-cert.pem
scp /etc/mysql/newcerts/ca-cert.pem root@192.168.0.2:/etc/mysql/ssl
scp /etc/mysql/newcerts/client-cert.pem root@192.168.0.2:/etc/mysql/ssl
scp /etc/mysql/newcerts/client-key.pem root@192.168.0.2:/etc/mysql/ssl
vi /etc/my.cnf
[mysqld]
ssl
ssl-ca=/etc/mysql/newcerts/ca-cert.pem
ssl-cert=/etc/mysql/newcerts/server-cert.pem
ssl-key=/etc/mysql/newcerts/server-key.pem
server-id = 1
log_bin = /var/lib/mysql/mysql-bin.log
GRANT REPLICATION SLAVE ON *.* TO ‘slave_user‘@’%’ IDENTIFIED BY ‘slave_password‘ REQUIRE SSL;
GRANT USAGE ON *.* TO ‘slave_user‘@’%’ REQUIRE SSL;
FLUSH PRIVILEGES;
quit;
Restart MySQL
On Slave
vi /etc/my.cnf
[mysqld]
ssl
server-id=2
Restart MySQL
CHANGE MASTER TO MASTER_HOST=’192.168.0.1′, MASTER_USER=’slave_user‘, MASTER_PASSWORD=’slave_password‘, MASTER_LOG_FILE=’mysql-bin.000001’, MASTER_LOG_POS=3096416, MASTER_SSL=1, MASTER_SSL_CA = ‘/etc/mysql/ssl/ca-cert.pem’, MASTER_SSL_CERT = ‘/etc/mysql/ssl/client-cert.pem’, MASTER_SSL_KEY = ‘/etc/mysql/ssl/client-key.pem’;
