Your ads will be inserted here by
Easy Plugin for AdSense.
Please go to the plugin admin page to
Paste your ad code OR
Suppress this ad slot.
How to generate certificates for mysql replication with ssl.
Lets assume, database server are: db1 [master], db2 [slave] / master of db3, db3[slave]
openssl genrsa 2048 > ca-key.pem
openssl req -new -x509 -nodes -days 3600 -key ca-key.pem -out ca.pem
openssl req -newkey rsa:2048 -days 3600 -nodes -keyout db1-key.pem -out db1-req.pem
openssl rsa -in db1-key.pem -out db1-key.pem
openssl x509 -req -in db1-req.pem -days 3600 -CA ca.pem -CAkey ca-key.pem -set_serial 01 -out db1-cert.pem
openssl req -newkey rsa:2048 -days 3600 -nodes -keyout db2-key.pem -out db2-req.pem
openssl rsa -in db2-key.pem -out db2-key.pem
openssl x509 -req -in db2-req.pem -days 3600 -CA ca.pem -CAkey ca-key.pem -set_serial 01 -out db2-cert.pem
Test
openssl verify -CAfile ca.pem db1-cert.pem db2-cert.pem
openssl req -newkey rsa:2048 -days 3600 -nodes -keyout db3-key.pem -out db3-req.pem
openssl rsa -in db3-key.pem -out db3-key.pem
openssl x509 -req -in db3-req.pem -days 3600 -CA ca.pem -CAkey ca-key.pem -set_serial 01 -out db3-cert.pem
Test
openssl verify -CAfile ca.pem db1-cert.pem db2-cert.pem db3-cert.pem
Full setup process can be found: