Bug #70505 clarify default 18085 port usage and bind locally if no remote access needed
Submitted: 3 Oct 2013 9:41 Modified: 4 Mar 2014 11:48
Reporter: Simon Mudd (OCA) Email Updates:
Status: Closed Impact on me:
None 
Category:MySQL Enterprise Monitor: Configuration Severity:S3 (Non-critical)
Version:3.0.1.2893 OS:Any
Assigned to: Edward Gilmore CPU Architecture:Any
Tags: windmill

[3 Oct 2013 9:41] Simon Mudd
Description:
The merlin dashboard seems to require 3 ports to be setup. 2 of these appear to be normal (default: 18080, 18443) but there's also a 18085 connection.

It's not really very clear to me what this is used for (related to tomcat) but normally this port is never accessed. Therefore I wonder why I can see this:

[root@dc201merlinmdb-01 WEB-INF]# netstat -an | grep LISTEN | grep :18005
tcp        0      0 127.0.0.1:18005             0.0.0.0:*                   LISTEN      

That is connections are allowed from any server (ignoring possible firewall settings).

How to repeat:
see above.

Suggested fix:
If this port is not really used, or only used internally by the dashboard then change the configuration so it binds to 127.0.0.1 which can then only be accessed locally, or provide an installer option to set this to something else if wanted ( bind port 18085 to: 127.0.0.1/specific ip address/0.0.0.0 ? ) default: 127.0.0.1.

Clarify in the documentation what this port is used for.
(Or did I miss the explanation?)
[3 Oct 2013 14:52] Simon Mudd
My bad, this is bound locally.

It seems then that the main issue is making it clear in the installer text that this is a locally bound port, only used by mysqlmonitorctl.sh to stop/start tomcat.
[4 Oct 2013 8:20] MySQL Verification Team
Hello Simon,

Thank you for the bug report.
I agree with you on "making it clear in the installer text that this is a locally bound port, only used by mysqlmonitorctl.sh to stop/start tomcat".

Thanks,
Umesh
[4 Mar 2014 11:48] Edward Gilmore
Updated in 3.0.7
[5 Mar 2014 16:00] Edward Gilmore
Posted by developer:
 
Closed. Addition made here:
http://dev.mysql.com/doc/mysql-monitor/3.0/en/mem-file-locations.html