mohamedkashifuddin94 commented 2 years ago

[ ] A description of the issue

The issue which i m facing is i m connecting proxysql > pxc MySQL so when try to connect via proxysql to MySQL it shows a error 2021-10-23 17:39:57 mysql_connection.cpp:835:handler(): [ERROR] Failed to mysql_real_connect() on mysql-cluster-rg-1-haproxy.mysql1.svc.cluster.local:3306 , FD (Conn:32 , MyDS:32) , 1045: Access denied for user 'root'@'10.56.0.102' (using password: YES).

2021-10-23 17:40:23 MySQL_Session.cpp:5234:handler___status_CONNECTING_CLIENT___STATE_SERVER_HANDSHAKE(): [ERROR] ProxySQL Error: Access denied for user 'root'@'127.0.0.1' (using password: YES)

why does ha-proxy comes here from the above error ? It is because i m using a percona MySQL operator in K8s so when i spin up a percona operator i enable ha-proxy and then the ha-proxy monitors the pxc nodes and re-directs the connection to the active node. Thats the reason i use ha-proxy, In this use case i use a proxysql to redirect the incoming connections to the particular endpoint as mention in proxysql.cnf (mysql_servers,mysql_users) section.

----> i have added two percona operator in different namespace and deployed proxysql docker container as a pod in a namespace so all these 3 namespace have network connection between them.

The expectation was using the details from proxysql.cnf proxysql should redirect the request to the endpoint regardless of whether its forwarding the request to a ha-proxy or MySQL it should just forward the request.

Issues :

1.instead what really happen was it was showing a Access denied, but when i directly connect to the ha-proxy i m able to login and do all kind of query's. I have attached the image below

F.Y.I I have port forward it to local so it shows 127.0.0.1 instead of showing the actual IP in the error .

2.Initially i thought it was because of caching_sha2_password and i should set admin-hash_passwords=false but it was not the case since when i checked the password mechanism of pxc it was mysql_native_password so it shouldn't be a issue since proxysql supports mysql_native_password mechanism.

In mysql_servers details section in proxysql.cnf i try to give FQDN then later i gave the IP both it reaches endpoint of ha-proxy but doesn't connect and login it shows access denied.
while connecting to ha-proxy directly then using show processlist query i can see proxysql monitor user is able to connect to both the operator and able to monitor it. then why proxysql not connecting with root user in those operator. i even try to use different users but no luck same result only monitor user seems connecting to ha-proxy via proxysql
```
| 9309 | monitor         | 10.56.1.110:562 | NULL | Sleep            |     95 |                                                               | NULL             |     94888 |         0 |             0 |
```

[ ] ProxySQL version I have used docker versions tag : latest, 2.3.2 ,2.3.0 ,2.0.16 all gave the same issue
[ ] The steps to reproduce the issue

using this link you can deploy two operators but in deploy/cr.yaml file just change the metadata as https://github.com/percona/percona-xtradb-cluster-operator/tree/main/deploy In one namespace
metadata: name: mysql-cluster-rg-1 and another namespace

metadata: name: mysql-cluster-rg-2

Just clone the code in two different folders and deploy it in different namespace
then run these three commands to install operator kubectl apply -f bundle.yaml -n namespace eg.mysql1 and mysql2 for another namespace kubectl apply -f cr.yaml -n namespace kubectl apply -f secrets.yaml -n namespace For testing change the root password in second operator so while connecting to proxysql you can identify whether your connecting so primary or secondary operator.

[ ] The package used to install ProxySQL

To deploy proxysql docker as a pod in K8s you can use this link : https://github.com/ProxySQL/kubernetes/tree/master/proxysql-cluster In the folder name files/ you will find the proxysql.cnf so you can replace those details with the my proxysql.cnf which i have added below then give a helm install proxysql-test proxysql-cluster/ ---> ( syntax ) helm install release name then the folder name

Then using kubectl port-forward command you can port-forward to your local using the svc

kubectl port-forward svc/proxysql-test 6033:6033 -n namespace same you can

proxysql.cnf sample file which i reference from below link : https://github.com/smartboxgroup/proxysql-docker/blob/master/proxysql.cnf.template

#file proxysql.cfg

# This config file is parsed using libconfig , and its grammar is described in:
# http://www.hyperrealm.com/libconfig/libconfig_manual.html#Configuration-File-Grammar
# Grammar is also copied at the end of this file

datadir="/var/run/proxysql"

admin_variables=
{
    admin_credentials="admin:admin"
    mysql_ifaces="127.0.0.1:6032;/tmp/proxysql_admin.sock"
    refresh_interval=1000
  admin-hash_passwords=false
    debug=true
  mysql-verbose_query_error=true
}

mysql_variables=
{
    threads=4
    max_connections=2048
    default_query_delay=0
    default_query_timeout=36000000
    have_compress=true
    poll_timeout=2000
    interfaces="0.0.0.0:6033;/tmp/proxysql.sock"
    default_schema="information_schema"
    stacksize=1048576
    server_version="8.0.23-14.1"
  monitor_username="monitor"
  monitor_password="monitory"
    connect_timeout_server=10000
    monitor_history=60000
    monitor_connect_interval=200000
    monitor_ping_interval=200000
    ping_interval_server=10000
    ping_timeout_server=200
    commands_stats=true
    sessions_sort=true
  mysql-verbose_query_error=true
  admin-hash_passwords=false
}

# defines all the MySQL servers
mysql_servers =
(
    {
        address = "mysql-cluster-rg-1-haproxy.mysql1.svc.cluster.local" # no default, required . If port is 0 , address is interpred as a Unix Socket Domain
        port = 3306           # no default, required . If port is 0 , address is interpred as a Unix Socket Domain
        hostgroup = 10          # no default, required
        status = "ONLINE"     # default: ONLINE
        weight = 1            # default: 1
        compression = 0       # default: 0
  #max_replication_lag = 10  # default 0 . If greater than 0 and replication lag passes such threshold, the server is shunned
    },
    {
        address = "mysql-cluster-rg-2-haproxy.mysql2.svc.cluster.local" # no default, required . If port is 0 , address is interpred as a Unix Socket Domain
        port = 3306           # no default, required . If port is 0 , address is interpred as a Unix Socket Domain
        hostgroup = 1           # no default, required
        status = "ONLINE"     # default: ONLINE
        weight = 1            # default: 1
        compression = 0       # default: 0
  #max_replication_lag = 10  # default 0 . If greater than 0 and replication lag passes such threshold, the server is shunned
    },  
#   {
#       address = "/var/lib/mysql/mysql.sock"
#       port = 0
#       hostgroup = 0
#   },
#   {
#       address="127.0.0.1"
#       port=21891
#       hostgroup=0
#       max_connections=200
#   },
#   { address="127.0.0.2" , port=3306 , hostgroup=0, max_connections=5 },
#   { address="127.0.0.1" , port=21892 , hostgroup=1 },
#   { address="127.0.0.1" , port=21893 , hostgroup=1 }
#   { address="127.0.0.2" , port=3306 , hostgroup=1 },
#   { address="127.0.0.3" , port=3306 , hostgroup=1 },
#   { address="127.0.0.4" , port=3306 , hostgroup=1 },
#   { address="/var/lib/mysql/mysql.sock" , port=0 , hostgroup=1 }
)

# defines all the MySQL users
mysql_users:
(
    {
        username = "root" # no default , required
        password = "root_passwordtest" # default: ''
        default_hostgroup = 10 # default: 0
    max_connections=1000
        active = 1            # default: 1
    },
    {
        username = "root"
        password = "root_passwordtest1"
        default_hostgroup = 1
        max_connections=1000
        active = 1
    },
#   { username = "user1" , password = "password" , default_hostgroup = 0 , active = 0 }
)

#defines MySQL Query Rules
mysql_query_rules:
(
    {
        rule_id=300
        active=1
        match_pattern="^SELECT .* FOR UPDATE$"
        destination_hostgroup=10
        apply=1
    },
    {
        rule_id=2
        active=1
        match_pattern="^SELECT"
        destination_hostgroup=1
        apply=1

    }

  ,
    {
        rule_id=300
        active=1
        match_pattern=".*"
        destination_hostgroup=10
        apply=1
    }

)

[ ] The full ProxySQL error log (default location: /var/lib/proxysql/proxysql.log)

Standard ProxySQL Admin rev. 2.0.6.0805 -- ProxySQL_Admin.cpp -- Mon Feb 24 16:38:57 2020
2021-10-23 17:21:19 [INFO] ProxySQL SHA1 checksum: 4b05ff41da0d7b7a8a0e40ad4042f0673a562458
Standard MySQL Threads Handler rev. 0.2.0902 -- MySQL_Thread.cpp -- Mon Feb 24 16:38:57 2020
Standard MySQL Authentication rev. 0.2.0902 -- MySQL_Authentication.cpp -- Mon Feb 24 16:38:57 2020
2021-10-23 17:21:19 [INFO] Dumping mysql_servers_incoming
+--------------+-----------------------------------------------------+------+-----------+--------+--------+-------------+-----------------+---------------------+---------+----------------+---------+
| hostgroup_id | hostname                                            | port | gtid_port | weight | status | compression | max_connections | max_replication_lag | use_ssl | max_latency_ms | comment |
+--------------+-----------------------------------------------------+------+-----------+--------+--------+-------------+-----------------+---------------------+---------+----------------+---------+
| 10           | mysql-cluster-rg-1-haproxy.mysql1.svc.cluster.local | 3306 | 0         | 1      | 0      | 0           | 1000            | 0                   | 0       | 0              |         |
| 1            | mysql-cluster-rg-2-haproxy.mysql2.svc.cluster.local | 3306 | 0         | 1      | 0      | 0           | 1000            | 0                   | 0       | 0              |         |
+--------------+-----------------------------------------------------+------+-----------+--------+--------+-------------+-----------------+---------------------+---------+----------------+---------+
2021-10-23 17:21:19 [INFO] Dumping mysql_servers LEFT JOIN mysql_servers_incoming
+-------------+--------------+----------+------+
| mem_pointer | hostgroup_id | hostname | port |
+-------------+--------------+----------+------+
+-------------+--------------+----------+------+
2021-10-23 17:21:19 [INFO] Dumping mysql_servers JOIN mysql_servers_incoming
+--------------+-----------------------------------------------------+------+-----------+--------+--------+-------------+-----------------+---------------------+---------+----------------+---------+-------------+-----------+--------+--------+-------------+-----------------+---------------------+---------+----------------+---------+
| hostgroup_id | hostname                                            | port | gtid_port | weight | status | compression | max_connections | max_replication_lag | use_ssl | max_latency_ms | comment | mem_pointer | gtid_port | weight | status | compression | max_connections | max_replication_lag | use_ssl | max_latency_ms | comment |
+--------------+-----------------------------------------------------+------+-----------+--------+--------+-------------+-----------------+---------------------+---------+----------------+---------+-------------+-----------+--------+--------+-------------+-----------------+---------------------+---------+----------------+---------+
| 10           | mysql-cluster-rg-1-haproxy.mysql1.svc.cluster.local | 3306 | 0         | 1      | 0      | 0           | 1000            | 0                   | 0       | 0              |         | 0           | 0         | 1      | 0      | 0           | 1000            | 0                   | 0       | 0              |         |
| 1            | mysql-cluster-rg-2-haproxy.mysql2.svc.cluster.local | 3306 | 0         | 1      | 0      | 0           | 1000            | 0                   | 0       | 0              |         | 0           | 0         | 1      | 0      | 0           | 1000            | 0                   | 0       | 0              |         |
+--------------+-----------------------------------------------------+------+-----------+--------+--------+-------------+-----------------+---------------------+---------+----------------+---------+-------------+-----------+--------+--------+-------------+-----------------+---------------------+---------+----------------+---------+
2021-10-23 17:21:19 [INFO] Creating new server in HG 10 : mysql-cluster-rg-1-haproxy.mysql1.svc.cluster.local:3306 , gtid_port=0, weight=1, status=0
2021-10-23 17:21:19 [INFO] Creating new server in HG 1 : mysql-cluster-rg-2-haproxy.mysql2.svc.cluster.local:3306 , gtid_port=0, weight=1, status=0
2021-10-23 17:21:19 [INFO] New mysql_group_replication_hostgroups table
2021-10-23 17:21:19 [INFO] New mysql_galera_hostgroups table
2021-10-23 17:21:19 [INFO] New mysql_aws_aurora_hostgroups table
2021-10-23 17:21:19 [INFO] MySQL_HostGroups_Manager::commit() locked for 2ms
Standard Query Processor rev. 2.0.6.0805 -- Query_Processor.cpp -- Mon Feb 24 16:38:57 2020
In memory Standard Query Cache (SQC) rev. 1.2.0905 -- Query_Cache.cpp -- Mon Feb 24 16:38:57 2020
Standard MySQL Monitor (StdMyMon) rev. 2.0.1226 -- MySQL_Monitor.cpp -- Mon Feb 24 16:38:57 2020
2021-10-23 17:21:21 [INFO] Latest ProxySQL version available: 2.3.2-10-g8cd66cf

2021-10-23 17:28:30 mysql_connection.cpp:835:handler(): [ERROR] Failed to mysql_real_connect() on mysql-cluster-rg-2-haproxy.mysql2.svc.cluster.local:3306 , FD (Conn:31 , MyDS:31) , 1045: Access denied for user 'root'@'10.56.2.135' (using password: YES).
2021-10-23 17:28:30 mysql_connection.cpp:835:handler(): [ERROR] Failed to mysql_real_connect() on mysql-cluster-rg-2-haproxy.mysql2.svc.cluster.local:3306 , FD (Conn:31 , MyDS:31) , 1045: Access denied for user 'root'@'10.56.1.113' (using password: YES).
2021-10-23 17:28:30 mysql_connection.cpp:835:handler(): [ERROR] Failed to mysql_real_connect() on mysql-cluster-rg-2-haproxy.mysql2.svc.cluster.local:3306 , FD (Conn:31 , MyDS:31) , 1045: Access denied for user 'root'@'10.56.0.104' (using password: YES).

2021-10-23 17:31:03 MySQL_Session.cpp:5234:handler___status_CONNECTING_CLIENT___STATE_SERVER_HANDSHAKE(): [ERROR] ProxySQL Error: Access denied for user 'root'@'127.0.0.1' (using password: YES)
2021-10-23 17:31:09 mysql_connection.cpp:835:handler(): [ERROR] Failed to mysql_real_connect() on mysql-cluster-rg-2-haproxy.mysql2.svc.cluster.local:3306 , FD (Conn:31 , MyDS:31) , 1045: Access denied for user 'root'@'10.56.2.135' (using password: YES).
2021-10-23 17:31:09 mysql_connection.cpp:835:handler(): [ERROR] Failed to mysql_real_connect() on mysql-cluster-rg-2-haproxy.mysql2.svc.cluster.local:3306 , FD (Conn:31 , MyDS:31) , 1045: Access denied for user 'root'@'10.56.1.113' (using password: YES).
2021-10-23 17:31:09 mysql_connection.cpp:835:handler(): [ERROR] Failed to mysql_real_connect() on mysql-cluster-rg-2-haproxy.mysql2.svc.cluster.local:3306 , FD (Conn:31 , MyDS:31) , 1045: Access denied for user 'root'@'10.56.1.113' (using password: YES).
2021-10-23 17:31:09 mysql_connection.cpp:835:handler(): [ERROR] Failed to mysql_real_connect() on mysql-cluster-rg-2-haproxy.mysql2.svc.cluster.local:3306 , FD (Conn:31 , MyDS:31) , 1045: Access denied for user 'root'@'10.56.1.113' (using password: YES).
2021-10-23 17:31:09 mysql_connection.cpp:835:handler(): [ERROR] Failed to mysql_real_connect() on mysql-cluster-rg-2-haproxy.mysql2.svc.cluster.local:3306 , FD (Conn:31 , MyDS:31) , 1045: Access denied for user 'root'@'10.56.0.104' (using password: YES).
2021-10-23 17:31:09 mysql_connection.cpp:835:handler(): [ERROR] Failed to mysql_real_connect() on mysql-cluster-rg-2-haproxy.mysql2.svc.cluster.local:3306 , FD (Conn:31 , MyDS:31) , 1045: Access denied for user 'root'@'10.56.2.135' (using password: YES).
2021-10-23 17:31:09 mysql_connection.cpp:835:handler(): [ERROR] Failed to mysql_real_connect() on mysql-cluster-rg-2-haproxy.mysql2.svc.cluster.local:3306 , FD (Conn:31 , MyDS:31) , 1045: Access denied for user 'root'@'10.56.0.104' (using password: YES)

The above error log is when i gave FQDN and below is when i gave IP for the endpoint :

Standard MySQL Threads Handler rev. 0.2.0902 -- MySQL_Thread.cpp -- Mon Feb 24 16:38:57 2020
Standard MySQL Authentication rev. 0.2.0902 -- MySQL_Authentication.cpp -- Mon Feb 24 16:38:57 2020
2021-10-24 07:00:44 [INFO] Dumping mysql_servers_incoming
+--------------+-------------+------+-----------+--------+--------+-------------+-----------------+---------------------+---------+----------------+---------+
| hostgroup_id | hostname    | port | gtid_port | weight | status | compression | max_connections | max_replication_lag | use_ssl | max_latency_ms | comment |
+--------------+-------------+------+-----------+--------+--------+-------------+-----------------+---------------------+---------+----------------+---------+
| 10           | 10.60.4.206 | 3306 | 0         | 1      | 0      | 0           | 1000            | 0                   | 0       | 0              |         |
| 1            | 10.60.0.132 | 3306 | 0         | 1      | 0      | 0           | 1000            | 0                   | 0       | 0              |         |
+--------------+-------------+------+-----------+--------+--------+-------------+-----------------+---------------------+---------+----------------+---------+
2021-10-24 07:00:44 [INFO] Dumping mysql_servers LEFT JOIN mysql_servers_incoming
+-------------+--------------+----------+------+
| mem_pointer | hostgroup_id | hostname | port |
+-------------+--------------+----------+------+
+-------------+--------------+----------+------+
2021-10-24 07:00:44 [INFO] Dumping mysql_servers JOIN mysql_servers_incoming
+--------------+-------------+------+-----------+--------+--------+-------------+-----------------+---------------------+---------+----------------+---------+-------------+-----------+--------+--------+-------------+-----------------+---------------------+---------+----------------+---------+
| hostgroup_id | hostname    | port | gtid_port | weight | status | compression | max_connections | max_replication_lag | use_ssl | max_latency_ms | comment | mem_pointer | gtid_port | weight | status | compression | max_connections | max_replication_lag | use_ssl | max_latency_ms | comment |
+--------------+-------------+------+-----------+--------+--------+-------------+-----------------+---------------------+---------+----------------+---------+-------------+-----------+--------+--------+-------------+-----------------+---------------------+---------+----------------+---------+
| 10           | 10.60.4.206 | 3306 | 0         | 1      | 0      | 0           | 1000            | 0                   | 0       | 0              |         | 0           | 0         | 1      | 0      | 0           | 1000            | 0                   | 0       | 0              |         |
| 1            | 10.60.0.132 | 3306 | 0         | 1      | 0      | 0           | 1000            | 0                   | 0       | 0              |         | 0           | 0         | 1      | 0      | 0           | 1000            | 0                   | 0       | 0              |         |
+--------------+-------------+------+-----------+--------+--------+-------------+-----------------+---------------------+---------+----------------+---------+-------------+-----------+--------+--------+-------------+-----------------+---------------------+---------+----------------+---------+
2021-10-24 07:00:44 [INFO] Creating new server in HG 10 : 10.60.4.206:3306 , gtid_port=0, weight=1, status=0
2021-10-24 07:00:44 [INFO] Creating new server in HG 1 : 10.60.0.132:3306 , gtid_port=0, weight=1, status=0
2021-10-24 07:00:44 [INFO] New mysql_group_replication_hostgroups table
2021-10-24 07:00:44 [INFO] New mysql_galera_hostgroups table
2021-10-24 07:00:44 [INFO] New mysql_aws_aurora_hostgroups table
2021-10-24 07:00:44 [INFO] MySQL_HostGroups_Manager::commit() locked for 2ms
Standard Query Processor rev. 2.0.6.0805 -- Query_Processor.cpp -- Mon Feb 24 16:38:57 2020
In memory Standard Query Cache (SQC) rev. 1.2.0905 -- Query_Cache.cpp -- Mon Feb 24 16:38:57 2020
Standard MySQL Monitor (StdMyMon) rev. 2.0.1226 -- MySQL_Monitor.cpp -- Mon Feb 24 16:38:57 2020
2021-10-24 07:00:46 [INFO] Latest ProxySQL version available: 2.3.2-10-g8cd66cf

2021-10-24 07:01:10 MySQL_Session.cpp:5234:handler___status_CONNECTING_CLIENT___STATE_SERVER_HANDSHAKE(): [ERROR] ProxySQL Error: Access denied for user 'root'@'127.0.0.1' (using password: YES)
2021-10-24 07:01:33 mysql_connection.cpp:835:handler(): [ERROR] Failed to mysql_real_connect() on 10.60.4.206:3306 , FD (Conn:32 , MyDS:32) , 1045: Access denied for user 'root'@'10.56.1.110' (using password: YES).
2021-10-24 07:01:33 mysql_connection.cpp:835:handler(): [ERROR] Failed to mysql_real_connect() on 10.60.4.206:3306 , FD (Conn:32 , MyDS:32) , 1045: Access denied for user 'root'@'10.56.2.132' (using password: YES).
2021-10-24 07:01:33 mysql_connection.cpp:835:handler(): [ERROR] Failed to mysql_real_connect() on 10.60.4.206:3306 , FD (Conn:32 , MyDS:32) , 1045: Access denied for user 'root'@'10.56.1.110' (using password: YES).
2021-10-24 07:01:33 mysql_connection.cpp:835:handler(): [ERROR] Failed to mysql_real_connect() on 10.60.4.206:3306 , FD (Conn:32 , MyDS:32) , 1045: Access denied for user 'root'@'10.56.1.110' (using password: YES).
2021-10-24 07:01:33 mysql_connection.cpp:835:handler(): [ERROR] Failed to mysql_real_connect() on 10.60.4.206:3306 , FD (Conn:32 , MyDS:32) , 1045: Access denied for user 'root'@'10.56.2.132' (using password: YES).
2021-10-24 07:01:33 mysql_connection.cpp:835:handler(): [ERROR] Failed to mysql_real_connect() on 10.60.4.206:3306 , FD (Conn:32 , MyDS:32) , 1045: Access denied for user 'root'@'10.56.0.102' (using password: YES).
2021-10-24 07:01:33 mysql_connection.cpp:835:handler(): [ERROR] Failed to mysql_real_connect() on 10.60.4.206:3306 , FD (Conn:32 , MyDS:32) , 1045: Access denied for user 'root'@'10.56.2.132' (using password: YES).
2021-10-24 07:01:33 mysql_connection.cpp:835:handler(): [ERROR] Failed to mysql_real_connect() on 10.60.4.206:3306 , FD (Conn:32 , MyDS:32) , 1045: Access denied for user 'root'@'10.56.2.132' (using password: YES).
2021-10-24 07:01:33 mysql_connection.cpp:835:handler(): [ERROR] Failed to mysql_real_connect() on 10.60.4.206:3306 , FD (Conn:32 , MyDS:32) , 1045: Access denied for user 'root'@'10.56.1.110' (using password: YES).
2021-10-24 07:01:33 mysql_connection.cpp:835:handler(): [ERROR] Failed to mysql_real_connect() on 10.60.4.206:3306 , FD (Conn:32 , MyDS:32) , 1045: Access denied for user 'root'@'10.56.0.102' (using password: YES).
2021-10-24 07:01:33 mysql_connection.cpp:835:handler(): [ERROR] Failed to mysql_real_connect() on 10.60.4.206:3306 , FD (Conn:32 , MyDS:32) , 1045: Access denied for user 'root'@'10.56.2.132' (using password: YES).

Hope i have provided all the necessary details to reproduce the issue, the only thing i expect is proxysql should forward the request based on the details proved in proxysql.cnf .

Thanks in Advance

@renecannao @pondix @JavierJF

mohamedkashifuddin94 commented 2 years ago

Hi @renecannao @pondix were you able to reproduce the issue ? or any more info needed ?

di-rect commented 1 week ago

Have you ever been able to fix this issue ? I have the same, I can even login to the DB server from ProxySQL itself but not through ProxySQL.

This seems to be an issue I cannot resolve for 2-3 days now.

Anyone an idea?

renecannao commented 1 week ago

Hi @mohamedkashifuddin94. I would recommend to investigate if credentials on MySQL servers are correct, if 10.56.1.110 and 10.56.2.132 are able to connect. What got my attention is that you have two entries in mysql_users , same user (root) but two distinct password and destination_hostgroup : please note that you can't have two users with the same username, this is not supported, and cannot be supported. ProxySQL authenticates the client, no matter the backend.

@di-rect : I don't know if you are doing the same mistake of @mohamedkashifuddin94 (two entries for the same username) , but I gave you the same recommendations. If you face an issue, please open a new ticket. Unless you know what is the issue in @mohamedkashifuddin94 setup, you can't assume you have "the same".

Thanks

di-rect commented 1 week ago

@renecannao Thanks for responding!

I had the same issue; proxysq-admin synced the user in twice; even with the same password because I had a fqdn and a wildcard in MySQL but removed both and started from scratch with the same user and ended up here.

Credentials on SQL are OK as I can login using mysql -u -p on the ProxySQL server as that user, the user is a @% in my MySQL servers at the moment.

I can't get anything more logged about what is going on and why the clients are not accepted using a @% for my single user. I have tried default and sha2 passwords; both the same issue.

sysown / proxysql

Access denied while connecting via proxysql to MySQL pxc #3672

The above error log is when i gave FQDN and below is when i gave IP for the endpoint :