MySQL Enterprise Firewall maintains account and whitelist information. It uses
INFORMATION_SCHEMA tables to provide views
into cached data, and tables in the
system database to store this data in persistent form. When
enabled, the firewall bases its operational decisions on the
INFORMATION_SCHEMA tables are
accessible by anyone. The
mysql tables can
be accessed only by users with privileges for that database.
mysql.firewall_users tables list
registered firewall accounts and their operational modes. The
tables have these columns:
An account registered with the firewall. Each account has the format
and represents actual user and host names as authenticated by the server. Patterns and netmasks should not be used when registering users.
The current firewall operational mode for the account. The permitted mode values are
DETECTING(as of MySQL 5.6.26),
RESET. For details about their meanings, see the description of
sp_set_firewall_mode()in Section 18.104.22.168, “MySQL Enterprise Firewall Procedures and Functions”.
mysql.firewall_whitelist tables list
registered firewall accounts and their whitelists. The tables
have these columns:
An account registered with the firewall. The format is the same as for the user account tables.
A normalized statement indicating an acceptable statement pattern for the account. An account whitelist is the union of its rules.