Re: Do I need a firewall

From: Brett (bbsouth@bellsouth.net)
Date: 02/05/03 

From: "Brett" <bbsouth@bellsouth.net>
Date: Tue, 4 Feb 2003 19:08:32 -0600

"Leythos" <void@nowhere.com> wrote in message
news:MPG.18aa26357866c9b989991@news-server.columbus.rr.com...
> In article <CnT%9.214$eH1.80@news.bellsouth.net>, bbsouth@bellsouth.net
> says...
> [snip]
> >
> > Ok on the Tracker troll.
> >
> > CF Sever and SQL Server are on the same box right now. I do reference
the
> > box's IP address. I suppose I could just reference 127.0.0.1 and that
would
> > keep my connection local correct?
> >
> > Still, if I am able to reference the box's Internet IP address, the port
is
> > open. I'll need to read more on how to shut it off to external
connections
> > while allow it to be connected via 127.0.01.
> >
> > I'm still confused on what it means for SQL Server to be open to the
> > Internet. grc.com says 1433 is not open. What does that mean?
>
> Brett,
>
> If you can reference the SQL server port using the internet address it
> means your entire server must be exposed to the internet - Assuming that
> you have a broadband or DSL connection, can you purchase a cable modem
> router to protect your network and server - this would mean that you
> would only forward port 80/443 inbound for your web server and the
> router would block all other inbound ports.
>
> One way to see if your SQL server is exposed is to open the Query
> Analyzer, enter the internet IP address of the server and the user/pwd
> an see if it connects. If you can connect, so can I from my home :)
>
> If you get a router then you will be a heck of a lot better off - it
> will block inbound ports unless you forward them to a local (internal)
> IP address. pointing to 127.0.0.1 will do nothing to protect you.
>
> --
> --
> Leythos999@columbus.rr.com
> (Remove 999 to reply to me)

Thanks. After running unixcircle.com, I see quite a few ports are open.
Some I need to be open. Will a software firewall such as Zone Alarm help
anything? It's a funding issue.

Brett

Relevant Pages

  • Re: ADO/MDAC on Terminal Server
    ... XP database system to SQL Server 2000. ... front end is running on the Terminal Server. ... MDB file due to fixes and modifications, ... "missing reference" error as the MDB file opens up. ...
    (microsoft.public.data.ado)
  • ISA and SQL2000
    ... My company developed software years ago that required port 1433 ... to be open to the Internet. ... this doesnt stop the direct pipe into the SQL server on port ... I would like to place an ISA server in a DMZ (or perimeter in front of ...
    (microsoft.public.isa)
  • Re: Do I need a firewall
    ... > CF Sever and SQL Server are on the same box right now. ... I suppose I could just reference 127.0.0.1 and that would ... > Still, if I am able to reference the box's Internet IP address, the port is ... If you can reference the SQL server port using the internet address it ...
    (comp.security.firewalls)
  • Re: Access via internet?
    ... a static IP address at the host (thats when the SQL Server is reachable over ... the internet in the DMZ) OR opening a port in the firewall, ...
    (microsoft.public.sqlserver.msde)
  • Re: Please help - trying to return XML from a recordset
    ... SQL Server uses on the server, to prevent anyone having direct access to ... Internet that run SQL Server, but don't have port 1433 ... How do they allow the client application to interact with the ...
    (microsoft.public.inetserver.asp.general)