Re: listening on... interfaces
From: Dan Guzman (guzmanda_at_nospam-online.sbcglobal.net)
Date: 05/28/05
- Next message: Scott Davis: "Re: ACT! installs 2nd instance no SA or Win-Admin access to.."
- Previous message: Dan Guzman: "Re: SQL Server Agent Proxy Account / XP_CMDSHELL"
- In reply to: Rick: "Re: listening on... interfaces"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Fri, 27 May 2005 19:46:15 -0500
> 1) New hardware firewall (any suggestions?)
> 2) TCP/IP (and UDP) filtering in Advanced TCP/IP Settings?
> 3) IPSec policies?
> 4) Move my SQL databases to an internal server?
> 5) Combination of above?
Every company I've worked for uses a hardware firewall and deploys SQL
Servers on an internal network. You can get the job done using
IPSec/Filtering on your SQL Servers but it's best not to let the traffic in
at all. I'm not a network guy so you probably don't want my recommendations
on hardware :-)
-- Hope this helps. Dan Guzman SQL Server MVP "Rick" <Rick@discussions.microsoft.com> wrote in message news:60607EA5-883E-4882-9EC7-2F0B4CB5FEBC@microsoft.com... > "Dan Guzman" wrote: >> > Isn't it common to not want your SQL Server >> > to be listening to the wild wild internet? >> >> Definitely. That's what firewalls are for. > > Thanks Dan. The system is a typical (dual-homed) SBS2003. I thought that > I > got a level of firewalling with SBS. I guess I was naive. So I'm not > sure > of which way to go. Would you folks recommend: > > 1) New hardware firewall (any suggestions?) > 2) TCP/IP (and UDP) filtering in Advanced TCP/IP Settings? > 3) IPSec policies? > 4) Move my SQL databases to an internal server? > 5) Combination of above? >
- Next message: Scott Davis: "Re: ACT! installs 2nd instance no SA or Win-Admin access to.."
- Previous message: Dan Guzman: "Re: SQL Server Agent Proxy Account / XP_CMDSHELL"
- In reply to: Rick: "Re: listening on... interfaces"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
