I have tried to set up access from a Web Server in a Web DMZ to a SQL Server sitting in a SQL DMZ. Initially I thought that all I need to do was setup a static from teh web server say static (inside, outside) 18.104.22.168 22.214.171.124 0 0 and the set an ACE for permit host 126.96.36.199 host 188.8.131.52 (SQL Server) eq 1433 but this doesn't see to be working.
I've read some stuff on the MS site and it appears that MS SQL uses dynamic ports and need a whole load open for communincation. I wondered if anyone could provide an example using 184.108.40.206 for the web server and 220.127.116.11 for the sql server showing what needs setting up to get this working. The SQL Server is behind the inside interface and the wb server is behidn the outside interface.