MS SQL via PIX Firewall

Unanswered Question
Jul 15th, 2007


I have tried to set up access from a Web Server in a Web DMZ to a SQL Server sitting in a SQL DMZ. Initially I thought that all I need to do was setup a static from teh web server say static (inside, outside) 0 0 and the set an ACE for permit host host (SQL Server) eq 1433 but this doesn't see to be working.

I've read some stuff on the MS site and it appears that MS SQL uses dynamic ports and need a whole load open for communincation. I wondered if anyone could provide an example using for the web server and for the sql server showing what needs setting up to get this working. The SQL Server is behind the inside interface and the wb server is behidn the outside interface.

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
gary.sherry Sat, 07/21/2007 - 01:37

Thanks for the info, I found some MS KB docs that mentioned this. Bit rubbish on MS's part really but you can lock it down.


This Discussion