Post reply

SQL Server and IPSec

  • March 31, 2004 at 2:15 am

    #107499

    Hi friends!

    I m new to this forum. has anyone out there worked in an environment where SQL Server and Web Server communicating thru IPSec.

    immediate help will be appriciated.

     

    thanx,

    kamal

  • March 31, 2004 at 7:50 am

    #501282

    I have forced connections using SQL Server and IIS using IPSec, yes. We do not currently have any running in production at this time. However, we do use IPSec policies to restrict where the web servers can go. What is it you are trying to set up? An encrypted tunnel?

    K. Brian Kelley
    @kbriankelley

  • April 1, 2004 at 7:54 am

    #501444

    You can enable IPSec from your web server to SQL Server, if you enable then only your web server can talk to your SQL Server, This might be a problem if you have a back up server and have Veritas or other third party tools on it to back up, then your back up server cannot talk to the SQL Server. (See Microsoft Documentation) We use Veritas as our back up agent , so I am not using IP Sec. Please correct me if I am wrong.

    Thanks

    KRISHNA

  • April 1, 2004 at 8:23 am

    #501456

    thanx!! for the information, I have gone thru the documentation by microsoft of HOW-Tos on the site on IPsec implementation. Microsoft has not recommended this for an production environment, but for an testing environment. Although they have recommended Certificates services on the web server and SQL server.

    please share your implementation in more detail. so that we can utilize if we can.

    thanx!

    Kamal M

  • April 1, 2004 at 8:23 am

    #501455

    thanx!! for the information, I have gone thru the documentation by microsoft of HOW-Tos on the site on IPsec implementation. Microsoft has not recommended this for an production environment, but for an testing environment. Although they have recommended Certificates services on the web server and SQL server.

    please share your implementation in more detail. so that we can utilize if we can.

    thanx!

    Kamal M

  • April 1, 2004 at 8:44 am

    #501466

    You can set the IPSec policy such that you can talk to the server conducting the backups. In fact, you could open all ports, if need be. Or you could determine which ports Veritas' software requires and just open those to said system.

    For instance, we have some servers that need to talk to 3 or 4 systems. Our IPSec policy allows for this.

    K. Brian Kelley
    @kbriankelley

Viewing 6 posts - 1 through 5 (of 5 total)

You must be logged in to reply to this topic. Login to reply