Still celebrating National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

setup IIS, sql server behind firewall or....?

Posted on 2004-08-25
6
Medium Priority
?
225 Views
Last Modified: 2008-03-06
Currently we have 1 box for both IIS & sql server.
I would like to separate these into two servers, and which of the following setup is better and why?
1. setup the firewall between IIS (in front) and sql server 2000 or
2. setup IIS and sql server 2000 behind the firewall.

thanks for help!
0
Comment
Question by:jackieyeh
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
  • 2
6 Comments
 
LVL 15

Expert Comment

by:jdlambert1
ID: 11896595
Ideally, your firewall should create 3 zones: the public interface to your ISP, a DMZ, and the corporate LAN. In this scenario, you should put your IIS server in the DMZ and your SQL Server on the Corporate LAN, and configure the firewall to allow no connections to your SQL Server from the public, only allow connections from the IIS service from the DMZ to SQL Server. This won't block LAN connections to your SQL Server, since local traffic won't have to go through the firewall to get to it.
0
 
LVL 34

Expert Comment

by:arbert
ID: 11896702
Agree with the above...Typical setup....
0
 

Author Comment

by:jackieyeh
ID: 11897056
thanks for the response.  Since we have limited knowledge about the firewall, we have the hosting company setup the firewall for us.   In this case, they should configure the connection for us right?
Is there any change I need to make in my .net code for access the db?   thanks again.
0
Veeam Disaster Recovery in Microsoft Azure

Veeam PN for Microsoft Azure is a FREE solution designed to simplify and automate the setup of a DR site in Microsoft Azure using lightweight software-defined networking. It reduces the complexity of VPN deployments and is designed for businesses of ALL sizes.

 
LVL 15

Accepted Solution

by:
jdlambert1 earned 320 total points
ID: 11897237
Yes, if your ISP is installing your firewall, they should be able to configure it for you. Your IIS will need to be configured correctly, but if that's taken care of, I don't think and code would need to be changed for communication between IIS and SQL Server, unless you have IP addresses hard-coded.
0
 
LVL 34

Assisted Solution

by:arbert
arbert earned 80 total points
ID: 11897585
"Is there any change I need to make in my .net code for access the db? "

You'll probably have to use a IP address in your connection instead of the server name (if you coded it with a server name).
0
 

Author Comment

by:jackieyeh
ID: 11897757
many thanks experts!! :)
0

Featured Post

What does it mean to be "Always On"?

Is your cloud always on? With an Always On cloud you won't have to worry about downtime for maintenance or software application code updates, ensuring that your bottom line isn't affected.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article shows gives you an overview on SQL Server 2016 row level security. You will also get to know the usages of row-level-security and how it works
When trying to connect from SSMS v17.x to a SQL Server Integration Services 2016 instance or previous version, you get the error “Connecting to the Integration Services service on the computer failed with the following error: 'The specified service …
This videos aims to give the viewer a basic demonstration of how a user can query current session information by using the SYS_CONTEXT function
Viewers will learn how to use the SELECT statement in SQL to return specific rows and columns, with various degrees of sorting and limits in place.

722 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question