Solved

setup IIS, sql server behind firewall or....?

Posted on 2004-08-25
6
218 Views
Last Modified: 2008-03-06
Currently we have 1 box for both IIS & sql server.
I would like to separate these into two servers, and which of the following setup is better and why?
1. setup the firewall between IIS (in front) and sql server 2000 or
2. setup IIS and sql server 2000 behind the firewall.

thanks for help!
0
Comment
Question by:jackieyeh
  • 2
  • 2
  • 2
6 Comments
 
LVL 15

Expert Comment

by:jdlambert1
ID: 11896595
Ideally, your firewall should create 3 zones: the public interface to your ISP, a DMZ, and the corporate LAN. In this scenario, you should put your IIS server in the DMZ and your SQL Server on the Corporate LAN, and configure the firewall to allow no connections to your SQL Server from the public, only allow connections from the IIS service from the DMZ to SQL Server. This won't block LAN connections to your SQL Server, since local traffic won't have to go through the firewall to get to it.
0
 
LVL 34

Expert Comment

by:arbert
ID: 11896702
Agree with the above...Typical setup....
0
 

Author Comment

by:jackieyeh
ID: 11897056
thanks for the response.  Since we have limited knowledge about the firewall, we have the hosting company setup the firewall for us.   In this case, they should configure the connection for us right?
Is there any change I need to make in my .net code for access the db?   thanks again.
0
Best Practices: Disaster Recovery Testing

Besides backup, any IT division should have a disaster recovery plan. You will find a few tips below relating to the development of such a plan and to what issues one should pay special attention in the course of backup planning.

 
LVL 15

Accepted Solution

by:
jdlambert1 earned 80 total points
ID: 11897237
Yes, if your ISP is installing your firewall, they should be able to configure it for you. Your IIS will need to be configured correctly, but if that's taken care of, I don't think and code would need to be changed for communication between IIS and SQL Server, unless you have IP addresses hard-coded.
0
 
LVL 34

Assisted Solution

by:arbert
arbert earned 20 total points
ID: 11897585
"Is there any change I need to make in my .net code for access the db? "

You'll probably have to use a IP address in your connection instead of the server name (if you coded it with a server name).
0
 

Author Comment

by:jackieyeh
ID: 11897757
many thanks experts!! :)
0

Featured Post

Efficient way to get backups off site to Azure

This user guide provides instructions on how to deploy and configure both a StoneFly Scale Out NAS Enterprise Cloud Drive virtual machine and Veeam Cloud Connect in the Microsoft Azure Cloud.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
email the result out from a T-SQL queries 29 64
datetime in sql 6 31
Microsoft Azure SQL - create a read only user 2 16
MS SQL Pivot table help 4 14
I wrote this interesting script that really help me find jobs or procedures when working in a huge environment. I could I have written it as a Procedure but then I would have to have it on each machine or have a link to a server-related search that …
Everyone has problem when going to load data into Data warehouse (EDW). They all need to confirm that data quality is good but they don't no how to proceed. Microsoft has provided new task within SSIS 2008 called "Data Profiler Task". It solve th…
Via a live example, show how to setup several different housekeeping processes for a SQL Server.
Using examples as well as descriptions, and references to Books Online, show the documentation available for datatypes, explain the available data types and show how data can be passed into and out of variables.

867 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

17 Experts available now in Live!

Get 1:1 Help Now