Solved

setup IIS, sql server behind firewall or....?

Posted on 2004-08-25
6
222 Views
Last Modified: 2008-03-06
Currently we have 1 box for both IIS & sql server.
I would like to separate these into two servers, and which of the following setup is better and why?
1. setup the firewall between IIS (in front) and sql server 2000 or
2. setup IIS and sql server 2000 behind the firewall.

thanks for help!
0
Comment
Question by:jackieyeh
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
  • 2
6 Comments
 
LVL 15

Expert Comment

by:jdlambert1
ID: 11896595
Ideally, your firewall should create 3 zones: the public interface to your ISP, a DMZ, and the corporate LAN. In this scenario, you should put your IIS server in the DMZ and your SQL Server on the Corporate LAN, and configure the firewall to allow no connections to your SQL Server from the public, only allow connections from the IIS service from the DMZ to SQL Server. This won't block LAN connections to your SQL Server, since local traffic won't have to go through the firewall to get to it.
0
 
LVL 34

Expert Comment

by:arbert
ID: 11896702
Agree with the above...Typical setup....
0
 

Author Comment

by:jackieyeh
ID: 11897056
thanks for the response.  Since we have limited knowledge about the firewall, we have the hosting company setup the firewall for us.   In this case, they should configure the connection for us right?
Is there any change I need to make in my .net code for access the db?   thanks again.
0
Edgartown IT Case Study

Learn about Edgartown's quest to ensure the safety and security of the entire town's employee and citizen data. Read the case study!

 
LVL 15

Accepted Solution

by:
jdlambert1 earned 80 total points
ID: 11897237
Yes, if your ISP is installing your firewall, they should be able to configure it for you. Your IIS will need to be configured correctly, but if that's taken care of, I don't think and code would need to be changed for communication between IIS and SQL Server, unless you have IP addresses hard-coded.
0
 
LVL 34

Assisted Solution

by:arbert
arbert earned 20 total points
ID: 11897585
"Is there any change I need to make in my .net code for access the db? "

You'll probably have to use a IP address in your connection instead of the server name (if you coded it with a server name).
0
 

Author Comment

by:jackieyeh
ID: 11897757
many thanks experts!! :)
0

Featured Post

How Do You Stack Up Against Your Peers?

With today’s modern enterprise so dependent on digital infrastructures, the impact of major incidents has increased dramatically. Grab the report now to gain insight into how your organization ranks against your peers and learn best-in-class strategies to resolve incidents.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Introduction SQL Server Integration Services can read XML files, that’s known by every BI developer.  (If you didn’t, don’t worry, I’m aiming this article at newcomers as well.) But how far can you go?  When does the XML Source component become …
Slowly Changing Dimension Transformation component in data task flow is very useful for us to manage and control how data changes in SSIS.
Familiarize people with the process of retrieving data from SQL Server using an Access pass-thru query. Microsoft Access is a very powerful client/server development tool. One of the ways that you can retrieve data from a SQL Server is by using a pa…
Via a live example, show how to shrink a transaction log file down to a reasonable size.

751 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question