Solved

SQL Server Management Studio Behind a Firewall

Posted on 2006-10-23
9
450 Views
Last Modified: 2013-12-03
Hi, trying to use the SQL Server Management Studio to administer 2005 from behind a firewall.  The following documentation more or less tells me I need TCP 1433 and UDP 1434 open.  Also File and Printer Sharing.

http://msdn2.microsoft.com/en-us/library/ms175043.aspx

So I opened nearly everything I could think of.  But with just the following, I get errors logging in.

TCP 1433
UDP 1434
TCP 139
TCP 445
UDP 137
UDP 138

I can log in JUST FINE if I set the firewall to forward all ports for this IP address.  So it’s a conflict of what ports specifically I need to open.

So what is my issue?  Is it with a named instance?  I’m pretty sure the server is not running a named instance.  Just the default settings.

Other articles I found close, but not definitive to fixing the problem..

http://msdn2.microsoft.com/en-us/library/ms175483.aspx
http://msdn2.microsoft.com/en-us/library/ms177440.aspx

Thanks.
0
Comment
Question by:rebies
  • 5
  • 4
9 Comments
 
LVL 30

Expert Comment

by:nmcdermaid
ID: 17792684
>> I’m pretty sure the server is not running a named instance

You'll need to verify this. Go to the surface area configuration tool and verify that it is running TCP/IP, and also what port it is running on.
0
 
LVL 30

Expert Comment

by:nmcdermaid
ID: 17792694
Also if you type

NETSTAT -b

at the command prompt on the server it should give some clues as to what sqlserver is listening on (once you have enabled all ports and established a connection)
0
 
LVL 1

Author Comment

by:rebies
ID: 17792702
SQL Server Configuration Manager > SQL Server 2005 Network Configuration > Protocols for MSSQLSERVER > TCP/IP
Enabled

When I double click on TCP/IP and then onto the "IP Addresses" tab I see my IPs there.  IP1 is 192.168.1.123, andIP2 is 127.0.0.1 and IPALL.  TCP Dynamic Ports on all three sections is "" (null).  It's not a '0' which to me would indicate named instance, right?

Also, IP1 and IP2 are set to "Enabled: no"  But IPAll is not.  All three are using TCP Port 1433.
0
 
LVL 30

Expert Comment

by:nmcdermaid
ID: 17792806
This is where it gets haze as I unforutnately don't use SQL2005 as much as I would like.

It sounds like everything is above board.


Can you enable all the ports, connect, and run that NETSTAT thing? You should theoretically only need to enable 1433 and 1434.
0
PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

 
LVL 1

Author Comment

by:rebies
ID: 17793058
nmcdermaid,

Thanks.  Will check first thing in the morning.  The developer with SQL 2005 installed locally is gone now.   Though I'm positive just opening up 1433 and 1434 did not work earlier.

Just looking at netstat -b right now I see...

TCP   compname:ms-sql-s    foreigncompname:2651    established      2068    [sqlservr.exe]

I also see two "ms-wbt-server" entries" on ports 1955 and 1200.  I suspect those are remote desktop though.  [svchost.exe]

Maybe that line above explains something.  To me - why it's connected on port 2651 (which it seems to be) is a bit odd.
0
 
LVL 30

Accepted Solution

by:
nmcdermaid earned 500 total points
ID: 17793719
Yes that is odd.. the next thing to try of course is close all the ports again and open the ones you already posted, as well as 2068

Its possible that he installed SQL2005 express as a named instance in which case it wouldbe on a different port.
0
 
LVL 1

Author Comment

by:rebies
ID: 17805936
Thanks for the help nmcdermaid!  I have not fixed the issue, but for the time being have opened all ports.
0
 
LVL 30

Expert Comment

by:nmcdermaid
ID: 17810709
Did opening just 2068 fix it or have you run out of time to try it?
0
 
LVL 1

Author Comment

by:rebies
ID: 17814881
I tried that and it did not work.  I actually wound up having more important things to do and have not gotten back to working on / fixing this issue.

Thanks for the help on this though!
0

Featured Post

[Webinar] Disaster Recovery and Cloud Management

Learn from Unigma and CloudBerry industry veterans which providers are best for certain use cases and how to lower cloud costs, how to grow your Managed Services practice in IaaS clouds, and how to utilize public cloud for Disaster Recovery

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Nowadays, some of developer are too much worried about data. Who is using data, who is updating it etc. etc. Because, data is more costlier in term of money and information. So security of data is focusing concern in days. Lets' understand the Au…
Let's review the features of new SQL Server 2012 (Denali CTP3). It listed as below: PERCENT_RANK(): PERCENT_RANK() function will returns the percentage value of rank of the values among its group. PERCENT_RANK() function value always in be…
This video shows, step by step, how to configure Oracle Heterogeneous Services via the Generic Gateway Agent in order to make a connection from an Oracle session and access a remote SQL Server database table.
This video shows how to set up a shell script to accept a positional parameter when called, pass that to a SQL script, accept the output from the statement back and then manipulate it in the Shell.

911 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

23 Experts available now in Live!

Get 1:1 Help Now