Web Server on DMZ, SQL Server on LAN - developer needs outside access to both

Posted on 2007-08-02
Medium Priority
Last Modified: 2010-04-09
We have just installed a SQL server and need some guidance because I am imitating a network engineer by necessity, not by ability!  Our web server is on the DMZ, but the SQL server is on the LAN.  So, I set up a hole in the firewall for the DMZ to access port 1433.  Now, I need our developer to be able to access both machines from off-site.  I can't move the SQL server into the DMZ,  but I don't want to give the outside world access to the LAN.  HELP!  I am using an Astaro 120 Firewall/Gateway, btw.

I do not know how to give the developer safe, secure access to the SQL server from the outside internet without free reign into the rest of the LAN.
Question by:kbdaemon
  • 2
  • 2

Expert Comment

ID: 19617119
You shouldn't have to move the sql server to the outside. Is the devloper creating a web site for you?

Author Comment

ID: 19617227
Yes, the developer is creating a site that works off a SQL database we are creating.  I am just not sure how to set up secure access through the firewall for a couple of things: 1) FTP access to certain folders on the web server, and 2) remote access to the SQL server (cmd line AND remote desktop).

I guess I am just not comfortable with making the security call on whether I should open up the LAN on the firewall for outside access to SQL.  It is my call, but some input would make me feel better about it.

Accepted Solution

thenone earned 1000 total points
ID: 19617300
what web server is it?

Author Comment

ID: 19618444
Windows Server 2003

Featured Post

Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Optimal Xbox 360 connectivity requires "OPEN NAT". If you use Juniper Netscreen or SSG firewall products in a home setting, the following steps will allow you get rid of the dreaded warning screen below and achieve the best online gaming environment…
A 2007 NCSA Cyber Security survey revealed that a mere 4% of the population has a full understanding of firewalls. As business owner, you should be part of that 4% that has a full understanding.
Is your data getting by on basic protection measures? In today’s climate of debilitating malware and ransomware—like WannaCry—that may not be enough. You need to establish more than basics, like a recovery plan that protects both data and endpoints.…
When cloud platforms entered the scene, users and companies jumped on board to take advantage of the many benefits, like the ability to work and connect with company information from various locations. What many didn't foresee was the increased risk…
Suggested Courses

850 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question