Web Server on DMZ, SQL Server on LAN - developer needs outside access to both
Posted on 2007-08-02
We have just installed a SQL server and need some guidance because I am imitating a network engineer by necessity, not by ability! Our web server is on the DMZ, but the SQL server is on the LAN. So, I set up a hole in the firewall for the DMZ to access port 1433. Now, I need our developer to be able to access both machines from off-site. I can't move the SQL server into the DMZ, but I don't want to give the outside world access to the LAN. HELP! I am using an Astaro 120 Firewall/Gateway, btw.
I do not know how to give the developer safe, secure access to the SQL server from the outside internet without free reign into the rest of the LAN.