?
Solved

Access to sql database through VPN

Posted on 2009-04-21
8
Medium Priority
?
293 Views
Last Modified: 2012-05-06
I've set up Remote access VPN on sbs 2003 with ISA 2004 by following the MS TechNet walk-through.
From the client site I can connect, and browse files on the server, but cannot connect to a SQL database via a specific program I have (error code 3709).
I've opened ports TCP 1433 and UDP 1434 on the router (do I have to do the same in ISA?).
Any ideas would be very much appreciated.
0
Comment
Question by:Rochford
  • 5
  • 3
8 Comments
 
LVL 4

Expert Comment

by:nasirsh
ID: 24193406
You have to issue a command on the router of reverse-path and also should open ports on the ISA server. This would help
0
 

Author Comment

by:Rochford
ID: 24194551
I created a custom protocol and added the 2 ports with 1433 outbound and 1434 send, but still no joy. I've attached screen shots of an ISA log at the tim ethe client logged on to the attempts to access the SQL DB.
Not sure what you mean by "issue a command on the router of reverse-path"
top-left.JPG
top-right.JPG
bottom-left.JPG
bottom-right.JPG
0
 

Author Comment

by:Rochford
ID: 24194668
Sorry, wasn't clear with the first part of my last comment.  I created the new protocol and added the 2 ports, then created the new rule with the following:
action - allow
protocols - the new one
from - vpn clients
to - internal
0
Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

 
LVL 4

Expert Comment

by:nasirsh
ID: 24195000
OK just tell me one thing. Are you using Router as a VPN Server or ISA
0
 
LVL 4

Expert Comment

by:nasirsh
ID: 24195084
In th policy which you define for crypto there is a command of ip reverse-route which enables your local lan access to VPN client.
0
 

Author Comment

by:Rochford
ID: 24203272
I haven't got DMZ mode enabled on the router as it says I need to change the NIC to DHCP
0
 

Author Comment

by:Rochford
ID: 24209142
Anybody got any suggestions? Phoned 2 server support companies and was preperred to pay, but they were of no help.  Wasted nearly a week on this now, but I need it sorted
0
 

Accepted Solution

by:
Rochford earned 0 total points
ID: 24794807
Think this was a Kaspersky AV issue. sorted now
0

Featured Post

Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

OpenVPN is a great open source VPN server that is capable of providing quick and easy VPN access to your network on the cheap.  By default the software is configured to allow open access to your network.  But what if you want to restrict users to on…
How to set-up an On Demand, IPSec, Site to SIte, VPN from a Draytek Vigor Router to a Cyberoam UTM Appliance. A concise guide to the settings required on both devices
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

864 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question