How to Block SQL server 7 Port 1433 on windows 2000 server.

I have a question regarding the SQL Server(SQL Server 7) port 1433.
Is there a way i can close this port? I tried using secpol.msc and blocked access to the port 1433 for all IP addresses, but
using SQL Entrprise manager i am still able to connect to this server remotely. Has anyone come across this problem?
TechGuy100Asked:
Who is Participating?

[Webinar] Streamline your web hosting managementRegister Today

x
 
QlemoConnect With a Mentor DeveloperCommented:
SecPol IP filter lists are applied to IPSec Policies only, AFAIK.

Good firewalls are Comodo, Kerio / Sunbelt or PC Tools (while I'm not keen on using the latter one).
0
 
QlemoDeveloperCommented:
Why would you want this? If the server should not be reachable at all, you can disable TCP and Named Pipes for it, that way only local connections with Shared Memory can be established.
0
 
TechGuy100Author Commented:
This is an old server with blank "sa" password and if the password is changed one of the web applications "Local" to the server stops working .
 So, i  want that nobody can connect to the server remotely. I want to "block" the port from all IP addresses .
I tried disabling TCP 1433 and UDP 1434 ports using secpol.msc but still i am able to connect using SQl enterprise manger from a remote computer.
0
Receive 1:1 tech help

Solve your biggest tech problems alongside global tech experts with 1:1 help.

 
QlemoDeveloperCommented:
Did you see this statement: "you can disable TCP and Named Pipes for it, that way only local connections with Shared Memory can be established."?

SecPol restrictions will be useless.


0
 
TechGuy100Author Commented:
Yes, i saw your statement that  i can disable TCP and named pipes, but i "might" need to give access to this SQL server remotely for 2-3 specific IP / Servers.
 Is it possible through secpol restrictions or something else ( except a hardware firewall ).
0
 
QlemoDeveloperCommented:
No. You need a software firewall at least. Another way: disable MSSQL Browser service, change standard port in TCP settings of MSSQL, and use that port to connect (append the port after a comma to the server name in your connect string). That is not safe, but keeps unsophisticated connect attempts away.
0
 
TechGuy100Author Commented:
Qllemo thanks a lot  for your comments, i will try that, but could you please explain why "secpol exceptions will be useless" and if possible can you suggest any software firewall for this purpose.
0
 
TechGuy100Author Commented:
Ultimately I was able to block port 1433 access by using "local Area Connection" properties --> TCP/IP-->Properties --> Advanced -->Options-->TCP/IP filtering--> Properties   & allowing only the specific ports we needed. It requires a restart after changing the settings.
0
All Courses

From novice to tech pro — start learning today.