How do I open a port for SQL mirroring on ASA 5505?

mrawli
mrawli used Ask the Experts™
on
Hi Experts,

I have two Cisco ASA devices providing a site to site connection between Site A and Site B. What I would like to acheive is the ability to mirror the SQL 2005 databases hosted at Site A to an identical server at Site B. But in order to do this I beleive I need to open TCP port 5022 on both ASAs to allow the traffic.

Could someone please instruct me on the best way to acheive this?

Thanks in advance
Comment
Watch Question

Do more with

Expert Office
EXPERT OFFICE® is a registered trademark of EXPERTS EXCHANGE®
The default instance of the Database Engine uses port 1433 and also you have to open the TCP endpoint ports that you created for database mirroring.Do a simple NAT in both ASA

you need a access-list to open the port on your ASA
access_list outside_entry extended permit tcp any host <outside ip> eq 9009
then tie the port to the inside ip
static (inside,outside) tcp interface 9009 <inside ip> 9009 netmask 255.255.255.255
then you need to apply the port you want to open to a interface
access-group outside_entry in interface outside

Author

Commented:
Hi Both,

Thanks for your help, I'd prefer to know what the ASDM method is though if possible?
Here is the ASDM manual for adding/editing access lists:
http://www.cisco.com/en/US/docs/security/asdm/6_1/user/guide/aclrules.html

Do more with

Expert Office
Submit tech questions to Ask the Experts™ at any time to receive solutions, advice, and new ideas from leading industry professionals.

Start 7-Day Free Trial