• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 536
  • Last Modified:

How to add IP subnet to on a SQL Server (Windows 2012 firewall inbound)

Hi

We have SQL 2012 server and I have opened SQL server browser on( port 1434 inbound) and SQL server on (port 1433 inbound). Now I want to add a 10.25.4.0/22 inbound to our  SQL server Firewall , which is installed on Windows 2012 ( any request coming from 10.25.4.0/22 should be able to access our SQL Server) Is there a way to achieve this .
Please post me some tutorials as how to do this.

Any help much appreciated.
Thanks
0
lianne143
Asked:
lianne143
  • 3
  • 2
4 Solutions
 
duncanb7Commented:
Please read this configuration SQL server access using netsh command with advfirewall provided by
Microsoft at this site,http://msdn.microsoft.com/en-us/library/cc646023.aspx and example netsh command

Hope understand your question completely.If not, pls pt it out

Duncan
0
 
lianne143Author Commented:
I want to only add a 10.25.4.0/22 inbound to our  SQL server Firewall
Means any request coming from PCs belonging to 10.25.4.0/22 should be able to access our SQL Server
0
 
duncanb7Commented:
What is remote address IP for 10.25.4.0/22 ?

Or are you talking about  all access within your local LAN only  including database server ?


Duncan
0
Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

 
David Johnson, CD, MVPOwnerCommented:

1. From Sever Manager Tools Bring up Windows Firewall with Advanced Services

From server manager bring up Windows Firewall with advanced Services
Server Manager

2. Create a New Custom Rule or if you have an existing rule you can sort by port number i.e. 1434 and edit it

Firewall 1

3.

Give the rule a name

4. Add the program or service , here I checked service

MSSQL service

5. Port and Protocol

Port and Protocol

6. Remote alow ip Addresses

]you can use ranges or even the  /24 you want

7. The Profile you want this allow rule to be effective in

Profile

8. Apply, OK, You're done

0
 
duncanb7Commented:
David,  you are correct completely,

after I review the link I posted, it mentions remoteip=localsubnet,  

Dear author  please also try it at window command line if have time

netsh advfirewall firewall add rule name = SQLPort dir = in protocol = tcp action = allow localport = 1433 remoteip =10.25.4.0/22  profile = DOMAIN

Duncan
0
 
David Johnson, CD, MVPOwnerCommented:
0

Featured Post

Free Tool: Port Scanner

Check which ports are open to the outside world. Helps make sure that your firewall rules are working as intended.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

  • 3
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now