I can't figure this one out. We have a SQL server hosted in the cloud and a site-to-site VPN over to our headquarters. The is a deny from cloud to HQ rule. I open up ports TCP 1433/1434/135/2383/4022 from HQ to cloud. But, I cannot connect using SQL Studio Manager. However, when I put in an ANY rule for the ports going from HQ to cloud it works like a charm... what gives? What port am I missing?