August 6, 2009 at 9:40 am
Hi All,
I have a sql server 2005 instance which is the primary datastore for a web application. The instance is only available on the local network and currently has no encrypted traffic.
We now have a new use case that requires we allow a remote SSL connection directly to the database over the Internet.
I do not want to force ALL connections to use SSL because of concerns about the performance of the web application, which has no reason to use SSL and is the primary user of the instance.
So my question is: can a SQL server 2005 instance be configured to require SSL either from some clients, for some users, or on a fixed port, while still allowing unencrypted traffic for other connections? I need to be able force all traffic that comes from outside our network (this will be from one specific client) to use SSL only.
Any help with this gratefully appreciated. 🙂
August 6, 2009 at 11:35 am
I was just thinking that you could provide a SSL Proxy, this would be similar to using STunnel. I don't think you want to directly expose your SQL server to the internet, you need to be REALLY careful about access controls in this scenario.
CEWII
Viewing 2 posts - 1 through 2 (of 2 total)
You must be logged in to reply to this topic. Login to reply