April 27, 2005 at 1:13 pm
Hello,
We are looking at securing our SQL Servers that are being used by Web Applications. In our current setup, the IIS Servers exist in a workgroup within a DMZ and separated from domain containing the SQL Cluster by a firewall.
1) Is it possible for web clients to connect to SQL using trusted connections in this scenario ?
2) Is it possible to use IPSEC to secure and encrypt connections between the web servers and sql servers ?
3) What are some of the best possible sloutions to secure the SQL Servers in this scenario?
Thanks
April 28, 2005 at 6:41 am
I think there are a number of possible scenarios to follow which depend on a number of factors, it's really a matter of how you personally decide to approach this.
I used a technique where the iis servers sat in one dmz and I can a sql server in another dmz ( heavily locked down servers which were nat's within the firewall dmz's )
the sql server then talked to another sql server inside , run through isa server, so nat'd again. network also segmented.
Using locked down rpc calls can be very effective - and the process used was complex and was considered safe. I suggest you find people who understand secue systems to help, I had considerable assistance in the solutions I deployed.
[font="Comic Sans MS"]The GrumpyOldDBA[/font]
www.grumpyolddba.co.uk
http://sqlblogcasts.com/blogs/grumpyolddba/
Viewing 2 posts - 1 through 2 (of 2 total)
You must be logged in to reply to this topic. Login to reply