Welcome to ISAserver.org

Forums | Register | Login | My Profile | Inbox | RSS RSS icon | My Subscription | My Forums | Address Book | Member List | Search | FAQ | Ticket List | Log Out

SQL Server Publishing

Users viewing this topic: none

Logged in as: Guest
  Printable Version
All Forums >> [ISA 2006 Publishing] >> Server Publishing >> SQL Server Publishing Page: [1]
Login
Message << Older Topic   Newer Topic >>
SQL Server Publishing - 29.Dec.2006 6:27:44 PM   
morgade1

 

Posts: 3
Joined: 29.Dec.2006
Status: offline 		I have a SQL server that I have been trying to get published but to no avail as yet. I have set up a publishing rule using sql server to allow from Anywhere to the ip address of the sql server. The setup is a little different from normal in that the ISA server has a Virtual Firewall Module both in front and behind. The front FWSM is the an internet facing firewall for port inspection and the rear FWSM is used as a router. The sql server is not using the ISA as it gateway because we have a complex network (network within a network). For some reason the listener is not recognizing that the incoming packets are sql and indicate unidentified IP traffic, anyone have any ideas on this?

_____________________________

Those who forget the past are doomed to repeat it.
Post #: 1
RE: SQL Server Publishing - 1.Jan.2007 11:56:43 AM   
tshinder

 

Posts: 47659
Joined: 10.Jan.2001
From: Texas
Status: offline 		Hi Morgade,

Why you using using "virtual FW mods" with the ISA Firewall? Don't you know its more secure then the stuff you're putting in their to complicate the issue?

Remove the extraneous stuff and then try it out again.

HTH,
Tom

_____________________________

Thomas W Shinder, M.D.
Sr. Consultant/Technical Writer
Prowess Consulting http://www.prowessconsulting.com/
Blog: http://blogs.isaserver.org/shinder/

GET THE NEW ISA 2006 Book!: http://tinyurl.com/2gpoo8

(in reply to morgade1)
Post #: 2
RE: SQL Server Publishing - 1.Jan.2007 6:53:27 PM   
morgade1

 

Posts: 3
Joined: 29.Dec.2006
Status: offline 		The sad fact is that we have a Firewall Group and a Security Group that both keep telling me that a hardware based appliance (ie *isco) is more secure. How that equtes to a Virtual Firewall on a switch I am not certain other than the switch has a green bezel.

In any case, we live in the world we have not the one we want. So I have to have at least a FWSM in front of the ISA. I have read your article on how to argue the point and it has helped in that we now only have the FWSM in front and not behind the ISA. Each subnet has a firewall between them which means there are many firewalls in the enterprise. I would love to see us go to ISA for the subnet/internal firewalls, but a journey of a thousand miles starts with one step....

(in reply to tshinder)
Post #: 3

Page:   [1] << Older Topic    Newer Topic >>
All Forums >> [ISA 2006 Publishing] >> Server Publishing >> SQL Server Publishing Page: [1]
Jump to:

New Messages No New Messages
Hot Topic w/ New Messages Hot Topic w/o New Messages
Locked w/ New Messages Locked w/o New Messages
 Post New Thread
 Reply to Message
 Post New Poll
 Submit Vote
 Delete My Own Post
 Delete My Own Thread
 Rate Posts