This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

How to make a DNATed SQL server

Hello,
I'm searching for a solution to access from an SQL aplication in my DMZ to an SQL server in my internal network. This solution is very important for me because i'm looking for that before purchasing  ASL 3.2
For the moment i do that configuration:
i create a service call sql  port 1024/65536
I make a DNAT rule:
PreDNAT any -> DMZ NIC  service sql
PostDnat no change -> internsql server service sql
i make 2 packet filter :
any -> sql -> DMZ NIC
any -> sql -> sql server
but it doesn't work
can somebody help me ?
thanks for your answer

This thread was automatically locked due to age.

Parents

0 cluster over 22 years ago

You must define service:
"MS_SQL" tcp (S/Port)1024:65535 (D/Port)1433:1434

Packet Filter Rule:
From: "DMZ_SQL_Client" Service: "MS_SQL" To: "Internal_SQL_Server" Action: Allow

You don't need from any DNAT configuration.

Bye
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 cluster over 22 years ago

You must define service:
"MS_SQL" tcp (S/Port)1024:65535 (D/Port)1433:1434

Packet Filter Rule:
From: "DMZ_SQL_Client" Service: "MS_SQL" To: "Internal_SQL_Server" Action: Allow

You don't need from any DNAT configuration.

Bye
Cancel
Vote Up 0 Vote Down

Cancel

Children

0 andreas over 22 years ago in reply to cluster

Hi,

If NAT rules are needed depends on the IP addresses used and the routing table entries. To solve your problem, we need that information, too. Please post it here.

Greets,
andreas
Cancel
Vote Up 0 Vote Down

Cancel
0 Chettam over 22 years ago in reply to andreas

My problem is now solve tanks all for your support
Cancel
Vote Up 0 Vote Down

Cancel