Table of Contents
Advertisement
TIP T201 –SQL Server 2005 and firewalls
Cisco TMS Versions
11.0 or newer
SQL Server 2005 requires one TCP port per named instance. Named instances by default will run on an
unassigned dynamic port. Default instances will run on TCP Port 1433. The SQL Server Browser service
is used to tell clients what port a named instance is currently using. The SQL Server Browser service
uses UDP Port 1434 . Restrictive networks can force an instance to run on a fixed port allowing specific
firewall rules to be made and remove the need for SQL Server Browser. The Windows Firewall on the
SQL Server can be setup to allow the dynamic ports for a single instance of SQL Server.
Possible scenarios
Only using the default instance? Open TCP Port 1433 in your firewall
Only using one instance and only Windows Firewall - no external firewalls between SQL and client?
Use Windows Firewall steps below
Using multiple instances on same server with local firewall? Must configure fixed ports for each
instance and configure firewall rules for those ports. SQL Server Browser is optional
Using external firewalls between client and server? Must configure fixed ports for each instance
and configure firewall rules for those ports. SQL Server Browser is optional
Using Windows Firewall for a single instance
These steps allow a single instance to run on dynamic ports with Windows Firewall Enabled on the SQL
Server
1. Open the Control Panel, open Network Connections, right-click the active connection, and then click
Properties
2. Click the Advanced tab, and then click Windows Firewall Settings
3. Click the Exceptions tab
4. Click Add Port. Enter SQL Server Browser in the Name text field, type 1434 in the Port Number text
field, select UDP, and then click OK.
5. Click Add Program
6.
Click Browse, and navigate to the instance of SQL Server. The Cisco TMS default installed SQL
Server will be at C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\Sqlservr.exe
7. Click OK twice to close the Windows firewall program.
Using Windows Firewall for multiple instances
Each SQL instance must be configured to run on a fixed port. See the Microsoft article at the end of this
Tip for instructions on configuring fixed ports. Use the steps below to configure the Windows Firewall
1.
Open the Control Panel, open Network Connections, right-click the active connection, and then click
Properties
2.
Click the Advanced tab, and then click Windows Firewall Settings
3.
Click the Exceptions tab
4.
Click Add Port. Enter the name of the instance in the Name text field, type the port number assigned
to the instance in the Port Number text field, select TCP, and then click OK.
5.
Repeat Step 4 for each instance the server will use
6.
If SQL Server Browser is going to be enabled (optional to allow connecting by name only), Click Add
Port. Enter SQL Server Browser in the Name text field, type 1434 in the Port Number text field,
select UDP, and then click OK.
7.
Click OK to close the Windows firewall program.
Cisco TMS Database Knowledge Tips
SQL Server Versions
SQL 2005 – All Versions
SQL 2005 Express – All Versions
Tips category – Networking
Page 18 of 35
Hide quick links:
Advertisement
Table of Contents
