SQL Server – performance and other stories: SQL Server Port

Sunday, June 23, 2013

SQL Server Port - How to open in Windows Firewall

In the IT security world, it is said that approximately 80% of all security breaches occur by insiders; directly or indirectly, willingly or unwillingly. Here our focus is local Windows firewall and to see whether it is correctly configured or not. It is essential to make sure that every Windows and SQL Server is secured and protected.

Although SQL Server resides inside a DMZ, it is still important to secure the SQL box for anything unforeseen and there is no reason to disable the windows firewall. By opening a couple of TCP or UDP ports without disabling the Windows Firewall will guarantee maximum protection of a SQL Box.

In the following steps, we will configure Windows Firewall for the default port 1433 to allow traffic to pass through in Windows 2012 for SQL Server 2012.

Step by step guide:

1. In “Server Manager” select “Local Server”. (figure # 1)

2. From the “Tool” menu select “Windows Firewall with Advanced Security”.

3. Select the “Inbound Rules” from the left hand side. From the Action pane select “New Rule”. (figure # 2)

4. On the rule type dialog box, select “Port” and click next. (figure # 3)

5. Select “TCP” and enter 1433 in the “Specific Local Ports” box. (figure # 4)

6. On the next dialog box, select “Allow the connection”. (figure # 5)

7. On the profile dialog box, select all three options: “Domain”, “Private” and “Public”. (figure # 6)

8. On the last dialog box provide a name, e.g. “SQL Server Database Engine” and description. Then click finish button. (figure # 7)

9. On the “Windows Firewall with Advanced Security”, click “Enable rule”. (figure # 8)

Figure # 1: Windows Firewall configuration for SQL Server Port 1433