Home > Developer > PHP

Only allow the specified Machine to connect to the SQLServer Server

Source: Internet
Author: User
Developer on Alibaba Coud: Build your first app with APIs, SDKs, and tutorials on the Alibaba Cloud. Read more >
Background only computers with an IP address can connect to the SQLServer server. Other clients are not allowed to connect to the server. The solution can be directly restricted in the firewall and only allow 1433 communication with the specified IP address. Of course, from a more secure perspective, you should change port 1433 to another port. Other solution 1 (limited from

Background only computers with an IP address can connect to the SQL Server. Other clients are not allowed to connect. The solution can be directly restricted in the firewall, and only allow 1433 communication with the specified IP address. Of course, from a more secure perspective, you should change port 1433 to another port. Other solution 1 (limited from

Background

Only computers with an IP address can connect to the SQL Server. Other clients are not allowed to connect.

Solution

You can set limits on the firewall to allow only 1433 communication with the specified IP address. Of course, from a more secure perspective, you should change port 1433 to another port.

Other solutions1(Restricted from specifiedIPAccess client)

If SQL Server 2005 is used, you can also use the endpoint restriction method. This method requires a dedicated Nic, all clients that can connect to SQL Server are connected through this NIC (assuming the IP address of this Nic is 192.168.1.1 ):

1. In "SQL Server 2005 network configuration" of "SQL Server Configuration Manager", all protocols except TCP/IP are prohibited;

2. Disable the default TCP endpoint with the following T-SQL

Alter endpoint [TSQL Default TCP]

STATE = STOPPED

3. Use the following T-SQL to create new TCP endpoints and authorizations

USEmaster

GO

-- Create a New Endpoint

Create endpoint [TSQL User TCP]

STATE = STARTED

As tcp (

LISTENER_PORT = 1433,

LISTENER_IP = (192.168.1.1) -- network address of the listener

)

For tsql ()

GO

-- Grant all logon (or specified logon) connection permissions to use this endpoint.

Grant connect on endpoint: [TSQL User TCP]

TO [public]

After completing the preceding configuration, you can only access SQL Server from the client that is connected to the network adapter with the network address 192.168.1.1. In addition, if you only grant the connection permission of the specified logon terminal, only the specified logon can access the SQL Server instance.

Other solutions2(Limited to specifiedIPClient Access)

When SQL Server 2005 is upgraded to SP2 or a later version, you can use the new trigger to implement control.

After the following T-SQL is executed, client connection except IP address 192.168.1.1 fails.

USE master

GO

Create trigger tr_LoginCheck

ON ALL SERVER

FOR LOGON

AS

If eventdata (). value ('(/EVENT_INSTANCE/ClientHost) [1]', 'varchar (15) ') <> '2017. 168.1.1'

ROLLBACK TRAN

GO

This article is an English version of an article which is originally in the Chinese language on aliyun.com and is provided for information purposes only. This website makes no representation or warranty of any kind, either expressed or implied, as to the accuracy, completeness ownership or reliability of the article or any translations thereof. If you have any concerns or complaints relating to the article, please send an email, providing a detailed description of the concern or complaint, to info-contact@alibabacloud.com. A staff member will contact you within 5 working days. Once verified, infringing content will be removed immediately.

Related Keywords:
wordpress the field could not connect to specified instance mysql error number 2003 vbscript to connect to remote machine configure sql server 2016 to allow remote connections connect to ldap server connect to mssql server connect to server php

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

What's Trending
Top 10 Tags
datastax versions naming convention zookeeper client class definition md5 microsoft sql server 2005 data structures exception handling error handling
Top 10 Keywords
microsoft download center down wordpress address url site address url wordpress address url windows installer 4 0 download 302 not found web address url definition site address url wordpress db2 integer mac os installation step by step pdf abbreviation for return

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

Get Started for Free

  • Sales Support

    1 on 1 presale consultation

    Chat Contact Sales

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

    Open a Ticket

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.

    Learn More