locked
Firewall / Security requirements for Sync RRS feed

  • Question

  • What are the firewall settings requirements for SQL Sync? One of the Sync blogs I read mentioned 1433 outbound, but I am assuming that is only in the case of one-way sync?
    Sunday, February 28, 2010 12:11 AM

Answers

  • AFAIK, if you're using the offline scenario, outbound 1433 (default sql port) is fine, the server never initiates connection back to the client on either one-way or two-way syncs. It's the client that's synching that's managing both connections to client and server.

    If your using collaboration scenario (peer to peer) where a sync can be initiated from either peer, you will have to enable inbound and outbound. (i.e, if peer 1 initiates sync and it needs to connect to peer2 -> outbound from peer1, inbound for peer 2. Likewise if peer2, initiates sync and need to connect to peer 1 -> outbound for peer2, inbound for peer1)

    if you use WCF for n-tier deployment, the you'll have to configure other ports depending on your WCF configuration (maybe port 80 for plain http binding, 443 for https).

    Sunday, February 28, 2010 6:52 AM

All replies

  • AFAIK, if you're using the offline scenario, outbound 1433 (default sql port) is fine, the server never initiates connection back to the client on either one-way or two-way syncs. It's the client that's synching that's managing both connections to client and server.

    If your using collaboration scenario (peer to peer) where a sync can be initiated from either peer, you will have to enable inbound and outbound. (i.e, if peer 1 initiates sync and it needs to connect to peer2 -> outbound from peer1, inbound for peer 2. Likewise if peer2, initiates sync and need to connect to peer 1 -> outbound for peer2, inbound for peer1)

    if you use WCF for n-tier deployment, the you'll have to configure other ports depending on your WCF configuration (maybe port 80 for plain http binding, 443 for https).

    Sunday, February 28, 2010 6:52 AM
  • ok, so just to clarify what you said..."AFAIK, if you're using the offline scenario, outbound 1433 (default sql port) is fine, the server never initiates connection back to the client on either one-way or two-way syncs. It's the client that's synching that's managing both connections to client and server."

    for offline scenario, client needs 1433-out, and server would need 1433-in?
    Sunday, February 28, 2010 5:31 PM
  • yes, you're  right. i should have been clearer :)
    Sunday, February 28, 2010 5:34 PM
  • This question is more on the SQL connectivity side, instead of Sync.  The bottom line is to make sure that the client machine can have SQL server connectivity. 

    This is link to enable remote connection for SQL Server 2005, http://support.microsoft.com/kb/914277.
    Enabling remote connection for SQL Server 2008 is the same on the port settings.  (But a little bit different on Enable Remote connection from the SQL server configuration.)

    Thanks.
    Leo Zhou ------ This posting is provided "AS IS" with no warranties, and confers no rights.
    Sunday, February 28, 2010 6:21 PM
    Answerer