Please start any new threads on our new
site at https://forums.sqlteam.com. We've got lots of great SQL Server
experts to answer whatever question you can come up with.
| Author |
Topic |
|
albertkohl
Aged Yak Warrior
740 Posts |
 Posted - 2008-11-20 : 17:05:49
|
| i have a specific IP that's trying to login to my server via the SA login. anyone know a quick/easy way to ban the ip either via server 2003 or sql?only router we have is a P.O.S. WRT54g linksys, so firewall (atm) is not an option :( |
|
|
SwePeso
Patron Saint of Lost Yaks
30421 Posts |
Posted - 2008-11-21 : 02:10:06
|
Is the IP coming from outside your organization?Change default port number from 1433 to another port number and change all internal application to connect to new port number.
E 12°55'05.63"N 56°04'39.26" |
 |
|
|
Lumbago
Norsk Yak Master
3271 Posts |
Posted - 2008-11-21 : 04:38:03
|
| A software firewall would probably do the trick. I've used Kerio WinRoute Firewall professionally for several years (a while back though) and never had any problems: http://www.kerio.eu/kwf_home.htmlAnd do make sure hat your SA password is of substantial complexity, a GUID maybe?- Lumbago |
|
|
|
albertkohl
Aged Yak Warrior
740 Posts |
Posted - 2008-11-21 : 12:10:05
|
| yeah, it's coming from outside. i found a cheap software firewall that'll allow me to block specific ips, so that was step one. it's call "Find 'n block" for anyone who cares. i disabled the SA login, i have equivalant privlages so i dont really need it. if i ever do i can always re-enable it.next step is as peso suggested, i'm going to change the sql port to something different, but need to find some time to go though everything to make sure i have minimal down time.Thanks for the advice! |
|
|
|
tkizer
Almighty SQL Goddess
38200 Posts |
|
|
|
|
|
Brute Force Attempt