Wednesday, January 02, 2013 3:11 PM
We replicated a DB from our LAN to our DMZ and this works fine. We have a public website that accesses the data from a DB in the DMZ and we have an internal application that accesses the data on the LAN. We now have a few tables in the DMZ instance that we'd like to update and replicate back to the DB on our LAN. What is the best approach to do this.
From a security point of view we are happy with the Distributor(LAN DB) pushing the data to our Subscriber(DMZ DB) but we are concerned about data going from the DMZ to our LAN.
What is the best approach to send data from the DMZ to our LAN.
Wednesday, January 02, 2013 5:39 PMModeratorYou can use a different protocol to replicate from your DMZ to your internal LAN - like Banyan Vines, or you can setup a different card and only open up communication from the IP address that this nic runs under. Or you can opn up your firewall to only acccept inbound traffic from the IP address of your DMZ SQL Server.
looking for a book on SQL Server 2008 Administration? http://www.amazon.com/Microsoft-Server-2008-Management-Administration/dp/067233044X looking for a book on SQL Server 2008 Full-Text Search? http://www.amazon.com/Pro-Full-Text-Search-Server-2008/dp/1430215941
Thursday, January 03, 2013 3:47 AM
You need to talk to your network services team in your organization. If it possible to alter the current inbound policy to accept then you have no issues. In my current work place there is no way to get that done. All are one way no compromise for the in bound.
If i have to do it in my organization i would consider to restore the backup to LAN and then use that copy to replicate the required tables perhaps merge the data on a frequent intervals.
best solution is get the doors open for DMZ in to LAN !!!!!!!!!!!