| Author |
Topic |
|
jen
Master Smack Fu Yak Hacker
4110 Posts |
 Posted - 2004-09-07 : 05:56:27
|
| we're doing some network backup from one server to another. i was informed by TSG that this works because the tcp port is not restricted.is there a work around this issue without compromising security?i'm using net use to connect to the target machine. |
|
|
derrickleggett
Pointy Haired Yak DBA
4184 Posts |
Posted - 2004-09-07 : 09:14:21
|
| ??? As long as the account that's performing the backup (usually the SQL Server service account) has permissions on the share, you should be fine even if the tcp port is restricted. That user would just need access so you would have an exception.MeanOldDBAderrickleggett@hotmail.comWhen life gives you a lemon, fire the DBA. |
 |
|
|
Pace
Constraint Violating Yak Guru
264 Posts |
Posted - 2004-09-07 : 09:28:23
|
Can you register the servers  |
|
|
|
tkizer
Almighty SQL Goddess
38200 Posts |
Posted - 2004-09-07 : 13:29:53
|
| Are you getting an error?Tara |
|
|
|
jen
Master Smack Fu Yak Hacker
4110 Posts |
Posted - 2004-09-07 : 22:42:02
|
| Thanks for replying...Tara, Error is: The network path was not foundPace, No problem with registering the servers.Derrick, so do i need to explicitly share the drive? I'm using the administrative share and local administrators have access to it, the account for sql services is member of the local administrator group.I'm also using the same procedure for other servers but these servers do not have any restrictions on their tcp port and the backup works fine, but for those with restriction, it just can't find the network path. |
|
|
|
derrickleggett
Pointy Haired Yak DBA
4184 Posts |
Posted - 2004-09-07 : 22:54:10
|
| Explicitely share it. That should work. You need to make sure your firewall rules have an exception in them though if it's your firewall blocking this traffic. You'll need to talk to the network admins about this.MeanOldDBAderrickleggett@hotmail.comWhen life gives you a lemon, fire the DBA. |
|
|
|
jen
Master Smack Fu Yak Hacker
4110 Posts |
Posted - 2004-09-07 : 22:57:54
|
Now that's a problem, the network admins told me, there's no work around this problem except remove tcp restrictions. LOLZ  I'll try the explicit share first...I've seen this remove port restriction command in the internet, it actually removes restrictions on n ports on n user profiles. Have you tried this?quote:
Originally posted by derrickleggett
Explicitely share it. That should work. You need to make sure your firewall rules have an exception in them though if it's your firewall blocking this traffic. You'll need to talk to the network admins about this.MeanOldDBAderrickleggett@hotmail.comWhen life gives you a lemon, fire the DBA.
|
|
|
|
derrickleggett
Pointy Haired Yak DBA
4184 Posts |
Posted - 2004-09-07 : 22:58:48
|
| Then tell your boss they said you can't do SQL Server backups so if the server fails the business is just out of luck.MeanOldDBAderrickleggett@hotmail.comWhen life gives you a lemon, fire the DBA. |
|
|
|
jen
Master Smack Fu Yak Hacker
4110 Posts |
Posted - 2004-09-08 : 00:18:09
|
lolz, i am always at constant firing range with TSG. It's either I lose the restrictions on the port to have the backups or i lose the backups and retain the restrictions.my boss doesn't have the guts to tell them otherwise, you see the TSG in our company are "untouchables", the CEO favors them. so which is lesser of the two evils? i think confrontation is inevitable...againquote:
Originally posted by derrickleggett
Then tell your boss they said you can't do SQL Server backups so if the server fails the business is just out of luck.MeanOldDBAderrickleggett@hotmail.comWhen life gives you a lemon, fire the DBA.
|
|
|
|
mr_mist
Grunnio
1870 Posts |
Posted - 2004-09-08 : 06:12:07
|
| Maybe they could set up a secure VPN or similar to allow the best of both worlds.-------Moo. :) |
|
|
|
jen
Master Smack Fu Yak Hacker
4110 Posts |
Posted - 2004-09-08 : 22:57:27
|
ah yes, good idea, i'll include that in my options. i've decided to hand them the ball and which ever way they throw it is their responsibility now. ofcourse, i'll cc my superiors and theirs.  quote:
Originally posted by mr_mist
Maybe they could set up a secure VPN or similar to allow the best of both worlds.-------Moo. :)
|
|
|
|
|
network backup issue