Configuring the Windows Firewall_v3.8.4

Owned by Anand Rajaraman
Last updated: Feb 26, 2023
2 min read

Windows Firewall helps prevent unauthorized access to computers in a network. By default, the Windows Firewall is turned ON after the operating system is installed. If a firewall is turned ON but it is not configured correctly, attempts by users to connect to SQL Server and Velocity are blocked. To access an instance of SQL Server which is behind a firewall, the database administrator needs to configure the firewall on the computer that is running SQL Server to allow users access.

Opening ports in your firewall can leave your server exposed to malicious attacks. Make sure that you understand firewall systems before you open ports.

The following procedures will guide you through the steps that you need to configure the Windows Firewall in Windows Server to allow users access to SQL Server.

  1. Click Start ► All Programs ► Administrative Tools ► Server Manager. The Server Manager appears.

  2. In Server Manager, expand the Configurations tab and then expand Windows Firewall with Advanced Security.

  3. Right-click Inbound Rules and click New Rule. The New Inbound Rule Wizard appears.

  4. On the New Inbound Rule Wizard's Rule Type page, select the Port option to control connections for a TCP or UDP Port. Click Next to continue with the wizard. The Protocol and Ports page appears.

  5. On the Protocol and Ports page, specify the protocols and ports to which this rule applies. Because SQL Server, when installed as a default instance, uses port 1433 as the default port, choose the TCP option and then specify a specific port number.

  6. Click Next to continue with the wizard.

  7. On the Action page, specify the action to be taken when a connection matches the conditions specified in this rule. In this case, choose to Allow the connection and click Next.

  8. The Profile page appears. On the Profile page, select Domain, and click Next. The Name page appears.

  9. Provide a meaningful name and description. For example:
    Name: SQL Server 2019 default Port 1433
    Description (Optional): Enable SQL Server 2019 Default Port (1433) for user connectivity.

  10. Click Finish to complete the wizard.
    After the wizard configuration is complete, you will be able to see the new rule available under Inbound Rules.

  11. Repeat Steps 3 through 10 to set the UDP Port to 1434.

  12. Repeat Steps 3 through 10 to set the TCP Port to 2025, to enable connection from remote workstations.

Registered Ports are those from 1024 through 49151, and Dynamic and/or Private Ports are those from 49152 through 65535. The registered ports number range should not be used for named SQL Server instances because a future conflict is possible. Consult your IT department for assistance regarding port assignment.