Control access at the database level using the improved Windows Azure SQL Database firewall rules

Windows Azure SQL Database firewall prevents access to your SQL Database server to help protect your data. You can specify firewall rules to control access to your SQL database server by specifying ranges of acceptable IP addresses. However, these firewall rules were defined at the server level, and enabled clients to access your entire SQL Database server, that is, all the databases within the same logical server. What if you wanted to control access to particular databases (containing secure information) within your SQL Database server; you could not do so earlier.

Well, now you can do so; introducing database-level firewall rules in Windows Azure SQL Database! In addition to the server-level firewall rules, you can now define firewall rules for each database in your SQL Database server to restrict access to selective clients. To do so, you must create a database-level firewall rule for the required database with an IP address range that is beyond the IP address range specified in the server-level firewall rule, and ensure that the IP address of the client falls in the range specified in the database-level firewall rule.

This is how the connection attempt from a client passes through the firewall rules in Windows Azure SQL Database:

  • If the IP address of the request is within one of the ranges specified in the server-level firewall rules, the connection is granted to your SQL Database server.
  • If the IP address of the request is not within one of the ranges specified in the server-level firewall rule, the database-level firewall rules are checked. If the IP address of the request is within one of the ranges specified in the database-level firewall rules, the connection is granted only to the database that has a matching database-level rule.
  • If the IP address of the request is not within the ranges specified in any of the server-level or database-level firewall rules, the connection request fails.

 

For detailed information, see Windows Azure SQL Database Firewall.

Comments

  • Anonymous
    February 16, 2013
    Thanks for nice information! Water Level Indicator http://goo.gl/qhqui Skayvon Electronics Pvt. Ltd. is a leading trader and service-provider engaged in offering customers with wide range of Home and Office Automation Products. Skayvon electronics Pvt. Ltd. <a href="http://www.dental-solutions.co.in">Water Level Indicator </a>

  • Anonymous
    July 09, 2015
    wonderful content. I benefited a lot from this few content. I was a bit away from the terminology, but with this little, I recalled what I studied during my University Past years.