Red Gate forums :: View topic - network ports used by SQL Monitor
Return to www.red-gate.com RSS Feed Available

Search  | Usergroups |  Profile |  Messages |  Log in  Register 
Go to product documentation
SQL Monitor 4
SQL Monitor 4 forum

network ports used by SQL Monitor

Search in SQL Monitor 4 forum
Post new topic   Reply to topic
Jump to:  
Author Message
TheLonelyDBA



Joined: 30 Oct 2013
Posts: 18
Location: Brazil

PostPosted: Tue Mar 11, 2014 9:49 pm    Post subject: network ports used by SQL Monitor Reply with quote

So I am testing SQL Monitor Hosted, but I assume the on-premise installation would face the same issue.

I need to monitor several SQL Servers that are on firewalled networks. Some are on the same domain, some are on distinct domains and will use local windows accounts to be monitored.

My issue is that I have not found the list of ports that I need to open on the firewall, in order to make the Relay Service be able do see the monitored server.

I already opened SQL standard port 1433, but when I add the server in the Configuration page it says:

Status: Unreachable (Cannot connect)

the error details are:

Date: 11 Mar 2014 5:44 PM
Group: Registry
Event: OpenRegistryHive: LocalMachine
Outcome: Cannot connect
Exception: Win32Exception
Exception message: The network path was not found

Can someone post a list of ports that I need to open on my firewall to get monitoring working?

thanks,
_________________
Tips and thoughts on MS SQL, Oracle and MongoDB:
http://thelonelydba.wordpress.com
Back to top
View user's profile Send private message
TheLonelyDBA



Joined: 30 Oct 2013
Posts: 18
Location: Brazil

PostPosted: Thu Mar 13, 2014 7:14 pm    Post subject: Reply with quote

UP!

no word on port numbers? does anyone have experience with such restricted/firewalled environments?

regards
_________________
Tips and thoughts on MS SQL, Oracle and MongoDB:
http://thelonelydba.wordpress.com
Back to top
View user's profile Send private message
fionag



Joined: 05 Jan 2012
Posts: 32
Location: Red Gate

PostPosted: Tue Mar 18, 2014 6:30 pm    Post subject: Reply with quote

The following page outlines the ports you need to open for the on-premise version of SQL Monitor
http://documentation.red-gate.com/pages/viewpage.action?pageId=17270675
Whilst not specific to hosted, the same principle should apply.

Additionally the hosted relay uses port 23547 to communicate with Red Gate’s servers.
Back to top
View user's profile Send private message
TheLonelyDBA



Joined: 30 Oct 2013
Posts: 18
Location: Brazil

PostPosted: Thu Apr 10, 2014 3:04 pm    Post subject: Reply with quote

hi Fiona. I got the relay to talk with the web server of the SQL Monitor Hosted service.

Also my firewall team was able to open a bunch of ports on the internal network, but we could not get the server to use a fixed port for wmi.

Is it possible to monitor only SQL events and ignore all data captured via WMI in some way?

PS: ports opened both ways:
TCP 139
TCP 445
TCP 135
TCP 137
TCP 24158
UDP 137
_________________
Tips and thoughts on MS SQL, Oracle and MongoDB:
http://thelonelydba.wordpress.com
Back to top
View user's profile Send private message
fionag



Joined: 05 Jan 2012
Posts: 32
Location: Red Gate

PostPosted: Tue Apr 15, 2014 11:33 am    Post subject: Reply with quote

It doesn't help to disable the WMI part of the monitoring because the underlying problem is with DCOM on which WMI and remote registry are built. Whilst you could disable WMI, disabling remote registry would remove much of the product’s usefulness.

In order for monitoring to succeed, the following network traffic needs to be opened up (see http://support.microsoft.com/kb/832017/en-gb):
ICMP Ping
Port 135
Port 445
Ports 49152-65535 (for Windows Server 2008 or later)
Ports 1023-5000 (for Windows Server 2003 or earlier)

These are all covered by the following Windows Firewall rules/exceptions:
All ICMP v4
Core Networking
File and Printer Sharing
SQL Server
Windows Management Instrumentation (WMI)

I hope that is of some help.
Fiona
Back to top
View user's profile Send private message
Display posts from previous:   
Reply to topic All times are GMT + 1 Hour
Page 1 of 1

 
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum


Powered by phpBB © 2001, 2005 phpBB Group