4

As a team we are working on project whose database is hosted in Azure. Since I have Azure management Portal I am adding my IP Address to Management Portal. I cannot add others IP Address of my Team members each and every time.

Is there any way to access the Database hosted in azure without adding IP Address each and every time?

Vigneshwaran Markandan
  • 947
  • 1
  • 16
  • 37

4 Answers4

10

You need to specify which IPs or IP ranges have access to your DB. If your IPs change dynamically and frequently, it is better to add an IP range on the portal.

https://azure.microsoft.com/en-us/documentation/articles/sql-database-configure-firewall-settings/

The dirty alternative is to allow all IPs to access your DB ( 0.0.0.0 to 255.255.255.255). Of course, this is not recommended and will mean any IP can access your DB if they know the connection string. If you are testing out something quickly and want to avoid having to add IP ranges for now, this could be an okay alternative, though. However, remember to remove this rule and set a specific firewall rule once you are done testing.

Shantanu
  • 2,871
  • 4
  • 24
  • 38
1

Yes, you can add firewall rules (ranges) at the server level on portal.azure.com, here is a document that shows you how to do this: How to: Configure Firewall Settings (Azure SQL Database), this can be acomplished by either the portal or powershell scripts.

BrianAtkins
  • 1,279
  • 9
  • 17
  • But in our case its dynamic IP so it will we painful to add IP each and every time. – Vigneshwaran Markandan Jul 22 '15 at 18:52
  • 1
    SQL Azure Firewall rule allows you to define a range of IPs. So you can define your dynamic IP ranges and get away with it! – Ilyas F Jul 26 '15 at 08:22
  • unfortunately if you have an app hosted on a cloud provider that does not provide static IPs, SQL azure is really not an option. – jkerak Dec 22 '16 at 19:44
  • Our solution I've used to access from home (dynamic IP) is to whitelist the public IP of the Office router, and then connect to the office via VPN – Greg Woods Mar 24 '21 at 00:56
1

Both of the other answers here link to the same Microsoft article, and it seems that the Azure portal has changed since that article was written. The new way to access the Firewall settings is pictured below. After you choose your SQL database and the Essentials and other tiles are shown to the right, click on the "...More" menu and choose "Set Server Firewall". Then you will be presented with another panel where you can create a new rule for an IP range by specifying a start IP and end IP, or you can make a rule to allow a single IP by making the start IP and end IP the same.

enter image description here

Eric Barr
  • 3,999
  • 5
  • 29
  • 42
1

It is correct that allowing the full range of IPs (0.0.0.0 to 255.255.255.255) will allow anyone to attempt to access your database. Although if Azure active directory password authentication is configured, you will still need a valid Username & Password to connect to the SQL Server.

RBILLC
  • 170
  • 2
  • 6