WIN-911 Best Practices For SQL Server And IIS

3y ago
22 Views
2 Downloads
1.28 MB
8 Pages
Last View : 17d ago
Last Download : 2m ago
Upload by : Pierre Damon
Transcription

WIN-911 Best Practices for SQL Server and IISMicrosoft SQL Server RequirementsHardware and Software Requirements for SQL Server stalling-sql-server?view sql-server-2017WIN-911 ships with Microsoft SQL 2017 Express which should be sufficient for most if not allinstallations of WIN-911. However, if additional performance is required, it may be necessary toupgrade to SQL Server Standard or Enterprise. You will find a matrix of features supported by alleditions of SQL Server 2017 er/editions-and-components-of-sql-server-2017?view sql-server-ver15Other versions of SQL Server are also supported, the following have been tested forcompatibility, Microsoft SQL Server 2008 R2 through 2019 (Express, Standard and EnterpriseEditions)WIN-911 Installation RequirementsWIN-911 requires access to a Microsoft SQL Server instance as it is used to store configurationdata. During the installation process, the WIN-911 installer will search for a local or remote SQLinstance named “WIN911”. If no instances are found, the installing user shall be prompted toinstall a local SQL instance using SQL Server 2017 Express. If the user intends to use anotherinstance not named “WIN911”, they should decline this option.SQL Server PermissionsWhile installing WIN-911, the logged-on user performing the installation must have the‘sysadmin’ role assigned on the SQL instance the installer is targeting. If a user allows the WIN911 installer to install Microsoft SQL Server 2017 Express for them, the correct permissions willautomatically be applied to the instance.SQL Deployment ConsiderationsSecurityWIN-911 utilizes a web server, Internet Information Services (IIS), to host itsconfiguration GUI so it must be installed on a Windows system running IIS. For securitypurposes, it is advisable to separate web and databases servers. In the event that IIS iscompromised, all software running on the machine is now vulnerable, including SQLServer. If SQL Server is installed on a separate machine, the server can only be accessedthrough its remote interface. If a user does install WIN-911 and Microsoft SQL Server onthe same machine, we highly recommend the use of Firewalls to restrict access to IIS.

For more information, please reference Microsoft’s Security Considerations for a s-for-a-sql-server-installation?view sql-server-2017.PerformanceDepending on the size of your WIN-911 configuration, it may be advisable to install SQLServer on a separate server. Without initial performance tuning, SQL Server is designedto run at peak performance and assumes it is the only server running on the OS.Meaning SQL Server will attempt to reserve all RAM and utilize as many CPU cycles aspossible. If you must install SQL and IIS/WIN-911 on the same machine, it may be worththe effort to use CPU affinity masks for SQL and IIS to isolate the two on separate coresand configure SQL to reserve less RAM.For information, please reference Microsoft’s TechNet articles regarding SQL Servermonitoring and Performance Tuning, 1(v sql.120).aspx.Internet Information Systems (IIS) RequirementsWIN-911 utilizes IIS to host application servers which provide access to WIN-911’s configuration GUI soit must be installed before you can install WIN-911. Once installed, IIS requires access to SQL Server andthe locally running WIN-911 Runtime Services. All other traffic should be blocked unless you requireremote access to the WIN-911 GUI. We suggest reviewing Microsoft’s Security Best Practices of IIS 5855(v ws.11).aspx.When installing IIS, only the modules required by WIN-911 should be installed. Needlessly installingmodules which are not used will increase your vulnerability to outside attacks. Below you will find a listof the modules required by WIN-911 in a Server 2012 R2 environment.(Bolded items are the modules you must install) Featureso .NET Framework 4.5 Features WCF Services HTTP ActivationServer Roleso Common HTTP Features Default Document Static Content HTTP Redirectiono Security Request Filtering Basic Authentication

oo Windows AuthenticationApplication Development .NET Extensibility 4.5 Application Initialization ASP.NET 4.5 ISAPI Extensions ISAPI FiltersManagement Tools IIS Management ConsoleSystem ArchitectureWIN-911 is modular in design, meaning that each feature (iFIX Data Source / Email Notifier / Dispatcher),are all self-contained applications which when combined form one logical system. The modulescommunicate with each other using Microsoft’s Windows Communication Foundation, WCF, over ports80 and 4020 through http endpoints. Since this communication is local, you will not need to createfirewall exceptions for these ports. The modules must also communicate with SQL Server and this isdone over the standard TCP port 1433. If your SQL Server is remote from the WIN-911 installation, afirewall exception must be created to allow traffic.Notification modules each have their own network requirements, for example, the Email module willneed to connect to an email server and the Voice module will need to connect to a VoIP server. Belowyou will find all the modules with the standard communication ports listed.DispatcherPorts UsedTCP 80, 4020, 1433Communicates with all WIN-911 modules using TCP ports 80 and 4020 and SQL Server over port1433.ReportingPorts UsedTCP 80, 4020, 1433Communicates with all WIN-911 modules using TCP ports 80 and 4020 and SQL Server over port1433.iFIX Data SourcePorts Used

TCP 80, 4020, 1433Communicates with the Dispatcher and Reporting modules using TCP ports 80 and 4020 and SQLServer over port 1433.OPC Data SourcePorts UsedTCP 80, 4020, 1433, 135Communicates with the Dispatcher and Reporting modules using TCP ports 80 and 4020 and SQLServer over port 1433. Communicates to OPC servers using TCP 135.OPC Data SourcePorts UsedTCP 80, 4020, 1433, 135Communicates with Dispatcher and Reporting modules using TCP ports 80 and 4020, SQL Serverover port 1433, and OPC servers using TCP 135.Voice ModulePorts UsedTCP 80, 4020, 1433TCP/UDP 5060 - 5700Communicates with Dispatcher and Reporting modules using TCP ports 80 and 4020, SQL Serverover port 1433, and VoIP servers using TCP/UDP ports 5060 – 5700. VoIP ports will vary withVoIP providers.SMS ModulePorts UsedTCP 80, 4020, 1433, 5000Communicates with Dispatcher and Reporting modules using TCP ports 80 and 4020, SQL Serverover port 1433. The SMS module uses a cellular modem to send text messages. The modemconnects to the PC either directly through a COM port or indirectly over the network over portTCP port 5000.

Email ModulePorts UsedTCP 80, 4020, 1433SMTP – TCP 25, 465, 587POP - TCP 110, 995IMAP – TCP 143, 993Communicates with Dispatcher and Reporting modules using TCP ports 80 and 4020, SQL Serverover port 1433. The Email module supports SMTP, POP, and IMAP protocols. TheMobile-911 ModulePorts UsedTCP 80, 4020, 1433, 59109, 59111Communicates with Dispatcher and Reporting modules using TCP ports 80 and 4020 and SQLServer over port 1433. The Mobile-911 Module sends alarm information to the Mobile-911Server over TCP ports 59109 and 59111.Mobile-911 ServerPorts UsedTCP 59109, 59111, 59112, and 11171The Mobile-911 Server communicates to the Mobile-911 Module over TCP ports 59109 and59111, Mobile-911 devices over TCP port 59112, and WIN-911’s push notification server overTCP port 11171.

Network DiagramsModule to Module Communication

Module Communication to SQL Server

Notification Module CommunicationUDP 911

o Application Development .NET Extensibility 4.5 Application Initialization ASP.NET 4.5 ISAPI Extensions ISAPI Filters. o Management Tools IIS Management Console System Architecture . WIN-911 is modular in design, meaning that each feature (iFIX Data Source / Email Notifier / Dispatcher),

Related Documents:

911 154 511 0 884 596 030 0 11 tooth spline . Cummins Information OE Part Number Mo del CFM Bore Size Additional Information 911 154 516 0 11 tooth spline 911 154 503 0 911 153 013 0 4933745 911 153 013 7 911 154 509 0 75mm 911 153 547 7 .

Bruksanvisning för bilstereo . Bruksanvisning for bilstereo . Instrukcja obsługi samochodowego odtwarzacza stereo . Operating Instructions for Car Stereo . 610-104 . SV . Bruksanvisning i original

For guarantee refer to sales contract Project Management Manager Porsche Michelin Supercup Mr. Jens Walther Tel. 0711 911-84042 Assistant Fr. Sabine Wilmes 0711 911-84096 Fax:0711 911-82920 Service Mr. Stefan Rometsch Tel:0711 911-84613 Fax:0711 911-82052

Note: The functionality of PC-Adapter USB is integrated in STEP 7 V5.5. PID Self-Tuner STEP 7 V5.4 STEP 7 V5.5 Product Name Version Order Number Win 2000 SP4 Win XP SP2 Win XP SP3 Win 2003 SP1 Win 2003 SP2 Vista Vista SP1 Win XP SP3 Win 2003 SP2 Win 7 PID Self-Tuner (FBs)

Habit 4: Think Win-Win Personal Win-win is the habit of perscnal leadership. Win-win is the habit of seeking mutual benefit. This thinking begins with a commitment to explore all options until a mutual satisfactory solution is reached, or to make no deal at all. Retention System. Win-win is the

Cisco Unified CM OpenSER FreePBX Cisco Call Manager Express PBXnSIP SwyxWare Asterisk PBXpress Aastra MX-One Kamailio SipX ECS OpenSIP FreeSwitch AsteriskNow Mobile-911 Broadband always on internet connection for Mobile 911 server. Please Note: Mobile-911 Server may be network distributed from WIN-

10 tips och tricks för att lyckas med ert sap-projekt 20 SAPSANYTT 2/2015 De flesta projektledare känner säkert till Cobb’s paradox. Martin Cobb verkade som CIO för sekretariatet för Treasury Board of Canada 1995 då han ställde frågan

service i Norge och Finland drivs inom ramen för ett enskilt företag (NRK. 1 och Yleisradio), fin ns det i Sverige tre: Ett för tv (Sveriges Television , SVT ), ett för radio (Sveriges Radio , SR ) och ett för utbildnings program (Sveriges Utbildningsradio, UR, vilket till följd av sin begränsade storlek inte återfinns bland de 25 största