We have a single web server with SQL server etc (all MS, server 2008 web etc).
We need to allow access to the database directly so our customer can write reports (it's the way SSRS is!). We original had the DB just sitting on the internet, you wouldn't believe how many attempts were made to get into the sa account!
sa account renamed to something else now, and we are using the Windows Firewall.
thing is, some of the customers work from home, with dynamic IP addresses, so they have to mail each day/weeek/router reboot, and I have to remote desktop in to allow that IP address.
IS THERE A BETTER WAY? I was thinking of a web interface for the firewall, they can add their own IP address, or preferably, they just log in, and it allows access to everything from that IP, or something like that.