You can secure your SQL communications using SQL encryption or pass it all through a VPN; either way will incur traffic overhead. Bear in mind that there are folks out there scanning for SQL servers (you'll see inbound destination port TCP-1433 in your ISA logs). Jim Harrison MCP(NT4, W2K), A+, Network+, PCG http://isaserver.org/authors/harrison/ Read the books! ----- Original Message ----- From: "Jon Booth" <jon@xxxxxxxxxxxxxx> To: "[ISAserver.org Discussion List]" <isalist@xxxxxxxxxxxxx> Sent: Tuesday, July 02, 2002 11:41 PM Subject: [isalist] General Security Question http://www.ISAserver.org If I allow an outbound SQL Server connection to a specific trusted external address what possible security risks does this pose? Could someone please outline some no matter how paranoid. Being a security novice I often wonder about this (SQL being just an example) and would like some clarification. Thanks Jon ------------------------------------------------------ You are currently subscribed to this ISAserver.org Discussion List as: jim@xxxxxxxxxxxx To unsubscribe send a blank email to $subst('Email.Unsub')