473,549 Members | 2,583 Online
Bytes | Software Development & Data Engineering Community
+ Post

Home Posts Topics Members FAQ

Web server hardware design with SQL back-end

Hi,

Still in the design process of a Windows 2003 web server with a SQL backend.
Expecting to have about 2000 visitors a day accessing lists and search
queries on a 200-300 MB db. This server will be collocated in a datacenter.
I have a few scenarios that I would appreciate in getting some
comments/criticism on:

Scenario 1:
Box 1, SBS 2003 Premium (with SQL 2000), 2GB RAM, Raid 5 HD
Based on the SBS faq, as long as visitors are not Windows authenticated, an
additional SQL Internet license is not required.
My concern with this scenario is (correct me if I'm wrong) lack of
scalability and fail-over (in the future).

Scenario 3:
Box 1, Windows 2003 Standard Edition, SQL 2000 Standard Edition, 2GB RAM,
Raid 5 HD
Do I need a processor based SQL license since it's exposed to the Internet
or is this the same case as in the SBS where an additional license is not
required?

Scenario 3:
Box 1, Windows 2003 Web Edition, 1GB RAM, Raid 1 HD
Box 2, Windows 2003 Standard Edition, SQL 2000 Standard Edition, 1GB RAM,
Raid 5 HD
Web Edition faq states that I can not deploy SQL on it. I'm guessing I can
still connect to another server's SQL.
Is this setup more secure, in the sense that the SQL is on a separate box
from the web server?

All comments are very appreciated. If you have other suggestions too, please
let me know.

Thank you

Greg


Jul 20 '05 #1
3 2538
Hi

The only option that is feasable in terms of security is the two box one.
Your web server should be on a DMZ and the database server secured behind a
firewall. I believe that you will need a per processor licence for SQL
Server see http://www.microsoft.com/sql/howtobuy/default.asp this should be
confirmed by your local microsoft dealer. As far as the hardware goes, if
you allow for expansion then you can always improve performance later if
necessary. Changes you may want to consider are a separate mirrored OS disc,
a separate disk sub-system for the log files and Raid 10 for the data files.
More on hardware can be found at:
http://www.sql-server-performance.co...e_planning.asp. You will
also need to lock down the webserver and database and plan the security
aspects of the system. See
http://www.sqlsecurity.com/DesktopDe...ndex=0&tabid=1
http://www.microsoft.com/sql/techinf...ty/default.asp
http://www.microsoft.com/security/gu...dtech/IIS.mspx

Also make sure that you have suitable backup and disaster recovery plans.
John

"Greg Adourian" <gr**@dontspam. com> wrote in message
news:F3******** *************@w eber.videotron. net...
Hi,

Still in the design process of a Windows 2003 web server with a SQL backend. Expecting to have about 2000 visitors a day accessing lists and search
queries on a 200-300 MB db. This server will be collocated in a datacenter. I have a few scenarios that I would appreciate in getting some
comments/criticism on:

Scenario 1:
Box 1, SBS 2003 Premium (with SQL 2000), 2GB RAM, Raid 5 HD
Based on the SBS faq, as long as visitors are not Windows authenticated, an additional SQL Internet license is not required.
My concern with this scenario is (correct me if I'm wrong) lack of
scalability and fail-over (in the future).

Scenario 3:
Box 1, Windows 2003 Standard Edition, SQL 2000 Standard Edition, 2GB RAM,
Raid 5 HD
Do I need a processor based SQL license since it's exposed to the Internet
or is this the same case as in the SBS where an additional license is not
required?

Scenario 3:
Box 1, Windows 2003 Web Edition, 1GB RAM, Raid 1 HD
Box 2, Windows 2003 Standard Edition, SQL 2000 Standard Edition, 1GB RAM,
Raid 5 HD
Web Edition faq states that I can not deploy SQL on it. I'm guessing I can
still connect to another server's SQL.
Is this setup more secure, in the sense that the SQL is on a separate box
from the web server?

All comments are very appreciated. If you have other suggestions too, please let me know.

Thank you

Greg

Jul 20 '05 #2
Thank you for your answers.
Do you think Win2003 Web Edition is sufficient or I would need a Windows
2003 Standard as well.

Thanks

"John Bell"

The only option that is feasable in terms of security is the two box one.
Your web server should be on a DMZ and the database server secured behind a firewall. I believe that you will need a per processor licence for SQL
Server see http://www.microsoft.com/sql/howtobuy/default.asp this should be confirmed by your local microsoft dealer. As far as the hardware goes, if
you allow for expansion then you can always improve performance later if
necessary. Changes you may want to consider are a separate mirrored OS disc, a separate disk sub-system for the log files and Raid 10 for the data files. More on hardware can be found at:
http://www.sql-server-performance.co...e_planning.asp. You will
also need to lock down the webserver and database and plan the security
aspects of the system. See
http://www.sqlsecurity.com/DesktopDe...ndex=0&tabid=1
http://www.microsoft.com/sql/techinf...ty/default.asp http://www.microsoft.com/security/gu...dtech/IIS.mspx

Also make sure that you have suitable backup and disaster recovery plans.

Jul 20 '05 #3
Hi

If you are using it to run IIS then that is what Web Edition is intended
for. This may help
http://www.microsoft.com/windowsserv...eeditions.mspx
http://www.microsoft.com/windowsserv...rview/web.mspx

You should not be running other processes on your web server as it may get
compromised.

John

"Greg A" <gr**@dontspam. com> wrote in message
news:Um******** *************@w eber.videotron. net...
Thank you for your answers.
Do you think Win2003 Web Edition is sufficient or I would need a Windows
2003 Standard as well.

Thanks

"John Bell"

The only option that is feasable in terms of security is the two box one. Your web server should be on a DMZ and the database server secured behind
a
firewall. I believe that you will need a per processor licence for SQL
Server see http://www.microsoft.com/sql/howtobuy/default.asp this should be
confirmed by your local microsoft dealer. As far as the hardware goes,

if you allow for expansion then you can always improve performance later if
necessary. Changes you may want to consider are a separate mirrored OS

disc,
a separate disk sub-system for the log files and Raid 10 for the data

files.
More on hardware can be found at:
http://www.sql-server-performance.co...e_planning.asp. You will
also need to lock down the webserver and database and plan the security
aspects of the system. See
http://www.sqlsecurity.com/DesktopDe...ndex=0&tabid=1

http://www.microsoft.com/sql/techinf...ty/default.asp
http://www.microsoft.com/security/gu...dtech/IIS.mspx

Also make sure that you have suitable backup and disaster recovery

plans.

Jul 20 '05 #4

This thread has been closed and replies have been disabled. Please start a new discussion.

Similar topics

5
4325
by: Thomas Brathans | last post by:
Hi, when I try to execute the obove mentioned to synchronise the servertime by a php-script, it doesn't work. Other shell-commands work fine. Executing ntpdate <server> directly in the shell works also well. So why doesn't it work? Thanks...
35
3471
by: English Teacher | last post by:
Which would be a more useful relational database server to learn nowadays: MS SQL SERVER or ORACLE? Thanks!
0
1784
by: Cindy B | last post by:
Please send your resume and position to Cindy@AtlanticResource.com! I CAN NOT accept candidates that ARE OUTSIDE OF THE US! NO PHONE CALLS PLEASE! Email your resume to me! Position:SQL SERVER/PEOPLESOFT DBA Date: 03/07/05 Location: Richmond, VA Duration: 5 month conract to hire Salary: 65,000-80,000K Contract to Hire 5 months
6
1518
by: Bill Elgie | last post by:
This is about a mysterious slow down only. An application (split data & FE) that has run for 6 years without error with six to ten users. The hardware (not my job) has been ‘updated' and a new fast server added. The data has been moved to the server and the program exists on each separate user's pc. The original program version in Ac97 for...
3
1497
by: Dave | last post by:
I have a piece of hardware connected via serial port. I need to send a variety of commands to the box and route the responses back from the receive thread to the correct method call. So e.g. I have a method call something like: SomeCommand(inParam1, inParam2, outParam1, outParam2) { Command cmd = new Command( inParam1, inParam2);...
6
1290
by: John | last post by:
Hi, I'm ussually just told what I will be working with, but today I was asked to choose the hardware myself. First off, it's a small company, so a $10,000 server is not an option. But also, a $500 box isn't going to cut it either. Basically, I am builing a web app which generates from 10-100 million records per calculation (yes,...
3
2219
by: datapro01 | last post by:
I am a DB2 DBA that has been asked to become familiar enough with SQL Server in order to become actively involved in its installation, implementation, and to review database backup/recovery procedures. SQL Server will be used by a vendor packaged application. The problem is that we are awaiting word on whether it will be SQL Server 2000 or...
17
2627
by: IanIpp | last post by:
We have a 3 month old quad processor/dual core server running SQL Server 2005 and already it is getting close to hitting the CPU wall. An 8 way CPU box is prohibitively expensive and out of the question. I am looking desperately for a way to TRULY scale out SQL server...in the same way that IIS can be scaled out via App Center. The "in...
0
1553
by: Derrick | last post by:
Hello all; This is going to be a bit long...sorry... I am about to start out on a small scale client/server type system. The server will collect data from various sources (custom hardware over ethernet), and make that data available to the clients (either webservices or remoting, not sure yet). Since the hardware is networked, the...
110
10495
by: alf | last post by:
Hi, is it possible that due to OS crash or mysql itself crash or some e.g. SCSI failure to lose all the data stored in the table (let's say million of 1KB rows). In other words what is the worst case scenario for MyISAM backend? Also is it possible to not to lose data but get them corrupted?
0
7967
jinu1996
by: jinu1996 | last post by:
In today's digital age, having a compelling online presence is paramount for businesses aiming to thrive in a competitive landscape. At the heart of this digital strategy lies an intricately woven tapestry of website design and digital marketing. It's not merely about having a website; it's about crafting an immersive digital experience that...
1
7485
by: Hystou | last post by:
Overview: Windows 11 and 10 have less user interface control over operating system update behaviour than previous versions of Windows. In Windows 11 and 10, there is no way to turn off the Windows Update option using the Control Panel or Settings app; it automatically checks for updates and installs any it finds, whether you like it or not. For...
0
7819
tracyyun
by: tracyyun | last post by:
Dear forum friends, With the development of smart home technology, a variety of wireless communication protocols have appeared on the market, such as Zigbee, Z-Wave, Wi-Fi, Bluetooth, etc. Each protocol has its own unique characteristics and advantages, but as a user who is planning to build a smart home system, I am a bit confused by the...
0
6052
agi2029
by: agi2029 | last post by:
Let's talk about the concept of autonomous AI software engineers and no-code agents. These AIs are designed to manage the entire lifecycle of a software development project—planning, coding, testing, and deployment—without human intervention. Imagine an AI that can take a project description, break it down, write the code, debug it, and then...
1
5377
isladogs
by: isladogs | last post by:
The next Access Europe User Group meeting will be on Wednesday 1 May 2024 starting at 18:00 UK time (6PM UTC+1) and finishing by 19:30 (7.30PM). In this session, we are pleased to welcome a new presenter, Adolph Dupré who will be discussing some powerful techniques for using class modules. He will explain when you may want to use classes...
0
5097
by: conductexam | last post by:
I have .net C# application in which I am extracting data from word file and save it in database particularly. To store word all data as it is I am converting the whole word file firstly in HTML and then checking html paragraph one by one. At the time of converting from word file to html my equations which are in the word document file was convert...
0
3505
by: TSSRALBI | last post by:
Hello I'm a network technician in training and I need your help. I am currently learning how to create and manage the different types of VPNs and I have a question about LAN-to-LAN VPNs. The last exercise I practiced was to create a LAN-to-LAN VPN between two Pfsense firewalls, by using IPSEC protocols. I succeeded, with both firewalls in...
0
3488
by: adsilva | last post by:
A Windows Forms form does not have the event Unload, like VB6. What one acts like?
1
1953
by: 6302768590 | last post by:
Hai team i want code for transfer the data from one system to another through IP address by using C# our system has to for every 5mins then we have to update the data what the data is updated we have to send another system

By using Bytes.com and it's services, you agree to our Privacy Policy and Terms of Use.

To disable or enable advertisements and analytics tracking please visit the manage ads & tracking page.