What is the safest way to set up SQL Server for remote access?

Question

I'd like to be able to make my dev database server accessible over the internet. I and half a dozen dev applications will be the only users. I have a hosting account that includes SQL Server, but I prefer to keep this for staging and production instances.

FYI My set-up at home is an HP ML server with a 60MB (reasonably fast upstream) cable connection to the net. I'm using an Apple Extreme wifi router. I have a sketchy understanding of what's required from doing some preliminary research. Opening ports on the router, perhaps running an SSH server and so on but I'm having some trouble putting it all together in a coherent, reasonably secure architecture and could really do with some pointers.

Thanks in advance.

Answer 1

Without getting into the whole "most secure" debate, the short answer is to think about two things:

1. Access control. You could use a VPN. I recommend Hamachi which then wouldn't require you to open any firewall ports.
2. Encryption of communications. Solved by Hamachi as well.

Lots of other ways to do it, but the usual way (old school) would be to open the SQL port on your firewall and connect via IP (or use dyn.com for dynamic DNS name). This isn't near as secure as the Hamachi option.