These instructions will help you properly configure SQL Server to allow connection of client computers to a server computer in a network with the Kaspersky enabled. These instructions do not extend to any other antivirus firewalls that may also be installed on your workstations. For help with these, refer to vendor specific support literature or a local computer technician.
Configuring SQL Server
To connect client computers in a network environment, the SQL Server instance you’ll be using needs to be properly configured to allow client computer connections.
On the Server computer navigate to SQL Server Configuration Manager. Click Windows Start > All Programs > Microsoft SQL Server 2012 > Configuration Tools > SQL Server Configuration Manager. If you cannot find it under that path, open File Explorer and navigate to C:\Windows\SysWOW64 and then select SQLServerManager.
In the left pane, double-click on SQL Server Network Configuration and highlight Protocols for CMJ.
In the right pane, right click on TCP/IP and select Enable if it’s not already. You should get a warning window to restart SQL Server. Click OK. Right click on TCP/IP again and select Properties.
In the TCP/IP Properties window, click the IP Addresses tab. Scroll to the bottom and in the IP All section, delete whatever contents are in the TCP Dynamic Ports row and type 1433 in the TCP Port row. Click Apply once completed.
You should get a warning to restart SQL Server. Click OK.
Click OK to close the TCP/IP Properties window then click SQL Server Services in the left pane.
Right click on SQL Server (CMJ) and select Restart.
Close the SQL Server Configuration Manager. SQL Server is now configured properly to allow client connections to the server computer.
Configuring Kaspersky's Firewall
To connect a client to a server in a network environment, Kaspersky will likely need added rules and/or exceptions. If you cannot connect your client to the server with Kaspersky enabled, then follow these steps on all the computers in your network to configure it properly to allow connections. Note that Kaspersky does have a few different levels of protection, but the process should be relatively similar for the different versions.
Right click on the Kaspersky icon, which is typically located in the system tray in the bottom right of the screen, and select Kaspersky Security.
Select the gear icon in the bottom left of the window.
Click on Protection and then Firewall.
Select Configure Packet Rules.
Click on the item for Local Services (TCP) and select Edit.
For the Action drop down menu, make sure Allow is set.
In the Local Ports field, enter 1433, 1434. Your settings should now match the picture below. If they do not, please adjust your settings so that it matches.
Press Save and close the window.
Click on the option for Local Services (UDP) and press Edit.
For the Action drop down menu, make sure Allow is set.
In the Local Ports field, enter 1433, 1434. Your settings should now match the picture below. If they do not, please adjust your settings so that it matches.
Press Save and close the window.
Click on the option for Any Incoming ICMP and press Edit.
Match the settings with the image below.
Press Save and close the window.
These are all the exceptions Kaspersky's firewall requires to be enabled and allow client connections to the server. If you still cannot connect with Kaspersky disabled and you are certain your network is functioning properly, then it is likely you will need to create exceptions in other anti-virus or hardware firewalls installed on your workstations. The same ports (1433 & 1434) detailed herein are the ones that will need to be opened on those firewalls.