techiehost
asked on
Block IP Range
Hi, I have windows 2003 Server, Standard Edition. Is there anyway I can block a particular IP range from accessing anything. There is a particular person who keeps coming to all the stuff my server hosts, and causes trouble, I would like to ban him from everything, every port, and every program.
You can deny the IP address on your router or ISA server if you have one, but if it is a dynamic IP it will not help you.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
bbao... good solution but is there a typo in your route command?? shouldn't it be:
route -p add 172.16.16.0 mask 255.255.255.240 192.168.100.250 metric 1
route -p add 172.16.16.0 mask 255.255.255.240 192.168.100.250 metric 1
oh, yes, it should be "172.16.16.0". sorry for the typo. :)
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
I think my answer covers the issue better than the other solutions of adding an asymetric route.
In addition, the author said he'd like to keep him from using programs, with active directory you can limit exe's that users can use. However windows XP or 2003 are the required OS's, meaning 2000
cannot restrict programs from running. Again the users have to be using xp or 2003 for this to work. An alternitive is using ZoneAlarm, it can "ban" programs from running.
-rich
In addition, the author said he'd like to keep him from using programs, with active directory you can limit exe's that users can use. However windows XP or 2003 are the required OS's, meaning 2000
cannot restrict programs from running. Again the users have to be using xp or 2003 for this to work. An alternitive is using ZoneAlarm, it can "ban" programs from running.
-rich