Blocked IP Range in IIS and still getting attacked

I am running 2008 server with IIS 7.0

I have an FTP server running and I am constantly getting nailed by people trying to brute force me.
I went in and created deny rules for a bunch of subnets. However I am still getting people from those IP ranges connecting...why??

For example:
I have a DENY for:
124.0.0.0 with a mask of 255.0.0.0
also tried 124.1.1.1 with a mask 255.0.0.0

I am still seeing IP's trying to brute force from 124.x.x.x

What am I doing wrong? I had the same issue on my 2003 server with IIS 6.0
FLVS_407Asked:
Who is Participating?
 
arnoldCommented:
It is better to implement the deny rule on the firewall.
With the deny rule in IIS, the connection is established assessed and dropped.

0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.