How do I allow local machine access to IIS7 when IPv4 restrictions are enabled?

Hi

This is driving me mad. I can restrict access to IIS7 websites for external IP addresses but I have no idea how to allow the local machine access. I get this error:

"HTTP Error 403.6 - Forbidden
The IP address from which you are browsing is not permitted to access the requested Web site."

I tried an allow rule :

127.0.0.1(255.255.255.255)
and
192.168.1.1(255.255.255.0)

This doesn't work. When I looked at the website log files I noticed the IPv6 address was being logged. Do I need to allow an IPv6 address access? IIS7 only seems to allow IPv4 restrictions.

Please help
Thanks
Andrew
j055Asked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

meverestCommented:
Hi,

what do you get when you resolve 'localhost' from the server console?

i.e. c:\>ping localhost

if you access from the local system to http://127.0.0.1 that should force it to connect from the ip4 loopback IP.

cheers.
0
j055Author Commented:
Hi

I played around with it a bit more. I now have IIS to deny unspecified and allow a public IP. This seems to allow the local IP access too (which is what I want). It's a shame the documentation isn't clearer about this. Anyway, thanks for your help.

Cheers
Andrew
0
Ted BouskillSenior Software DeveloperCommented:
Have you tried setting the DisableLoopbackCheck value in the registry (search the web for the details)
0
Newly released Acronis True Image 2019

In announcing the release of the 15th Anniversary Edition of Acronis True Image 2019, the company revealed that its artificial intelligence-based anti-ransomware technology – stopped more than 200,000 ransomware attacks on 150,000 customers last year.

Ted BouskillSenior Software DeveloperCommented:
You didn't respond with an answer regarding disabling the loopback check
0
j055Author Commented:
Hi

I didn't try changing the DisableLoopbackCheck. As I see it the real issue is that IIS7 doesn't allow you to set IPv6 addresses as restrictions using the IIS GUI. I found out that you can add IPv6 restrictions directly in the configuration file. I downloaded the IIS7 Administration Pack which provides a configuration editor UI.

http://www.iis.net/extensions/AdministrationPack

Thanks
Andrew
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
Ted BouskillSenior Software DeveloperCommented:
OK, then mark your last comment as the solution and the question will be closed without loss of points.   That will keep the moderators from being involved and lighten their load.
0
Ted BouskillSenior Software DeveloperCommented:
Note: The reason I don't want this deleted is because your answer is valid and might help someone else.
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Microsoft IIS Web Server

From novice to tech pro — start learning today.