Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 199
  • Last Modified:

Restrict site access with IIS

Can IIS be configured to give access only from certain IPs?

How secure is this? If a user spoofs an IP can this be overridden?

Does this effect DNS?

Can you give me basic instruction on how to do this?
0
sam1492
Asked:
sam1492
1 Solution
 
Krypton-IT-SolutionsCommented:
Hello, you can go into IIS and right click the site in question, and go to properties and then directory security. Not sure about spoofing and I'm sure anything can be bypassed if you have the no how but this IP restriction should help you.

http://support.microsoft.com/kb/324066

Regards
[advertising signature removed - modguy]
0
 
tanujchandnaCommented:
Hi,

Please refer the following article url for the same:

http://learn.iis.net/page.aspx/159/configuring-remote-administration-and-feature-delegation-in-iis-7/

If you want to restrict website to a specific range of IP address the refer the following article url:

http://forums.iis.net/t/1153158.aspx
0
 
Sanjay SantokiCommented:
Hi Sam,

You can IP based access for any website as said by first post. Basically this is a kernel filter that will load at the kernel level when IIS service start. The connection for the web request will come to the server and IIS will reject it if it is not in allowed list.

It is more secure if you are going to allow only few IP addresses. Also, it will block access through spoofing at some instant.

In respect of DNS, you don't need to do anything.

Thanks,
Sanjay Santoki
0
Granular recovery for Microsoft Exchange

With Veeam Explorer for Microsoft Exchange you can choose the Exchange Servers and restore points you’re interested in, and Veeam Explorer will present the contents of those mailbox stores for browsing, searching and exporting.

 
sam1492Author Commented:
If I have multiple sites on one server, can i still select only one or 2 sites to restrict access?
0
 
Krypton-IT-SolutionsCommented:
Yes you can select just the site from within the console. So expand the groups to see your site "my site" etc and right click/properties/directory security... Repeat for each site! You can restrict complete access to the IIS server itself if you wish by applying the settings a level up.

Regards
[advertising signature removed - modguy]
0
 
sam1492Author Commented:
Did not fully solve the issue
0

Featured Post

Get your problem seen by more experts

Be seen. Boost your question’s priority for more expert views and faster solutions

Tackle projects and never again get stuck behind a technical roadblock.
Join Now