Solved

"Request Filtering" problems on a Shared IIS Host

Posted on 2014-02-11
2
394 Views
Last Modified: 2014-02-25
We have a shared IIS hosted site on Network Solutions.  One of our software products gets updates from files hosted by our website.  Our software can access file extensions: .txt, .chm, .zip, .bin, etc., just fine.  It is several other extensions that are giving a "404 File Not Found" error.  (.ga, .os, .dll, .ceb)

Network Solutions support advised me to try to address the problem via IIS manager and connecting to the shared host.  I have successfully done that.  Under the Request Filtering section there are no outright blocks on any of the file extensions that i listed.  I was able to add "Allow File Name Ext" rules for our 4 problem extensions.  I confirmed that these changes persisted after coming back to the site through IIS Manager.  I also recycled the Application Pools through Network Solutions.  Note: These changes were implemented last week so should have had time to propagate.  

After all of that the extensions in question still will not download.  Any ideas? I was hoping to tackle this issue through IIS before enabling Directory View on the problematic folders.  

The NetSol guys seem to be Unix hosted fanboys and have limited knowledge of IIS.  Or at least they are hesitant to support IIS.  I could care less about which is better arguments.  I am faced with the reality that our site had loads of compatibility issues when it was temporarily Unix hosted and now it has less.
0
Comment
Question by:mcbathost
2 Comments
 
LVL 18

Accepted Solution

by:
Matthew Kelly earned 500 total points
Comment Utility
Beyond the request filtering, IIS will not return a file type it doesn't know. See if those extensions are listed in the MIME types: http://technet.microsoft.com/en-us/library/cc725608(v=ws.10).aspx
0
 

Author Comment

by:mcbathost
Comment Utility
We are learning that mot shared hosts, IIS or otherwise, will not let you add to a whitelist for proprietary or custom extensions.  So the option is to change our current naming conventions to make the server happy or move to a virtual host.
0

Featured Post

Top 6 Sources for Identifying Threat Actor TTPs

Understanding your enemy is essential. These six sources will help you identify the most popular threat actor tactics, techniques, and procedures (TTPs).

Join & Write a Comment

Read about why website design really matters in today's demanding market.
Meet the world's only “Transparent Cloud™” from Superb Internet Corporation. Now, you can experience firsthand a cloud platform that consistently outperforms Amazon Web Services (AWS), IBM’s Softlayer, and Microsoft’s Azure when it comes to CPU and …
Explain concepts important to validation of email addresses with regular expressions. Applies to most languages/tools that uses regular expressions. Consider email address RFCs: Look at HTML5 form input element (with type=email) regex pattern: T…
Any person in technology especially those working for big companies should at least know about the basics of web accessibility. Believe it or not there are even laws in place that require businesses to provide such means for the disabled and aging p…

762 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

8 Experts available now in Live!

Get 1:1 Help Now