Link to home
Start Free TrialLog in
Avatar of kdschool
kdschool

asked on

IP Security for IIS 7.5 how to set allow for *.secure.xx.com in interface?

I have been asked to create a deny rule on my web site for 'unspecified clients' then add an allow entry and set it to *.secure.xx.com.   I can do the deny rule but the allow will only take a specific IP address  OR a range of IP address and then there is the option for a mask or prefix with the range option.  When I use my IP address and try to type this in the mask section I get an error that says invalid subnet mask must be IP address or integer value IPV4 0-128.  I tried with and without the iP and I can't see anywhere to add this value that works as an allow.  Can someone tell me how to add this *.secure.xx.com to my allow entry?
ASKER CERTIFIED SOLUTION
Avatar of Dan McFadden
Dan McFadden
Flag of United States of America image
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Avatar of kdschool
kdschool

ASKER

They are telling me that the only files on my server that would be impacted are those secured folders where they log on via oracle plug in WSSO.  Is this correct and if not what argument should I use to not do the change.  I did have someone else tell me there was minimal gain doing this especially since the server is behind the firewall.  Performance is important as this server get's a lot of hits.
SOLUTION
Avatar of Dan McFadden
Dan McFadden
Flag of United States of America image
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Avatar of kdschool
kdschool

ASKER

Excellent recommendations and information to help me determine what to do in regards to this issue.  Will do this in develoment before moving to production. Thank you.