AboutPricingCommunityTeamsStart Free TrialLog in
Avatar of Dan
Dan
Flag for United States of America asked on

how to limit the # of connections per IP address in IIS

I'm running windows server 2012 R2.  Looks like someone attempted to hack us, as we had over 3800 https requests in a few minutes on our webserver, which crashed our server.  The 3800 requests all came from 4 different IP addresses in a few minutes time.

Is there a way in IIS to limit the total number of connections per IP address?
Basically, I want to stop what just occurred this morning from happening in the future.

I came across this, but this limits the total connections for the server, there's no option for limiting connections by IP address.
http://www.iis.net/configreference/system.applicationhost/sites/site/limits

I don't want to limit the total connections for the server because then I can be limiting legit traffic.

During this time, my SQL server was running at 99%, so it stopped everything.

Any thoughts how to solve this issue?
Microsoft IIS Web ServerWindows Server 2012Microsoft SQL Server
Avatar of undefined
Last Comment
Dan
8/22/2022 - Mon
ASKER CERTIFIED SOLUTION
VB ITS
THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
See Pricing Options
Start Free Trial
GET A PERSONALIZED SOLUTION
Ask your own question & get feedback from real experts
Find out why thousands trust the EE community with their toughest problems.
SOLUTION
R. Toby Richards
THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
See Pricing Options
Start Free Trial
GET A PERSONALIZED SOLUTION
Ask your own question & get feedback from real experts
Find out why thousands trust the EE community with their toughest problems.
Dan
ASKER
Thanks guys, I came across the  IIS IP and domain restrictions plugin a few minutes before you made the post, but thank you.

In regards to the OSSEC, looks like it's not available anymore on windows.  I'm running windows servers.
Plus, the website says they don't have a compiler for windows anymore.
I started with Experts Exchange in 2004 and it's been a mainstay of my professional computing life since. It helped me launch a career as a programmer / Oracle data analyst
William Peck
Plans and Pricing
Resources
Product
Podcasts
Careers
Contact Us
Teams
Certified Expert Program
Credly Partnership
Udemy Partnership
Privacy Policy
Terms of Use

© 1996-2023 Experts Exchange, LLC. All rights reserved. Covered by US Patent