We help IT Professionals succeed at work.
Get Started

how to limit the # of connections per IP address in IIS

3,265 Views
Last Modified: 2015-04-13
I'm running windows server 2012 R2.  Looks like someone attempted to hack us, as we had over 3800 https requests in a few minutes on our webserver, which crashed our server.  The 3800 requests all came from 4 different IP addresses in a few minutes time.

Is there a way in IIS to limit the total number of connections per IP address?
Basically, I want to stop what just occurred this morning from happening in the future.

I came across this, but this limits the total connections for the server, there's no option for limiting connections by IP address.
http://www.iis.net/configreference/system.applicationhost/sites/site/limits

I don't want to limit the total connections for the server because then I can be limiting legit traffic.

During this time, my SQL server was running at 99%, so it stopped everything.

Any thoughts how to solve this issue?
Comment
Watch Question
Specialist Consultant
CERTIFIED EXPERT
Top Expert 2014
Commented:
This problem has been solved!
Unlock 2 Answers and 3 Comments.
See Answers
Why Experts Exchange?

Experts Exchange always has the answer, or at the least points me in the correct direction! It is like having another employee that is extremely experienced.

Jim Murphy
Programmer at Smart IT Solutions

When asked, what has been your best career decision?

Deciding to stick with EE.

Mohamed Asif
Technical Department Head

Being involved with EE helped me to grow personally and professionally.

Carl Webster
CTP, Sr Infrastructure Consultant
Ask ANY Question

Connect with Certified Experts to gain insight and support on specific technology challenges including:

  • Troubleshooting
  • Research
  • Professional Opinions
Did You Know?

We've partnered with two important charities to provide clean water and computer science education to those who need it most. READ MORE