Secure website using web.config
I want to secure my web app using web.config.
I've been all over the web and tried it all.
It's time for the experts.
My web.config:
<configuration>
<system.web>
<compilation debug="true" targetFramework="4.5" />
<httpRuntime targetFramework="4.5" />
</system.web>
<connectionStrings>
<add connectionString="data source=174.37.215.82;UID=p
<!--<add connectionString="data source=DEVELOPMENT7\PFCU;U
</connectionStrings>
<system.webServer>
<defaultDocument>
<files>
<add value="RatesSelector.aspx"
</files>
</defaultDocument>
<security>
<ipSecurity allowUnlisted="false">
<!-- this line blocks everybody, except those listed below -->
<clear />
<!-- removes all upstream restrictions -->
<add ipAddress="127.0.0.1" allowed="true" />
<!-- allow requests from the local machine -->
<add ipAddress="83.116.19.53" allowed="true" />
<!-- allow the specific IP of 83.116.19.53 -->
<add ipAddress="83.116.119.0" subnetMask="255.255.255.0"
<!--allow network 83.116.119.0 to 83.116.119.255-->
<add ipAddress="83.116.0.0" subnetMask="255.255.0.0" allowed="true" />
<!--allow network 83.116.0.0 to 83.116.255.255-->
<add ipAddress="83.0.0.0" subnetMask="255.0.0.0" allowed="true" />
<!--allow entire /8 network of 83.0.0.0 to 83.255.255.255-->
</ipSecurity>
<authentication>
<basicAuthentication enabled="true" />
</authentication>
</security>
<modules runAllManagedModulesForAll
</system.webServer>
</configuration>
The error is attached. Is there any other method I can use using c#
Under the gun
Thanks,
Isaac
securityerror.png
I've been all over the web and tried it all.
It's time for the experts.
My web.config:
<configuration>
<system.web>
<compilation debug="true" targetFramework="4.5" />
<httpRuntime targetFramework="4.5" />
</system.web>
<connectionStrings>
<add connectionString="data source=174.37.215.82;UID=p
<!--<add connectionString="data source=DEVELOPMENT7\PFCU;U
</connectionStrings>
<system.webServer>
<defaultDocument>
<files>
<add value="RatesSelector.aspx"
</files>
</defaultDocument>
<security>
<ipSecurity allowUnlisted="false">
<!-- this line blocks everybody, except those listed below -->
<clear />
<!-- removes all upstream restrictions -->
<add ipAddress="127.0.0.1" allowed="true" />
<!-- allow requests from the local machine -->
<add ipAddress="83.116.19.53" allowed="true" />
<!-- allow the specific IP of 83.116.19.53 -->
<add ipAddress="83.116.119.0" subnetMask="255.255.255.0"
<!--allow network 83.116.119.0 to 83.116.119.255-->
<add ipAddress="83.116.0.0" subnetMask="255.255.0.0" allowed="true" />
<!--allow network 83.116.0.0 to 83.116.255.255-->
<add ipAddress="83.0.0.0" subnetMask="255.0.0.0" allowed="true" />
<!--allow entire /8 network of 83.0.0.0 to 83.255.255.255-->
</ipSecurity>
<authentication>
<basicAuthentication enabled="true" />
</authentication>
</security>
<modules runAllManagedModulesForAll
</system.webServer>
</configuration>
The error is attached. Is there any other method I can use using c#
Under the gun
Thanks,
Isaac
securityerror.png
Randy Downs
Maybe this will help
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.