Solved

Blocking external access to a WebFolder and stopping IIS reacting to internal server name

Posted on 2016-09-26
2
50 Views
Last Modified: 2016-09-26
Hi

I have a website installed on a local server (attached).

I am trying to restrict access to the Admin folder using the ip address and domain restrictions option but when i set it up.

Default deny and allow 192.168.1.0/24 is denys for everyone.

Also i need to stop the website responding to the local server name and only the external name so that the ssl works correctly.

Can i just stop the server responding to the local name rather than having to put a forward in?

thanks
1.jpg
0
Comment
Question by:timb551
2 Comments
 
LVL 27

Accepted Solution

by:
Dan McFadden earned 500 total points
ID: 41815936
Can you post the site's bindings?  The image posted does not provide enough useful info.

My guess is the site binding is using the wildcard configuration for the IP binding, which allows IIS to respond to any http request that hits the server.  What you need to do is to choose the specific IP that the server is to answer on when a user requests a page.

Then you need to edit the IP Address and Domain Restrictions feature associated with the virtual Application and set the Feature Settings to by default Deny access for unspecified clients, then add a specific Allow rule for the IP address range you mentioned above.

Is this server directly visible from the Internet or does it sit behind a NAT'ed Public IP or a load balancer?

Dan
0
 

Author Comment

by:timb551
ID: 41816002
Fantastic, thanks.

I changed the site to be just on the ipv4 rather than * and the restrictions have started working and i can no longer browse on the local server name.

thank you
0

Featured Post

Announcing the Most Valuable Experts of 2016

MVEs are more concerned with the satisfaction of those they help than with the considerable points they can earn. They are the types of people you feel privileged to call colleagues. Join us in honoring this amazing group of Experts.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I don't know if many of you have made the great mistake of using the Cisco Thin Client model with the management software VXC. If you have then you are probably more then familiar with the incredibly clunky interface, the numerous work arounds, and …
If you don't have the right permissions set for your WordPress location in IIS, you won't be able to perform automatic updates. Here's how to fix the problem.
In this Micro Tutorial viewers will learn how to restore their server from Bare Metal Backup image created with Windows Server Backup feature. As an example Windows 2012R2 is used.
This tutorial will walk an individual through the process of installing of Data Protection Manager on a server running Windows Server 2012 R2, including the prerequisites. Microsoft .Net 3.5 is required. To install this feature, go to Server Manager…

840 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question