Solved

Blocking external access to a WebFolder and stopping IIS reacting to internal server name

Posted on 2016-09-26
2
46 Views
Last Modified: 2016-09-26
Hi

I have a website installed on a local server (attached).

I am trying to restrict access to the Admin folder using the ip address and domain restrictions option but when i set it up.

Default deny and allow 192.168.1.0/24 is denys for everyone.

Also i need to stop the website responding to the local server name and only the external name so that the ssl works correctly.

Can i just stop the server responding to the local name rather than having to put a forward in?

thanks
1.jpg
0
Comment
Question by:timb551
2 Comments
 
LVL 27

Accepted Solution

by:
Dan McFadden earned 500 total points
ID: 41815936
Can you post the site's bindings?  The image posted does not provide enough useful info.

My guess is the site binding is using the wildcard configuration for the IP binding, which allows IIS to respond to any http request that hits the server.  What you need to do is to choose the specific IP that the server is to answer on when a user requests a page.

Then you need to edit the IP Address and Domain Restrictions feature associated with the virtual Application and set the Feature Settings to by default Deny access for unspecified clients, then add a specific Allow rule for the IP address range you mentioned above.

Is this server directly visible from the Internet or does it sit behind a NAT'ed Public IP or a load balancer?

Dan
0
 

Author Comment

by:timb551
ID: 41816002
Fantastic, thanks.

I changed the site to be just on the ipv4 rather than * and the restrictions have started working and i can no longer browse on the local server name.

thank you
0

Featured Post

Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I don't know if many of you have made the great mistake of using the Cisco Thin Client model with the management software VXC. If you have then you are probably more then familiar with the incredibly clunky interface, the numerous work arounds, and …
OfficeMate Freezes on login or does not load after login credentials are input.
This tutorial will walk an individual through the process of configuring basic necessities in order to use the 2010 version of Data Protection Manager. These include storage, agents, and protection jobs. Launch Data Protection Manager from the deskt…
This tutorial will walk an individual through the process of configuring their Windows Server 2012 domain controller to synchronize its time with a trusted, external resource. Use Google, Bing, or other preferred search engine to locate trusted NTP …

778 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question