Solved

Blocking external access to a WebFolder and stopping IIS reacting to internal server name

Posted on 2016-09-26
2
39 Views
Last Modified: 2016-09-26
Hi

I have a website installed on a local server (attached).

I am trying to restrict access to the Admin folder using the ip address and domain restrictions option but when i set it up.

Default deny and allow 192.168.1.0/24 is denys for everyone.

Also i need to stop the website responding to the local server name and only the external name so that the ssl works correctly.

Can i just stop the server responding to the local name rather than having to put a forward in?

thanks
1.jpg
0
Comment
Question by:timb551
2 Comments
 
LVL 26

Accepted Solution

by:
Dan McFadden earned 500 total points
ID: 41815936
Can you post the site's bindings?  The image posted does not provide enough useful info.

My guess is the site binding is using the wildcard configuration for the IP binding, which allows IIS to respond to any http request that hits the server.  What you need to do is to choose the specific IP that the server is to answer on when a user requests a page.

Then you need to edit the IP Address and Domain Restrictions feature associated with the virtual Application and set the Feature Settings to by default Deny access for unspecified clients, then add a specific Allow rule for the IP address range you mentioned above.

Is this server directly visible from the Internet or does it sit behind a NAT'ed Public IP or a load balancer?

Dan
0
 

Author Comment

by:timb551
ID: 41816002
Fantastic, thanks.

I changed the site to be just on the ipv4 rather than * and the restrictions have started working and i can no longer browse on the local server name.

thank you
0

Featured Post

Best Practices: Disaster Recovery Testing

Besides backup, any IT division should have a disaster recovery plan. You will find a few tips below relating to the development of such a plan and to what issues one should pay special attention in the course of backup planning.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

My GPO's made for 2008 R2 servers were not allowing me to RDP into a new 2012 server by default.  That’s why I tried to allow RDP via Powershell, because I could log into a remote shell without further configuration. Below I will describe how I wen…
This article will review the basic installation and configuration for Windows Software Update Services (WSUS) in a Windows 2012 R2 environment.  WSUS is a Microsoft tool that allows administrators to manage and control updates to be approved and ins…
In this Micro Tutorial viewers will learn how to restore their server from Bare Metal Backup image created with Windows Server Backup feature. As an example Windows 2012R2 is used.
This tutorial will walk an individual through the process of configuring their Windows Server 2012 domain controller to synchronize its time with a trusted, external resource. Use Google, Bing, or other preferred search engine to locate trusted NTP …

920 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

16 Experts available now in Live!

Get 1:1 Help Now