|
security
newsgroups
|
|||||||||||||||||||||||
|
|||||||||||||||||||||||
IP address and domain name restrictions not available?.For some reason the feature "IP address and domain name restrictions"
is ghosted in my IIS settings. Any idea why it can be? Anything else has to be activated first? I wanted to allow access only localhost and one external IP address, because that's all I need and lately my server has been under continuous attack. Thanks in advance. OK. I read somewhere else in this newsgroup: "That option is only
available on the server OSes. If you are using Windows XP Pro, or Windows 2000 Pro, that option will not be available." Not good. Any other way to filter IP addresses and domains? Any third party tool (free if possible)? The best way to do so is to use a firewall. Free software firewalls include
www.kerio.com, www.sygate.com, or www.zonealarm.com It is possible to do this natively with just the Windows OS itself, either by using IPSec rules, or [I think] by using the Windows XP firewall. However, the former is not a very good firewall, if only because the logging is severely lacking. The latter is good enough, but you can get additional features with third party firewalls. If you prefer firewall devices, low cost ones start with www.netgear.com or www.linksys.com, under $100 US. Whichever you use, be aware that Windows workstations have a limit of 10 maximum concurrent network connections. Since some web browsers can use two or more connections at once, your web site may become inaccessible after just five visitors or fewer. The only fix is to use a different OS. Last, blocking individual attackers by IP address one by one probably won't be very effective, if that was the plan here. Such IP restrictions are better for restricting who CAN access your web site, and usually not as good for restricting who on the Internet cannot get there. Show quoteHide quote "PeterX" <i***@innerlab.com> wrote in message news:1117754623.361948.36930@g47g2000cwa.googlegroups.com... > OK. I read somewhere else in this newsgroup: "That option is only > available on the server OSes. If you are using Windows XP Pro, or > Windows 2000 Pro, that option will not be available." > > Not good. Any other way to filter IP addresses and domains? Any third > party tool (free if possible)? > 
Other interesting topics
Permission denied when writing to eventlog from global.asa
401 errors filling logfile certificate services fails to start SSL for FTP How to control bandwidth per web site on IIS Problem with IUSR account Is the sessionState cookie a security risk. Using integrated authentication Response splitting IP address and domain name restrictions |
|||||||||||||||||||||||
