RE: IP restrictions
From: David Dietz [MS] (daviddietz@microsoft.com)
Date: 06/17/02
- Next message: David Dietz [MS]: "RE: IIS Log interpretation"
- Previous message: x y: "Re: how to set and change the domain name in IIS?"
- In reply to: Edward Ray: "IP restrictions"
- Next in thread: Andrew Davis [MS]: "RE: IP restrictions"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: daviddietz@microsoft.com (David Dietz [MS]) Date: Mon, 17 Jun 2002 14:00:33 GMT
IPSec would probably not be the best way to go here. There is a lot of
overhead involved and simple IP restrictions would work fine for this. The
first and third entry appear to be subnets and can be added as a group of
computers using the network address and the subnet mask. The second entry
looks like a range of computers and may need to be entered individually.
Once those entries are in place only those machines should be able to
access the site.
Hope this helps.
David Dietz -- IIS Technical Lead
Search our online Knowledge Base
http://support.microsoft.com/support/
This posting is provided “AS IS” with no warranties, and confers no rights.
You assume all risk for your use. © 2001 Microsoft Corporation. All rights
reserved
--------------------
|>Content-Class: urn:content-classes:message
|>From: "Edward Ray" <ewray_home@mmicman.com>
|>Sender: "Edward Ray" <ewray_home@mmicman.com>
|>References: <d16e01c21398$c53de5c0$2ae2c90a@hosting.microsoft.com>
|>Subject: IP restrictions
|>Date: Sun, 16 Jun 2002 10:37:58 -0700
|>Lines: 33
|>Message-ID: <d5ae01c2155c$8dd24f20$9ee62ecf@tkmsftngxa05>
|>MIME-Version: 1.0
|>Content-Type: text/plain;
|> charset="iso-8859-1"
|>Content-Transfer-Encoding: 7bit
|>X-Newsreader: Microsoft CDO for Windows 2000
|>X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4910.0300
|>Thread-Index: AcIVXI3Sy3Pis2U8RRmyA/CreyNc0g==
|>Newsgroups: microsoft.public.inetserver.iis.security
|>Path: cpmsftngxa08
|>Xref: cpmsftngxa08 microsoft.public.inetserver.iis.security:7629
|>NNTP-Posting-Host: TKMSFTNGXA05 10.201.232.164
|>X-Tomcat-NG: microsoft.public.inetserver.iis.security
|>
|>IPsec works well for setting up what you want.
|>
|>Assume client has Win2k/XP Pro installed. IPsec polices
|>will not work with Win9x/Me
|>
|>
|>>-----Original Message-----
|>>Our client wants to access our WebServer Box running
|>>Windows 2000 Server SP2 and IIS5.0, and want to be
|>assured
|>>that only them can access it and nobody else.
|>>
|>>They have supplied me with the following information:
|>>
|>>1) xx.xxx.xxx.0\24
|>>2) xx.xxx.xxx.32 to xx.xxx.xxx.95
|>>3) xx.xxx.xxx.0\24
|>>
|>>In IIS5.0, I can grant these IP addresses, by going to my
|>>Default Web Site, right-clicking and selecting the
|>>Directory Security Tab>Edit IP restrictions.
|>>
|>>How do I enter the above information as I can allow
|>>granted access for single computer, group of computers or
|>>domain address.
|>>
|>>Please can someone help me on the above!
|>>
|>>Thanks in advance,.
|>>
|>>Sachin.
|>>.
|>>
|>
- Next message: David Dietz [MS]: "RE: IIS Log interpretation"
- Previous message: x y: "Re: how to set and change the domain name in IIS?"
- In reply to: Edward Ray: "IP restrictions"
- Next in thread: Andrew Davis [MS]: "RE: IP restrictions"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
