Iis – Block IP Address range on IIS 7.5

iisiis-7.5ip addressip-blockingwindows-server-2008-r2

I have a Windows 2008R2 Server running IIS 7.5. It is getting bombarded with attempted hacks from similar IPs.

How would I block the IP range with something like 51.255.65.*?

Below is the UI presented to me when adding a Deny restriction

Best Answer

You need to specify the range in proper subnet format. You may wish to take a look at our canonical question on IPv4 subnetting, if you're not exactly sure what that means.

For your example, you'd use 51.255.65.0 in the "IP address range" field, and the subnet mask of 255.255.255.0. in the "Mask or Prefix" field.

If you're going to be making a habit of this (and also just in general), you may wish to find a nice subnet calculator or subnet mask cheat sheet you like, and add them to your bookmarks.

Related Solutions

Redmine on IIS 7.5

In complete honesty, I'm not familiar with Ruby but I'm good at research. lol. If this link I give you helps you, then I'm glad.

If not, I hope someone comes along and figures it out.

http://blogs.msdn.com/b/nickhodge/archive/2009/02/23/windows-7-iis-7-5-and-ruby-on-rails.aspx

Iis – Block Bots with IIS 7.5 and 8.0

Normally you use robots.txt. It will work on all well behaved bots.

For bots that are not well behaved there is often little you can do. You can limit connection counts or bandwidth in your firewall or webserver, but major bots will typically use multiple IP addresses. Limiting based on user-agent strings is usually not a good idea, as those are trivial for the bot to spoof, and bots that does not care about robots.txt have a tendency to spoof useragent strings as well. It works in the specific case when the bot sends a correct user agent, but does not obey the robots.txt.

Edit: If you really want to block based on useragent instead of pushing it back to your firewall or similar I think the easiest way is to use URLScan. You write a rule that looks something like this:

[Options]
 RuleList=DenyYandex

[DenyYandex]
 DenyDataSection=Agents
 ScanHeaders=User-Agent

[Agents]
 Yandex

Best Answer

Related Solutions

Redmine on IIS 7.5

Iis – Block Bots with IIS 7.5 and 8.0

Related Topic