Securing Sites with IP Address Restrictions
Updated: August 22, 2005
Applies To: Windows Server 2003, Windows Server 2003 R2, Windows Server 2003 with SP1
You can configure your Web sites and FTP sites to grant or deny specific computers, groups of computers, or domains access to Web sites, FTP sites, directories, or files. For example, if your intranet server is connected to the Internet, you can prevent Internet users from accessing your server by granting access only to members of your intranet, and explicitly denying access to outside users.
|IP address restrictions apply only to IPv4 addresses.|
|In Windows 2003 Server Service Pack 1 (SP1), HTTP.sys will not cache content from a Web site with restricted IP addresses. In this case, you might consider using Internet Protocol Security (IPSec) instead of IP address restriction. For more information about IPSec, see Creating an IPsec Policy to Restrict Ports.|
This section includes the following information:
Granting or Denying Access to a Computer: Describes how to configure IP address restrictions to grant or deny access to a computer.
Granting or Denying Access to a Domain: Describes how to configure IP address restrictions to grant or deny access to a domain.
Granting or Denying Access to a Group of Computers: Describes how to configure IP address restrictions to grant or deny access for a group of computers.