Share via

Limiting Access by IP Address

  • Article

Applies To: Windows Server 2003, Windows Server 2003 R2, Windows Server 2003 with SP1

You can limit access to the NNTP service by the IP address of the client computer. By default, all IP addresses have access to the NNTP service.

You can either allow or deny access to a specific list of IP addresses. IP addresses can be specified individually or as a group by using a subnet mask. You can also specify IP addresses by using a domain name, but doing so adds the overhead of a DNS lookup for each connection.

Important

You must be a member of the Administrators group on the local computer to perform the following procedure or procedures. As a security best practice, log on to your computer by using an account that is not in the Administrators group, and then use the runas command to run IIS Manager as an administrator. At a command prompt, type runas /User:Administrative_AccountName "mmc %systemroot%\system32\inetsrv\iis.msc".

Procedures

To limit access by IP address

  1. In IIS Manager, expand the local computer, right-click the NNTP virtual server, and then click Properties.

  2. On the Access tab, under Connection control, click Connection.

  3. In the Connection box, click All except the list below to deny access to a list of IP addresses, or click Only the list below to allow access to a list of IP addresses.

  4. In the Connection box, click Add for each IP address you want to grant or deny access to the NNTP virtual server.

  5. In the Computer box, click one of the following options: Single Computer, Group of computers, or Domain. Then proceed as follows:

    • For the Single Computer option: In IP address, type the IP address of the computer. (If you don't know the IP address, click DNS Lookup.)

    • For the Group of computers option: In Subnet address, type the IP address. Then, in Subnet mask, type the subnet mask for the group of computers.

    • For the Domain option: In Name, type the domain name of the computer.

  6. Click OK.