MNBS Installation of Dynamic IP Restrictions
Aus HS Syswiki
ServerAdmin content. Please ignore and move.
With the module "Dynamic IP Restrictions" we're able to block Dynamic IP addresses after a number of requests over HTTP. It's tested on a IIS 7 server on MNBS. It's helpful for DDoS attacks on a explicit web or defend the whole server.
[Bearbeiten] Download and further information
You'll find the download link and further information from Microsoft on this site: http://www.iis.net/downloads/microsoft/dynamic-ip-restrictions
[Bearbeiten] Installation of the module
The setup file is based on the "Microsoft Web Platform", which setup wizard will be downloaded automatically
Installation steps
- Start the Setup file and click through the wizard
You're able to use the default options
- The module "Dynamic IP Restrictions" 1.0 is now installed
- Warning! Due the permissions of Plesk all Sites with an own application pool and Plesk will be offline now!
- To fix this, change the permissions of the two directories
C:\Program Files (x86)\IIS\Dynamic IP Restrictions
andC:\Program Files\IIS\Dynamic IP Restrictions
- Add the groups "Everyone" and "IUSR" to the Security groups with Read & Execute permissions:
- <Screenshot folgt>
- To bring IIS online again, you should start all stopped Application Pools in IIS Manager -> Application Pools:
- <Screenshot folgt>
- Finished! You should close an reopen the IIS Manager and is available in the IIS Manager
- Take a look in this article how to configure "Dynamic IP Restrictions"