File Security (IP address access restrictions) in IIS7

Question

I have a web service that contains 2 asmx files (public.asmx and private.asmx). On IIS6 I could go to the properties of private.asmx then, from the 'File Security' tab, deny all computers access except the IP address for localhost.

In IIS7 I only seem to be able to do this for an entire folder. What am I missing?

Answer 1

Funny - I found this question because I have the same problem, but I think the solution is as follows:

1. In IIS7, browse to the directory containing your public.asmx and private.asmx files.
2. The title at the top will reflect the current directory, like "WebService Home". Click the "Content View" button at the bottom.
3. Right-click on your public.asmx file and choose "Switch to Features View".
4. The title should be "public.asmx Home" to confirm that you're managing the one file.
5. Add your IP restrictions. In this case, I think you want an Allow entry for 127.0.0.1 and choose "Edit Feature Settings" from the Action menu to Deny access to unspecified clients.
6. Click your containing folder again (e.g. WebService) and switch to Content View again to repeat these steps on private.asmx.

I am learning the ropes of IIS7 myself, but I hope this answers your question.