tags:

views:

25

answers:

1
Q: 

Direct different IP's to different pages on IIS7

Using IIS7, how do I direct internal private network IP's addresses to my web site while I direct external IP addresses to a "site under maintenance" page?

So far on IIS7 I've found the section in IIS named "IPv4 Address and Domain Restrictions" and I can add the 3 internal ranges to that as an allow range. That seems easy. Now how do I direct all other traffic to a static page such as app_offline.html that I have created. (I'm not actually going to use app_offline.html because that will obviously take the app offline for internal addresses as well.)

+1  A: 

You can use URL Rewrite (http://www.iis.net/download/URLRewrite) for that. Then you can drop a web.config with the contents like:

<?xml version="1.0" encoding="UTF-8"?>
<configuration>
  <system.webServer>
    <rewrite>
      </outboundRules>
            <rules>
                <rule name="External IP" stopProcessing="true">
                    <match url="site-under-construction\.htm" negate="true" />
                    <conditions>
                        <add input="{REMOTE_ADDR}" pattern="192\.168\.\d+\.\d+" ignoreCase="false" negate="true" />
                        <add input="{REMOTE_ADDR}" pattern="::1" ignoreCase="false" negate="true" />
                        <add input="{REMOTE_ADDR}" pattern="127\.0\.0\.1" ignoreCase="false" negate="true" />
                    </conditions>
                    <action type="Redirect" url="/site-under-construction.htm" redirectType="Found" />
                </rule>
            </rules>
    </rewrite>
  </system.webServer>
</configuration>

What it basically does is to only apply this rule if the content is not already the "site-under-construction" page (to prevent infinite redirects), and only apply this if the IP-address is not coming from 192.168.XXX.XXX (and is not localhost).

Otherwise it will let them come through to whatever page they requested.

Note that this should not be use as a security mechanism since Remote Addr could be spoofed, but sounds like for your scenario it should be fine.

CarlosAg  2010-07-01 04:45:04

related questions

Change .NET Framework version of application pool to 3.5?
How can I determine the number of users on an ASP.NET site (IIS)? And their info?
Hitting Webservice on Different Subnet
WebResource.asd giving 403 error in ASP.Net Post backs using IIS7
How do you Install a SSL Certificate
Can IIS7 be installed on XP?
Is IIS7 migration a piece of cake
Posting forms to a 404 + HttpHandler in IIS7: why has all POST data gone missing?
WAS hosting vs. Windows Service hosting
How do I fix 404.17 error on Win Server 2k8 and IIS7
Force IIS7 to suggest downloading *.exe files in "Local intranet" zone
Sending 'application/javascript' MIME t Type Header Causes 500 Error with PHP5 & IIS7
How to configure IIS7 to allow zip file uploads using classic asp?
What is the worker process for IIS7?
IIS Integrated Request Processing Pipeline -- Modify Request
How to setup GIT bare HTTP-available repository on IIS-machine
What is the ASP.NET process for IIS 7.0?
IIS7: HTTP->HTTPS Cleanly
URL Rewrite Module for IIS 7
ASP.NET Forms Authorization
Does CruiseControl.NET run on IIS 7.0?
How do I get PHP and MySQL working on IIS 7.0 ?
Convert an asp.net application to IIS7 integrated mode
Impersonation in IIS 7.0
How do I stop IIS7 dropping my cookies?