IIS 7 - Restrict Application by IP Address behind load balancer

.net iis-7 windows-server-2008 ip-address
Brandon picture Brandon · Jul 22, 2011 · Viewed 7.6k times · Source

I am trying to restrict an application in IIS 7 by IP address on my web server behind a load balancer. The X-Forwarded-For header is set by the load balancer with the client's IP address.

What is the best way to extract that IP address in IIS 7 to setup IP address filtering on my application? If there is not a best way, I will end up using an HTTPModule to handle this for me.

Answer

Shane N picture Shane N · Jul 25, 2011

You can use the IIS URL Rewrite module to accomplish this.

Add a new inbound rule with conditions that check to see if the IP address does not match {HTTP_X_Forwarded_For}. You can then set the rule up to redirect, rewrite, or abort the request.

You can a new condition for each IP address you wish to white-list.

Related questions

Unable to start debugging on the web server. Could not start ASP.NET debugging VS 2010, II7, Win 7 x64

I am running Visual Studio 2010 (as Admin), IIS 7 on Windows 7 x64. I am able to run the ASP.NET web site in IIS 7 without debugging just fine, but when I press F5 to debug it, I get: Unable to start …

Read More
Maximum value of maxRequestLength?

If we are using IIS 7 and .Net Framework 4, what will be the maximum value of maxRequestLength?

Read More
The configuration section 'system.web.extensions' cannot be read because it is missing a section declaration

I am getting error (The configuration section system.web.extensions cannot be read because it is missing a section declaration) while installing my Web Application in Server 2008 32 bit machine with .NET Framework 4.0. but it works well in 2008 r2 64 bit machine. …

Read More