How can i block external access to the Forms Login Page (i.e.
http://xx.yy.zz.ww/Forms/Account/LogOn?returnUrl=%2fForms) without affecting the Form Process or internal user login. ?
Regards.
How can i block external access to the Forms Login Page (i.e.
http://xx.yy.zz.ww/Forms/Account/LogOn?returnUrl=%2fForms) without affecting the Form Process or internal user login. ?
Regards.
Yes, but for security purpose the customer want to block access to this page.
Thanks for your response, but we solved this issue by creating an inbound blocking rule from the IIS ARR that blocks any URL matching the pattern *Forms/Account/LogOn*
Regards,
Amine
I'm not really sure what you're asking here. Isn't your internal Forms server behind the company firewall?
Wont that really only block the login page? If you want to block everything, just have forms installed on an internal network server that would not have any firewall connection to the outside network. Then the only way to connect is internally on the network or via VPN into the local network.
Hi Kenneth,
There is a Microsoft article for setting up IP-based restrictions on websites:
http://support.microsoft.com/kb/324066
You could implicitly allow only the internal domain, subnet or computer, for example.
-Ben