Home » IIS » How to Block an IP address in IIS using IP and Domain Restrictions?

How to Block an IP address in IIS using IP and Domain Restrictions?

While analyzing IIS logs, system admins may come across a specific IP address that is generating an unusual amount of traffic. If you think this is s malicious activity, you can easily block the IP address using a built-in IIS feature.

Block an IP address in IIS Manager

Here are the high-level steps for using IP and Domain Restrictions module to block an IP address.

  1. Install “IP and Domain Restrictions” using Server Manager
  2. Close and reopen IIS Manager
  3. Click on the website. Go to “IP Address and Domain Restrictions”
  4. Add a Deny rule with the IP address
  5. Once you add the rule, the client with that IP address will see 403 Forbidden error
Add a Deny rule to for the IP address you want to block
Add a Deny rule to for the IP address you want to block

The user whose IP address is blocked will see “403 – Forbidden: Access is denied. You do not have permission to view this directory or page using the credentials that you supplied” message. If you want to change this message, check out this tutorial.

This is what the user sees if their IP is blocked
This is what the user sees if their IP is blocked

For other IP address related management activities in IIS, please check the related posts below.

Ned Sahin

Blogger for 20 years. Former Microsoft Engineer. Author of six books. I love creating helpful content and sharing with the world. Reach me out for any questions or feedback.
Categories IIS

Leave a Comment