You can use the IPDeny property of the IIsIPSecurity object to edit lists of IP addresses, held in an array, that are not allowed access to the server.
SecObj.IPDeny = "IPAddress,SubnetMask"
varIPDeny = SecObj.IPDeny
SubnetMask
This is the subnet mask for the specified IP address.
<%
' Remember to enable Integrated Windows Authentication and
' disable Anonymous Access or you will get and Server 500 error.
Dim SecObj
Dim MyIPSec
Dim IPList
' Get the IIS object that holds the info for the default site.
' This could be any site root/vdir, or IIS://LocalHost/W3SVC for global
' properties.
Set SecObj = GetObject("IIS://LocalHost/W3SVC/1/Root")
' Get the IIsIPSecurity object
Set MyIPSec = SecObj.IPSecurity
' Make sure GrantByDefault=TRUE or your changes will not count
If (FALSE = MyIPSec.GrantByDefault) Then
Response.Write
"<BR>GrantByDefault was not TRUE. Setting to TRUE.<BR>"
MyIPSec.GrantByDefault = TRUE
End If
' Get the Deny list, as an array, and add your new restricted IP
IPList = MyIPSec.IPDeny
Redim IPList (Ubound(IPList)+1)
IPList (Ubound(IPList)) = "123.0.0.1,255.255.255.0"
' Set the new lists back in the metabase in two stages, and then set
' the metabase
MyIPSec.IPDeny = IPList
SecObj.IPSecurity = MyIPSec
SecObj.Setinfo
Response.Write "The IPRestriction has been set<BR>"
%>
IPGrant, DomainDeny, DomainGrant, GrantByDefault, IIsIPSecurity