We do not offer this feature. I will let our Product Team know about your suggestion. Eric DiscountASP.NET http://www.DiscountASP.NET
We (I)need theability to block ip addresses in IIS Mgr. Some other hosting providers provide this feature to their Customers. Fraudulent transactions cost money andthey consume bandwidth. Allowing your customers to block unwanted ip addresses would give discount asp another competitive advantage, and show the world that you are serious about helping to prevent fraud.
wisemxpreviously posted this link to a simple IP blocking method that you can implement: http://www.madskristensen.dk/blog/Block+IP+Addresses+From+Your+Website.aspx mjp DiscountASP.NET <SUB><SUP>http://DiscountASP.NET
Thanks, I saw it. I agree it's simple to implement, but would all your users feel the same? Moreover, don't you think thatlevel of protection is superficial, at best? I think it consumes morebandwidth and discountasp resources than blocking at the IIS level. Microsoft added the function to IIS for a reason.Giving your customers the ability to make the change incontrol panelwouldstandardize the procedure for everyone (possibly reducing support calls as well).
We're not far enough along at this point to take a safe stand on IIS IP blocking. Reason? The Internet is still stateless, ASP.NET 2/3 give us the best options and of course the new module support in IIS7. If you nail this down with solid investigation you'll find many countries that allow IPs which are not static and are allowed to roll. This has been a nightmare for many large companies and I've seen fake IPs countless times. Conduct a Google search with these words: fake IP addresscountry of origin
Granted, but IIS is an OK first line of defense. Plus, I'm not includingfixes for proxy servers or masking sw. I'm talking about IP addresses that show up in ranges such as this one: Country IP Range:41.204.32.0 to 41.204.63.255 Country fraud profile:High I think any hosting provider that is serious about combating fraud should inlcude a simple methodto block ip addresses. Don't you agree?
I still prefer an alternative method, instead of blocking use a referring page or site. On a SDK site I ran that got competitive hack attacks continally I used pages on the FBI's site, was rather fun.
