Click here to get back home

Deny Specific Subnet Access to DC
 HomeNewsGroups | Search | About
Login Password
Register Now!
 microsoft.public.windows.server.security    Post an article   get this group's latest topics as an RSS feed add this group's latest topics to your My MSN content add this group's latest topics to your My Yahoo content
Subject Author Date
Deny Specific Subnet Access to DC Brett S. 07-17-2006
Posted by Brett S. on July 17, 2006, 4:06 pm
Please log in for more thread options
 I have a group of domain controllers on a subnet 172.20.128.0/24. I have a
person making LDAP queries using IIS6.0 and Coldfusion against the AD LDAP
database that I would like stopped for security policy. I would like to know
if there is a simple way on the server to block all connection attempts from
that subnet. 10.163.22.0/24

Thamnks!

Posted by Joe Richards [MVP] on July 18, 2006, 12:43 am
Please log in for more thread options
 An IPSEC block policy would be the easiest.

--
Joe Richards Microsoft MVP Windows Server Directory Services
Author of O'Reilly Active Directory Third Edition
www.joeware.net


---O'Reilly Active Directory Third Edition now available---

http://www.joeware.net/win/ad3e.htm

============================================================================
Do not read this worthless blog entry on
Defending Security Infrastructures http://blog.joeware.net/2006/07/11/445/
I'm serious, you will learn absolutely nothing about
Defending Security Infrastructures.
============================================================================

Brett S. wrote:
> I have a group of domain controllers on a subnet 172.20.128.0/24. I have a
> person making LDAP queries using IIS6.0 and Coldfusion against the AD LDAP
> database that I would like stopped for security policy. I would like to know
> if there is a simple way on the server to block all connection attempts from
> that subnet. 10.163.22.0/24
>
> Thamnks!

Similar ThreadsPosted
IPSec - allowing access to specific ports on specifc IP addresses March 11, 2008, 4:27 pm
Deny Network access via a Policy - Help!!! September 2, 2005, 2:48 am
Deny folder access for administrators January 24, 2006, 4:28 am
Blocking Specific IP Addresses July 18, 2006, 12:37 pm
Specific permission to add new contacs April 9, 2008, 7:42 am
allow start/stop a specific service through GPO November 14, 2006, 8:37 am
Exclude Specific Groups From Auditing? February 14, 2008, 8:39 am
Enabling EFS to a specific group of pc's July 19, 2008, 12:57 pm
AppCompat, TLB invalidation, CPU specific issues vs. security? May 12, 2008, 7:25 pm
How to non-trusted users write files to specific location December 15, 2005, 3:42 pm

Our other projects:

Art Dolls, Fairies and Mermaids - Sunnyfaces.net

Roy's Linux, Programming and Search Engines messages

1-Script XML SitemapXML Sitemap