IIS 7 and Above
Configuration & Scripting
IIS in a server with two different subnets
Last post Oct 14, 2019 07:17 AM by Jalpa Panchal
Oct 11, 2019 03:07 PM|St.A.2018|LINK
I have a server in a LAN, with an IP of this LAN. This server has two network cards for two different subnets, one card belongs to the LAN and the other to an intranet.
Several ASP.NET sites are installed in IIS, and all of them are usable from LAN, but not from intranet.
When I connect to the sites from the intranet I receive the '403 Forbidden' error . The ASP.NET default website return blank page.
With ARP -A I can see all IP and MAC address of both subnet.
I tried to disable the firewall but the server reponse didn't change.
The binding of all site use * in IP address.
What should I do to allow intranet computer to communicate with IIS sites?
The LAN and the intranet don't comunicate each other, only the server must respond to both subnet.
Oct 11, 2019 04:50 PM|lextm|LINK
You might use FRT to see into the 403 error first.
Oct 14, 2019 03:13 AM|Jalpa Panchal|LINK
The firewall needs to be configured to accept incoming calls on TCP port 80.
go to windows firewall with advanced security
Inbound Rules -> Action -> New Rule
select Predefined radio button and then select the last item - World Wide Web Services(HTTP)
Click next and leave the next steps as they are (allow the connection).
outbound traffic(from server to outside world) is allowed by default .for example, http responses that web server is sending back to outside users and requests but inbound traffic (originating from outside world to the server) is blocked by default like
the user web requests originating from their browser which cannot reach the webserver by default and you must open it.
If you're hosting the website on a specific port in IIS like 812 then you'd have to allow this port through Windows Firewall too. You could follow these steps:
Windows Firewall > Advanced settings
Inbound Rules > New Rule
Select Port > Next
Specific local ports > Add the Port you want to allow
Allow All Connections
Enter a name and some description so that you remember it later on
also, try to ping your web server from the LAN computers command prompt and make sure you assign iis_iusrs and iusr permission to the site folder.
please check the iis logs to get what is the substatus code for 403 error.
Oct 14, 2019 07:01 AM|St.A.2018|LINK
There are 4 websites in 4 different ports:
- 80 --> iis default website
- 8081, 8082, 8083 --> my websites
I set the inbound rules for all the ports.
I tried to connect with Windows Firewall disabled but no change in 403 error
Oct 14, 2019 07:17 AM|Jalpa Panchal|LINK
did you try to ping your server and above-suggested steps?