IIS in a server with two different subnetsRSS

4 replies

Last post Oct 14, 2019 07:17 AM by Jalpa Panchal

  • IIS in a server with two different subnets

    Oct 11, 2019 03:07 PM|St.A.2018|LINK

    Good morning

    I have a server in a LAN, with an IP of this LAN. This server has two network cards for two different subnets, one card belongs to the LAN and the other to an intranet. 

    Several ASP.NET sites are installed in IIS, and all of them are usable from LAN, but not from intranet.

    When I connect to the sites from the intranet I receive the '403 Forbidden' error . The ASP.NET default website return blank page.

    With ARP -A I can see all IP and MAC address of both subnet.

    I tried to disable the firewall but the server reponse didn't change.

    The binding of all site use * in IP address.

    What should I do to allow intranet computer to communicate with IIS sites?

    The LAN and the intranet don't comunicate each other, only the server must respond to both subnet.

  • Re: IIS in a server with two different subnets

    Oct 11, 2019 04:50 PM|lextm|LINK

    Lex Li
    https://lextudio.com
    ---------------------------
    This posting is provided "AS IS" with no warranties, and confers no rights.
  • Re: IIS in a server with two different subnets

    Oct 14, 2019 03:13 AM|Jalpa Panchal|LINK

    Hi,

    The firewall needs to be configured to accept incoming calls on TCP port 80.

    go to windows firewall with advanced security
    Inbound Rules -> Action -> New Rule
    select Predefined radio button and then select the last item - World Wide Web Services(HTTP)
    Click next and leave the next steps as they are (allow the connection).

    outbound traffic(from server to outside world) is allowed by default .for example, http responses that web server is sending back to outside users and requests but inbound traffic (originating from outside world to the server) is blocked by default like the user web requests originating from their browser which cannot reach the webserver by default and you must open it.

    If you're hosting the website on a specific port in IIS like 812 then you'd have to allow this port through Windows Firewall too. You could follow these steps:


    Windows Firewall > Advanced settings
    Inbound Rules > New Rule
    Select Port > Next


    Specific local ports > Add the Port you want to allow


    Allow All Connections
    Enter a name and some description so that you remember it later on
    Done

    also, try to ping your web server from the LAN computers command prompt and make sure you assign iis_iusrs and iusr permission to the site folder.

    please check the iis logs to get what is the substatus code for 403 error. 

    MSDN Community Support
    Please remember to click "Mark as Answer" the responses that resolved your issue.
    If you have any compliments or complaints to MSDN Support, feel free to contact MSDNFSF@microsoft.com.
  • Re: IIS in a server with two different subnets

    Oct 14, 2019 07:01 AM|St.A.2018|LINK

    There are 4 websites in 4 different ports:

    - 80 --> iis default website

    - 8081, 8082, 8083 --> my websites

    I set the inbound rules for all the ports.

    I tried to connect with Windows Firewall disabled but no change in 403 error

  • Re: IIS in a server with two different subnets

    Oct 14, 2019 07:17 AM|Jalpa Panchal|LINK

    did you try to ping your server and above-suggested steps? 

    MSDN Community Support
    Please remember to click "Mark as Answer" the responses that resolved your issue.
    If you have any compliments or complaints to MSDN Support, feel free to contact MSDNFSF@microsoft.com.