: IIS7.5 + Wordpress + Restrict Access to wp-login.php by client IP address I am moving from an Apache host to IIS. One of my sites in Wordpress (running Multi-site) which give me multiple blogs.

Posted in: #Htaccess #Iis7 #Security #Wordpress

I am moving from an Apache host to IIS. One of my sites in Wordpress (running Multi-site) which give me multiple blogs. I have moved all my rules from my .htaccess to the Microsoft URL ReWrite module. I have one section left that will not import.

I want to restrict access to all instances of the file wp-login.php by Client IP address.

In my .htaccess file I did the following:

<Files wp-login.php>
Order Deny,Allow
Deny from all
Allow from 192.168
</Files>

Any smart ideas on how to accompish this in IIS7.5?

10.01% popularity Vote Up Vote Down

: Are more pages in one site better for SEO? I developed a site nearly 2 years (PHP, JAVA), but I am a new SEOer. My database has almost 1M articles. I have some questions I need help with:

@Correia994

Posted in: #Seo

3 Comments

: To change URL to user friendly URL I'm refactoring my ASP.net application from ASP.net 3.5 to 4.0. Also I'm changing the URLs to user friendly URLs /product.aspx?id=100 to /product-name/100. All

@Correia994

Posted in: #AspNet #Seo #Url

1 Comments

: Google Bots and alikes are not making the difference with hidden via JavaScript content. It depend on the method and if the crawled page without Js is differing too much from the one for

@Correia994

0 Comments

:

@Correia994

0 Comments

Login to post a comment!

1 Comments

Sorted by latest first Latest Oldest Best

@Phylliss660

I found this can be done with URL ReWrite

Credit to: www.youtube.com/watch?feature=player_embedded&v=ut0pD2l4z5c#!
from web.config

Be sure to add the ServerVariable you choose (HTTP_X_AdminIPAllowed in my example) to allowed server variables from the URL ReWrite module in the IIS Console.

This example allows access to 192.168.1.* clients to all copies of wp-login.php

<rewrite>
<rules>
<clear />
<rule name="FlagAdminIPs" patternSyntax="ECMAScript">
<match url=".*" />
<conditions logicalGrouping="MatchAny" trackAllCaptures="false">
<add input="{REMOTE_ADDR}" pattern="^192.168.1.(1(2[8-9]|[3-9][0-9])|2([0-4][0-9]|5[0-4]))$" />
</conditions>
<serverVariables>
<set name="HTTP_X_AdminIPAllowed" value="yes" />
</serverVariables>
<action type="None" />
</rule>
<rule name="Restrict wp-login.php access" enabled="true" stopProcessing="true">
<match url=".*" />
<conditions logicalGrouping="MatchAll" trackAllCaptures="false">
<add input="{REQUEST_FILENAME}" pattern="wp-login.php" />
<add input="{HTTP_X_AdminIPAllowed}" pattern="yes" negate="true" />
</conditions>
<action type="CustomResponse" statusCode="403" statusReason="Forbidden" statusDescription="Forbidden" />
</rule>
</rules>
</rewrite>

10% popularity Vote Up Vote Down

Feed

: IIS7.5 + Wordpress + Restrict Access to wp-login.php by client IP address I am moving from an Apache host to IIS. One of my sites in Wordpress (running Multi-site) which give me multiple blogs.

More posts by @Correia994

: Are more pages in one site better for SEO? I developed a site nearly 2 years (PHP, JAVA), but I am a new SEOer. My database has almost 1M articles. I have some questions I need help with:

: To change URL to user friendly URL I'm refactoring my ASP.net application from ASP.net 3.5 to 4.0. Also I'm changing the URLs to user friendly URLs /product.aspx?id=100 to /product-name/100. All

: Google Bots and alikes are not making the difference with hidden via JavaScript content. It depend on the method and if the crawled page without Js is differing too much from the one for

:

Login to post a comment!

1 Comments

Back to top | Use Dark Theme