BorlandTalk.com Borland discussion newsgroups   Archives   FAQ   Search   Memberlist   Usergroups   Register   Profile   Log in to check your private messages   Log in  ISAPI filter          BorlandTalk.com Forum Index -> Delphi Internet Isapi-WebBroker View previous topic :: View next topic   Author Message Richard Bakos Guest Posted: Sat Apr 21, 2007 11:54 pm    Post subject: ISAPI filter We have grown weary of filtering unwanted IP address ranges in IIS so I'm thinking about writing a filter that compares the value of Request.RemoteAddr to a large (20,000+?) list of classful IP addresses. The filter would return a status code 404, or something much less friendly. :-) The idea is to load classful lists into the filter from files maintained through places like this - http://www.blackholes.us/zones/countries/ This will allow us to easily block entire countries. It's our observation that if we can block all incoming requests from China, we'd drastically reduce the amount of attacks against our public sites. What is the most efficient (fastest) way for me to accomplish partial string matching in a case like this? Maybe a better question - Is there a filter out there that already accomplishes what I want to do? I couldn't find anything in my search. Is there a better way to handle this altogether? Thanks, Rich Bakos Back to top Del Murray Guest Posted: Tue Apr 24, 2007 3:58 pm    Post subject: Re: ISAPI filter Rich, Wouldn't this be better handled at the firewall ? It would sure take a load off the server. You can dump your firewall config to a flat file, (ususally .. like on my Cisco), and reload it from there. That being the case, you could then have an app that updates a DB with rogue IPs and then automatically builds the firewall input file. The drawback is, that updating the firewall would probably be a manual step since logging in to them is usually pretty secure and wouldn't allow a .Bat file or script to run against it. Del Back to top Richard Bakos Guest Posted: Tue Apr 24, 2007 6:18 pm    Post subject: Re: ISAPI filter Del Murray wrote: Hi Del, Quote: Wouldn't this be better handled at the firewall ? It would sure take a load off the server. I agree that this is usually a task for a firewall. We handle this at the firewall now and it's becoming somewhat of a pain. We already do something similar do what you described to automate the config file. We do take the time to review the file before loading it so we can be sure the FW won't go belly up on restart. The restart to pickup this type of config change is problematic for us too. A filter would make the process simple. I'm more concerned about the current load on the core firewall than the load that this would put on the server. Off-loading this packet inspection would take some of the burden off of a firewall and we think it would simplify our lives a little. It's always an option for us to replace our existing firewalls with something modern but it hard to justify the expense just to simplify 1 process on equipment that is in working condition. '07 marks the beginning of a simplification process for us. We are looking at everything from how we accept money from consumers to how that money is applied to the GL, and everything in between. This is just a small piece that will help us since we've become extremely busy helping the other depts achieve their goals. Rich Back to top Del Murray Guest Posted: Tue Apr 24, 2007 8:13 pm    Post subject: Re: ISAPI filter Got it. Actually, something like what you propose would help me too so maybe I can figure something out and pass it on to you. Del Back to top Display posts from previous: All Posts1 Day7 Days2 Weeks1 Month3 Months6 Months1 Year Oldest FirstNewest First         BorlandTalk.com Forum Index -> Delphi Internet Isapi-WebBroker All times are GMT Page 1 of 1   Jump to: Select a forum C++ Builder Newsgroups----------------C++ BuilderC++ Builder (ActiveX)C++ Builder (Announcements)C++ Builder (Command Line Tools)C++ Builder DatabasesC++ Builder Databases (ADO)C++ Builder Databases (Desktop)C++ Builder Databases (InterBase Express)C++ Builder Databases (Multi-Tier)C++ Builder Databases (SQL Servers)C++ Builder (Graphics)C++ Builder (IDE)C++ Builder (Internet)C++ Builder (Internet Socket)C++ Builder (Internet Web)C++ Builder (Jobs)C++ Builder (Language)C++ Builder (Language C++)C++ Builder (Compatibility with MFC)C++ Builder (Native API)C++ Builder (Non-Technical)C++ Builder (Students)C++ Builder (Third Party Tools)C++ Builder (Upgrade)C++ Builder (VCL)C++ Builder (VCL Components Usage)C++ Builder (VCL Components Development)C++ Builder (VCL Usage)C++ Builder (WinAPI)C++ Builder Installation Delphi Newsgroups----------------Delphi (General)Delphi ActiveX Controls UsageDelphi ActiveX Controls DevelopmentDelphi As400Delphi DatabasesDelphi Databases (ADO)Delphi Databases (dbExpress)Delphi Databases (Desktop)Delphi Databases (InterBase Express)Delphi Databases (Multi-Tier)Delphi Databases (SQL Servers)Delphi DeploymentDelphi GraphicsDelphi IDEDelphi InternationalizationDelphi InternetDelphi Internet Isapi-WebBrokerDelphi Internet WebSnapDelphi Internet WinsockDelphi JobsDelphi Language BASMDelphi Language ObjectPascalDelphi Model Driven Architecture (General)Delphi Model Driven Architecture (Third Party)Delphi MultimediaDelphi Native APIDelphi Non-TechnicalDelphi ObjectPascalDelphi OLE AutomationDelphi OO designDelphi OpenToolsAPIDelphi Reporting-ChartingDelphi RTLDelphi StudentsDelphi TeamSourceDelphi Thirdparty ToolsDelphi Thirdparty Tools (General)Delphi Thirdparty Tools (IntraWeb)Delphi Thirdparty Tools (RaveReports)Delphi UpgradeDelphi VCLDelphi VCL ComponentsDelphi VCL Components UsingDelphi VCL Components WritingDelphi WebServices SOAPDelphi WinAPIDelphi XMLDelphi Installationcomp.lang.pascal.delphi.components.misccomp.lang.pascal.delphi.components.usagecomp.lang.pascal.delphi.components.writingcomp.lang.pascal.delphi.databasescomp.lang.pascal.delphi.misccomp.sources.delphi JBuilder Newsgroups----------------JBuilderJBuilder AnnouncementsJBuilder Applet IssuesJBuilder As400JBuilder CompilerJBuilder CORBA/RMIJBuilder DatabasesJBuilder DB SwingJBuilder DebuggerJBuilder DeploymentJBuilder DocumentationJBuilder EnterpriseJBuilder HandheldJBuilder IDEJBuilder JavaJBuilder JavaAPIJBuilder Java LanguageJBuilder Java SwingJBuilder Java BeansJBuilder Java Beans UsageJBuilder Java Beans DevelopmentJBuilder JBCLJBuilder JDataStoreJBuilder JobsJBuilder LinuxJBuilder MacintoshJBuilder & MobileSetJBuilder MultiLingual AppsJBuilder Non-TechnicalJBuilder OpenToolsJBuilder Servlets (JSP)JBuilder StudentsJBuilder Team DevelopmentJBuilder Thirdparty ToolsJBuilder UpgradeJBuilder Installation InterBase Newsgroups----------------InterBaseInterBase Bug DiscussionInterBase GeneralInterBase IBConsoleInterBase OpenSourceInterBase ReplicationInterBase SQLInterBase ThirdpartyInterBase Installation Miscellaneous Borland Newsgroups----------------AppCenterAppServerEnteraVisiBroker  You cannot post new topics in this forum You cannot reply to topics in this forum You cannot edit your posts in this forum You cannot delete your posts in this forum You cannot vote in polls in this forum Powered by phpBB © 2001, 2006 phpBB Group SEO toolkit © 2004-2006 webmedic.